$ rpki-client -vvf repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3130332e31382e33332e302f32342d3234203d3e203435333132.roa File: 3130332e31382e33332e302f32342d3234203d3e203435333132.roa (raw, json) Hash identifier: BOZ/Ld7wEgHhQMUbroLMzpmRoDs/s3J+aCZfY7XULXY= Subject key identifier: 22:59:0D:01:3A:C3:7C:69:22:B7:B7:79:54:6F:01:D0:B7:12:53:C3 Certificate issuer: /CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Certificate serial: 669EA74053FB4C6DF5FC066FC58EF3E6CBD18D26 Authority key identifier: 15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3130332e31382e33332e302f32342d3234203d3e203435333132.roa Signing time: Mon 01 Jul 2024 01:04:11 +0000 ROA not before: Mon 01 Jul 2024 00:59:11 +0000 ROA not after: Mon 30 Jun 2025 01:04:11 +0000 asID: 45312 IP address blocks: 103.18.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:9e:a7:40:53:fb:4c:6d:f5:fc:06:6f:c5:8e:f3:e6:cb:d1:8d:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=154EE03198467B96315FDB527FB3BBCCA0BFC441 Validity Not Before: Jul 1 00:59:11 2024 GMT Not After : Jun 30 01:04:11 2025 GMT Subject: CN=22590D013AC37C6922B7B779546F01D0B71253C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a6:b9:d0:3b:97:12:f8:fe:6d:a9:7f:54:33: dc:2e:74:43:a0:42:0d:bb:d1:3a:54:2b:46:fe:d3: 02:ac:a1:57:a0:cb:6c:66:3c:7a:04:3d:27:28:2a: 5b:63:de:db:6b:ee:05:5b:f0:6c:eb:2b:18:8c:11: 45:85:e6:33:fe:17:12:91:05:15:e2:5d:b8:04:d6: 9e:3b:ca:cb:e6:35:9d:72:54:ae:ce:f9:01:db:1a: 7e:1f:f9:3e:eb:ff:9b:14:ab:3e:b1:29:4b:49:4a: 97:40:7d:29:38:48:00:c5:48:cd:5b:b4:ec:e9:be: 41:1d:e6:4b:4f:37:32:96:ba:aa:8c:f5:8a:32:25: 2c:29:fa:01:ea:17:ea:48:73:56:ec:d1:08:df:74: df:2d:07:bf:06:b4:34:47:03:44:24:95:92:8c:e6: e7:32:cc:ef:9b:9e:ff:88:bc:e5:6a:2b:53:1c:5f: 37:f7:a3:ca:9f:b3:31:d0:b2:11:7b:ff:6b:23:d0: 37:9e:27:0c:ce:77:7c:fe:57:25:f2:f9:09:62:63: d7:a2:75:28:8b:50:5f:06:d2:d8:8d:3f:df:e3:e5: 86:0b:94:63:31:c6:d9:a0:cb:55:93:a5:c6:77:67: ba:f1:04:59:16:b2:f7:93:05:e0:15:f7:5b:ba:33: 9e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:59:0D:01:3A:C3:7C:69:22:B7:B7:79:54:6F:01:D0:B7:12:53:C3 X509v3 Authority Key Identifier: keyid:15:4E:E0:31:98:46:7B:96:31:5F:DB:52:7F:B3:BB:CC:A0:BF:C4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/154EE03198467B96315FDB527FB3BBCCA0BFC441.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154EE03198467B96315FDB527FB3BBCCA0BFC441.