$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3130332e32332e33322e302f32322d3232203d3e203535363939.roa File: 3130332e32332e33322e302f32322d3232203d3e203535363939.roa (raw, json) Hash identifier: +QbrV6etFGpBQNbf+3ULQNDoI74EGacs/J66k/55qRA= Subject key identifier: 75:A0:93:F9:F1:2C:0B:A3:A2:0E:F4:76:6A:A2:51:C0:3F:35:ED:76 Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Certificate serial: 66FC0C009BE874601A4C48A7B5B603B89D974DCD Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3130332e32332e33322e302f32322d3232203d3e203535363939.roa Signing time: Mon 01 Jul 2024 01:04:03 +0000 ROA not before: Mon 01 Jul 2024 00:59:03 +0000 ROA not after: Mon 30 Jun 2025 01:04:03 +0000 asID: 55699 IP address blocks: 103.23.32.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:fc:0c:00:9b:e8:74:60:1a:4c:48:a7:b5:b6:03:b8:9d:97:4d:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Validity Not Before: Jul 1 00:59:03 2024 GMT Not After : Jun 30 01:04:03 2025 GMT Subject: CN=75A093F9F12C0BA3A20EF4766AA251C03F35ED76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:5a:5e:e6:26:ee:59:6e:a8:ff:29:cb:e6:be: 58:3c:b2:ce:b4:e7:48:29:c2:fc:7e:4b:49:e9:ca: 6d:c3:2b:b7:e8:9a:73:b8:4e:46:01:da:c0:37:3f: f0:c4:ed:98:32:f3:22:c6:67:69:94:19:97:7f:cc: 3e:b6:a8:b1:e4:eb:93:59:52:be:3d:ab:7e:54:b3: 23:52:9c:b7:0e:1b:09:5c:56:d6:b1:1c:c6:4b:2b: 41:14:67:76:d6:0a:44:ff:cf:9f:c4:ea:63:85:ed: 4f:b9:79:70:ef:1b:2f:5c:ba:33:e4:76:30:55:59: 70:59:33:13:f4:2c:8a:f0:21:e6:f2:23:a2:fe:f1: 1c:67:6f:b7:bf:ca:07:89:2f:01:46:d4:f2:9a:8b: e9:5a:17:4c:69:8f:cc:c9:8e:0f:2a:c4:ad:4f:bd: c0:6b:45:a7:3c:6a:51:68:f8:76:1c:21:10:c0:54: ac:6b:b0:dd:35:fd:03:ef:28:4a:c1:3a:01:cf:ac: b4:89:b9:2f:91:b1:75:fc:b1:66:58:1d:ba:15:2b: ed:5a:d0:b1:5e:cc:d4:a6:7d:9c:a0:68:1e:8f:d0: c3:ad:ee:6e:a7:70:b5:04:1f:db:54:30:95:74:f0: 89:39:fc:48:9d:25:37:9b:7f:a6:de:85:92:ae:8e: 83:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:A0:93:F9:F1:2C:0B:A3:A2:0E:F4:76:6A:A2:51:C0:3F:35:ED:76 X509v3 Authority Key Identifier: keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3130332e32332e33322e302f32322d3232203d3e203535363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.23.32.0/22 Signature Algorithm: sha256WithRSAEncryption 89:b8:84:ea:9a:5b:4c:fd:a4:02:c0:06:14:31:d5:9a:6d:dc: 7a:54:5c:bb:57:5b:30:f9:98:c0:9e:08:4e:0d:a3:59:77:6b: 27:df:35:e7:ee:93:a7:f4:41:a4:9b:b8:e3:01:28:1a:3c:0b: 