$ rpki-client -vvf repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3130332e3235352e3135362e302f32332d3233203d3e203535363939.roa File: 3130332e3235352e3135362e302f32332d3233203d3e203535363939.roa (raw, json) Hash identifier: QKJnBYsa48aeQstLVfndf8/+iYcSarM3RMNHB08BXNY= Subject key identifier: 04:EF:CE:3A:BE:17:BF:22:D2:2F:21:7D:EC:F8:40:B8:89:2B:C2:96 Certificate issuer: /CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Certificate serial: 4E68390797047A8B09D2328F09126FB9E6CBD01B Authority key identifier: 19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3130332e3235352e3135362e302f32332d3233203d3e203535363939.roa Signing time: Mon 01 Jul 2024 01:04:05 +0000 ROA not before: Mon 01 Jul 2024 00:59:05 +0000 ROA not after: Mon 30 Jun 2025 01:04:05 +0000 asID: 55699 IP address blocks: 103.255.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:68:39:07:97:04:7a:8b:09:d2:32:8f:09:12:6f:b9:e6:cb:d0:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1976DD7D4FBDFBEB355F0B96690613959E106872 Validity Not Before: Jul 1 00:59:05 2024 GMT Not After : Jun 30 01:04:05 2025 GMT Subject: CN=04EFCE3ABE17BF22D22F217DECF840B8892BC296 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:dd:19:39:14:e0:b1:ca:f2:28:23:9f:1a:36: f4:a9:3e:60:8e:e1:54:87:b7:8b:02:b2:d5:c5:ba: 10:8c:e1:a6:ca:ed:96:55:ba:14:0a:e5:e6:62:8e: 48:1e:5b:eb:79:c6:0a:a4:73:72:99:70:87:71:8d: 9c:00:77:7b:22:0c:14:c2:d8:60:c6:2f:90:80:10: 8a:39:57:18:81:12:e0:20:b6:5b:d8:28:ae:c9:fc: 05:29:72:03:6e:49:29:20:5e:93:fc:da:4e:10:04: 26:92:43:12:12:b1:fd:bb:a3:c8:3b:8e:48:76:b9: 40:81:6e:3d:af:f1:07:2f:86:f1:e3:19:b3:fb:3a: 84:44:ac:db:f3:90:73:4f:64:7d:ed:a0:f6:ae:06: e1:fb:52:2c:77:99:5a:c0:e5:e9:1d:ba:cd:41:88: c5:18:1d:0b:83:ce:86:fd:d1:62:4a:5d:92:c6:4d: 52:8f:d9:80:c9:bd:66:b5:d3:0f:37:e0:4e:40:e4: 96:87:0e:6e:f9:90:aa:e2:ae:bf:a1:c7:9b:35:9e: e2:93:b8:30:e6:f3:ac:8e:b7:0f:a3:3e:5a:e6:1c: bc:d7:b4:d6:8c:d9:36:d8:b4:88:b7:ab:dc:71:83: bd:31:9c:24:9f:bc:f5:d4:bb:fe:93:27:8c:f1:50: 94:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:EF:CE:3A:BE:17:BF:22:D2:2F:21:7D:EC:F8:40:B8:89:2B:C2:96 X509v3 Authority Key Identifier: keyid:19:76:DD:7D:4F:BD:FB:EB:35:5F:0B:96:69:06:13:95:9E:10:68:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/1976DD7D4FBDFBEB355F0B96690613959E106872.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1976DD7D4FBDFBEB355F0B96690613959E106872.