$ rpki-client -vvf repo-rpki.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/3130332e3232322e3235342e302f32342d3234203d3e20313531303131.roa File: 3130332e3232322e3235342e302f32342d3234203d3e20313531303131.roa (raw, json) Hash identifier: 88iJrpBdsgdKXMFX221Wowzef3F+WZASaRkZnRzRVh8= Subject key identifier: 6A:23:11:CB:C5:83:46:51:69:D6:47:AE:23:C5:4D:27:93:42:3D:CF Certificate issuer: /CN=744F97E1DF1BD6D37E6C2EA8F02C088498F43323 Certificate serial: 24B15A97A18A9756C606C76864C497D990D4B65C Authority key identifier: 74:4F:97:E1:DF:1B:D6:D3:7E:6C:2E:A8:F0:2C:08:84:98:F4:33:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/744F97E1DF1BD6D37E6C2EA8F02C088498F43323.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/3130332e3232322e3235342e302f32342d3234203d3e20313531303131.roa Signing time: Tue 09 Jan 2024 13:59:57 +0000 ROA not before: Tue 09 Jan 2024 13:54:57 +0000 ROA not after: Tue 07 Jan 2025 13:59:57 +0000 asID: 151011 IP address blocks: 103.222.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/744F97E1DF1BD6D37E6C2EA8F02C088498F43323.crl rsync://repo-rpki.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/744F97E1DF1BD6D37E6C2EA8F02C088498F43323.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/744F97E1DF1BD6D37E6C2EA8F02C088498F43323.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:b1:5a:97:a1:8a:97:56:c6:06:c7:68:64:c4:97:d9:90:d4:b6:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=744F97E1DF1BD6D37E6C2EA8F02C088498F43323 Validity Not Before: Jan 9 13:54:57 2024 GMT Not After : Jan 7 13:59:57 2025 GMT Subject: CN=6A2311CBC583465169D647AE23C54D2793423DCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0a:1f:9f:ef:8f:c8:e9:5b:ff:bb:00:3a:6b: 8d:b3:20:81:25:06:87:2a:ee:a5:ba:13:03:89:2a: 2e:e4:69:ba:6b:0a:ad:78:52:5a:31:d1:1c:1e:be: f2:63:f6:b3:fc:08:32:e1:38:50:37:e3:f9:57:4e: e6:e0:2c:c2:5f:bf:93:56:8a:82:9a:c8:dc:49:a7: 01:d0:5b:fa:e2:f0:a8:0b:2c:3a:a8:8f:53:f6:a7: 30:e7:85:60:62:73:b2:72:d3:c9:bd:7f:8a:31:2a: 3c:27:8b:2a:a5:c0:e4:4d:a4:a0:cc:6a:d4:45:5b: 8b:38:49:19:ee:3c:9b:c0:66:5c:78:f4:37:6d:cd: 75:e8:c7:89:e4:73:fc:9b:09:9c:73:7d:a6:ad:83: b2:7a:03:21:1e:9e:91:c4:9e:c1:1b:4d:fd:fd:45: d7:20:72:54:d1:22:20:dd:e9:e9:6f:5d:20:90:fd: 41:05:63:7f:17:15:eb:31:ce:e1:60:19:90:e9:e6: 72:2a:e4:6e:d8:03:af:02:ca:88:7d:9c:a7:2a:3e: c6:b9:00:63:88:5b:f5:da:fc:7d:1d:66:40:8f:7b: 75:5d:0f:11:9c:00:ff:a8:75:96:a8:25:0a:a1:09: 4d:d1:02:53:e5:a1:88:90:8e:7b:d2:a2:ff:cd:b5: 07:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:23:11:CB:C5:83:46:51:69:D6:47:AE:23:C5:4D:27:93:42:3D:CF X509v3 Authority Key Identifier: keyid:74:4F:97:E1:DF:1B:D6:D3:7E:6C:2E:A8:F0:2C:08:84:98:F4:33:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/744F97E1DF1BD6D37E6C2EA8F02C088498F43323.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/744F97E1DF1BD6D37E6C2EA8F02C088498F43323.