$ rpki-client -vvf repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36332e302f32342d3234203d3e20313338313334.roa File: 3130332e3133332e36332e302f32342d3234203d3e20313338313334.roa (raw, json) Hash identifier: bFn5Y7JpqG3baSv58HSYajbj+++aONkagR6UZgJDf70= Subject key identifier: B4:D8:44:46:0A:1D:80:F7:43:A7:F1:5C:B2:5E:5D:DA:CD:BF:B9:1B Certificate issuer: /CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0 Certificate serial: 016BB69EDC8380B169C42B68EF6431E030513971 Authority key identifier: C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36332e302f32342d3234203d3e20313338313334.roa Signing time: Tue 24 Sep 2024 11:13:16 +0000 ROA not before: Tue 24 Sep 2024 11:08:16 +0000 ROA not after: Tue 23 Sep 2025 11:13:16 +0000 asID: 138134 IP address blocks: 103.133.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:6b:b6:9e:dc:83:80:b1:69:c4:2b:68:ef:64:31:e0:30:51:39:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3F80A35C1C6877BBE49719B908D029FBFCDDBB0 Validity Not Before: Sep 24 11:08:16 2024 GMT Not After : Sep 23 11:13:16 2025 GMT Subject: CN=B4D844460A1D80F743A7F15CB25E5DDACDBFB91B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:43:fd:f4:f6:bf:3b:ed:31:37:a4:4b:4d:b1: 22:b6:08:32:88:a7:15:74:25:71:2c:c4:d0:56:25: 12:11:0b:29:dc:81:3c:b2:9b:1f:f6:b7:21:01:f0: 63:8a:7c:27:58:a5:cf:8f:37:2e:ab:75:ae:25:5a: f9:ec:c5:b8:f0:a8:70:e9:a0:aa:7f:de:ba:c9:5c: 5c:03:22:90:37:2a:c4:d2:f1:0d:f3:0b:f2:2c:e2: e6:55:b0:30:51:ce:94:1c:f6:70:c2:d9:89:4c:2a: cd:02:48:d3:8a:73:e0:f1:f9:82:af:2b:fb:5e:91: d9:66:66:82:27:45:c2:dc:7d:54:9f:f8:65:5a:91: dd:8b:bc:66:36:de:94:e3:f2:46:ff:14:d9:e2:56: f9:70:5c:19:13:db:1a:54:41:eb:ad:bc:1d:e5:53: c0:47:6e:11:0c:d2:d1:f7:0b:be:d1:d8:fa:cb:ac: 27:98:40:91:f5:5d:65:29:72:e5:6f:0b:17:fc:94: d3:b3:b9:62:df:33:cb:1f:59:63:3b:0d:2c:7b:41: d3:8c:85:29:84:5b:b3:aa:d6:44:df:58:a6:66:a5: e1:f5:c8:f3:64:a5:df:7f:3e:39:3b:7b:ba:82:95: c3:21:89:fe:e4:71:7f:9f:e2:ee:66:d5:b2:f9:58: bf:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:D8:44:46:0A:1D:80:F7:43:A7:F1:5C:B2:5E:5D:DA:CD:BF:B9:1B X509v3 Authority Key Identifier: keyid:C3:F8:0A:35:C1:C6:87:7B:BE:49:71:9B:90:8D:02:9F:BF:CD:DB:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F80A35C1C6877BBE49719B908D029FBFCDDBB0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccf68aba-9515-4d12-aac2-8cee5db2a48f/0/3130332e3133332e36332e302f32342d3234203d3e20313338313334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.63.0/24 Signature Algorithm: sha256WithRSAEncryption 61:ee:a6:c8:5e:f4:61:5e:24:1f:ed:71:bb:d4:01:2a:2b:e5: 