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b599ed96-d408-4418-b82a-5d5a8e6657f3/0/3130332e3235352e3135362e302f32332d3233203d3e203535363939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.255.156.0/23 Signature Algorithm: sha256WithRSAEncryption 36:f5:72:68:bd:f5:01:71:63:06:52:7e:a0:bd:03:8c:6f:7d: 2f:ed:54:21:99:90:b9:0e:f6:83:43:6d:f9:f6:ae:e1:b6:2e: 58:b0:22:02:5f:03:cd:59:d9:09:51:85:42:5d:07:76:57:84: 09:95:04:49:83:b4:d7:23:30:01:b0:fa:18:e1:8b:e7:b1:b6: 83:ca:0d:94:79:9b:35:8d:ce:c0:f2:b3:54:d4:99:ef:18:ff: 89:55:ad:06:e4:aa:bc:c1:10:5b:32:82:f7:8e:31:8a:1b:52: 83:41:e7:c8:70:ad:12:5d:2c:62:49:4b:50:e0:14:99:b4:dd: cd:cb:97:31:64:06:29:00:3c:c6:be:49:21:32:6f:8d:16:da: dd:f2:9d:fb:f0:1a:0f:f8:0e:02:35:77:57:f3:46:f2:99:07: 0b:4e:c0:2f:1a:57:ac:4e:dd:1f:5e:f8:8b:af:27:fe:a5:5f: 39:a4:78:ca:b4:20:7c:4b:7d:15:15:1a:1d:e9:eb:3f:ce:e7: 15:5b:53:85:35:89:ca:4f:d3:18:f4:57:ff:e7:86:b1:f8:e2: 23:6d:51:3a:f4:12:06:22:b4:b6:30:b2:30:17:65:cb:39:66: de:ef:4c:66:c4:54:e3:78:38:2b:63:1f:f0:41:ed:d6:a0:be: 9a:96:40:2c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTmg5B5cEeosJ0jKPCRJvuebL0BswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5 RTEwNjg3MjAeFw0yNDA3MDEwMDU5MDVaFw0yNTA2MzAwMTA0MDVaMDMxMTAvBgNV BAMTKDA0RUZDRTNBQkUxN0JGMjJEMjJGMjE3REVDRjg0MEI4ODkyQkMyOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC13Rk5FOCxyvIoI58aNvSpPmCO 4VSHt4sCstXFuhCM4abK7ZZVuhQK5eZijkgeW+t5xgqkc3KZcIdxjZwAd3siDBTC 2GDGL5CAEIo5VxiBEuAgtlvYKK7J/AUpcgNuSSkgXpP82k4QBCaSQxISsf27o8g7 jkh2uUCBbj2v8QcvhvHjGbP7OoRErNvzkHNPZH3toPauBuH7Uix3mVrA5ekdus1B iMUYHQuDzob90WJKXZLGTVKP2YDJvWa10w834E5A5JaHDm75kKrirr+hx5s1nuKT uDDm86yOtw+jPlrmHLzXtNaM2TbYtIi3q9xxg70xnCSfvPXUu/6TJ4zxUJTDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBO/OOr4XvyLSLyF97PhAuIkrwpYwHwYDVR0j BBgwFoAUGXbdfU+9++s1XwuWaQYTlZ4QaHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTk5ZWQ5Ni1kNDA4LTQ0MTgtYjgyYS01ZDVhOGU2NjU3ZjMvMC8xOTc2REQ3RDRG QkRGQkVCMzU1RjBCOTY2OTA2MTM5NTlFMTA2ODcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk3NkREN0Q0RkJERkJFQjM1NUYwQjk2NjkwNjEzOTU5RTEw Njg3Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OTllZDk2LWQ0MDgtNDQxOC1i ODJhLTVkNWE4ZTY2NTdmMy8wLzMxMzAzMzJlMzIzNTM1MmUzMTM1MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM1MzYzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/+cMA0GCSqG SIb3DQEBCwUAA4IBAQA29XJovfUBcWMGUn6gvQOMb30v7VQhmZC5DvaDQ2359q7h ti5YsCICXwPNWdkJUYVCXQd2V4QJlQRJg7TXIzABsPoY4YvnsbaDyg2UeZs1jc7A 8rNU1JnvGP+JVa0G5Kq8wRBbMoL3jjGKG1KDQefIcK0SXSxiSUtQ4BSZtN3Ny5cx ZAYpADzGvkkhMm+NFtrd8p378BoP+A4CNXdX80bymQcLTsAvGlesTt0fXviLryf+ pV85pHjKtCB8S30VFRod6es/zucVW1OFNYnKT9MY9Ff/54ax+OIjbVE69BIGIrS2 MLIwF2XLOWbe70xmxFTjeDgrYx/wQe3WoL6alkAs -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:15 2024 by rpki-client on console-ams.rpki-client.org