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c621f753-a88e-4edf-a306-bd93d5a38fea/0/3130332e31382e33332e302f32342d3234203d3e203435333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.18.33.0/24 Signature Algorithm: sha256WithRSAEncryption 72:3a:56:81:0d:26:ce:ea:bb:e1:00:6e:4f:ae:5a:4a:0e:c7: cc:3c:b4:c7:d8:b0:7e:20:98:11:c5:e1:cf:c7:84:91:db:64: 24:5e:28:d1:30:a8:cf:42:a7:28:06:2b:9b:40:fe:78:c8:e2: 08:e7:5d:c6:93:00:ee:ed:05:d8:d6:b8:71:f3:01:1e:b5:f3: 53:47:75:a6:4e:8e:7e:f7:95:73:3b:05:d3:ee:61:b4:ed:d5: 2f:f1:d4:fc:fc:30:39:b6:0f:25:50:28:2e:20:3a:a8:74:70: d8:f6:14:f1:7c:ab:52:d9:8b:ac:b8:49:c7:83:3a:d8:10:58: 46:05:a5:71:f0:ba:8d:ab:50:54:da:af:6d:76:8e:9f:e5:6e: 9e:e9:3a:ff:03:20:5f:1c:b7:09:1d:4d:3a:84:3e:a7:08:68: b7:dc:e6:a2:35:67:ee:ba:af:7d:c5:af:2f:2b:b0:3a:2c:6b: b1:b8:28:82:0a:db:58:29:cb:b2:81:3e:73:0b:34:dc:7b:ef: d1:2b:d2:87:7d:34:f5:e3:61:69:dc:a3:e5:f8:3a:95:9a:14: f6:94:f2:44:c4:70:5f:28:53:9a:92:3a:17:6a:f8:02:4f:2c: fd:34:1f:f8:20:9d:4f:f5:8e:21:ee:ac:0f:46:14:7d:01:f4: 8c:bb:15:e8 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUZp6nQFP7TG31/AZvxY7z5svRjSYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NB MEJGQzQ0MTAeFw0yNDA3MDEwMDU5MTFaFw0yNTA2MzAwMTA0MTFaMDMxMTAvBgNV BAMTKDIyNTkwRDAxM0FDMzdDNjkyMkI3Qjc3OTU0NkYwMUQwQjcxMjUzQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7prnQO5cS+P5tqX9UM9wudEOg Qg270TpUK0b+0wKsoVegy2xmPHoEPScoKltj3ttr7gVb8GzrKxiMEUWF5jP+FxKR BRXiXbgE1p47ysvmNZ1yVK7O+QHbGn4f+T7r/5sUqz6xKUtJSpdAfSk4SADFSM1b tOzpvkEd5ktPNzKWuqqM9YoyJSwp+gHqF+pIc1bs0QjfdN8tB78GtDRHA0QklZKM 5ucyzO+bnv+IvOVqK1McXzf3o8qfszHQshF7/2sj0DeeJwzOd3z+VyXy+QliY9ei dSiLUF8G0tiNP9/j5YYLlGMxxtmgy1WTpcZ3Z7rxBFkWsveTBeAV91u6M57TAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUIlkNATrDfGkit7d5VG8B0LcSU8MwHwYDVR0j BBgwFoAUFU7gMZhGe5YxX9tSf7O7zKC/xEEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NjIxZjc1My1hODhlLTRlZGYtYTMwNi1iZDkzZDVhMzhmZWEvMC8xNTRFRTAzMTk4 NDY3Qjk2MzE1RkRCNTI3RkIzQkJDQ0EwQkZDNDQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU0RUUwMzE5ODQ2N0I5NjMxNUZEQjUyN0ZCM0JCQ0NBMEJG QzQ0MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2MjFmNzUzLWE4OGUtNGVkZi1h MzA2LWJkOTNkNWEzOGZlYS8wLzMxMzAzMzJlMzEzODJlMzMzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzUzMzMxMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnEiEwDQYJKoZIhvcN AQELBQADggEBAHI6VoENJs7qu+EAbk+uWkoOx8w8tMfYsH4gmBHF4c/HhJHbZCRe KNEwqM9CpygGK5tA/njI4gjnXcaTAO7tBdjWuHHzAR6181NHdaZOjn73lXM7BdPu YbTt1S/x1Pz8MDm2DyVQKC4gOqh0cNj2FPF8q1LZi6y4SceDOtgQWEYFpXHwuo2r UFTar212jp/lbp7pOv8DIF8ctwkdTTqEPqcIaLfc5qI1Z+66r33Fry8rsDosa7G4 KIIK21gpy7KBPnMLNNx779Er0od9NPXjYWnco+X4OpWaFPaU8kTEcF8oU5qSOhdq +AJPLP00H/ggnU/1jiHurA9GFH0B9Iy7Feg= -----END CERTIFICATE-----Generated at Fri Nov 22 09:30:03 2024 by rpki-client on console-fra.rpki-client.org