$ rpki-client -vvf repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3130332e32342e35362e302f32342d3234203d3e203436303532.roa File: 3130332e32342e35362e302f32342d3234203d3e203436303532.roa (raw, json) Hash identifier: 0GSE1PDB0X1nNRLhLL+YFIj25TLvzXb3P+1q7y2DYeY= Subject key identifier: 0D:BE:52:93:E3:E9:99:B9:03:38:CD:18:EF:30:96:47:D7:A1:EF:D8 Certificate issuer: /CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Certificate serial: 39A3EC30E71EB30D5BF6FAB86E7F2215829D3706 Authority key identifier: 3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3130332e32342e35362e302f32342d3234203d3e203436303532.roa Signing time: Thu 26 Sep 2024 06:00:00 +0000 ROA not before: Thu 26 Sep 2024 05:55:00 +0000 ROA not after: Thu 25 Sep 2025 06:00:00 +0000 asID: 46052 IP address blocks: 103.24.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:a3:ec:30:e7:1e:b3:0d:5b:f6:fa:b8:6e:7f:22:15:82:9d:37:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Validity Not Before: Sep 26 05:55:00 2024 GMT Not After : Sep 25 06:00:00 2025 GMT Subject: CN=0DBE5293E3E999B90338CD18EF309647D7A1EFD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:dd:10:97:fc:6e:66:48:7b:be:d6:8d:ff:cb: 61:7f:c1:00:16:39:88:cb:ec:1b:bd:ba:f4:17:85: cb:c5:fa:3b:16:75:37:3e:50:6a:a7:ca:70:2b:f1: 86:00:e7:9d:93:41:6f:8a:64:0c:c3:1a:e4:49:d1: f7:e4:b4:38:a5:ff:a1:46:9a:8f:a3:51:79:3d:a3: 1e:fe:7b:5e:8d:79:a4:71:d7:9b:fb:6b:fb:1f:70: 32:c2:65:dd:e0:a6:8c:5f:d5:df:6a:19:2c:bc:0d: c2:bc:d1:4c:49:e9:d0:09:c8:e4:25:7f:d4:33:76: 51:08:0e:c2:d6:c8:d6:62:c7:f2:7d:97:e1:b8:ff: 96:c8:69:ba:8d:75:66:d6:ed:b9:30:f9:f4:37:c0: 05:08:72:48:b4:ad:f6:86:3a:cf:ee:d6:72:84:93: 54:17:00:af:5b:6b:37:70:fc:41:36:28:de:d0:41: 5c:5d:98:48:ce:59:22:0d:85:c0:b1:82:60:60:af: 00:d4:d7:76:eb:71:4b:2f:48:11:91:b1:19:27:96: 8c:7a:2a:cf:3b:f8:f1:5f:f4:7a:9b:1e:f3:03:29: 70:f0:6c:3a:f4:da:91:62:66:d4:94:d3:79:97:01: 09:8b:e5:aa:b6:47:66:06:fe:32:10:3e:7c:cf:ad: bb:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:BE:52:93:E3:E9:99:B9:03:38:CD:18:EF:30:96:47:D7:A1:EF:D8 X509v3 Authority Key Identifier: keyid:3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3130332e32342e35362e302f32342d3234203d3e203436303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.56.