$ rpki-client -vvf repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136362e302f32342d3234203d3e20313331373137.roa File: 3130332e32352e3136362e302f32342d3234203d3e20313331373137.roa (raw, json) Hash identifier: NOw/zlirvTqoOX6sm1/vix2ODTXn4yeECfZvuo38lBs= Subject key identifier: A8:CE:50:D0:A4:3B:38:CA:DE:3A:EE:D5:69:F1:62:26:26:C1:E2:FC Certificate issuer: /CN=882209E37356E0512FBE4E81B00E4F2481865087 Certificate serial: 50E376A6054F252B3AC71A516A81F2D465543E78 Authority key identifier: 88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136362e302f32342d3234203d3e20313331373137.roa Signing time: Mon 01 Jul 2024 01:02:44 +0000 ROA not before: Mon 01 Jul 2024 00:57:44 +0000 ROA not after: Mon 30 Jun 2025 01:02:44 +0000 asID: 131717 IP address blocks: 103.25.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:25:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:e3:76:a6:05:4f:25:2b:3a:c7:1a:51:6a:81:f2:d4:65:54:3e:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=882209E37356E0512FBE4E81B00E4F2481865087 Validity Not Before: Jul 1 00:57:44 2024 GMT Not After : Jun 30 01:02:44 2025 GMT Subject: CN=A8CE50D0A43B38CADE3AEED569F1622626C1E2FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:29:3e:4e:58:0f:61:d4:ef:c2:d4:6f:f9:04: e1:de:8a:b6:72:4b:3a:ec:43:ff:94:06:1a:44:27: c3:09:e4:6c:79:71:53:a9:e1:52:c2:9e:9f:fa:05: a9:a7:03:a3:71:55:eb:18:7c:8d:4b:ae:4e:c0:18: 03:f5:87:a2:95:de:58:bb:60:2a:a5:53:de:51:93: a0:b4:87:b3:10:1f:38:b1:6e:91:9e:3b:f1:10:af: ea:f1:3d:55:91:26:5e:86:91:4e:ad:c6:65:67:32: e6:e5:88:a4:25:de:8e:97:60:55:dd:be:92:e9:22: e4:c7:80:9c:b7:df:23:20:f4:50:ca:4c:8e:b1:b9: 76:af:46:ee:d5:69:0e:09:11:2c:c2:0d:ef:5f:7d: 2c:d1:a4:10:58:47:ee:3d:e5:92:e8:0f:f3:c5:ce: 28:61:9b:55:ef:98:87:7f:e4:e7:7e:30:2e:62:fc: fa:03:e1:cd:35:a6:f9:17:54:d5:a5:58:99:d8:f8: 16:6c:c0:f1:60:2a:a8:c5:b6:bf:1e:7a:1e:e7:ba: 17:ce:bf:d6:29:ba:fa:1f:e8:01:11:16:ef:b7:fc: 94:a4:b7:e8:c0:9a:cd:85:68:3c:b4:c9:d2:11:d3: db:9f:25:0e:70:1c:00:09:45:60:09:aa:ec:2f:85: 84:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:CE:50:D0:A4:3B:38:CA:DE:3A:EE:D5:69:F1:62:26:26:C1:E2:FC X509v3 Authority Key Identifier: keyid:88:22:09:E3:73:56:E0:51:2F:BE:4E:81:B0:0E:4F:24:81:86:50:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/882209E37356E0512FBE4E81B00E4F2481865087.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/882209E37356E0512FBE4E81B00E4F2481865087.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d07471a3-ee53-499c-9f2d-cf16b1e4a353/0/3130332e32352e3136362e302f32342d3234203d3e20313331373137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.25.166.