$ rpki-client -vvf repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/3130332e3133372e3138392e302f32342d3234203d3e2039333431.roa File: 3130332e3133372e3138392e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: ns+3re2xjf2DCHP0O34XWP3LLYLuHBfKDvdHrJkc5xc= Subject key identifier: 7D:6C:9F:B5:B4:C4:92:03:D2:2C:AF:C0:4D:69:E0:8C:D4:D9:C8:4F Certificate issuer: /CN=399F84118EDEFAAD5DD93673BFD61B9F5505ED30 Certificate serial: 14E816D099F6C5B6FCEA6606AD9EB2964E685212 Authority key identifier: 39:9F:84:11:8E:DE:FA:AD:5D:D9:36:73:BF:D6:1B:9F:55:05:ED:30 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/3130332e3133372e3138392e302f32342d3234203d3e2039333431.roa Signing time: Fri 28 Jun 2024 08:00:02 +0000 ROA not before: Fri 28 Jun 2024 07:55:02 +0000 ROA not after: Fri 27 Jun 2025 08:00:02 +0000 asID: 9341 IP address blocks: 103.137.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.crl rsync://repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 10:20:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:e8:16:d0:99:f6:c5:b6:fc:ea:66:06:ad:9e:b2:96:4e:68:52:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=399F84118EDEFAAD5DD93673BFD61B9F5505ED30 Validity Not Before: Jun 28 07:55:02 2024 GMT Not After : Jun 27 08:00:02 2025 GMT Subject: CN=7D6C9FB5B4C49203D22CAFC04D69E08CD4D9C84F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6b:16:2c:6d:13:09:bd:b6:9d:be:fe:7c:3f: be:83:73:47:d1:f6:02:c1:59:1f:81:15:a9:92:0c: d0:24:9c:f2:11:35:8d:09:be:96:78:9d:7a:84:4d: 62:3e:08:be:5d:a3:b0:e7:be:dc:5c:9e:21:d4:7d: b6:79:62:8b:ce:ab:f1:e0:81:bb:63:9f:20:1c:5a: 37:39:27:28:79:c4:eb:2e:6c:51:d5:8e:01:e4:63: 2a:38:99:13:ff:fe:ae:06:16:56:0b:6e:31:7f:7e: 73:b2:67:2e:72:40:35:b9:ab:90:ea:fe:7b:1c:b3: 26:34:e5:f3:46:fb:7b:f4:13:07:1c:29:86:19:3c: 06:87:de:1d:77:49:6f:81:22:c6:bc:e4:86:54:d6: ae:70:bb:bb:40:53:5c:fa:d2:45:65:85:b2:27:3c: 37:40:c6:45:99:57:0d:2d:d6:db:76:f4:95:5c:03: 0a:75:80:33:93:6e:4b:69:0f:3d:b1:a6:45:a4:0f: a4:5c:3d:e6:3e:23:a7:89:76:54:f2:83:a4:20:0a: f5:33:1e:8c:f3:d6:ce:5b:bc:cc:88:8c:a0:d5:d6: b3:a6:5d:24:92:9e:83:34:c0:65:a1:5e:27:cd:47: 8f:42:9c:ea:95:e6:8d:2b:96:23:44:e6:c3:83:bd: 6f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:6C:9F:B5:B4:C4:92:03:D2:2C:AF:C0:4D:69:E0:8C:D4:D9:C8:4F X509v3 Authority Key Identifier: keyid:39:9F:84:11:8E:DE:FA:AD:5D:D9:36:73:BF:D6:1B:9F:55:05:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/3130332e3133372e3138392e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.137.189.0/24 Signature Algorithm: sha256WithRSAEncryption 