$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234342e302f32322d3234203d3e203535363636.roa File: 3130332e31372e3234342e302f32322d3234203d3e203535363636.roa (raw, json) Hash identifier: gu2eLJYOhzvMAWqCTll0Z1vHSzpodGweSdH5sGIIl3o= Subject key identifier: 02:66:10:A3:9E:5C:7C:99:FB:AC:39:3B:34:D4:E2:40:A5:0D:DE:9A Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 03AAAD9FA027524E472ACACF6DA52219FDAF12C3 Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234342e302f32322d3234203d3e203535363636.roa Signing time: Mon 01 Jul 2024 01:06:11 +0000 ROA not before: Mon 01 Jul 2024 01:01:11 +0000 ROA not after: Mon 30 Jun 2025 01:06:11 +0000 asID: 55666 IP address blocks: 103.17.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:10:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:aa:ad:9f:a0:27:52:4e:47:2a:ca:cf:6d:a5:22:19:fd:af:12:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jul 1 01:01:11 2024 GMT Not After : Jun 30 01:06:11 2025 GMT Subject: CN=026610A39E5C7C99FBAC393B34D4E240A50DDE9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a8:ec:0a:57:b9:75:fe:27:1a:85:56:bf:31: ad:37:68:43:32:ac:04:f6:d2:cc:e3:93:b7:09:99: 13:d5:18:2f:c6:f7:1f:b1:dd:fc:cf:60:a2:fe:a0: cb:88:06:b9:2e:f2:2e:05:01:be:59:1b:dd:03:b1: 7e:9a:ff:b0:c9:32:d3:0b:69:a7:5d:a7:c3:1d:be: ea:08:a3:54:c6:0d:31:4c:8b:d6:63:55:96:e8:97: 6f:cd:fb:9b:25:1b:59:3a:73:56:78:e2:73:f5:1a: 80:ee:a2:b0:01:8b:52:36:55:8c:e3:98:6f:1d:45: 32:53:fe:dc:9d:62:4d:fb:cc:17:6b:2b:26:2a:13: 9e:55:d5:60:5d:03:1b:41:42:4b:45:9f:b5:63:09: 31:29:b8:f2:34:a6:4e:0a:95:ed:d4:a5:8c:66:47: c2:78:53:0b:ce:0d:b3:ef:ea:27:4d:0c:13:f6:f3: fe:7c:a4:5e:2a:44:51:a4:af:8e:b7:11:bc:b9:3e: f3:9c:97:bb:51:0d:46:1f:25:8a:57:f6:c5:a4:b3: ae:59:2b:1a:75:71:18:e8:be:d5:0e:91:82:80:85: 0a:82:36:d2:5c:47:d9:92:61:e1:1a:70:81:26:c0: b4:eb:fe:07:26:3a:b5:af:fe:8b:69:b7:94:6b:08: 47:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:66:10:A3:9E:5C:7C:99:FB:AC:39:3B:34:D4:E2:40:A5:0D:DE:9A X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234342e302f32322d3234203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.17.244.0/22 Signature Algorithm: sha256WithRSAEncryption 53:7f:3c:eb:7b:57:41:d1:8c:b3:92:5a:0b:14:27:b9:c2:63: a4:ff:3b:04:93:ac:b4:a3:f7:6e:f3:8e:49:d7:c9:55:93:e3: 3e:62:e1:8d:67:16:5c:1b:87:59:dd:ae:50:db:87:c0:44:6e: c6:32:20:d0:c1:72:73:63:ad:b8:6f:0a:4c:06:76:db:f9:01: 61:9f:9b:86:4b:96:ea:d2:4f:a6:e0:6c:23:56:f9:ea:b1:5b: 76:fe:67:d3:c0:85:3b:c8:c5:b4:dc:7c:b8:08:b5:82:87:b6: 4b:a0:28:04:f2:bd:a2:75:98:de:fb:39:66:cf:97:a9:16:e0: 11:a1:fe:81:cb:cf:e3:47:4f:96:19:eb:f1:53:c9:27:d9:12: c2:19:6a:02:33:6a:a4:9b:27:bb:52:59:39:b9:d6:69:ce:f2: 1c:2c:0c:2a:8f:16:a1:16:a2:21:45:b1:75:84:c2:d9:1f:89: d8:cb:f2:8e:37:42:42:f8:6b:77:d2:06:bc:4a:f4:bd:a7:5a: d3:a6:6d:d7:b9:6d:8c:6d:bd:8b:37:b1:87:1e:63:5d:21:52: f3:13:2d:2e:52:c5:c6:5d:4d:07:59:87:65:68:90:0b:e2:56: 97:6e:1b:bd:3d:d3:b4:c1:cb:77:63:3c:6e:36:ea:67:f4:dd: 3b:cb:e7:fd -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUA6qtn6AnUk5HKsrPbaUiGf2vEsMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNDA3MDEwMTAxMTFaFw0yNTA2MzAwMTA2MTFaMDMxMTAvBgNV BAMTKDAyNjYxMEEzOUU1QzdDOTlGQkFDMzkzQjM0RDRFMjQwQTUwRERFOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClqOwKV7l1/icahVa/Ma03aEMy rAT20szjk7cJmRPVGC/G9x+x3fzPYKL+oMuIBrku8i4FAb5ZG90DsX6a/7DJMtML aaddp8MdvuoIo1TGDTFMi9ZjVZbol2/N+5slG1k6c1Z44nP1GoDuorABi1I2VYzj mG8dRTJT/tydYk37zBdrKyYqE55V1WBdAxtBQktFn7VjCTEpuPI0pk4Kle3UpYxm R8J4UwvODbPv6idNDBP28/58pF4qRFGkr463Eby5PvOcl7tRDUYfJYpX9sWks65Z Kxp1cRjovtUOkYKAhQqCNtJcR9mSYeEacIEmwLTr/gcmOrWv/otpt5RrCEepAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAmYQo55cfJn7rDk7NNTiQKUN3powHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzAzMzJlMzEzNzJlMzIzNDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzNTM2MzYzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcR9DANBgkqhkiG 9w0BAQsFAAOCAQEAU38863tXQdGMs5JaCxQnucJjpP87BJOstKP3bvOOSdfJVZPj PmLhjWcWXBuHWd2uUNuHwERuxjIg0MFyc2OtuG8KTAZ22/kBYZ+bhkuW6tJPpuBs I1b56rFbdv5n08CFO8jFtNx8uAi1goe2S6AoBPK9onWY3vs5Zs+XqRbgEaH+gcvP 40dPlhnr8VPJJ9kSwhlqAjNqpJsnu1JZObnWac7yHCwMKo8WoRaiIUWxdYTC2R+J 2MvyjjdCQvhrd9IGvEr0vada06Zt17ltjG29izexhx5jXSFS8xMtLlLFxl1NB1mH ZWiQC+JWl24bvT3TtMHLd2M8bjbqZ/TdO8vn/Q== -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:49 2024 by rpki-client on console-ams.rpki-client.org