$ rpki-client -vvf repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131392e302f32342d3234203d3e20313336383230.roa File: 3130332e39382e3131392e302f32342d3234203d3e20313336383230.roa (raw, json) Hash identifier: zz0q4evVyiGmnkeJgjKZ6+3+IQRQHcK60NcY4NiLuVA= Subject key identifier: E0:17:62:31:A1:2B:04:83:FB:25:12:0F:CB:81:77:C3:0B:80:0C:5C Certificate issuer: /CN=3E2173CCE67F75D29F1CAAA739E6CC6727D6E088 Certificate serial: 0C4CF7013867AAE1BE3CA5416132B5E7B801A52A Authority key identifier: 3E:21:73:CC:E6:7F:75:D2:9F:1C:AA:A7:39:E6:CC:67:27:D6:E0:88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131392e302f32342d3234203d3e20313336383230.roa Signing time: Sat 15 Jun 2024 12:00:01 +0000 ROA not before: Sat 15 Jun 2024 11:55:01 +0000 ROA not after: Sat 14 Jun 2025 12:00:01 +0000 asID: 136820 IP address blocks: 103.98.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.crl rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:4c:f7:01:38:67:aa:e1:be:3c:a5:41:61:32:b5:e7:b8:01:a5:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E2173CCE67F75D29F1CAAA739E6CC6727D6E088 Validity Not Before: Jun 15 11:55:01 2024 GMT Not After : Jun 14 12:00:01 2025 GMT Subject: CN=E0176231A12B0483FB25120FCB8177C30B800C5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:83:80:03:6a:38:e2:77:3f:f6:00:03:cc:dd: 85:7c:32:0b:35:b6:53:cf:31:4d:21:e0:fb:30:59: 1a:d4:05:f1:04:7f:a7:9e:b6:65:b9:98:78:6a:01: b1:6c:a6:0a:13:5c:5b:9d:b5:9e:ce:45:cf:32:2f: 6d:af:e9:38:4a:fb:4b:96:ec:22:fd:54:95:0f:1a: 24:eb:e5:df:78:bf:09:86:28:12:08:ec:ee:dd:81: 63:6b:7d:ef:fa:2b:f6:a8:6f:bf:f0:69:67:69:73: 9d:f5:d4:1a:16:21:b5:b3:5c:5d:08:71:fe:c7:8d: db:dd:a4:7e:28:d2:da:26:08:a5:5d:4e:6b:d2:14: 40:34:4e:6b:43:91:99:ee:cc:36:cf:89:31:08:ce: 4c:ef:e6:9f:18:6b:90:34:1a:08:45:be:ee:91:98: 1d:fc:03:20:cb:22:6a:a1:3c:cd:80:16:4c:31:ef: 66:56:5d:37:0e:d9:4d:81:21:dc:26:7c:11:85:ae: 60:0d:98:6e:d4:6b:26:45:9f:c5:36:89:50:ec:c2: 57:26:66:ad:2c:a5:9e:3b:31:04:e5:df:59:a0:ba: 80:ad:63:29:0b:67:97:f2:59:e0:32:61:dd:ca:10: 9b:ff:ef:5e:30:64:02:b0:2a:4a:41:a7:79:c7:cb: 5c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:17:62:31:A1:2B:04:83:FB:25:12:0F:CB:81:77:C3:0B:80:0C:5C X509v3 Authority Key Identifier: keyid:3E:21:73:CC:E6:7F:75:D2:9F:1C:AA:A7:39:E6:CC:67:27:D6:E0:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E2173CCE67F75D29F1CAAA739E6CC6727D6E088.