$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3235352e3234302e302f32322d3234203d3e203535363636.roa File: 3130332e3235352e3234302e302f32322d3234203d3e203535363636.roa (raw, json) Hash identifier: bsRtn7HqcpQRX69WpTIALDf59zF0XM0taxugCPsZKAs= Subject key identifier: 24:C7:1A:51:E6:7A:84:23:47:0D:BB:2F:1B:27:4A:C5:B4:30:4A:FE Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 281525A23B28F2DB1BD9F2637BF5243161D9D659 Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3235352e3234302e302f32322d3234203d3e203535363636.roa Signing time: Mon 01 Jul 2024 01:06:12 +0000 ROA not before: Mon 01 Jul 2024 01:01:12 +0000 ROA not after: Mon 30 Jun 2025 01:06:12 +0000 asID: 55666 IP address blocks: 103.255.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:10:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:15:25:a2:3b:28:f2:db:1b:d9:f2:63:7b:f5:24:31:61:d9:d6:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jul 1 01:01:12 2024 GMT Not After : Jun 30 01:06:12 2025 GMT Subject: CN=24C71A51E67A8423470DBB2F1B274AC5B4304AFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:3f:53:d9:22:dd:d8:3e:64:e5:da:ed:28:62: fb:08:e4:f3:8e:0b:8c:90:d8:38:53:e4:a2:ae:fc: 52:63:eb:44:10:61:e4:4e:fb:f0:ae:c9:47:eb:55: 3e:e9:6f:2d:b4:4c:7d:41:be:db:c7:43:3b:16:06: 0b:77:2a:35:19:f3:78:ad:26:76:cc:d0:49:b4:67: 10:e7:1f:e1:0c:b1:49:19:94:7d:d5:ac:a2:24:11: e8:f8:2c:b0:f1:6f:ee:1f:f1:a6:61:fd:bc:6d:17: 83:40:75:e4:0c:42:45:00:10:fd:8f:ed:4a:df:c6: 4d:20:53:bd:13:bd:96:66:2a:5f:ca:3e:84:13:c1: 5b:ae:53:44:79:bf:fd:72:72:24:52:5a:24:9c:60: f4:80:6b:b7:40:09:13:21:36:33:db:ae:41:38:8b: 2b:0a:de:d2:5c:4b:cd:e8:d2:cf:fd:43:cb:41:e4: a2:99:63:b6:50:f1:de:03:de:0c:66:59:5f:97:2a: f7:02:45:0b:bf:37:d3:f9:1f:e0:af:72:7f:b5:e9: c1:96:22:4c:b2:1e:b3:90:77:6f:e3:12:76:bb:53: 33:98:1e:59:db:32:5c:3e:7f:51:63:2b:3f:e9:3d: 32:59:5d:75:46:b6:ab:e9:0c:b6:76:e4:0c:08:fa: 33:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:C7:1A:51:E6:7A:84:23:47:0D:BB:2F:1B:27:4A:C5:B4:30:4A:FE X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3235352e3234302e302f32322d3234203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.240.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:6d:fe:67:37:dd:17:e9:7d:de:df:b0:8b:a5:21:5e:cb:17: ca:79:e6:26:92:7d:ec:f2:3d:84:39:00:79:2b:1f:79:71:4f: b5:a2:12:01:32:c3:56:db:44:82:bc:23:42:0c:58:c0:66:9c: 43:51:02:a6:4a:04:d2:9c:57:06:4c:cc:4b:e8:68:09:0e:ef: ba:e0:92:78:00:9f:85:f1:b8:05:fb:78:1c:8d:e5:1a:b2:dc: f7:d4:1a:0b:5f:8d:09:7e:f3:08:a4:3d:99:25:46:db:38:08: 24:f8:21:e9:be:51:5b:c2:86:d1:d7:16:67:b2:14:ea:27:70: 3d:f0:a7:8a:4c:9e:20:4e:1f:e1:9d:09:55:4b:e6:67:ad:96: bd:a4:4a:77:25:fc:68:4b:ea:0e:ad:63:d3:ca:c9:50:d2:f9: d1:7a:c9:9f:19:65:a8:8c:90:e9:68:91:12:1e:51:ea:cf:5e: da:88:4f:ab:60:48:89:fa:4a:10:c6:32:35:9b:d0:86:c3:de: 16:9d:75:17:4e:bd:b0:cb:8d:8c:04:c4:5c:65:99:6c:b5:b0: 15:62:ba:05:4b:bb:83:21:a6:42:1b:45:53:ca:b9:d7:04:cb: de:cc:32:8e:38:11:74:bf:46:df:ce:bf:d4:65:54:a6:c0:76: aa:d1:82:23 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKBUlojso8tsb2fJje/UkMWHZ1lkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNDA3MDEwMTAxMTJaFw0yNTA2MzAwMTA2MTJaMDMxMTAvBgNV BAMTKDI0QzcxQTUxRTY3QTg0MjM0NzBEQkIyRjFCMjc0QUM1QjQzMDRBRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcP1PZIt3YPmTl2u0oYvsI5POO C4yQ2DhT5KKu/FJj60QQYeRO+/CuyUfrVT7pby20TH1BvtvHQzsWBgt3KjUZ83it JnbM0Em0ZxDnH+EMsUkZlH3VrKIkEej4LLDxb+4f8aZh/bxtF4NAdeQMQkUAEP2P 7Urfxk0gU70TvZZmKl/KPoQTwVuuU0R5v/1yciRSWiScYPSAa7dACRMhNjPbrkE4 iysK3tJcS83o0s/9Q8tB5KKZY7ZQ8d4D3gxmWV+XKvcCRQu/N9P5H+Cvcn+16cGW IkyyHrOQd2/jEna7UzOYHlnbMlw+f1FjKz/pPTJZXXVGtqvpDLZ25AwI+jOBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJMcaUeZ6hCNHDbsvGydKxbQwSv4wHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzAzMzJlMzIzNTM1MmUzMjM0MzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM1MzYzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ//wMA0GCSqG SIb3DQEBCwUAA4IBAQB/bf5nN90X6X3e37CLpSFeyxfKeeYmkn3s8j2EOQB5Kx95 cU+1ohIBMsNW20SCvCNCDFjAZpxDUQKmSgTSnFcGTMxL6GgJDu+64JJ4AJ+F8bgF +3gcjeUastz31BoLX40JfvMIpD2ZJUbbOAgk+CHpvlFbwobR1xZnshTqJ3A98KeK TJ4gTh/hnQlVS+ZnrZa9pEp3JfxoS+oOrWPTyslQ0vnResmfGWWojJDpaJESHlHq z17aiE+rYEiJ+koQxjI1m9CGw94WnXUXTr2wy42MBMRcZZlstbAVYroFS7uDIaZC G0VTyrnXBMvezDKOOBF0v0bfzr/UZVSmwHaq0YIj -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:49 2024 by rpki-client on console-ams.rpki-client.org