$ rpki-client -vvf repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36302e302f32322d3232203d3e20313338313334.roa File: 3130332e3133332e36302e302f32322d3232203d3e20313338313334.roa (raw, json) Hash identifier: E6XmK1t6H2i7DnMzin3eXEnNRLj+glllDjzpw3yQ+tE= Subject key identifier: 1A:D7:14:9E:37:0F:77:41:A3:3F:E1:68:3D:AA:B3:57:70:20:D8:81 Certificate issuer: /CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0 Certificate serial: 024A41B0B23512D514F8856B0D6F0D06BEB14CA6 Authority key identifier: C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36302e302f32322d3232203d3e20313338313334.roa Signing time: Tue 24 Sep 2024 11:13:31 +0000 ROA not before: Tue 24 Sep 2024 11:08:31 +0000 ROA not after: Tue 23 Sep 2025 11:13:31 +0000 asID: 138134 IP address blocks: 103.133.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:4a:41:b0:b2:35:12:d5:14:f8:85:6b:0d:6f:0d:06:be:b1:4c:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0 Validity Not Before: Sep 24 11:08:31 2024 GMT Not After : Sep 23 11:13:31 2025 GMT Subject: CN=1AD7149E370F7741A33FE1683DAAB3577020D881 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ef:ee:1c:66:33:27:db:f2:61:0d:fa:65:8f: be:71:2a:28:1e:ba:9c:a5:3b:f4:00:52:3d:f4:a1: 71:11:86:d5:5e:2c:37:74:a5:85:7f:23:5e:3f:1a: 0d:be:6c:d5:70:ad:8c:20:63:db:28:95:34:5e:d1: d4:ad:5a:72:ae:64:c7:20:c9:29:3f:6e:b0:e2:80: ca:a5:40:7e:10:41:be:b3:4d:0b:37:5d:33:52:4e: 4a:8f:8f:9e:37:49:cc:8a:0b:c2:7a:7f:32:e6:15: 21:fe:cc:e8:4d:a8:6f:75:6d:22:30:d3:80:fe:37: 7d:b3:86:28:7f:e4:12:e6:5d:02:86:8b:55:d4:a7: de:f2:58:fb:e8:78:05:ab:00:e6:16:fd:98:ef:bd: 53:24:3b:7a:11:46:e4:70:ab:8f:ee:f1:b7:48:92: 9b:7f:33:8c:e9:23:39:80:3d:71:cc:f0:83:3a:f3: 2c:a3:28:5a:1e:bf:21:f1:ff:06:40:ca:fd:0e:d4: f7:16:28:f2:9f:18:62:01:f3:c1:a1:cc:ee:fa:d5: c3:3f:da:aa:40:88:ac:2e:e2:7b:c7:c0:ac:de:51: d9:85:4e:35:48:9d:c8:d8:b3:6a:43:c4:3f:47:b7: a4:8e:af:ff:d9:69:18:59:60:06:27:65:ae:bb:2e: c9:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:D7:14:9E:37:0F:77:41:A3:3F:E1:68:3D:AA:B3:57:70:20:D8:81 X509v3 Authority Key Identifier: keyid:C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36302e302f32322d3232203d3e20313338313334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.60.0/22 Signature Algorithm: sha256WithRSAEncryption d1:af:4e:ed:ea:79:ac:b7:47:24:63:1c:97:04:02:87:a8:d1: 31:19:23:8f:e8:d1:92:33:38:69:99:f4:e3:93:ce:f3:f1:5e: 06:99:d6:84:ce:e2:1a:3f:ac:59:50:68:05:76:ea:13:cb:30: