$ rpki-client -vvf repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/3130332e3233352e37322e302f32342d3234203d3e20313335343434.roa File: 3130332e3233352e37322e302f32342d3234203d3e20313335343434.roa (raw, json) Hash identifier: 4JNXGbFSJKtM5CgL+QrVp+IPBcHdXzt9z515t4i/+vk= Subject key identifier: 6A:70:68:76:16:C9:02:6D:20:C4:AE:B8:94:83:60:3A:F1:2F:49:7E Certificate issuer: /CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Certificate serial: 15A17E0412E0E5C3C86AA4D5E3B37E4D6C220A64 Authority key identifier: D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/3130332e3233352e37322e302f32342d3234203d3e20313335343434.roa Signing time: Mon 01 Jul 2024 00:00:00 +0000 ROA not before: Sun 30 Jun 2024 23:55:00 +0000 ROA not after: Mon 30 Jun 2025 00:00:00 +0000 asID: 135444 IP address blocks: 103.235.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:a1:7e:04:12:e0:e5:c3:c8:6a:a4:d5:e3:b3:7e:4d:6c:22:0a:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Validity Not Before: Jun 30 23:55:00 2024 GMT Not After : Jun 30 00:00:00 2025 GMT Subject: CN=6A70687616C9026D20C4AEB89483603AF12F497E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2d:2f:fb:7e:3d:91:c4:8a:af:2e:19:b4:5d: 22:d6:b1:6a:e5:c0:ba:9d:b0:0c:4d:ec:07:2c:3b: a7:5d:f3:5c:40:f2:0d:4f:7f:8d:86:70:32:5e:b7: db:b8:db:f0:aa:39:c8:1c:c2:26:2b:7b:27:08:26: bf:b5:a3:56:ad:d8:1c:e7:76:9b:bc:24:13:f8:be: 82:cb:9d:b2:c5:5f:28:5d:af:ac:a7:ae:08:97:68: b4:a3:52:e0:e7:74:ed:70:90:c6:f5:3e:d7:d3:1e: 62:ff:c4:13:a1:95:fc:97:db:2b:87:eb:41:99:49: 5e:9f:f4:ec:1c:04:70:f3:b2:0b:bf:ea:a5:20:19: a9:cd:3e:81:6a:2b:f9:3e:2b:ed:d6:7d:d6:83:05: 9d:3a:0b:1e:98:ab:19:51:25:9e:ca:5a:81:8a:37: 6b:03:8b:38:22:79:a3:cd:2f:24:7a:13:bd:4e:6b: de:80:53:cb:df:04:aa:bf:08:f6:c6:da:dd:0b:70: 9d:1b:7f:19:13:b6:cc:ca:ed:ed:82:f7:dd:ab:b1: 73:3f:ec:8e:4d:69:36:76:d6:65:7e:15:e6:be:76: 40:28:f2:1e:24:ac:f7:15:2f:bc:fe:d4:dd:ce:47: 2e:9e:eb:ce:d3:f3:82:ce:3a:e0:65:25:40:28:05: f0:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:70:68:76:16:C9:02:6D:20:C4:AE:B8:94:83:60:3A:F1:2F:49:7E X509v3 Authority Key Identifier: keyid:D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/3130332e3233352e37322e302f32342d3234203d3e20313335343434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.235.72.0/24 Signature Algorithm: sha256WithRSAEncryption ab:06:58:c0:71:1d:ac:93:bb:a0:24:84:eb:9a:4b:2e:a4:de: 