$ rpki-client -vvf repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3130332e3132302e3233332e302f32342d3234203d3e2034383030.roa File: 3130332e3132302e3233332e302f32342d3234203d3e2034383030.roa (raw, json) Hash identifier: 9MtyVzSA4VMwDCupiOyuohqq8njDtlZpU7JiCPF6EBI= Subject key identifier: 89:C4:6A:35:11:10:BF:74:5F:80:89:FC:2A:1D:75:55:0D:E3:35:C2 Certificate issuer: /CN=3366CD5573BB4B11694DBCF0F1502CE2B46BFD51 Certificate serial: 7A481D877BB2E0F3DF58EC5AC16DE3527DD8B892 Authority key identifier: 33:66:CD:55:73:BB:4B:11:69:4D:BC:F0:F1:50:2C:E2:B4:6B:FD:51 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3366CD5573BB4B11694DBCF0F1502CE2B46BFD51.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3130332e3132302e3233332e302f32342d3234203d3e2034383030.roa Signing time: Thu 18 Jul 2024 04:49:44 +0000 ROA not before: Thu 18 Jul 2024 04:44:44 +0000 ROA not after: Thu 17 Jul 2025 04:49:44 +0000 asID: 4800 IP address blocks: 103.120.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3366CD5573BB4B11694DBCF0F1502CE2B46BFD51.crl rsync://repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3366CD5573BB4B11694DBCF0F1502CE2B46BFD51.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3366CD5573BB4B11694DBCF0F1502CE2B46BFD51.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 06:51:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:48:1d:87:7b:b2:e0:f3:df:58:ec:5a:c1:6d:e3:52:7d:d8:b8:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3366CD5573BB4B11694DBCF0F1502CE2B46BFD51 Validity Not Before: Jul 18 04:44:44 2024 GMT Not After : Jul 17 04:49:44 2025 GMT Subject: CN=89C46A351110BF745F8089FC2A1D75550DE335C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:91:e8:11:04:02:01:d5:e8:17:fe:11:d8:05: 96:2a:09:e7:ab:fc:b2:9a:7e:1b:8d:36:dc:3f:c9: dc:68:b9:47:5c:0e:d8:3a:4a:73:bc:28:94:63:5d: a4:b8:31:a8:e7:90:f0:ab:e2:ec:ab:62:39:df:2c: e2:d7:2c:de:46:fe:bf:5f:ae:8a:50:2c:ec:1e:95: 37:0e:ea:a8:4d:e6:22:96:9e:d6:f0:71:44:11:5e: ac:3d:a5:8c:5e:d9:51:15:d8:fd:f8:e1:ae:a4:e5: a7:29:88:c7:3a:bb:3e:91:28:b6:a0:8f:5d:91:a8: 8c:ef:67:57:42:c4:b9:9a:29:56:ff:74:ca:39:bd: a9:d7:5d:a1:72:e6:85:bc:3e:ad:dc:5a:a1:9e:4d: 00:94:0a:33:4e:70:3b:d8:4a:73:06:0f:a7:b2:47: 0a:7a:b4:c7:54:a3:97:8f:44:b0:02:93:61:6c:f5: 4d:8a:33:f4:ca:72:8b:bf:58:ed:59:7b:44:45:a5: ae:b8:d9:ef:5f:f2:e5:c8:81:31:a0:12:df:b4:43: d5:13:51:cd:3b:eb:f9:8d:db:2d:94:e9:56:1c:a2: 23:6e:cc:58:54:11:d6:bd:c6:17:34:e8:50:95:17: 09:11:fb:de:62:ed:29:ec:b7:36:b4:22:fe:1e:fc: 24:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:C4:6A:35:11:10:BF:74:5F:80:89:FC:2A:1D:75:55:0D:E3:35:C2 X509v3 Authority Key Identifier: keyid:33:66:CD:55:73:BB:4B:11:69:4D:BC:F0:F1:50:2C:E2:B4:6B:FD:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3366CD5573BB4B11694DBCF0F1502CE2B46BFD51.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3366CD5573BB4B11694DBCF0F1502CE2B46BFD51.