$ rpki-client -vvf repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235322e302f32322d3232203d3e20313333373939.roa File: 3130332e34322e3235322e302f32322d3232203d3e20313333373939.roa (raw, json) Hash identifier: sZlo9f1EsLMeYktfV+ZGzFa0M9EDgUgsMgX5pnPF/LY= Subject key identifier: 27:D0:EC:65:24:70:B2:F4:83:30:37:FB:4C:65:AA:19:6E:18:70:5C Certificate issuer: /CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Certificate serial: 224C9688B859251494BE5286376038E8361C1348 Authority key identifier: 10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235322e302f32322d3232203d3e20313333373939.roa Signing time: Sat 04 May 2024 16:08:26 +0000 ROA not before: Sat 04 May 2024 16:03:26 +0000 ROA not after: Sat 03 May 2025 16:08:26 +0000 asID: 133799 IP address blocks: 103.42.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Sep 2024 06:11:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:4c:96:88:b8:59:25:14:94:be:52:86:37:60:38:e8:36:1c:13:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Validity Not Before: May 4 16:03:26 2024 GMT Not After : May 3 16:08:26 2025 GMT Subject: CN=27D0EC652470B2F4833037FB4C65AA196E18705C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:69:65:35:a1:0c:4c:4d:67:f7:04:f8:f7:27: e2:71:76:31:5e:b3:9c:42:17:73:0a:82:e3:b7:ee: c6:37:bd:30:54:ac:5a:be:6c:79:8e:f9:8c:6d:4e: c1:96:04:c7:cb:75:88:28:d1:8a:6f:91:af:5a:7d: a6:4c:79:ad:61:e5:1f:0e:ad:71:ff:10:47:ad:1a: 4f:bd:68:1c:99:fa:8b:d9:57:e0:f8:ff:61:6d:80: 67:e4:f3:1c:19:c1:00:0b:58:35:e2:4e:bf:f7:d8: 5d:42:86:e9:60:94:f1:ca:05:b8:9d:10:48:10:2d: 93:8c:9d:9f:eb:ac:37:5c:04:00:a0:d0:51:a3:a2: 60:30:c3:4c:f4:96:cb:f9:35:19:b4:1d:91:75:d6: a0:ff:47:c9:43:22:b1:ca:9b:95:de:15:3a:a3:38: 4e:36:c8:b9:74:d8:5c:31:56:a8:ce:47:7e:69:6b: 08:01:73:58:1a:60:fa:db:70:2d:59:46:8e:f6:c6: e3:11:fd:ef:4a:34:51:ba:c2:45:98:b7:1b:34:23: af:32:8a:95:be:65:a0:39:18:d3:a2:c6:39:d9:fb: fc:52:b7:ba:d8:f6:86:f4:74:ff:06:45:1a:36:01: 4a:26:38:7e:5a:de:ab:19:91:25:be:e6:55:1b:c7: cc:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:D0:EC:65:24:70:B2:F4:83:30:37:FB:4C:65:AA:19:6E:18:70:5C X509v3 Authority Key Identifier: keyid:10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235322e302f32322d3232203d3e20313333373939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.42.252.0/22 Signature Algorithm: sha256WithRSAEncryption 74:9a:61:2d:50:b4:b6:13:ce:a1:df:0f:8a:25:58:cc:fc:03: e5:c7:6e:02:29:9e:f5:88:c2:b8:92:3b:51:d9:1a:88:6e:20: 