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c80dde94-e5be-4d29-bb12-45fb5c1d2c79/0/3130332e3232322e3235342e302f32342d3234203d3e20313531303131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.222.254.0/24 Signature Algorithm: sha256WithRSAEncryption 94:92:8c:95:ec:5e:36:e8:7e:03:73:01:a8:9a:dd:b5:1c:ab: 0f:05:82:a1:a4:c3:9f:4f:fc:24:05:95:bf:ec:2f:c7:a1:5a: 57:cc:91:3e:8d:12:3b:78:20:84:7d:3a:1e:04:11:58:ba:ab: 8a:f7:de:8a:7c:42:ca:58:78:9e:cd:46:84:b7:39:de:83:69: 54:85:09:08:7b:ff:d5:91:24:c1:9d:1d:ee:c3:a4:38:dc:3c: cd:b4:b7:20:3d:2e:6e:b4:c1:c2:d2:c7:cf:1c:86:72:ad:e0: e7:77:77:d3:c5:17:bb:4b:09:24:9e:2c:14:40:9b:7b:15:63: 4a:1d:db:80:c9:40:5e:af:2c:16:a7:16:c4:18:50:1f:13:a3: f4:71:61:98:dd:7a:43:bf:e4:aa:ab:20:7d:1c:6b:e4:b0:5e: a2:ac:12:54:9a:e4:5c:c6:80:17:d8:d3:19:67:4c:7d:a1:18: 70:43:42:a0:fe:c5:1d:e7:23:fd:4c:bd:bc:5a:9a:6c:a6:d8: 8b:30:46:20:f4:52:46:b8:64:66:2c:e1:c7:e9:e8:dc:36:f1: a5:c5:1c:c4:e6:fb:6c:73:e4:e6:e5:c4:d5:4e:21:a0:e1:0e: f3:8d:79:0a:77:be:e7:50:c1:3b:78:3d:2a:45:de:cc:4b:ee: 60:ea:54:da -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJLFal6GKl1bGBsdoZMSX2ZDUtlwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ0Rjk3RTFERjFCRDZEMzdFNkMyRUE4RjAyQzA4ODQ5 OEY0MzMyMzAeFw0yNDAxMDkxMzU0NTdaFw0yNTAxMDcxMzU5NTdaMDMxMTAvBgNV BAMTKDZBMjMxMUNCQzU4MzQ2NTE2OUQ2NDdBRTIzQzU0RDI3OTM0MjNEQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Ch+f74/I6Vv/uwA6a42zIIEl Bocq7qW6EwOJKi7kabprCq14Ulox0RwevvJj9rP8CDLhOFA34/lXTubgLMJfv5NW ioKayNxJpwHQW/ri8KgLLDqoj1P2pzDnhWBic7Jy08m9f4oxKjwniyqlwORNpKDM atRFW4s4SRnuPJvAZlx49DdtzXXox4nkc/ybCZxzfaatg7J6AyEenpHEnsEbTf39 RdcgclTRIiDd6elvXSCQ/UEFY38XFesxzuFgGZDp5nIq5G7YA68Cyoh9nKcqPsa5 AGOIW/Xa/H0dZkCPe3VdDxGcAP+odZaoJQqhCU3RAlPloYiQjnvSov/NtQfPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUaiMRy8WDRlFp1keuI8VNJ5NCPc8wHwYDVR0j BBgwFoAUdE+X4d8b1tN+bC6o8CwIhJj0MyMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ODBkZGU5NC1lNWJlLTRkMjktYmIxMi00NWZiNWMxZDJjNzkvMC83NDRGOTdFMURG MUJENkQzN0U2QzJFQThGMDJDMDg4NDk4RjQzMzIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ0Rjk3RTFERjFCRDZEMzdFNkMyRUE4RjAyQzA4ODQ5OEY0 MzMyMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4MGRkZTk0LWU1YmUtNGQyOS1i YjEyLTQ1ZmI1YzFkMmM3OS8wLzMxMzAzMzJlMzIzMjMyMmUzMjM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzMDMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn3v4wDQYJ KoZIhvcNAQELBQADggEBAJSSjJXsXjbofgNzAaia3bUcqw8FgqGkw59P/CQFlb/s L8ehWlfMkT6NEjt4IIR9Oh4EEVi6q4r33op8QspYeJ7NRoS3Od6DaVSFCQh7/9WR JMGdHe7DpDjcPM20tyA9Lm60wcLSx88chnKt4Od3d9PFF7tLCSSeLBRAm3sVY0od 24DJQF6vLBanFsQYUB8To/RxYZjdekO/5KqrIH0ca+SwXqKsElSa5FzGgBfY0xln TH2hGHBDQqD+xR3nI/1Mvbxammym2IswRiD0Uka4ZGYs4cfp6Nw28aXFHMTm+2xz 5OblxNVOIaDhDvONeQp3vudQwTt4PSpF3sxL7mDqVNo= -----END CERTIFICATE-----Generated at Mon Nov 25 04:42:07 2024 by rpki-client on console-ams.rpki-client.org