$ rpki-client -vvf repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/3130332e3234322e3230342e302f32322d3234203d3e203233373536.roa File: 3130332e3234322e3230342e302f32322d3234203d3e203233373536.roa (raw, json) Hash identifier: UpSXaQL4hvamZB7sMVEVrvvzWIfPbsCxCjFg7VirCfM= Subject key identifier: E9:FC:99:07:31:C2:6D:B4:6F:D2:61:DE:CA:21:3A:FE:03:C3:94:12 Certificate issuer: /CN=DBF597EA29EF8A70656446AF75CF33F0618E8282 Certificate serial: 549FE6E0BCE8917ADFBC61260C259FE37A1608FE Authority key identifier: DB:F5:97:EA:29:EF:8A:70:65:64:46:AF:75:CF:33:F0:61:8E:82:82 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBF597EA29EF8A70656446AF75CF33F0618E8282.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/3130332e3234322e3230342e302f32322d3234203d3e203233373536.roa Signing time: Mon 01 Jul 2024 01:03:14 +0000 ROA not before: Mon 01 Jul 2024 00:58:14 +0000 ROA not after: Mon 30 Jun 2025 01:03:14 +0000 asID: 23756 IP address blocks: 103.242.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/DBF597EA29EF8A70656446AF75CF33F0618E8282.crl rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/DBF597EA29EF8A70656446AF75CF33F0618E8282.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBF597EA29EF8A70656446AF75CF33F0618E8282.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:9f:e6:e0:bc:e8:91:7a:df:bc:61:26:0c:25:9f:e3:7a:16:08:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBF597EA29EF8A70656446AF75CF33F0618E8282 Validity Not Before: Jul 1 00:58:14 2024 GMT Not After : Jun 30 01:03:14 2025 GMT Subject: CN=E9FC990731C26DB46FD261DECA213AFE03C39412 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:84:94:68:06:e2:09:cc:7b:a0:e5:fe:48:5b: 45:84:20:13:d6:e9:9e:35:b9:bd:5f:c8:6d:09:27: 9d:c3:47:05:d1:9d:9d:4f:0f:7b:dd:64:39:ff:f8: 17:62:4b:ac:6e:cf:4a:77:11:f9:59:0d:54:60:e5: 07:18:06:a5:07:90:61:93:1b:8c:78:8b:e6:48:9b: 80:6a:f1:a2:de:b6:9a:ba:6e:a8:a1:4d:83:06:f2: 9e:88:e4:65:4d:35:f1:3c:c8:14:e8:d3:d0:52:79: 90:92:1c:8b:ec:9f:db:19:cb:96:12:76:51:0a:04: 44:e7:ff:1d:56:0e:57:2b:4d:e0:14:f6:b7:da:d0: 4c:2c:24:6b:73:72:ad:37:df:ce:94:cb:1f:77:e4: 45:6f:bd:5b:f3:31:a0:9d:86:9f:cd:59:4f:35:92: 40:1e:63:47:9d:f3:6a:80:53:79:7b:ce:b3:e6:9c: 00:76:03:a9:bb:25:f7:69:5e:52:cb:46:b1:0c:5f: 4f:fe:19:31:42:52:f2:2e:79:05:93:12:88:80:1f: b2:08:66:f8:34:0b:4b:82:e5:56:c7:e4:3f:77:b3: 1d:e8:29:fd:58:81:f6:81:fd:19:24:a8:d3:e1:57: 75:81:9d:73:1f:80:e0:1d:2e:06:cc:3b:07:0e:04: d2:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:FC:99:07:31:C2:6D:B4:6F:D2:61:DE:CA:21:3A:FE:03:C3:94:12 X509v3 Authority Key Identifier: keyid:DB:F5:97:EA:29:EF:8A:70:65:64:46:AF:75:CF:33:F0:61:8E:82:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/DBF597EA29EF8A70656446AF75CF33F0618E8282.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DBF597EA29EF8A70656446AF75CF33F0618E8282.