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:31:8d:a7:5c:b3:39:11:10:02:51:d2:c6:a3:a4:a0:4f:51: 55:07:03:80:72:9f:97:28:b6:d6:70:52:d9:64:64:6d:46:39: 62:e5:09:de:fa:a8:b2:ae:c2:af:de:f7:78:0d:52:b4:3c:d2: bb:c6:6c:b7:a4:4f:e0:2d:f5:61:c3:ad:1a:da:e7:3e:24:62: 39:a4:9b:f2:ff:cc:98:ca:a1:13:f1:55:50:a2:ca:d2:fe:10: 49:70:ae:96:2f:f4:7b:98:05:a6:21:fe:a4:e7:99:71:7c:83: 4a:b1:18:55:0b:94:18:5c:a5:bb:6c:11:ea:d8:1f:10:76:c7: 44:d8:9c:ca:4b:a1:e3:80:ae:aa:3c:90:ec:1a:63:2d:bf:cd: f7:68:02:24:18:97:ca:c1:b7:24:33:6b:39:67:bb:38:87:62: c1:c4:db:9c:d7:ed:e8:0d:7b:ec:1d:8a:fb:3d:8c:6f:72:36: 50:88:5a:0b:61:3c:5e:02:9a:7b:60:5f:fb:18:5f:de:63:f8: ea:ee:45:ce:e5:a8:7b:6b:73:6b:9e:99:46:f3:b2:8f:f2:9a: 0d:f2:e9:3f:e3:5e:6e:cd:13:0e:77:c6:e9:ae:58:86:fc:7d: 1e:b1:da:fa:12:0e:99:d7:02:50:62:b2:65:60:cf:f2:32:3d: 86:d9:d5:10 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUON2pgVPJSs6xxpRaoHy1GVUPngwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4 MTg2NTA4NzAeFw0yNDA3MDEwMDU3NDRaFw0yNTA2MzAwMTAyNDRaMDMxMTAvBgNV BAMTKEE4Q0U1MEQwQTQzQjM4Q0FERTNBRUVENTY5RjE2MjI2MjZDMUUyRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDKT5OWA9h1O/C1G/5BOHeirZy SzrsQ/+UBhpEJ8MJ5Gx5cVOp4VLCnp/6BamnA6NxVesYfI1Lrk7AGAP1h6KV3li7 YCqlU95Rk6C0h7MQHzixbpGeO/EQr+rxPVWRJl6GkU6txmVnMubliKQl3o6XYFXd vpLpIuTHgJy33yMg9FDKTI6xuXavRu7VaQ4JESzCDe9ffSzRpBBYR+495ZLoD/PF zihhm1XvmId/5Od+MC5i/PoD4c01pvkXVNWlWJnY+BZswPFgKqjFtr8eeh7nuhfO v9Ypuvof6AERFu+3/JSkt+jAms2FaDy0ydIR09ufJQ5wHAAJRWAJquwvhYSbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqM5Q0KQ7OMreOu7VafFiJibB4vwwHwYDVR0j BBgwFoAUiCIJ43NW4FEvvk6BsA5PJIGGUIcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDc0NzFhMy1lZTUzLTQ5OWMtOWYyZC1jZjE2YjFlNGEzNTMvMC84ODIyMDlFMzcz NTZFMDUxMkZCRTRFODFCMDBFNEYyNDgxODY1MDg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODgyMjA5RTM3MzU2RTA1MTJGQkU0RTgxQjAwRTRGMjQ4MTg2 NTA4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNzQ3MWEzLWVlNTMtNDk5Yy05 ZjJkLWNmMTZiMWU0YTM1My8wLzMxMzAzMzJlMzIzNTJlMzEzNjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxmmMA0GCSqG SIb3DQEBCwUAA4IBAQAOMY2nXLM5ERACUdLGo6SgT1FVBwOAcp+XKLbWcFLZZGRt Rjli5Qne+qiyrsKv3vd4DVK0PNK7xmy3pE/gLfVhw60a2uc+JGI5pJvy/8yYyqET 8VVQosrS/hBJcK6WL/R7mAWmIf6k55lxfINKsRhVC5QYXKW7bBHq2B8QdsdE2JzK S6HjgK6qPJDsGmMtv833aAIkGJfKwbckM2s5Z7s4h2LBxNuc1+3oDXvsHYr7PYxv cjZQiFoLYTxeApp7YF/7GF/eY/jq7kXO5ah7a3NrnplG87KP8poN8uk/415uzRMO d8bprliG/H0esdr6Eg6Z1wJQYrJlYM/yMj2G2dUQ -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:38 2024 by rpki-client on console-ams.rpki-client.org