98:0e:2a:53:eb:93:f3:02:6e:f6:58:41:7c:77:3c:07:69:50: 2b:41:d8:61:38:68:15:39:8f:97:08:34:2d:3a:57:70:2f:48: 62:a2:d9:ad:32:fa:11:6c:fc:a1:35:98:11:49:d9:48:75:45: 9b:2c:8b:28:12:d0:88:54:37:6f:63:c9:e4:6c:2b:ad:f7:9e: e2:23:85:2c:7e:7f:45:78:ee:bf:e8:69:57:2f:5c:56:16:e6: be:fc:de:e0:de:40:d8:44:b9:d0:96:c0:50:96:6b:0e:04:ae: 78:8e:58:b5:ea:c5:fb:7f:df:82:11:59:f3:76:af:e9:c9:4f: fe:1b:0a:82:8e:b1:2e:2f:bb:5c:ee:05:f3:63:2a:a3:78:f6: 71:1f:d3:0f:26:3d:8c:b1:1e:c5:f7:62:e5:b4:64:36:9b:44: 70:30:a3:8e:78:ac:d2:cd:ae:de:8d:3d:fe:30:b6:5e:4b:b9: 29:a4:7e:71:8a:1b:23:d5:10:8c:79:3f:b0:53:e3:d8:a3:7e: d7:72:42:1b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUZvwMAJvodGAaTEintbYDuJ2XTc0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5 RTEwNjg3MjAeFw0yNDA3MDEwMDU5MDNaFw0yNTA2MzAwMTA0MDNaMDMxMTAvBgNV BAMTKDc1QTA5M0Y5RjEyQzBCQTNBMjBFRjQ3NjZBQTI1MUMwM0YzNUVENzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkWl7mJu5Zbqj/Kcvmvlg8ss60 50gpwvx+S0npym3DK7fomnO4TkYB2sA3P/DE7Zgy8yLGZ2mUGZd/zD62qLHk65NZ Ur49q35UsyNSnLcOGwlcVtaxHMZLK0EUZ3bWCkT/z5/E6mOF7U+5eXDvGy9cujPk djBVWXBZMxP0LIrwIebyI6L+8Rxnb7e/ygeJLwFG1PKai+laF0xpj8zJjg8qxK1P vcBrRac8alFo+HYcIRDAVKxrsN01/QPvKErBOgHPrLSJuS+RsXX8sWZYHboVK+1a 0LFezNSmfZygaB6P0MOt7m6ncLUEH9tUMJV08Ik5/EidJTebf6behZKujoObAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUdaCT+fEsC6OiDvR2aqJRwD817XYwHwYDVR0j BBgwFoAUGXbdfU+9++s1XwuWaQYTlZ4QaHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTk5ZWQ5Ni1kNDA4LTQ0MTgtYjgyYS01ZDVhOGU2NjU3ZjMvMC8xOTc2REQ3RDRG QkRGQkVCMzU1RjBCOTY2OTA2MTM5NTlFMTA2ODcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5RTEw Njg3Mi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OTllZDk2LWQ0MDgtNDQxOC1i ODJhLTVkNWE4ZTY2NTdmMy8wLzMxMzAzMzJlMzIzMzJlMzMzMjJlMzAyZjMyMzIy ZDMyMzIyMDNkM2UyMDM1MzUzNjM5Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnFyAwDQYJKoZIhvcN AQELBQADggEBAIm4hOqaW0z9pALABhQx1Zpt3HpUXLtXWzD5mMCeCE4No1l3ayff Nefuk6f0QaSbuOMBKBo8C5gOKlPrk/MCbvZYQXx3PAdpUCtB2GE4aBU5j5cINC06 V3AvSGKi2a0y+hFs/KE1mBFJ2Uh1RZssiygS0IhUN29jyeRsK633nuIjhSx+f0V4 7r/oaVcvXFYW5r783uDeQNhEudCWwFCWaw4ErniOWLXqxft/34IRWfN2r+nJT/4b CoKOsS4vu1zuBfNjKqN49nEf0w8mPYyxHsX3YuW0ZDabRHAwo454rNLNrt6NPf4w tl5LuSmkfnGKGyPVEIx5P7BT49ijftdyQhs= -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:15 2024 by rpki-client on console-ams.rpki-client.org