f8:aa:1a:ee:33:fc:d0:fe:25:4e:1d:80:ea:98:be:db:73:ab: 53:19:e8:49:f4:7a:cb:d5:3b:6d:48:cc:fb:7d:8f:93:32:6f: 77:ec:a2:66:04:f5:89:bb:ed:02:9b:27:28:16:3b:76:83:13: b2:71:1c:14:c8:50:5a:80:41:8b:af:7f:b0:fe:0d:c3:23:e5: ea:f7:90:62:33:41:c6:54:4e:e0:ea:76:44:7f:c2:c6:6a:aa: 22:3e:0b:d0:a7:a9:2e:e2:0a:f9:b0:8f:35:ee:26:a3:5f:d0: f4:30:58:1f:05:ce:af:07:97:1e:67:e1:85:d3:7b:58:5c:4d: a7:b5:0f:44:ea:93:4c:ec:39:be:2c:6e:fa:02:63:ab:96:97: 68:d7:d7:ee:e8:c8:ca:d4:cc:5e:96:06:0a:c9:20:97:1d:1e: ef:7d:ce:06:eb:68:c0:83:a7:53:11:97:bc:45:20:08:ef:c7: 1d:73:8b:43:24:10:e0:c7:e2:62:d1:59:2a:86:32:2b:93:b1: 4d:ef:15:ee -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAkpBsLI1EtUU+IVrDW8NBr6xTKYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGODBBMzVDMUM2ODc3QkJFNDk3MTlCOTA4RDAyOUZC RkNEREJCMDAeFw0yNDA5MjQxMTA4MzFaFw0yNTA5MjMxMTEzMzFaMDMxMTAvBgNV BAMTKDFBRDcxNDlFMzcwRjc3NDFBMzNGRTE2ODNEQUFCMzU3NzAyMEQ4ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB7+4cZjMn2/JhDfplj75xKige upylO/QAUj30oXERhtVeLDd0pYV/I14/Gg2+bNVwrYwgY9solTRe0dStWnKuZMcg ySk/brDigMqlQH4QQb6zTQs3XTNSTkqPj543ScyKC8J6fzLmFSH+zOhNqG91bSIw 04D+N32zhih/5BLmXQKGi1XUp97yWPvoeAWrAOYW/ZjvvVMkO3oRRuRwq4/u8bdI kpt/M4zpIzmAPXHM8IM68yyjKFoevyHx/wZAyv0O1PcWKPKfGGIB88GhzO761cM/ 2qpAiKwu4nvHwKzeUdmFTjVIncjYs2pDxD9Ht6SOr//ZaRhZYAYnZa67LsmXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGtcUnjcPd0GjP+FoPaqzV3Ag2IEwHwYDVR0j BBgwFoAUw/gKNcHGh3u+SXGbkI0Cn7/N27AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2Y2OGFiYS05NTE1LTRkMTItYWFjMi04Y2VlNWRiMmE0OGYvMC9DM0Y4MEEzNUMx QzY4NzdCQkU0OTcxOUI5MDhEMDI5RkJGQ0REQkIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGODBBMzVDMUM2ODc3QkJFNDk3MTlCOTA4RDAyOUZCRkNE REJCMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjZjY4YWJhLTk1MTUtNGQxMi1h YWMyLThjZWU1ZGIyYTQ4Zi8wLzMxMzAzMzJlMzEzMzMzMmUzNjMwMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzEzMzM4MzEzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ4U8MA0GCSqG SIb3DQEBCwUAA4IBAQDRr07t6nmst0ckYxyXBAKHqNExGSOP6NGSMzhpmfTjk87z 8V4GmdaEzuIaP6xZUGgFduoTyzD4qhruM/zQ/iVOHYDqmL7bc6tTGehJ9HrL1Ttt SMz7fY+TMm937KJmBPWJu+0CmycoFjt2gxOycRwUyFBagEGLr3+w/g3DI+Xq95Bi M0HGVE7g6nZEf8LGaqoiPgvQp6ku4gr5sI817iajX9D0MFgfBc6vB5ceZ+GF03tY XE2ntQ9E6pNM7Dm+LG76AmOrlpdo19fu6MjK1MxelgYKySCXHR7vfc4G62jAg6dT EZe8RSAI78cdc4tDJBDgx+Ji0VkqhjIrk7FN7xXu -----END CERTIFICATE-----Generated at Sun Nov 24 23:06:10 2024 by rpki-client on console-ams.rpki-client.org