$ rpki-client -vvf repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/3130332e3232392e3230302e302f32332d3233203d3e203539323835.roa File: 3130332e3232392e3230302e302f32332d3233203d3e203539323835.roa (raw, json) Hash identifier: kpAMD2rxnApepzs7FgZNPvkRpA934QN2K0t+R1c+J0M= Subject key identifier: 31:D7:83:38:82:E1:D7:69:D6:9E:17:AC:E9:DD:43:A6:20:F0:EC:F2 Certificate issuer: /CN=E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42 Certificate serial: 271FFD914E7780354EB9B4F6DE3A031455E8E843 Authority key identifier: E0:FB:A0:3D:6B:68:95:CE:B5:37:22:CE:FD:B9:4C:56:01:BD:EA:42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/3130332e3232392e3230302e302f32332d3233203d3e203539323835.roa Signing time: Mon 01 Jul 2024 01:05:10 +0000 ROA not before: Mon 01 Jul 2024 01:00:10 +0000 ROA not after: Mon 30 Jun 2025 01:05:10 +0000 asID: 59285 IP address blocks: 103.229.200.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.crl rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:1f:fd:91:4e:77:80:35:4e:b9:b4:f6:de:3a:03:14:55:e8:e8:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42 Validity Not Before: Jul 1 01:00:10 2024 GMT Not After : Jun 30 01:05:10 2025 GMT Subject: CN=31D7833882E1D769D69E17ACE9DD43A620F0ECF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:58:ad:1b:05:fb:75:02:30:1e:11:52:fc:09: 1f:6a:63:b7:33:01:52:71:5b:3b:30:02:e8:c6:81: 67:f7:0e:95:3b:ba:64:f6:0f:ee:ec:ba:7f:36:b3: 3e:4a:bd:a4:c5:42:e0:33:00:41:33:01:e9:35:a1: b1:c8:87:27:95:d7:da:70:4b:ae:32:0e:fd:10:92: 9e:a3:8d:0a:6a:5a:c7:6c:85:8d:1e:eb:34:f1:3d: d8:28:cc:a1:26:d0:1c:85:10:7b:ee:9b:a4:cc:ab: ae:a2:60:65:9f:ad:3a:40:f0:8b:dd:92:ab:c3:3e: 4e:b2:fd:09:ef:8f:fc:09:f4:f3:9a:92:b9:1d:b5: b1:ed:9c:9f:4c:a9:a6:be:b5:52:65:29:bc:cc:5d: 42:b2:7a:a1:cc:e8:bc:ec:05:1d:fe:47:58:d9:3f: ec:09:10:c5:a7:8c:77:15:e5:82:d0:75:21:1d:56: 4f:b9:83:c8:03:8b:ff:c0:04:7c:74:e3:aa:15:03: 4a:c2:21:f2:65:02:6d:14:57:ac:5d:84:52:8a:34: a7:2f:d6:81:6b:45:72:91:ff:85:2a:18:d3:fb:8c: 66:79:4b:82:22:72:09:53:c5:f7:c4:41:70:08:35: 95:6b:c2:bb:04:f2:a8:bc:7c:c2:2c:ea:30:25:c2: ec:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:D7:83:38:82:E1:D7:69:D6:9E:17:AC:E9:DD:43:A6:20:F0:EC:F2 X509v3 Authority Key Identifier: keyid:E0:FB:A0:3D:6B:68:95:CE:B5:37:22:CE:FD:B9:4C:56:01:BD:EA:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E0FBA03D6B6895CEB53722CEFDB94C5601BDEA42.