$ rpki-client -vvf repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3130332e32342e35392e302f32342d3234203d3e203436303532.roa File: 3130332e32342e35392e302f32342d3234203d3e203436303532.roa (raw, json) Hash identifier: yg0Ga2BI5N+zhlTssMp6B5+VROj1HXmBfDxoTWvqgpA= Subject key identifier: 95:18:2A:89:6F:5F:0F:80:2D:CB:72:80:BB:68:B1:58:4A:88:22:60 Certificate issuer: /CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Certificate serial: 529E959E09BCABE25B7BB37306BC78182F9739B8 Authority key identifier: 3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3130332e32342e35392e302f32342d3234203d3e203436303532.roa Signing time: Thu 26 Sep 2024 05:00:00 +0000 ROA not before: Thu 26 Sep 2024 04:55:00 +0000 ROA not after: Thu 25 Sep 2025 05:00:00 +0000 asID: 46052 IP address blocks: 103.24.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:9e:95:9e:09:bc:ab:e2:5b:7b:b3:73:06:bc:78:18:2f:97:39:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Validity Not Before: Sep 26 04:55:00 2024 GMT Not After : Sep 25 05:00:00 2025 GMT Subject: CN=95182A896F5F0F802DCB7280BB68B1584A882260 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:84:a0:bc:d3:8b:4e:cd:b2:b7:2c:9e:15:fa: 40:b5:9c:36:0f:a3:9f:6b:62:05:ed:a9:98:b5:90: 29:67:36:62:ca:5c:1f:da:bf:f8:ff:b4:3d:03:b7: 69:66:de:4d:11:3f:4b:de:d1:a8:8d:b5:7c:d2:c5: 00:99:d0:5a:83:99:d8:b2:98:76:79:1f:8b:27:76: a3:21:9b:2c:6c:cd:c4:9c:3c:90:25:1f:cd:25:1a: 16:42:f8:11:c1:f7:31:d3:c7:07:0a:75:ab:27:ad: d3:62:9a:9e:9b:e2:3a:c8:31:16:39:bd:ef:d0:d7: 64:2b:6c:0d:1d:aa:8a:75:06:40:87:52:f6:1b:7f: c8:24:af:c8:18:13:ea:df:7d:a0:56:23:d9:ab:80: 77:94:f8:83:d4:3a:18:94:77:6c:24:ce:4c:fa:5f: ab:f6:c4:3c:23:6a:68:68:a0:a5:34:c2:55:4f:24: ac:e2:9e:40:cd:23:fc:ff:cf:24:00:db:96:17:11: aa:76:c4:aa:de:a0:c9:cc:f6:b1:d9:82:cb:60:22: b1:4f:ee:75:f4:65:13:ce:7a:c2:ed:e9:72:92:7e: f6:5f:32:e6:bc:06:02:07:98:3c:f5:57:ab:22:d0: 4e:44:34:a6:a4:d0:50:25:47:09:d3:40:24:67:29: 60:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:18:2A:89:6F:5F:0F:80:2D:CB:72:80:BB:68:B1:58:4A:88:22:60 X509v3 Authority Key Identifier: keyid:3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3130332e32342e35392e302f32342d3234203d3e203436303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.59.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:21:3c:cf:5a:57:0e:dd:fa:36:9f:d6:f5:66:f6:57:bf:b9: f3:2e:c7:22:0d:27:ae:46:7f:d6:f8:d6:d5:1a:bc:72:fd:99: 13:bb:cb:cf:28:f1:29:74:aa:23:cd:e4:5c:4d:0e:69:b7:e9: d6:52:f6:f8:6a:09:ce:49:bc:a1:1f:94:28:bd:96:19:98:cc: c5:ef:b7:b7:98:90:be:27:6c:ec:f5:74:ff:dd:b1:f0:34:6e: 32:7f:82:5b:4c:fa:d2:e9:6f:47:24:33:54:b8:fc:7b:cc:5b: 79:37:35:19:b7:f9:fe:b3:68:70:2f:b1:33:49:2b:8d:80:f7: 2f:9d:2a:dd:28:1b:27:3a:36:28:73:df:f2:41:d6:84:c9:ed: 9e:da:c6:11:15:cb:0c:e6:4b:33:44:38:52:26:91:f6:ad:ad: 3b:5e:ca:79:15:88:cc:ae:dc:a0:50:7a:68:bd:f6:e6:a1:ae: 65:43:3f:03:27:f1:e4:8d:fa:ab:7d:30:16:b8:ef:98:c7:4d: 36:05:d6:d9:ad:ec:08:1e:d9:0c:b0:79:5b:9f:d4:ef:da:01: f8:9b:ae:b2:17:c1:a6:25:02:c2:c1:e1:d6:b9:51:b0:cd:00: 4b:4b:d3:f3:b7:fc:96:90:65:ff:40:bd:f6:7c:87:6e:60:e1: 54:9b:03:40 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUUp6Vngm8q+Jbe7NzBrx4GC+XObgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFE QzlBMTI2OTAeFw0yNDA5MjYwNDU1MDBaFw0yNTA5MjUwNTAwMDBaMDMxMTAvBgNV BAMTKDk1MTgyQTg5NkY1RjBGODAyRENCNzI4MEJCNjhCMTU4NEE4ODIyNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCohKC804tOzbK3LJ4V+kC1nDYP o59rYgXtqZi1kClnNmLKXB/av/j/tD0Dt2lm3k0RP0ve0aiNtXzSxQCZ0FqDmdiy mHZ5H4sndqMhmyxszcScPJAlH80lGhZC+BHB9zHTxwcKdasnrdNimp6b4jrIMRY5 ve/Q12QrbA0dqop1BkCHUvYbf8gkr8gYE+rffaBWI9mrgHeU+IPUOhiUd2wkzkz6 X6v2xDwjamhooKU0wlVPJKzinkDNI/z/zyQA25YXEap2xKreoMnM9rHZgstgIrFP 7nX0ZRPOesLt6XKSfvZfMua8BgIHmDz1V6si0E5ENKak0FAlRwnTQCRnKWCPAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUlRgqiW9fD4Aty3KAu2ixWEqIImAwHwYDVR0j BBgwFoAUPRPG+52yLOE0cGMlNXwg4dyaEmkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDFlZTVlMi0zMzhjLTRkMjAtODA3ZS1lNTBiNzU1ODNkYjgvMC8zRDEzQzZGQjlE QjIyQ0UxMzQ3MDYzMjUzNTdDMjBFMURDOUExMjY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFEQzlB MTI2OS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkMWVlNWUyLTMzOGMtNGQyMC04 MDdlLWU1MGI3NTU4M2RiOC8wLzMxMzAzMzJlMzIzNDJlMzUzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnGDswDQYJKoZIhvcN AQELBQADggEBAJshPM9aVw7d+jaf1vVm9le/ufMuxyINJ65Gf9b41tUavHL9mRO7 y88o8Sl0qiPN5FxNDmm36dZS9vhqCc5JvKEflCi9lhmYzMXvt7eYkL4nbOz1dP/d sfA0bjJ/gltM+tLpb0ckM1S4/HvMW3k3NRm3+f6zaHAvsTNJK42A9y+dKt0oGyc6 Nihz3/JB1oTJ7Z7axhEVywzmSzNEOFImkfatrTteynkViMyu3KBQemi99uahrmVD PwMn8eSN+qt9MBa475jHTTYF1tmt7Age2QyweVuf1O/aAfibrrIXwaYlAsLB4da5 UbDNAEtL0/O3/JaQZf9AvfZ8h25g4VSbA0A= -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:15 2024 by rpki-client on console-ams.rpki-client.org