$ rpki-client -vvf repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3130332e3234342e33392e302f32342d3234203d3e203338353030.roa File: 3130332e3234342e33392e302f32342d3234203d3e203338353030.roa (raw, json) Hash identifier: kmzkO4Zysl02z2GLnKAdGhK6A7UAIsm1OzMaIkZeuFg= Subject key identifier: FC:56:33:C5:13:60:12:27:87:27:98:B0:41:09:6D:9B:3A:AF:8A:57 Certificate issuer: /CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Certificate serial: 4E636BA11FB91237D4A216EC4D2D00F203E76943 Authority key identifier: BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3130332e3234342e33392e302f32342d3234203d3e203338353030.roa Signing time: Mon 01 Jul 2024 01:04:40 +0000 ROA not before: Mon 01 Jul 2024 00:59:40 +0000 ROA not after: Mon 30 Jun 2025 01:04:40 +0000 asID: 38500 IP address blocks: 103.244.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:63:6b:a1:1f:b9:12:37:d4:a2:16:ec:4d:2d:00:f2:03:e7:69:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB05293D3E9DCD0F4AD926100C191885CE1DB1D0 Validity Not Before: Jul 1 00:59:40 2024 GMT Not After : Jun 30 01:04:40 2025 GMT Subject: CN=FC5633C513601227872798B041096D9B3AAF8A57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a8:48:5c:8d:09:df:5f:22:69:bb:17:53:c3: a8:0e:77:d8:3b:3c:e5:6f:7c:46:5e:ce:32:32:28: 06:6d:d7:56:6b:4e:50:ca:83:c6:f4:f8:ab:bf:fd: 3c:9d:4f:a1:c0:96:3f:30:13:16:8b:56:96:9d:23: 0e:fa:cf:26:6e:66:e7:34:71:90:43:55:ce:d8:d7: c6:4b:0b:6e:3d:34:5d:e6:3a:ae:60:a1:88:a4:93: 51:f5:e6:23:e9:04:67:2a:47:ce:5c:a2:51:26:5f: 3b:ca:36:ac:50:13:47:ca:1c:4b:6e:0f:2a:60:00: c5:d5:e1:7e:cb:8f:a1:09:34:ab:6d:b9:54:0c:ea: 8a:39:74:f2:78:46:b5:5e:74:11:d8:b6:99:c6:1e: 74:51:1b:0a:e7:f8:73:2a:13:53:b9:ed:4e:d1:49: 0b:43:b0:00:0c:75:4d:98:60:8a:0b:b7:ab:2f:48: 1f:b7:bc:a8:98:30:37:46:7a:76:a3:ca:e3:54:7b: 04:88:ff:ee:c2:e6:9f:24:07:ce:1f:55:38:87:24: 28:d7:55:e6:03:db:65:12:cd:e2:3c:9d:1a:9d:6b: d2:11:29:31:6b:b1:37:6f:66:23:cd:38:37:25:8e: 84:8f:b4:87:07:53:bb:d3:b7:1c:7e:f2:2a:4a:13: ae:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:56:33:C5:13:60:12:27:87:27:98:B0:41:09:6D:9B:3A:AF:8A:57 X509v3 Authority Key Identifier: keyid:BB:05:29:3D:3E:9D:CD:0F:4A:D9:26:10:0C:19:18:85:CE:1D:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB05293D3E9DCD0F4AD926100C191885CE1DB1D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/3130332e3234342e33392e302f32342d3234203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.244.39.0/24 Signature Algorithm: sha256WithRSAEncryption 88:65:bb:51:28:56:e6:fc:40:71:2a:5b:16:1b:9d:02:ce:8a: 59:ed:23:4b:72:61:86:18:7d:a8:93:1c:fd:f9:06:20:ec:60: 06:00:29:4f:d5:58:db:1a:62:3c:14:1a:f7:af:89:90:2f:9e: a0:21:54:18:85:57:95:4c:f7:11:74:33:cf:96:67:4c:1b:74: 39:6c:76:8b:a9:0a:db:ef:55:fa:c3:d0:20:7c:d9:98:94:e8: ee:bc:ec:31:69:f7:15:83:ba:a7:73:7f:eb:69:99:24:52:46: c8:79:7f:e6:d8:2f:44:c0:77:ab:38:9e:36:ed:a3:d6:09:a3: 39:7c:71:e3:81:44:d7:46:42:91:86:e8:3f:b9:89:05:a4:dd: 23:22:db:87:24:f4:62:cc:13:9e:76:f6:02:bd:45:2a:04:b1: 55:c8:ac:c3:a2:77:38:e0:1d:fb:be:44:7a:56:97:47:46:d0: 98:40:95:61:e2:5c:27:d0:af:4d:00:ae:43:a2:fb:9b:26:24: 11:d7:70:d4:32:01:2e:b2:dd:42:c2:74:db:1d:a3:de:40:64: b5:96:09:68:1a:71:9c:44:f9:05:42:e7:1a:70:bc:8b:39:39: f5:fe:89:9b:e1:5c:75:3d:5a:c8:1e:69:94:db:4f:06:31:3a: c4:9c:e2:77 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTmNroR+5EjfUohbsTS0A8gPnaUMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVD RTFEQjFEMDAeFw0yNDA3MDEwMDU5NDBaFw0yNTA2MzAwMTA0NDBaMDMxMTAvBgNV BAMTKEZDNTYzM0M1MTM2MDEyMjc4NzI3OThCMDQxMDk2RDlCM0FBRjhBNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAqEhcjQnfXyJpuxdTw6gOd9g7 POVvfEZezjIyKAZt11ZrTlDKg8b0+Ku//TydT6HAlj8wExaLVpadIw76zyZuZuc0 cZBDVc7Y18ZLC249NF3mOq5goYikk1H15iPpBGcqR85colEmXzvKNqxQE0fKHEtu DypgAMXV4X7Lj6EJNKttuVQM6oo5dPJ4RrVedBHYtpnGHnRRGwrn+HMqE1O57U7R SQtDsAAMdU2YYIoLt6svSB+3vKiYMDdGenajyuNUewSI/+7C5p8kB84fVTiHJCjX VeYD22USzeI8nRqda9IRKTFrsTdvZiPNODcljoSPtIcHU7vTtxx+8ipKE66dAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/FYzxRNgEieHJ5iwQQltmzqvilcwHwYDVR0j BBgwFoAUuwUpPT6dzQ9K2SYQDBkYhc4dsdAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDQwNjhmMy1hNzViLTQ3NjQtOWU4MC0xZmE1NzI5MjA3ZmMvMC9CQjA1MjkzRDNF OURDRDBGNEFEOTI2MTAwQzE5MTg4NUNFMURCMUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkIwNTI5M0QzRTlEQ0QwRjRBRDkyNjEwMEMxOTE4ODVDRTFE QjFEMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMxMzAzMzJlMzIzNDM0MmUzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf0JzANBgkqhkiG 9w0BAQsFAAOCAQEAiGW7UShW5vxAcSpbFhudAs6KWe0jS3Jhhhh9qJMc/fkGIOxg BgApT9VY2xpiPBQa96+JkC+eoCFUGIVXlUz3EXQzz5ZnTBt0OWx2i6kK2+9V+sPQ IHzZmJTo7rzsMWn3FYO6p3N/62mZJFJGyHl/5tgvRMB3qzieNu2j1gmjOXxx44FE 10ZCkYboP7mJBaTdIyLbhyT0YswTnnb2Ar1FKgSxVcisw6J3OOAd+75EelaXR0bQ mECVYeJcJ9CvTQCuQ6L7myYkEddw1DIBLrLdQsJ02x2j3kBktZYJaBpxnET5BULn GnC8izk59f6Jm+FcdT1ayB5plNtPBjE6xJzidw== -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:59 2024 by rpki-client on console-ams.rpki-client.org