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:90:51:f2:3c:22:9c:30:19:e6:17:67:32:36:83:cd:13:db: 9e:9b:af:67:6b:a4:ae:e9:23:71:cd:26:24:71:92:3e:ff:af: 70:6f:7c:ac:bf:7a:ce:69:f2:a7:ab:5e:e0:c3:96:b7:36:86: f0:30:42:a9:6c:9a:db:d3:85:78:d4:2f:db:ba:bc:38:9f:fa: 5c:ff:93:fb:29:29:2a:e9:98:e1:60:2a:2c:0d:d7:a4:4c:5f: 8b:18:09:40:fd:51:94:89:db:80:c3:0f:6b:64:65:16:cf:84: 03:80:7f:1d:74:7b:e1:a4:57:3d:94:c0:48:1c:cc:7f:7b:18: 8a:13:a6:c0:d3:15:7d:dd:81:4b:6e:14:b9:f3:ce:2f:34:0c: 45:2a:04:97:88:d0:b7:aa:d5:0c:be:e5:c2:dd:68:47:52:3c: 2d:f6:28:f2:61:4a:4d:4e:e3:be:f4:61:b4:9f:45:5b:c1:11: d5:b5:b7:4b:b8:ab:3f:95:2b:33:06:01:6c:86:55:57:49:0b: 7b:90:53:98:65:43:86:f2:cc:f9:41:9b:a5:57:1b:80:7f:3d: 2e:e5:f4:bc:8c:83:16:f3:26:1d:1f:70:43:e0:ca:24:77:bb: 2d:52:e1:24:7f:f2:5a:4f:6f:6b:f9:43:49:51:fc:6c:4b:47: 32:ff:cd:42 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUOaPsMOcesw1b9vq4bn8iFYKdNwYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFE QzlBMTI2OTAeFw0yNDA5MjYwNTU1MDBaFw0yNTA5MjUwNjAwMDBaMDMxMTAvBgNV BAMTKDBEQkU1MjkzRTNFOTk5QjkwMzM4Q0QxOEVGMzA5NjQ3RDdBMUVGRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA3RCX/G5mSHu+1o3/y2F/wQAW OYjL7Bu9uvQXhcvF+jsWdTc+UGqnynAr8YYA552TQW+KZAzDGuRJ0ffktDil/6FG mo+jUXk9ox7+e16NeaRx15v7a/sfcDLCZd3gpoxf1d9qGSy8DcK80UxJ6dAJyOQl f9QzdlEIDsLWyNZix/J9l+G4/5bIabqNdWbW7bkw+fQ3wAUIcki0rfaGOs/u1nKE k1QXAK9bazdw/EE2KN7QQVxdmEjOWSINhcCxgmBgrwDU13brcUsvSBGRsRknlox6 Ks87+PFf9HqbHvMDKXDwbDr02pFiZtSU03mXAQmL5aq2R2YG/jIQPnzPrbtVAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUDb5Sk+PpmbkDOM0Y7zCWR9eh79gwHwYDVR0j BBgwFoAUPRPG+52yLOE0cGMlNXwg4dyaEmkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDFlZTVlMi0zMzhjLTRkMjAtODA3ZS1lNTBiNzU1ODNkYjgvMC8zRDEzQzZGQjlE QjIyQ0UxMzQ3MDYzMjUzNTdDMjBFMURDOUExMjY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFEQzlB MTI2OS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkMWVlNWUyLTMzOGMtNGQyMC04 MDdlLWU1MGI3NTU4M2RiOC8wLzMxMzAzMzJlMzIzNDJlMzUzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnGDgwDQYJKoZIhvcN AQELBQADggEBAB+QUfI8IpwwGeYXZzI2g80T256br2drpK7pI3HNJiRxkj7/r3Bv fKy/es5p8qerXuDDlrc2hvAwQqlsmtvThXjUL9u6vDif+lz/k/spKSrpmOFgKiwN 16RMX4sYCUD9UZSJ24DDD2tkZRbPhAOAfx10e+GkVz2UwEgczH97GIoTpsDTFX3d gUtuFLnzzi80DEUqBJeI0Leq1Qy+5cLdaEdSPC32KPJhSk1O4770YbSfRVvBEdW1 t0u4qz+VKzMGAWyGVVdJC3uQU5hlQ4byzPlBm6VXG4B/PS7l9LyMgxbzJh0fcEPg yiR3uy1S4SR/8lpPb2v5Q0lR/GxLRzL/zUI= -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:15 2024 by rpki-client on console-ams.rpki-client.org