5b:7d:3d:3d:22:3f:e2:45:0a:79:bb:f5:55:5d:47:cf:e0:6f: 80:41:2e:91:30:e0:79:09:7c:9c:92:f1:3b:07:38:13:86:0e: fe:1b:cb:0b:a8:53:f6:7e:fb:73:52:8d:a0:51:5c:f4:0a:22: a9:5d:4e:8c:18:92:e9:32:68:8c:9a:74:62:39:9c:eb:36:71: 9d:fa:07:c9:40:bd:db:53:12:cd:52:65:b1:48:97:1d:35:32: 6d:ac:e7:2a:ea:b5:43:87:1e:e3:a2:6c:19:c2:d4:35:56:16: b0:cb:74:68:ca:cd:a3:6a:5d:fc:2c:71:f4:1d:1c:de:d7:c6: c2:93:5a:e2:dd:e2:54:c3:54:2a:0c:dc:c8:8f:6d:8b:9d:6e: 57:0a:f9:6f:3e:f8:3f:79:c7:8d:0e:be:64:c4:90:e9:ec:13: 67:5a:eb:17:cf:4f:94:9b:a2:f1:30:5e:82:79:b3:7d:9a:82: 77:f6:7d:b3:d4:a7:26:8b:c9:ae:77:1f:a2:2d:c4:3c:e7:06: f1:e0:c5:0c:b3:18:f6:6a:f3:43:d0:c2:69:81:72:7c:41:81: 8d:78:b3:22:70:96:74:24:94:f9:ca:9d:91:49:32:2d:06:35: 7a:51:65:42 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFaF+BBLg5cPIaqTV47N+TWwiCmQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4 NkNGNTgyRjAeFw0yNDA2MzAyMzU1MDBaFw0yNTA2MzAwMDAwMDBaMDMxMTAvBgNV BAMTKDZBNzA2ODc2MTZDOTAyNkQyMEM0QUVCODk0ODM2MDNBRjEyRjQ5N0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCLS/7fj2RxIqvLhm0XSLWsWrl wLqdsAxN7AcsO6dd81xA8g1Pf42GcDJet9u42/CqOcgcwiYreycIJr+1o1at2Bzn dpu8JBP4voLLnbLFXyhdr6ynrgiXaLSjUuDndO1wkMb1PtfTHmL/xBOhlfyX2yuH 60GZSV6f9OwcBHDzsgu/6qUgGanNPoFqK/k+K+3WfdaDBZ06Cx6YqxlRJZ7KWoGK N2sDizgieaPNLyR6E71Oa96AU8vfBKq/CPbG2t0LcJ0bfxkTtszK7e2C992rsXM/ 7I5NaTZ21mV+Fea+dkAo8h4krPcVL7z+1N3ORy6e687T84LOOuBlJUAoBfBzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUanBodhbJAm0gxK64lINgOvEvSX4wHwYDVR0j BBgwFoAU2c1AR0vdDAcHdmztuvC2oYbPWC8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MWE3N2FkZC1hNDlhLTRjOGYtYTczNS1lZjk2YzMzYWIyOWYvMC9EOUNENDA0NzRC REQwQzA3MDc3NjZDRURCQUYwQjZBMTg2Q0Y1ODJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4NkNG NTgyRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxYTc3YWRkLWE0OWEtNGM4Zi1h NzM1LWVmOTZjMzNhYjI5Zi8wLzMxMzAzMzJlMzIzMzM1MmUzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+tIMA0GCSqG SIb3DQEBCwUAA4IBAQCrBljAcR2sk7ugJITrmksupN5bfT09Ij/iRQp5u/VVXUfP 4G+AQS6RMOB5CXyckvE7BzgThg7+G8sLqFP2fvtzUo2gUVz0CiKpXU6MGJLpMmiM mnRiOZzrNnGd+gfJQL3bUxLNUmWxSJcdNTJtrOcq6rVDhx7jomwZwtQ1Vhawy3Ro ys2jal38LHH0HRze18bCk1ri3eJUw1QqDNzIj22LnW5XCvlvPvg/eceNDr5kxJDp 7BNnWusXz0+Um6LxMF6CebN9moJ39n2z1Kcmi8mudx+iLcQ85wbx4MUMsxj2avND 0MJpgXJ8QYGNeLMicJZ0JJT5yp2RSTItBjV6UWVC -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:15 2024 by rpki-client on console-ams.rpki-client.org