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a3a26bfb-675f-444f-90c9-5d3a9b18c34c/0/3130332e3132302e3233332e302f32342d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.233.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:58:90:64:d5:0d:67:88:35:1f:28:04:04:3f:de:11:35:03: 79:a3:75:e2:05:84:1b:3a:4f:b6:ad:65:cd:0d:32:96:9b:80: ce:02:7c:3d:dc:be:22:c8:b5:ab:99:9f:0b:be:52:b8:0e:21: 71:db:14:d1:d7:da:53:39:b4:ba:b6:61:d7:9c:2f:92:13:90: e5:65:30:ec:92:1c:b7:0c:c9:fb:07:77:c5:6b:76:b9:93:54: ce:45:c2:b7:9d:dc:fa:c2:7a:9e:01:fc:6a:c7:41:be:dc:6c: 30:88:84:dd:f9:52:be:c2:d6:ee:29:1a:64:61:65:b8:46:26: a2:ca:2e:dd:13:86:5a:e8:5b:9d:24:f9:c9:ad:00:09:0a:c2: 75:be:2b:07:a6:6e:eb:15:46:d7:f7:cc:c3:8c:8d:8c:29:09: f5:0f:c6:a1:ca:88:b4:6a:4a:4a:77:c0:00:ce:0b:1e:fb:c1: 82:0a:d3:97:c7:3a:3b:44:89:3c:62:79:f6:92:8d:d8:0e:05: 63:98:8b:17:d2:d9:13:ee:a8:36:94:05:f0:13:16:55:d9:7b: a0:d3:1c:33:b9:34:96:49:62:d9:49:a3:ad:84:a2:a6:8a:b6: d9:bc:fc:cf:2e:a0:03:4d:c7:14:8b:91:07:ab:6a:13:91:c5: 6d:34:a1:f2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUekgdh3uy4PPfWOxawW3jUn3YuJIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzM2NkNENTU3M0JCNEIxMTY5NERCQ0YwRjE1MDJDRTJC NDZCRkQ1MTAeFw0yNDA3MTgwNDQ0NDRaFw0yNTA3MTcwNDQ5NDRaMDMxMTAvBgNV BAMTKDg5QzQ2QTM1MTExMEJGNzQ1RjgwODlGQzJBMUQ3NTU1MERFMzM1QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDkegRBAIB1egX/hHYBZYqCeer /LKafhuNNtw/ydxouUdcDtg6SnO8KJRjXaS4MajnkPCr4uyrYjnfLOLXLN5G/r9f ropQLOwelTcO6qhN5iKWntbwcUQRXqw9pYxe2VEV2P344a6k5acpiMc6uz6RKLag j12RqIzvZ1dCxLmaKVb/dMo5vanXXaFy5oW8Pq3cWqGeTQCUCjNOcDvYSnMGD6ey Rwp6tMdUo5ePRLACk2Fs9U2KM/TKcou/WO1Ze0RFpa642e9f8uXIgTGgEt+0Q9UT Uc076/mN2y2U6VYcoiNuzFhUEda9xhc06FCVFwkR+95i7Snstza0Iv4e/CRnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUicRqNREQv3RfgIn8Kh11VQ3jNcIwHwYDVR0j BBgwFoAUM2bNVXO7SxFpTbzw8VAs4rRr/VEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h M2EyNmJmYi02NzVmLTQ0NGYtOTBjOS01ZDNhOWIxOGMzNGMvMC8zMzY2Q0Q1NTcz QkI0QjExNjk0REJDRjBGMTUwMkNFMkI0NkJGRDUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzM2NkNENTU3M0JCNEIxMTY5NERCQ0YwRjE1MDJDRTJCNDZC RkQ1MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzYTI2YmZiLTY3NWYtNDQ0Zi05 MGM5LTVkM2E5YjE4YzM0Yy8wLzMxMzAzMzJlMzEzMjMwMmUzMjMzMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM4MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGd46TANBgkqhkiG 9w0BAQsFAAOCAQEAnliQZNUNZ4g1HygEBD/eETUDeaN14gWEGzpPtq1lzQ0ylpuA zgJ8Pdy+Isi1q5mfC75SuA4hcdsU0dfaUzm0urZh15wvkhOQ5WUw7JIctwzJ+wd3 xWt2uZNUzkXCt53c+sJ6ngH8asdBvtxsMIiE3flSvsLW7ikaZGFluEYmosou3ROG WuhbnST5ya0ACQrCdb4rB6Zu6xVG1/fMw4yNjCkJ9Q/GocqItGpKSnfAAM4LHvvB ggrTl8c6O0SJPGJ59pKN2A4FY5iLF9LZE+6oNpQF8BMWVdl7oNMcM7k0lkli2Umj rYSipoq22bz8zy6gA03HFIuRB6tqE5HFbTSh8g== -----END CERTIFICATE-----Generated at Mon Nov 25 09:02:06 2024 by rpki-client on console-ams.rpki-client.org