$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3130332e3234342e33382e302f32342d3234203d3e203338353030.roa File: 3130332e3234342e33382e302f32342d3234203d3e203338353030.roa (raw, json) Hash identifier: HP8cAO1Y1V/3QSDDjMm70Q9sc22XjILTjKRvN4TIkFk= Subject key identifier: 7C:48:2C:E4:57:2B:9C:30:DA:DE:94:8B:74:AE:4A:7B:D2:F2:F2:12 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 5DE6DB92DFE8934D06525ACDCE95D0DDFE169866 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3130332e3234342e33382e302f32342d3234203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:46 +0000 ROA not before: Mon 01 Jul 2024 00:59:46 +0000 ROA not after: Mon 30 Jun 2025 01:04:46 +0000 asID: 38500 IP address blocks: 103.244.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:e6:db:92:df:e8:93:4d:06:52:5a:cd:ce:95:d0:dd:fe:16:98:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:46 2024 GMT Not After : Jun 30 01:04:46 2025 GMT Subject: CN=7C482CE4572B9C30DADE948B74AE4A7BD2F2F212 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:75:2b:a1:82:73:27:2d:fe:b2:ad:be:24:4c: 2d:d9:60:23:27:6d:81:6d:e6:b2:ff:91:95:65:1c: e8:16:21:80:8d:3d:f8:fb:78:a1:81:54:3f:87:d0: 29:5f:7b:0e:1b:68:f0:8f:d5:dd:aa:39:ff:ec:0d: 7e:a0:11:13:f9:33:15:4d:e9:de:d3:9e:02:78:8f: 2b:b1:68:7c:3a:07:05:b2:6a:2e:39:46:59:f2:89: 2b:d5:cb:8b:e3:f4:7a:47:97:07:67:50:56:ce:f3: 45:1a:02:e7:2e:a3:cf:5a:79:32:f6:d8:ec:53:fb: 9f:5e:c6:1a:30:9f:85:f2:0d:fe:a3:b7:52:7c:aa: 41:34:fc:2c:93:76:00:16:53:01:85:0a:b2:0c:2f: 1a:b5:22:74:f6:4c:99:92:6c:ee:70:b0:db:97:c7: 86:07:5a:58:d6:ac:ae:9b:50:12:3b:41:0a:69:8e: 2f:2c:9e:ae:a6:83:3d:24:93:66:ff:dc:7b:04:c4: 44:9e:a1:57:83:d1:21:a5:82:51:9f:50:56:39:96: 53:8d:6c:55:20:39:4d:22:df:fb:56:bf:42:b7:5b: ee:c2:3d:52:73:ba:35:02:af:53:39:fd:14:8f:ad: ff:00:2c:19:af:bd:51:ac:d7:3e:2d:bf:71:b7:72: ef:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:48:2C:E4:57:2B:9C:30:DA:DE:94:8B:74:AE:4A:7B:D2:F2:F2:12 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3130332e3234342e33382e302f32342d3234203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.244.38.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:1e:a5:fb:0b:9d:72:23:90:9e:e6:ed:65:31:7e:69:bc:44: dd:27:b1:d2:e2:78:d3:89:9c:07:90:d5:55:51:7c:f9:a3:5b: db:81:97:eb:4a:8a:1e:a4:24:05:19:98:e1:5d:56:60:2f:4c: 12:37:3d:9a:1b:82:b5:2c:86:b0:97:19:51:59:78:20:e4:79: c2:01:dc:5d:5c:eb:31:da:a8:e3:31:51:b0:c9:21:0f:b0:45: fd:aa:e1:4a:55:8d:5b:69:5b:b7:2a:23:fc:f3:78:91:45:05: 07:32:e1:d3:a2:b7:05:d1:de:68:e6:e0:be:cf:86:3c:54:cf: d8:dc:9d:3b:c9:d0:1d:1d:f5:d2:cd:b3:7c:81:d5:ca:07:75: ae:b3:4e:d7:0a:ea:df:72:ff:b9:63:d8:86:04:e3:bc:65:c4: 73:ae:bb:ce:58:fa:75:04:95:7d:61:fd:43:93:f5:46:76:69: 84:04:65:c1:a6:08:ef:1c:21:9d:e6:fa:15:78:f0:e2:b5:22: b3:0b:28:c0:62:0a:21:75:97:59:ce:23:9d:8a:a2:4d:59:e5: cb:61:da:a7:5b:5a:b4:c9:3a:0a:33:56:12:f1:72:df:7f:78: 5c:a5:82:64:ee:c5:f3:30:f9:6f:0e:98:b0:08:ef:cd:51:5a: 1a:3b:87:45 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXebbkt/ok00GUlrNzpXQ3f4WmGYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDZaFw0yNTA2MzAwMTA0NDZaMDMxMTAvBgNV BAMTKDdDNDgyQ0U0NTcyQjlDMzBEQURFOTQ4Qjc0QUU0QTdCRDJGMkYyMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDdSuhgnMnLf6yrb4kTC3ZYCMn bYFt5rL/kZVlHOgWIYCNPfj7eKGBVD+H0Clfew4baPCP1d2qOf/sDX6gERP5MxVN 6d7TngJ4jyuxaHw6BwWyai45RlnyiSvVy4vj9HpHlwdnUFbO80UaAucuo89aeTL2 2OxT+59exhown4XyDf6jt1J8qkE0/CyTdgAWUwGFCrIMLxq1InT2TJmSbO5wsNuX x4YHWljWrK6bUBI7QQppji8snq6mgz0kk2b/3HsExESeoVeD0SGlglGfUFY5llON bFUgOU0i3/tWv0K3W+7CPVJzujUCr1M5/RSPrf8ALBmvvVGs1z4tv3G3cu8hAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUfEgs5FcrnDDa3pSLdK5Ke9Ly8hIwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMxMzAzMzJlMzIzNDM0MmUzMzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf0JjANBgkqhkiG 9w0BAQsFAAOCAQEAHx6l+wudciOQnubtZTF+abxE3Sex0uJ404mcB5DVVVF8+aNb 24GX60qKHqQkBRmY4V1WYC9MEjc9mhuCtSyGsJcZUVl4IOR5wgHcXVzrMdqo4zFR sMkhD7BF/arhSlWNW2lbtyoj/PN4kUUFBzLh06K3BdHeaObgvs+GPFTP2NydO8nQ HR310s2zfIHVygd1rrNO1wrq33L/uWPYhgTjvGXEc667zlj6dQSVfWH9Q5P1RnZp hARlwaYI7xwhneb6FXjw4rUiswsowGIKIXWXWc4jnYqiTVnly2Hap1tatMk6CjNW EvFy3394XKWCZO7F8zD5bw6YsAjvzVFaGjuHRQ== -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:59 2024 by rpki-client on console-ams.rpki-client.org