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccd53948-ddf3-449a-bf2b-cf3f7ae176d3/0/3130332e39382e3131392e302f32342d3234203d3e20313336383230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.98.119.0/24 Signature Algorithm: sha256WithRSAEncryption 49:dd:8a:d5:a1:24:4e:62:cf:eb:80:e1:ce:71:de:37:84:1d: d7:2a:61:75:ce:2b:36:5f:54:69:2b:83:e4:87:5d:a1:9b:36: a4:86:1f:c2:aa:bc:6b:d0:5d:ee:47:87:e1:ab:2a:5c:0f:c5: 0a:00:b5:24:f9:c8:39:ea:14:0c:82:7d:25:5e:8b:6c:e5:eb: b3:a8:11:7d:fe:17:28:ad:2f:bc:1d:1d:d1:58:06:13:f6:08: 20:04:58:fc:bb:da:26:6c:b9:9b:de:9c:13:2b:fa:93:7e:74: bf:12:eb:44:fe:3e:76:c4:80:78:70:bc:7f:19:d1:de:15:c7: 95:a9:14:63:d8:b4:fb:1f:fd:73:53:63:50:85:3f:75:15:88: 0c:4e:54:d1:f1:ff:c7:d1:fc:29:9d:87:39:16:7a:d6:7b:f4: ff:eb:26:d1:55:ef:30:db:af:59:fb:b8:ec:62:09:7c:12:d5: c1:49:7a:7e:91:df:4e:25:8a:1d:35:32:83:45:cf:bd:cf:1f: bd:5e:72:9d:85:b4:a3:26:b2:e3:36:12:74:ec:08:31:e8:e4: 1d:cc:9a:af:39:92:75:aa:2c:16:4f:30:0f:fb:d4:ab:6f:c5: af:00:fa:14:28:16:70:b4:f5:39:bc:6a:5e:75:76:f9:8c:05: 7c:50:cc:79 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDEz3AThnquG+PKVBYTK157gBpSowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0UyMTczQ0NFNjdGNzVEMjlGMUNBQUE3MzlFNkNDNjcy N0Q2RTA4ODAeFw0yNDA2MTUxMTU1MDFaFw0yNTA2MTQxMjAwMDFaMDMxMTAvBgNV BAMTKEUwMTc2MjMxQTEyQjA0ODNGQjI1MTIwRkNCODE3N0MzMEI4MDBDNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeg4ADajjidz/2AAPM3YV8Mgs1 tlPPMU0h4PswWRrUBfEEf6eetmW5mHhqAbFspgoTXFudtZ7ORc8yL22v6ThK+0uW 7CL9VJUPGiTr5d94vwmGKBII7O7dgWNrfe/6K/aob7/waWdpc5311BoWIbWzXF0I cf7HjdvdpH4o0tomCKVdTmvSFEA0TmtDkZnuzDbPiTEIzkzv5p8Ya5A0GghFvu6R mB38AyDLImqhPM2AFkwx72ZWXTcO2U2BIdwmfBGFrmANmG7UayZFn8U2iVDswlcm Zq0spZ47MQTl31mguoCtYykLZ5fyWeAyYd3KEJv/714wZAKwKkpBp3nHy1xBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4BdiMaErBIP7JRIPy4F3wwuADFwwHwYDVR0j BBgwFoAUPiFzzOZ/ddKfHKqnOebMZyfW4IgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2Q1Mzk0OC1kZGYzLTQ0OWEtYmYyYi1jZjNmN2FlMTc2ZDMvMC8zRTIxNzNDQ0U2 N0Y3NUQyOUYxQ0FBQTczOUU2Q0M2NzI3RDZFMDg4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0UyMTczQ0NFNjdGNzVEMjlGMUNBQUE3MzlFNkNDNjcyN0Q2 RTA4OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjZDUzOTQ4LWRkZjMtNDQ5YS1i ZjJiLWNmM2Y3YWUxNzZkMy8wLzMxMzAzMzJlMzkzODJlMzEzMTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2J3MA0GCSqG SIb3DQEBCwUAA4IBAQBJ3YrVoSROYs/rgOHOcd43hB3XKmF1zis2X1RpK4Pkh12h mzakhh/Cqrxr0F3uR4fhqypcD8UKALUk+cg56hQMgn0lXots5euzqBF9/hcorS+8 HR3RWAYT9gggBFj8u9ombLmb3pwTK/qTfnS/EutE/j52xIB4cLx/GdHeFceVqRRj 2LT7H/1zU2NQhT91FYgMTlTR8f/H0fwpnYc5FnrWe/T/6ybRVe8w269Z+7jsYgl8 EtXBSXp+kd9OJYodNTKDRc+9zx+9XnKdhbSjJrLjNhJ07Agx6OQdzJqvOZJ1qiwW TzAP+9Srb8WvAPoUKBZwtPU5vGpedXb5jAV8UMx5 -----END CERTIFICATE-----Generated at Mon Nov 25 23:52:55 2024 by rpki-client on console-ams.rpki-client.org