20:84:16:a6:a3:a5:45:e6:35:c2:0a:1d:30:5a:3f:94:27:ae: 09:48:04:be:f4:2d:51:d7:4f:f7:b1:88:62:87:52:10:95:7a: 04:82:62:9d:7f:b4:24:e7:4a:eb:70:a0:d1:b3:9f:4d:9b:38: c5:17:b0:97:12:24:ea:b2:2d:36:17:8f:09:7d:c8:8a:79:e5: b5:d5:97:23:73:5d:27:50:6c:52:36:9f:2a:f8:dd:94:27:5a: 2b:13:1c:61:82:6e:36:c6:c2:70:21:97:7f:e7:13:c7:53:ad: d9:8e:5c:11:b0:a0:f5:77:17:08:4c:08:9e:9c:71:00:8f:ef: 83:7e:a6:6a:c0:b8:5d:c8:d2:f6:db:dd:d3:9a:67:f7:84:fc: a5:a6:73:e5:fd:8a:cd:0b:5c:b1:3f:3f:6d:6a:a6:28:e2:02: 1f:d0:33:b8:d9:ac:19:17:31:82:d2:71:4d:2c:ed:cd:f9:39: 2f:f0:db:ae:60:b6:d1:92:cf:bb:cb:22:a6:2c:81:bf:42:f4: 51:cd:ee:a5:f4:c5:8d:cb:7f:1e:51:6a:63:07:30:d4:a8:8a: 3b:3c:bd:96 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIkyWiLhZJRSUvlKGN2A46DYcE0gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZD MTIwMjg1MzAeFw0yNDA1MDQxNjAzMjZaFw0yNTA1MDMxNjA4MjZaMDMxMTAvBgNV BAMTKDI3RDBFQzY1MjQ3MEIyRjQ4MzMwMzdGQjRDNjVBQTE5NkUxODcwNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSaWU1oQxMTWf3BPj3J+JxdjFe s5xCF3MKguO37sY3vTBUrFq+bHmO+YxtTsGWBMfLdYgo0Ypvka9afaZMea1h5R8O rXH/EEetGk+9aByZ+ovZV+D4/2FtgGfk8xwZwQALWDXiTr/32F1ChulglPHKBbid EEgQLZOMnZ/rrDdcBACg0FGjomAww0z0lsv5NRm0HZF11qD/R8lDIrHKm5XeFTqj OE42yLl02FwxVqjOR35pawgBc1gaYPrbcC1ZRo72xuMR/e9KNFG6wkWYtxs0I68y ipW+ZaA5GNOixjnZ+/xSt7rY9ob0dP8GRRo2AUomOH5a3qsZkSW+5lUbx8wZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJ9DsZSRwsvSDMDf7TGWqGW4YcFwwHwYDVR0j BBgwFoAUEIJhsrWh88yCjvKlMu2U38EgKFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YjYzZjc3MS1hOTVmLTRiNTMtODdiYy04YmZmNTA0ZGExZjQvMC8xMDgyNjFCMkI1 QTFGM0NDODI4RUYyQTUzMkVEOTRERkMxMjAyODUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZDMTIw Mjg1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NiNjNmNzcxLWE5NWYtNGI1My04 N2JjLThiZmY1MDRkYTFmNC8wLzMxMzAzMzJlMzQzMjJlMzIzNTMyMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzEzMzMzMzczOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZyr8MA0GCSqG SIb3DQEBCwUAA4IBAQB0mmEtULS2E86h3w+KJVjM/APlx24CKZ71iMK4kjtR2RqI biAghBamo6VF5jXCCh0wWj+UJ64JSAS+9C1R10/3sYhih1IQlXoEgmKdf7Qk50rr cKDRs59NmzjFF7CXEiTqsi02F48JfciKeeW11Zcjc10nUGxSNp8q+N2UJ1orExxh gm42xsJwIZd/5xPHU63ZjlwRsKD1dxcITAienHEAj++DfqZqwLhdyNL2293Tmmf3 hPylpnPl/YrNC1yxPz9taqYo4gIf0DO42awZFzGC0nFNLO3N+Tkv8NuuYLbRks+7 yyKmLIG/QvRRze6l9MWNy38eUWpjBzDUqIo7PL2W -----END CERTIFICATE-----Generated at Fri Sep 27 12:52:46 2024 by rpki-client on console-ams.rpki-client.org