$ rpki-client -vvf repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/3130332e33362e35332e302f32342d3234203d3e2039333431.roa File: 3130332e33362e35332e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: n7fDyeuU1HQZdFIYr/m3ZztFKIf2iIRMeVjsry1/EpQ= Subject key identifier: C7:0C:DE:A9:12:1C:6A:AA:3B:A5:C2:57:13:6F:B0:40:8D:C9:04:12 Certificate issuer: /CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Certificate serial: 2771E00F4DC43DFC38F9179FD6364D5A25A7AC29 Authority key identifier: DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/3130332e33362e35332e302f32342d3234203d3e2039333431.roa Signing time: Tue 24 Sep 2024 17:00:00 +0000 ROA not before: Tue 24 Sep 2024 16:55:00 +0000 ROA not after: Tue 23 Sep 2025 17:00:00 +0000 asID: 9341 IP address blocks: 103.36.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:06:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:71:e0:0f:4d:c4:3d:fc:38:f9:17:9f:d6:36:4d:5a:25:a7:ac:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Validity Not Before: Sep 24 16:55:00 2024 GMT Not After : Sep 23 17:00:00 2025 GMT Subject: CN=C70CDEA9121C6AAA3BA5C257136FB0408DC90412 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:77:6e:b4:78:f0:90:a0:de:f6:d6:a7:b4:ea: 77:81:44:ae:39:97:82:c3:42:15:e2:a2:4f:4f:fe: ac:32:ef:95:e6:0b:b2:90:18:f8:18:39:5e:82:6e: 7e:92:50:63:ac:19:df:73:f0:f0:06:f7:0c:cf:37: 20:01:61:ac:74:ea:65:c4:a4:85:60:2e:f1:1a:72: ee:8a:40:2a:3a:c4:df:d5:65:25:d8:3b:59:97:a0: 71:8d:61:cb:62:55:02:11:fd:cd:7b:f4:41:0f:ae: cf:ab:e8:0b:da:7d:00:76:2a:31:c9:e0:8d:4d:6f: 5b:be:bf:f1:03:72:74:15:4a:0e:4f:c1:1d:f6:57: ae:92:df:3c:e7:e6:ea:4b:0e:e8:fc:3e:98:ee:fa: c6:d0:e7:99:6b:6c:91:03:0f:c2:d7:9e:f2:36:80: c4:92:a1:00:3f:b9:4d:6f:0c:88:79:76:30:a5:ab: 1d:eb:50:19:b9:d1:1b:d2:c2:3c:30:ce:54:ef:73: 85:eb:44:7e:9b:b4:14:99:f0:69:b7:33:8e:3a:34: 48:1f:ec:19:34:bd:4b:fa:d7:45:59:42:ea:7d:83: 57:9c:8b:35:b5:95:93:43:18:69:01:85:c1:ba:3e: 79:2c:18:c5:a4:77:2d:8c:ab:16:48:06:7f:75:7c: 9b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:0C:DE:A9:12:1C:6A:AA:3B:A5:C2:57:13:6F:B0:40:8D:C9:04:12 X509v3 Authority Key Identifier: keyid:DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/3130332e33362e35332e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.36.53.0/24 Signature Algorithm: sha256WithRSAEncryption 45:62:ff:9c:39:1a:82:3d:ee:72:74:d8:a2:47:0a:fd:db:47: c3:f3:53:2e:c6:21:59:ef:3f:62:d3:35:e3:d0:e4:1d:88:a2: 2c:85:0a:31:32:06:a1:d1:8e:bd:da:86:e2:44:a1:00:ce:f6: de:d7:67:8a:cf:00:e5:29:c0:da:e4:ad:c4:46:d7:aa:33:61: 5f:61:96:6d:68:44:ed:3d:34:87:c7:5c:4a:77:04:29:29:97: 62:96:04:28:2e:6a:04:52:18:6e:cf:c7:d4:f3:d7:d3:7f:8f: 87:15:79:82:7b:32:ec:1e:6e:4e:38:cc:a0:9e:20:5a:1e:e5: 3d:66:d3:87:a4:c5:98:c4:3d:3a:ff:b9:55:76:ba:0e:2e:62: bc:42:72:0c:41:aa:c6:97:6d:23:2d:30:0d:20:1b:a7:8b:23: 42:2f:e3:a4:70:72:5d:6d:16:f7:f4:30:32:16:69:17:97:13: 82:ee:9c:86:30:3c:5f:b6:46:72:1d:3f:44:7c:90:2c:14:6a: fe:33:d6:55:ab:e1:86:7b:f9:34:1d:5a:24:66:1e:a1:39:b1: 03:5e:cc:06:a3:77:63:77:06:a7:f8:e9:0f:4d:c5:e4:14:81: d8:cb:29:98:59:e2:77:b1:69:93:c1:bf:bc:dd:42:60:3d:51: 52:7f:03:c3 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUJ3HgD03EPfw4+Ref1jZNWiWnrCkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4 OUVFODE5QzAeFw0yNDA5MjQxNjU1MDBaFw0yNTA5MjMxNzAwMDBaMDMxMTAvBgNV BAMTKEM3MENERUE5MTIxQzZBQUEzQkE1QzI1NzEzNkZCMDQwOERDOTA0MTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQd260ePCQoN721qe06neBRK45 l4LDQhXiok9P/qwy75XmC7KQGPgYOV6Cbn6SUGOsGd9z8PAG9wzPNyABYax06mXE pIVgLvEacu6KQCo6xN/VZSXYO1mXoHGNYctiVQIR/c179EEPrs+r6AvafQB2KjHJ 4I1Nb1u+v/EDcnQVSg5PwR32V66S3zzn5upLDuj8Ppju+sbQ55lrbJEDD8LXnvI2 gMSSoQA/uU1vDIh5djClqx3rUBm50RvSwjwwzlTvc4XrRH6btBSZ8Gm3M446NEgf 7Bk0vUv610VZQup9g1ecizW1lZNDGGkBhcG6PnksGMWkdy2MqxZIBn91fJv9AgMB AAGjggItMIICKTAdBgNVHQ4EFgQUxwzeqRIcaqo7pcJXE2+wQI3JBBIwHwYDVR0j BBgwFoAU3WjJjVGcyNYk9mSwJq65sonugZwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDQzYTg4OS1jODYxLTRkMjktOWQ3Ny05MjNkOTI3ZTc2MzQvMC9ERDY4Qzk4RDUx OUNDOEQ2MjRGNjY0QjAyNkFFQjlCMjg5RUU4MTlDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4OUVF ODE5Qy5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDA0M2E4ODktYzg2MS00ZDI5LTlk NzctOTIzZDkyN2U3NjM0LzAvMzEzMDMzMmUzMzM2MmUzNTMzMmUzMDJmMzIzNDJk MzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnJDUwDQYJKoZIhvcNAQEL BQADggEBAEVi/5w5GoI97nJ02KJHCv3bR8PzUy7GIVnvP2LTNePQ5B2IoiyFCjEy BqHRjr3ahuJEoQDO9t7XZ4rPAOUpwNrkrcRG16ozYV9hlm1oRO09NIfHXEp3BCkp l2KWBCguagRSGG7Px9Tz19N/j4cVeYJ7Muwebk44zKCeIFoe5T1m04ekxZjEPTr/ uVV2ug4uYrxCcgxBqsaXbSMtMA0gG6eLI0Iv46Rwcl1tFvf0MDIWaReXE4LunIYw PF+2RnIdP0R8kCwUav4z1lWr4YZ7+TQdWiRmHqE5sQNezAajd2N3Bqf46Q9NxeQU gdjLKZhZ4nexaZPBv7zdQmA9UVJ/A8M= -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:44 2024 by rpki-client on console-fra.rpki-client.org