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca1f3b37-bd54-4911-905b-365496687c8d/0/3130332e3232392e3230302e302f32332d3233203d3e203539323835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.229.200.0/23 Signature Algorithm: sha256WithRSAEncryption bc:6d:38:68:77:98:6b:33:72:c8:e4:37:64:41:87:4f:e6:63: 07:cd:5e:40:48:e9:20:67:b6:0a:46:a3:1d:1b:03:bf:80:e4: e0:f8:db:28:17:06:2c:9c:a4:4d:81:0d:3c:64:4b:d2:2c:20: 9f:31:07:95:06:4f:ce:d6:03:af:6e:9e:a6:82:28:18:d7:80: b4:e5:f3:67:40:bc:cb:08:dc:e5:6b:3a:22:6e:a5:7f:fb:6e: 60:f2:e1:96:17:5f:d0:05:76:46:71:9b:9b:e1:3f:1e:4b:2a: 99:7d:8b:1d:41:04:3a:75:8d:37:92:7f:db:bd:01:78:ae:1c: 67:50:fc:d8:fe:be:c7:50:dd:7b:77:af:c3:c9:aa:d3:61:07: 59:b3:29:84:04:33:bd:e6:0e:4f:44:73:8e:59:96:54:fe:c5: 95:1b:ea:91:40:34:2c:95:56:8e:48:b5:13:36:34:c1:11:b6: 42:f5:4a:d8:3e:52:b8:db:0a:e4:5c:23:37:7e:65:3e:01:e6: 65:6a:3e:15:84:7a:1b:ca:c8:45:1a:e8:14:e8:be:e8:97:6c: 4a:71:78:d9:5d:6d:04:b7:0a:d4:7f:4c:dc:a3:72:46:60:82: 7e:0f:42:d3:d3:68:0e:6d:ba:99:84:d8:4d:8a:2d:7c:d7:92: dd:14:a9:7d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJx/9kU53gDVOubT23joDFFXo6EMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTBGQkEwM0Q2QjY4OTVDRUI1MzcyMkNFRkRCOTRDNTYw MUJERUE0MjAeFw0yNDA3MDEwMTAwMTBaFw0yNTA2MzAwMTA1MTBaMDMxMTAvBgNV BAMTKDMxRDc4MzM4ODJFMUQ3NjlENjlFMTdBQ0U5REQ0M0E2MjBGMEVDRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhWK0bBft1AjAeEVL8CR9qY7cz AVJxWzswAujGgWf3DpU7umT2D+7sun82sz5KvaTFQuAzAEEzAek1obHIhyeV19pw S64yDv0Qkp6jjQpqWsdshY0e6zTxPdgozKEm0ByFEHvum6TMq66iYGWfrTpA8Ivd kqvDPk6y/Qnvj/wJ9POakrkdtbHtnJ9Mqaa+tVJlKbzMXUKyeqHM6LzsBR3+R1jZ P+wJEMWnjHcV5YLQdSEdVk+5g8gDi//ABHx046oVA0rCIfJlAm0UV6xdhFKKNKcv 1oFrRXKR/4UqGNP7jGZ5S4IicglTxffEQXAINZVrwrsE8qi8fMIs6jAlwuwhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMdeDOILh12nWnhes6d1DpiDw7PIwHwYDVR0j BBgwFoAU4PugPWtolc61NyLO/blMVgG96kIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YTFmM2IzNy1iZDU0LTQ5MTEtOTA1Yi0zNjU0OTY2ODdjOGQvMC9FMEZCQTAzRDZC Njg5NUNFQjUzNzIyQ0VGREI5NEM1NjAxQkRFQTQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTBGQkEwM0Q2QjY4OTVDRUI1MzcyMkNFRkRCOTRDNTYwMUJE RUE0Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhMWYzYjM3LWJkNTQtNDkxMS05 MDViLTM2NTQ5NjY4N2M4ZC8wLzMxMzAzMzJlMzIzMjM5MmUzMjMwMzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM5MzIzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ+XIMA0GCSqG SIb3DQEBCwUAA4IBAQC8bThod5hrM3LI5DdkQYdP5mMHzV5ASOkgZ7YKRqMdGwO/ gOTg+NsoFwYsnKRNgQ08ZEvSLCCfMQeVBk/O1gOvbp6mgigY14C05fNnQLzLCNzl azoibqV/+25g8uGWF1/QBXZGcZub4T8eSyqZfYsdQQQ6dY03kn/bvQF4rhxnUPzY /r7HUN17d6/DyarTYQdZsymEBDO95g5PRHOOWZZU/sWVG+qRQDQslVaOSLUTNjTB EbZC9UrYPlK42wrkXCM3fmU+AeZlaj4VhHobyshFGugU6L7ol2xKcXjZXW0EtwrU f0zco3JGYIJ+D0LT02gObbqZhNhNii1815LdFKl9 -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org