63:94:a7:9f:5a:16:d2:ed:65:5a:da:28:f8:db:2a:f4:31:6b: 45:f1:6b:b4:62:5e:c9:e6:1b:35:70:c5:0f:df:ce:71:30:4e: 58:8d:ea:c9:88:9d:e1:85:7f:3c:93:d4:bd:9a:ae:37:08:31: 8a:dc:7b:5f:de:a3:56:af:e7:5b:ea:ca:56:8f:3a:cd:9f:63: 5b:17:ce:f6:3b:1b:3a:26:de:18:94:40:69:08:8a:3b:5b:9d: c3:1d:7a:0b:f2:bc:e4:7b:73:1b:d9:8e:1e:e9:b6:c6:47:5f: b0:fa:d9:0b:9a:8f:79:b9:39:6d:4c:7e:83:7f:58:8f:0a:e4: f3:3a:cc:f6:8f:27:17:48:05:5d:f1:18:a4:46:1c:a4:8d:57: c2:cd:91:12:0a:71:be:54:6c:2e:24:fc:bb:e4:e2:ef:77:d2: bd:c6:41:c1:49:ac:4d:c6:15:71:d4:85:00:6d:df:99:6d:1d: 68:92:dc:ba:5f:91:54:f6:4a:40:33:7a:09:e4:9f:48:1b:30: 50:b0:ec:ee:fd:a8:9c:5c:9e:f9:fd:3f:94:82:f4:90:f2:23: 15:5a:79:76:1b:90:88:bd:ba:e1:39:0e:e8:39:6b:41:0b:19: f8:95:58:44 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAWu2ntyDgLFpxCto72Qx4DBROXEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzNGODBBMzVDMUM2ODc3QkJFNDk3MTlCOTA4RDAyOUZC RkNEREJCMDAeFw0yNDA5MjQxMTA4MTZaFw0yNTA5MjMxMTEzMTZaMDMxMTAvBgNV BAMTKEI0RDg0NDQ2MEExRDgwRjc0M0E3RjE1Q0IyNUU1RERBQ0RCRkI5MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZQ/309r877TE3pEtNsSK2CDKI pxV0JXEsxNBWJRIRCyncgTyymx/2tyEB8GOKfCdYpc+PNy6rda4lWvnsxbjwqHDp oKp/3rrJXFwDIpA3KsTS8Q3zC/Is4uZVsDBRzpQc9nDC2YlMKs0CSNOKc+Dx+YKv K/tekdlmZoInRcLcfVSf+GVakd2LvGY23pTj8kb/FNniVvlwXBkT2xpUQeutvB3l U8BHbhEM0tH3C77R2PrLrCeYQJH1XWUpcuVvCxf8lNOzuWLfM8sfWWM7DSx7QdOM hSmEW7Oq1kTfWKZmpeH1yPNkpd9/Pjk7e7qClcMhif7kcX+f4u5m1bL5WL97AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUtNhERgodgPdDp/Fcsl5d2s2/uRswHwYDVR0j BBgwFoAUw/gKNcHGh3u+SXGbkI0Cn7/N27AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2Y2OGFiYS05NTE1LTRkMTItYWFjMi04Y2VlNWRiMmE0OGYvMC9DM0Y4MEEzNUMx QzY4NzdCQkU0OTcxOUI5MDhEMDI5RkJGQ0REQkIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzNGODBBMzVDMUM2ODc3QkJFNDk3MTlCOTA4RDAyOUZCRkNE REJCMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjZjY4YWJhLTk1MTUtNGQxMi1h YWMyLThjZWU1ZGIyYTQ4Zi8wLzMxMzAzMzJlMzEzMzMzMmUzNjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzEzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4U/MA0GCSqG SIb3DQEBCwUAA4IBAQBh7qbIXvRhXiQf7XG71AEqK+VjlKefWhbS7WVa2ij42yr0 MWtF8Wu0Yl7J5hs1cMUP385xME5YjerJiJ3hhX88k9S9mq43CDGK3Htf3qNWr+db 6spWjzrNn2NbF872Oxs6Jt4YlEBpCIo7W53DHXoL8rzke3Mb2Y4e6bbGR1+w+tkL mo95uTltTH6Df1iPCuTzOsz2jycXSAVd8RikRhykjVfCzZESCnG+VGwuJPy75OLv d9K9xkHBSaxNxhVx1IUAbd+ZbR1okty6X5FU9kpAM3oJ5J9IGzBQsOzu/aicXJ75 /T+UgvSQ8iMVWnl2G5CIvbrhOQ7oOWtBCxn4lVhE -----END CERTIFICATE-----Generated at Sun Nov 24 23:06:10 2024 by rpki-client on console-ams.rpki-client.org