$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e31342e32302e302f32342d3234203d3e20313331373137.roa File: 3130332e31342e32302e302f32342d3234203d3e20313331373137.roa (raw, json) Hash identifier: y6nyZ4wEj4h4my4pTHsmLYPMQpLcieoKxLYPlH4EY2A= Subject key identifier: 03:A9:89:F1:F4:21:42:7F:A3:66:89:63:1E:C2:73:D3:C5:E0:4A:3F Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 4DBDC6D3AE7AB4E14E8AB0CC570F182EF6E9A4BA Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e31342e32302e302f32342d3234203d3e20313331373137.roa Signing time: Mon 01 Jul 2024 01:02:44 +0000 ROA not before: Mon 01 Jul 2024 00:57:44 +0000 ROA not after: Mon 30 Jun 2025 01:02:44 +0000 asID: 131717 IP address blocks: 103.14.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:25:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:bd:c6:d3:ae:7a:b4:e1:4e:8a:b0:cc:57:0f:18:2e:f6:e9:a4:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jul 1 00:57:44 2024 GMT Not After : Jun 30 01:02:44 2025 GMT Subject: CN=03A989F1F421427FA36689631EC273D3C5E04A3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ea:98:37:93:dc:bd:e5:3b:61:d4:bf:be:97: 59:3f:ad:77:f1:aa:9b:5e:e1:16:f6:88:7d:28:34: e0:33:c5:e3:ba:06:7d:04:43:43:29:64:86:4b:d9: c1:c0:69:3c:d8:d3:b8:0f:38:17:bf:d3:11:4e:d1: ab:39:5b:34:1c:ee:02:b5:52:45:48:30:fd:72:22: 22:19:14:27:bb:01:8e:af:a6:e8:d5:f0:46:c7:0e: a2:0c:25:64:67:61:f6:e0:6c:47:8c:73:3b:55:51: f0:86:cb:ce:6d:a6:04:30:9e:54:e3:2a:e1:52:27: f5:3d:9d:03:2d:85:4b:90:e3:8c:cd:98:ce:0b:19: 05:9b:ed:70:c7:8e:ba:5b:c3:6d:49:f1:bb:7e:0d: 4b:3f:ea:c9:25:ce:13:91:fd:fe:5c:26:62:85:d8: 59:1e:ef:2f:35:e9:f4:45:cd:dc:4a:55:e0:d5:56: ca:82:ae:1c:e4:73:78:bd:58:b2:3d:e2:b6:bf:e5: 49:73:12:27:1a:e1:e2:50:6a:ff:35:d9:ad:c4:a9: e6:7d:92:f6:8c:2c:b9:08:b0:a8:6e:06:16:3c:08: 9c:d3:86:79:ce:ae:1b:5f:38:df:0a:e9:88:b1:fc: 65:84:e6:50:d9:63:08:37:45:7e:b8:1b:19:c3:6b: dd:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:A9:89:F1:F4:21:42:7F:A3:66:89:63:1E:C2:73:D3:C5:E0:4A:3F X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e31342e32302e302f32342d3234203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.14.20.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:23:d8:1e:ab:2c:c1:5a:91:7b:ab:26:a2:96:dc:24:5c:8b: 38:fd:08:b3:0a:62:a7:51:c4:13:b4:35:e7:6d:c2:08:47:3b: 85:6d:5c:3f:a3:1c:fb:0c:2c:93:81:4e:0d:6e:eb:4f:36:b2: 32:4b:23:1e:f9:5e:3a:26:56:58:e8:b9:87:2b:2c:aa:5e:2e: 9c:8f:2b:6f:e0:d5:40:03:cd:0a:db:d3:a6:c1:f6:1b:33:0a: 42:47:b6:eb:b3:5b:3d:1b:32:0f:d7:c4:96:c5:17:00:76:3c: 6a:fa:3a:9b:1e:61:a5:96:52:70:bc:1f:d8:75:cf:bd:06:bd: 10:b3:37:08:3e:84:c7:f5:31:04:c9:7d:eb:32:88:59:b2:f7: e6:ae:7a:8a:8a:0a:09:10:5d:92:77:67:66:2a:7c:a7:6e:84: 94:cb:e6:1e:f4:12:c0:b8:9d:93:a0:a6:0a:c8:c2:bb:82:4b: f5:97:d8:02:20:1d:07:39:b1:7c:64:88:ff:10:1f:d9:e7:fa: 6a:f6:5b:63:8d:82:86:3c:33:3f:20:d2:df:dc:e7:78:50:00: 81:c5:0c:f4:4a:51:d6:fb:49:d6:bf:98:08:fb:c4:16:22:9d: 93:14:b2:c4:32:f0:be:63:df:b5:23:04:46:65:90:17:d9:a6: 02:0f:e3:cc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTb3G0656tOFOirDMVw8YLvbppLowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yNDA3MDEwMDU3NDRaFw0yNTA2MzAwMTAyNDRaMDMxMTAvBgNV BAMTKDAzQTk4OUYxRjQyMTQyN0ZBMzY2ODk2MzFFQzI3M0QzQzVFMDRBM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN6pg3k9y95Tth1L++l1k/rXfx qpte4Rb2iH0oNOAzxeO6Bn0EQ0MpZIZL2cHAaTzY07gPOBe/0xFO0as5WzQc7gK1 UkVIMP1yIiIZFCe7AY6vpujV8EbHDqIMJWRnYfbgbEeMcztVUfCGy85tpgQwnlTj KuFSJ/U9nQMthUuQ44zNmM4LGQWb7XDHjrpbw21J8bt+DUs/6sklzhOR/f5cJmKF 2Fke7y816fRFzdxKVeDVVsqCrhzkc3i9WLI94ra/5UlzEica4eJQav812a3EqeZ9 kvaMLLkIsKhuBhY8CJzThnnOrhtfON8K6Yix/GWE5lDZYwg3RX64GxnDa92dAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUA6mJ8fQhQn+jZoljHsJz08XgSj8wHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzMxMzAzMzJlMzEzNDJlMzIzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMTM3MzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcOFDANBgkqhkiG 9w0BAQsFAAOCAQEAWiPYHqsswVqRe6smopbcJFyLOP0Iswpip1HEE7Q1523CCEc7 hW1cP6Mc+wwsk4FODW7rTzayMksjHvleOiZWWOi5hyssql4unI8rb+DVQAPNCtvT psH2GzMKQke267NbPRsyD9fElsUXAHY8avo6mx5hpZZScLwf2HXPvQa9ELM3CD6E x/UxBMl96zKIWbL35q56iooKCRBdkndnZip8p26ElMvmHvQSwLidk6CmCsjCu4JL 9ZfYAiAdBzmxfGSI/xAf2ef6avZbY42ChjwzPyDS39zneFAAgcUM9EpR1vtJ1r+Y CPvEFiKdkxSyxDLwvmPftSMERmWQF9mmAg/jzA== -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:20 2024 by rpki-client on console-fra.rpki-client.org