$ rpki-client -vvf repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e36382e302f32342d3234203d3e203535363835.roa File: 3130332e36362e36382e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: tpDStVFIFqB4DRm6j6XW2vqPZ0uybsz5vrF6Xuyk+08= Subject key identifier: EC:9C:81:A8:88:C1:45:55:47:80:CC:10:F9:27:15:CE:AF:DD:C8:FD Certificate issuer: /CN=8458BC369C80A76B2875FC97DBE5D1A09B6AF317 Certificate serial: 588DBB3B4888E92FAD82D5013C1214BF96F746C2 Authority key identifier: 84:58:BC:36:9C:80:A7:6B:28:75:FC:97:DB:E5:D1:A0:9B:6A:F3:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e36382e302f32342d3234203d3e203535363835.roa Signing time: Mon 04 Nov 2024 05:00:01 +0000 ROA not before: Mon 04 Nov 2024 04:55:01 +0000 ROA not after: Mon 03 Nov 2025 05:00:01 +0000 asID: 55685 IP address blocks: 103.66.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.crl rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:8d:bb:3b:48:88:e9:2f:ad:82:d5:01:3c:12:14:bf:96:f7:46:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8458BC369C80A76B2875FC97DBE5D1A09B6AF317 Validity Not Before: Nov 4 04:55:01 2024 GMT Not After : Nov 3 05:00:01 2025 GMT Subject: CN=EC9C81A888C145554780CC10F92715CEAFDDC8FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:9b:1f:3f:b1:98:05:8c:e8:ec:01:32:0e:b7: 3a:fb:03:d4:91:6f:cd:3a:30:64:34:4e:0e:ed:16: 4c:ca:e4:46:dc:51:2c:9e:13:6d:5b:57:ce:86:29: be:51:fd:31:dd:ea:db:84:eb:60:17:05:b2:a3:33: f6:01:61:0e:46:61:09:ed:68:d8:03:03:ec:04:2d: d4:b1:38:d2:cf:68:0a:87:35:f5:06:28:8d:8f:b6: 2b:79:2b:1b:e6:27:66:19:71:d6:1a:ea:66:de:6d: 5c:7d:75:07:11:29:7f:11:46:00:af:4b:e2:ee:22: f3:85:12:c4:28:be:f4:62:fe:28:58:5d:a3:aa:4f: fc:f1:25:30:ba:f7:ea:84:4a:a6:a1:65:b6:bc:6c: 97:60:c0:9b:59:d9:8d:46:44:41:6c:1a:3f:16:65: 26:33:f1:2a:69:b6:79:8b:be:69:e0:9c:68:24:27: 2d:cc:3f:fa:e3:00:25:4e:e3:c5:78:a7:3d:58:f2: 93:0d:ac:58:98:da:c9:9e:de:43:c6:79:42:d8:70: e7:0b:e8:eb:74:35:67:09:f0:e5:19:dd:a3:6c:35: 40:8f:29:07:d0:00:9d:55:5f:a0:2d:75:7a:fb:79: aa:9d:ef:20:00:44:31:f0:7e:e0:2e:aa:6a:c8:bc: 4b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:9C:81:A8:88:C1:45:55:47:80:CC:10:F9:27:15:CE:AF:DD:C8:FD X509v3 Authority Key Identifier: keyid:84:58:BC:36:9C:80:A7:6B:28:75:FC:97:DB:E5:D1:A0:9B:6A:F3:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e36382e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.66.68.0/24 Signature Algorithm: sha256WithRSAEncryption 00:1c:b3:06:af:3b:d6:39:95:d4:ea:7e:9b:ad:14:53:af:09: 71:1c:f4:06:27:07:86:cc:0e:6f:1f:27:e4:57:fc:8f:7d:ce: b5:ed:7a:ab:95:99:bb:99:d4:8f:24:e4:b2:cb:92:d0:aa:bd: 7f:8c:bc:ec:03:64:cc:88:b3:69:1a:5a:b8:f3:75:86:94:2f: 51:3b:a1:19:ee:0f:3f:78:ab:cc:2f:3d:4e:9d:39:24:28:e9: fd:ea:3b:30:8b:ec:25:a1:8e:d6:71:3c:b9:52:aa:11:d9:1b: b8:73:0b:b7:03:30:a6:3d:02:e3:98:9c:29:28:23:b2:80:c6: d8:54:b4:4c:c1:09:53:10:4d:93:5e:26:f3:ea:9d:3f:04:ac: c7:e5:c5:05:9c:be:3a:60:2a:f1:08:12:de:24:94:75:7a:5a: c4:b8:27:90:7a:c8:3e:f6:df:ce:a1:9a:0b:3a:72:00:ad:56: 54:e8:01:5e:46:aa:ca:4c:dd:5f:2e:41:13:7e:14:0e:a1:75: 5e:8d:bb:6d:f5:cd:e9:31:39:e9:ea:5a:d7:d7:68:38:bf:6a: c1:af:c3:74:7e:7f:70:20:63:36:aa:2b:d5:b9:8e:15:40:57: a9:55:c7:97:fc:bf:98:35:0c:99:d6:b4:42:a7:c3:67:78:70: f0:72:6e:04 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUWI27O0iI6S+tgtUBPBIUv5b3RsIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ1OEJDMzY5QzgwQTc2QjI4NzVGQzk3REJFNUQxQTA5 QjZBRjMxNzAeFw0yNDExMDQwNDU1MDFaFw0yNTExMDMwNTAwMDFaMDMxMTAvBgNV BAMTKEVDOUM4MUE4ODhDMTQ1NTU0NzgwQ0MxMEY5MjcxNUNFQUZEREM4RkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZmx8/sZgFjOjsATIOtzr7A9SR b806MGQ0Tg7tFkzK5EbcUSyeE21bV86GKb5R/THd6tuE62AXBbKjM/YBYQ5GYQnt aNgDA+wELdSxONLPaAqHNfUGKI2Ptit5KxvmJ2YZcdYa6mbebVx9dQcRKX8RRgCv S+LuIvOFEsQovvRi/ihYXaOqT/zxJTC69+qESqahZba8bJdgwJtZ2Y1GREFsGj8W ZSYz8SpptnmLvmngnGgkJy3MP/rjACVO48V4pz1Y8pMNrFiY2sme3kPGeULYcOcL 6Ot0NWcJ8OUZ3aNsNUCPKQfQAJ1VX6AtdXr7eaqd7yAARDHwfuAuqmrIvEs1AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU7JyBqIjBRVVHgMwQ+ScVzq/dyP0wHwYDVR0j BBgwFoAUhFi8NpyAp2sodfyX2+XRoJtq8xcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MmFhMTZlYS0yYWVjLTQ5NWQtYTlhMy02OTI1NzMwZDVlMGYvMC84NDU4QkMzNjlD ODBBNzZCMjg3NUZDOTdEQkU1RDFBMDlCNkFGMzE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ1OEJDMzY5QzgwQTc2QjI4NzVGQzk3REJFNUQxQTA5QjZB RjMxNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EyYWExNmVhLTJhZWMtNDk1ZC1h OWEzLTY5MjU3MzBkNWUwZi8wLzMxMzAzMzJlMzYzNjJlMzYzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNjM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnQkQwDQYJKoZIhvcN AQELBQADggEBAAAcswavO9Y5ldTqfputFFOvCXEc9AYnB4bMDm8fJ+RX/I99zrXt equVmbuZ1I8k5LLLktCqvX+MvOwDZMyIs2kaWrjzdYaUL1E7oRnuDz94q8wvPU6d OSQo6f3qOzCL7CWhjtZxPLlSqhHZG7hzC7cDMKY9AuOYnCkoI7KAxthUtEzBCVMQ TZNeJvPqnT8ErMflxQWcvjpgKvEIEt4klHV6WsS4J5B6yD72386hmgs6cgCtVlTo AV5GqspM3V8uQRN+FA6hdV6Nu231zekxOenqWtfXaDi/asGvw3R+f3AgYzaqK9W5 jhVAV6lVx5f8v5g1DJnWtEKnw2d4cPBybgQ= -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:46 2024 by rpki-client on console-ams.rpki-client.org