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ad0f1a6e-83b6-4534-967d-f8db3c3711f4/0/3130332e3234322e3230342e302f32322d3234203d3e203233373536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.204.0/22 Signature Algorithm: sha256WithRSAEncryption 2e:1c:af:34:0b:a5:9d:56:fd:17:35:0f:10:59:f1:2c:93:b5: 5c:7b:c0:87:d1:0e:e1:2b:79:63:98:57:6f:16:d1:3d:4b:53: e5:07:28:5f:a3:9b:fc:11:ac:e2:19:79:74:50:26:26:58:78: 67:cd:46:8b:57:80:86:e4:c3:58:18:74:4d:c3:31:db:9b:8f: f1:8f:64:4e:b5:cd:c7:8c:d8:d8:81:96:8a:01:2f:f3:5d:2c: d0:2a:e5:c0:19:f3:33:a2:40:ee:30:3d:b1:e2:14:c4:64:cb: 5b:70:b6:79:49:1c:95:74:a9:ef:1c:f5:a0:61:92:1f:63:10: 8b:b7:4c:8a:31:87:47:29:f4:df:5d:23:cc:f5:51:ff:d8:1d: f0:da:64:49:6b:f2:90:50:6e:56:e3:8c:bd:dc:66:79:b0:4c: 68:6d:8b:f4:61:d1:99:7c:00:d4:e4:1b:ea:e3:35:6c:1b:c7: 8d:47:8c:b5:b9:b3:15:24:d1:06:db:4c:25:ea:2e:b8:10:1b: 00:bf:e6:25:a7:9d:34:bd:d5:47:f9:a4:f1:2a:24:dc:75:e5: 12:86:99:99:b6:5a:22:4c:89:2c:1c:da:53:60:cd:0a:7e:cd: 21:6b:fb:1a:f8:42:3f:40:1c:99:f9:88:fb:f9:18:6d:41:02: e1:06:31:50 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVJ/m4LzokXrfvGEmDCWf43oWCP4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREJGNTk3RUEyOUVGOEE3MDY1NjQ0NkFGNzVDRjMzRjA2 MThFODI4MjAeFw0yNDA3MDEwMDU4MTRaFw0yNTA2MzAwMTAzMTRaMDMxMTAvBgNV BAMTKEU5RkM5OTA3MzFDMjZEQjQ2RkQyNjFERUNBMjEzQUZFMDNDMzk0MTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7hJRoBuIJzHug5f5IW0WEIBPW 6Z41ub1fyG0JJ53DRwXRnZ1PD3vdZDn/+BdiS6xuz0p3EflZDVRg5QcYBqUHkGGT G4x4i+ZIm4Bq8aLetpq6bqihTYMG8p6I5GVNNfE8yBTo09BSeZCSHIvsn9sZy5YS dlEKBETn/x1WDlcrTeAU9rfa0EwsJGtzcq03386Uyx935EVvvVvzMaCdhp/NWU81 kkAeY0ed82qAU3l7zrPmnAB2A6m7JfdpXlLLRrEMX0/+GTFCUvIueQWTEoiAH7II Zvg0C0uC5VbH5D93sx3oKf1YgfaB/RkkqNPhV3WBnXMfgOAdLgbMOwcOBNI7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6fyZBzHCbbRv0mHeyiE6/gPDlBIwHwYDVR0j BBgwFoAU2/WX6invinBlZEavdc8z8GGOgoIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZDBmMWE2ZS04M2I2LTQ1MzQtOTY3ZC1mOGRiM2MzNzExZjQvMC9EQkY1OTdFQTI5 RUY4QTcwNjU2NDQ2QUY3NUNGMzNGMDYxOEU4MjgyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREJGNTk3RUEyOUVGOEE3MDY1NjQ0NkFGNzVDRjMzRjA2MThF ODI4Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FkMGYxYTZlLTgzYjYtNDUzNC05 NjdkLWY4ZGIzYzM3MTFmNC8wLzMxMzAzMzJlMzIzNDMyMmUzMjMwMzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMjMzMzczNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ/LMMA0GCSqG SIb3DQEBCwUAA4IBAQAuHK80C6WdVv0XNQ8QWfEsk7Vce8CH0Q7hK3ljmFdvFtE9 S1PlByhfo5v8EaziGXl0UCYmWHhnzUaLV4CG5MNYGHRNwzHbm4/xj2ROtc3HjNjY gZaKAS/zXSzQKuXAGfMzokDuMD2x4hTEZMtbcLZ5SRyVdKnvHPWgYZIfYxCLt0yK MYdHKfTfXSPM9VH/2B3w2mRJa/KQUG5W44y93GZ5sExobYv0YdGZfADU5Bvq4zVs G8eNR4y1ubMVJNEG20wl6i64EBsAv+Ylp500vdVH+aTxKiTcdeUShpmZtloiTIks HNpTYM0Kfs0ha/sa+EI/QByZ+Yj7+RhtQQLhBjFQ -----END CERTIFICATE-----Generated at Sun Nov 24 01:31:57 2024 by rpki-client on console-ams.rpki-client.org