23:46:4e:41:f0:4b:f4:49:24:a5:4f:52:ef:8e:65:e5:53:71: 6b:de:fa:1d:4e:d5:fd:a4:91:ad:f2:e9:74:5c:cd:06:a1:7c: 22:70:b8:1c:84:77:42:53:17:90:b3:32:f9:e5:71:32:ec:25: b7:2e:c7:6c:34:78:bc:27:53:74:c0:7c:ce:3c:55:0e:73:a0: a5:c7:59:50:08:d4:c4:36:35:c8:7d:b0:7d:cd:cd:aa:35:aa: f3:10:1f:87:7e:c0:e2:87:05:c0:04:0f:ae:e6:25:5d:45:a5: da:4a:10:ee:37:20:be:a8:1d:08:f8:ff:a8:30:6d:3d:7d:1c: 56:ee:0b:3c:0c:57:16:fc:66:27:c2:49:1f:59:b7:06:48:b1: 17:5f:7b:16:d7:a6:fd:ba:c1:37:a9:63:f8:ab:8c:92:ef:99: f8:42:fb:91:1d:e9:d1:0c:c2:04:77:6b:19:82:28:a1:52:f5: 76:65:88:c5:66:de:8c:7c:35:35:79:04:df:35:47:91:31:87: 50:e3:d2:2e:9a:25:07:11:d3:c2:bd:bf:73:3a:95:c2:e3:75: d0:86:51:67:d3:38:c7:af:19:c0:aa:72:76:ed:8d:44:20:17: 10:7c:4c:73:2d:bf:e9:90:27:ae:4e:38:5a:f3:d6:09:0c:6d: 92:4f:05:9e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFOgW0Jn2xbb86mYGrZ6ylk5oUhIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzk5Rjg0MTE4RURFRkFBRDVERDkzNjczQkZENjFCOUY1 NTA1RUQzMDAeFw0yNDA2MjgwNzU1MDJaFw0yNTA2MjcwODAwMDJaMDMxMTAvBgNV BAMTKDdENkM5RkI1QjRDNDkyMDNEMjJDQUZDMDRENjlFMDhDRDREOUM4NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/axYsbRMJvbadvv58P76Dc0fR 9gLBWR+BFamSDNAknPIRNY0JvpZ4nXqETWI+CL5do7DnvtxcniHUfbZ5YovOq/Hg gbtjnyAcWjc5Jyh5xOsubFHVjgHkYyo4mRP//q4GFlYLbjF/fnOyZy5yQDW5q5Dq /nscsyY05fNG+3v0EwccKYYZPAaH3h13SW+BIsa85IZU1q5wu7tAU1z60kVlhbIn PDdAxkWZVw0t1tt29JVcAwp1gDOTbktpDz2xpkWkD6RcPeY+I6eJdlTyg6QgCvUz Hozz1s5bvMyIjKDV1rOmXSSSnoM0wGWhXifNR49CnOqV5o0rliNE5sODvW9hAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUfWyftbTEkgPSLK/ATWngjNTZyE8wHwYDVR0j BBgwFoAUOZ+EEY7e+q1d2TZzv9Ybn1UF7TAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NmMxMjcwMy1mMWY3LTQzYzktYTIyMC05MmVkZDg2ZWZlNWUvMC8zOTlGODQxMThF REVGQUFENUREOTM2NzNCRkQ2MUI5RjU1MDVFRDMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzk5Rjg0MTE4RURFRkFBRDVERDkzNjczQkZENjFCOUY1NTA1 RUQzMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2YzEyNzAzLWYxZjctNDNjOS1h MjIwLTkyZWRkODZlZmU1ZS8wLzMxMzAzMzJlMzEzMzM3MmUzMTM4MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeJvTANBgkqhkiG 9w0BAQsFAAOCAQEAI0ZOQfBL9EkkpU9S745l5VNxa976HU7V/aSRrfLpdFzNBqF8 InC4HIR3QlMXkLMy+eVxMuwlty7HbDR4vCdTdMB8zjxVDnOgpcdZUAjUxDY1yH2w fc3NqjWq8xAfh37A4ocFwAQPruYlXUWl2koQ7jcgvqgdCPj/qDBtPX0cVu4LPAxX FvxmJ8JJH1m3BkixF197Ftem/brBN6lj+KuMku+Z+EL7kR3p0QzCBHdrGYIooVL1 dmWIxWbejHw1NXkE3zVHkTGHUOPSLpolBxHTwr2/czqVwuN10IZRZ9M4x68ZwKpy du2NRCAXEHxMcy2/6ZAnrk44WvPWCQxtkk8Fng== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:53 2024 by rpki-client on console-ams.rpki-client.org