$ rpki-client -vvf repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230352e302f32342d3234203d3e20313336383639.roa File: 3130332e3130342e3230352e302f32342d3234203d3e20313336383639.roa (raw, json) Hash identifier: iNjcB0kWnopXWaRjUuHXoGmYpnB3R6bix+q7nd5LKus= Subject key identifier: 98:4F:77:3F:3E:66:C3:65:32:A0:FE:CE:4A:15:4E:D8:C9:53:29:7A Certificate issuer: /CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Certificate serial: 4F3B8050A60A3198FB76FB5E2AC9E750BCB4C1AF Authority key identifier: D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230352e302f32342d3234203d3e20313336383639.roa Signing time: Mon 01 Jul 2024 01:04:50 +0000 ROA not before: Mon 01 Jul 2024 00:59:50 +0000 ROA not after: Mon 30 Jun 2025 01:04:50 +0000 asID: 136869 IP address blocks: 103.104.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 04:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:3b:80:50:a6:0a:31:98:fb:76:fb:5e:2a:c9:e7:50:bc:b4:c1:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Validity Not Before: Jul 1 00:59:50 2024 GMT Not After : Jun 30 01:04:50 2025 GMT Subject: CN=984F773F3E66C36532A0FECE4A154ED8C953297A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:27:c6:77:4c:a2:10:4d:6a:f2:90:5c:fb:f0: b9:9f:3b:9d:a2:40:0e:3d:bf:d0:8e:12:47:c1:f6: 7c:d2:85:d3:1b:e2:39:cd:a7:e4:53:63:07:e3:b4: 3a:79:bb:a8:2f:15:6b:be:c5:fb:57:2d:e2:19:b8: 14:6e:46:c8:f6:95:2a:8f:87:6c:7f:1f:2b:0b:e0: f1:75:97:2b:22:77:18:73:74:21:ea:2e:3a:5d:6b: d0:0d:2b:c6:1d:ba:70:d3:36:12:68:68:68:23:ff: 5a:46:7a:6c:86:30:f5:50:c6:29:f2:43:b4:ab:32: c7:c6:b5:11:2f:27:a1:01:7f:b2:6b:92:8b:7f:1f: ee:17:b3:82:2f:29:83:ad:fd:7e:a7:5a:03:bb:ba: ab:c0:4f:59:3d:24:a0:01:2a:14:fb:1a:08:1b:a9: 75:8d:86:4e:6b:a6:68:5f:a6:25:02:74:0f:a2:6b: d8:b5:55:1d:98:ab:4a:58:0a:a4:46:74:8f:14:30: 14:e1:29:23:32:3e:d4:da:ee:78:fd:70:87:8b:0f: 40:b2:7d:45:50:26:56:c8:33:34:23:a2:8e:22:cd: 39:c0:66:29:8b:f3:61:1a:f7:f9:33:f4:bc:24:b7: d3:35:ec:77:5a:4e:ec:7b:62:82:67:92:a1:87:31: 21:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:4F:77:3F:3E:66:C3:65:32:A0:FE:CE:4A:15:4E:D8:C9:53:29:7A X509v3 Authority Key Identifier: keyid:D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230352e302f32342d3234203d3e20313336383639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.104.205.0/24 Signature Algorithm: sha256WithRSAEncryption 64:98:36:1c:88:ae:36:be:0c:e3:56:d6:a2:7a:0e:22:75:76: bb:4c:79:de:33:e5:e6:0d:ed:02:6b:bb:c1:a1:0e:e1:45:19: 58:4b:a3:51:8c:5b:9c:9d:c8:5a:ae:91:f7:1a:10:56:a4:f8: 19:46:52:dd:3c:23:13:fd:e1:f0:92:c8:bb:a4:4f:76:7c:c5: 20:84:7d:e2:e3:19:2c:f8:19:ca:18:e9:d2:65:4f:e9:68:68: a7:65:97:0a:66:7b:4c:2c:45:9c:10:e4:96:56:5e:00:cc:56: 78:81:02:8b:f3:1b:1c:b2:8d:f9:db:81:b8:57:c6:26:02:4b: eb:20:40:5e:0c:97:8f:a6:64:ec:02:33:91:c5:15:1e:6c:66: 95:a7:cd:a3:46:14:a3:3d:db:f5:5e:09:9b:76:1d:84:3d:41: 87:65:54:24:1c:19:b5:8e:1e:4f:97:2d:34:85:c4:4d:58:45: ca:02:aa:d3:cc:73:1f:53:8b:fe:26:28:99:6a:fc:a3:76:08: e2:30:d5:cd:f0:21:4a:be:41:46:21:18:3a:3f:65:d0:4b:b4: 5b:18:f2:cd:58:36:c6:a5:26:7e:81:d1:94:5a:13:a4:cb:9e: 91:90:41:f0:ab:ca:e1:d7:75:9d:3f:f1:e7:ba:48:bd:c7:55: 6c:23:24:38 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTzuAUKYKMZj7dvteKsnnULy0wa8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRB M0UxMkQyMzAeFw0yNDA3MDEwMDU5NTBaFw0yNTA2MzAwMTA0NTBaMDMxMTAvBgNV BAMTKDk4NEY3NzNGM0U2NkMzNjUzMkEwRkVDRTRBMTU0RUQ4Qzk1MzI5N0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZJ8Z3TKIQTWrykFz78LmfO52i QA49v9COEkfB9nzShdMb4jnNp+RTYwfjtDp5u6gvFWu+xftXLeIZuBRuRsj2lSqP h2x/HysL4PF1lysidxhzdCHqLjpda9ANK8YdunDTNhJoaGgj/1pGemyGMPVQxiny Q7SrMsfGtREvJ6EBf7Jrkot/H+4Xs4IvKYOt/X6nWgO7uqvAT1k9JKABKhT7Gggb qXWNhk5rpmhfpiUCdA+ia9i1VR2Yq0pYCqRGdI8UMBThKSMyPtTa7nj9cIeLD0Cy fUVQJlbIMzQjoo4izTnAZimL82Ea9/kz9Lwkt9M17HdaTux7YoJnkqGHMSEfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUmE93Pz5mw2UyoP7OShVO2MlTKXowHwYDVR0j BBgwFoAU0u8h29VFJVvtMO7DRiPyBKPhLSMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjMxZTZiMS0xODQxLTQ3NmQtYjQ2Yi1iNDRiOWNiOTY4YjAvMC9EMkVGMjFEQkQ1 NDUyNTVCRUQzMEVFQzM0NjIzRjIwNEEzRTEyRDIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRBM0Ux MkQyMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyMzFlNmIxLTE4NDEtNDc2ZC1i NDZiLWI0NGI5Y2I5NjhiMC8wLzMxMzAzMzJlMzEzMDM0MmUzMjMwMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnaM0wDQYJ KoZIhvcNAQELBQADggEBAGSYNhyIrja+DONW1qJ6DiJ1drtMed4z5eYN7QJru8Gh DuFFGVhLo1GMW5ydyFqukfcaEFak+BlGUt08IxP94fCSyLukT3Z8xSCEfeLjGSz4 GcoY6dJlT+loaKdllwpme0wsRZwQ5JZWXgDMVniBAovzGxyyjfnbgbhXxiYCS+sg QF4Ml4+mZOwCM5HFFR5sZpWnzaNGFKM92/VeCZt2HYQ9QYdlVCQcGbWOHk+XLTSF xE1YRcoCqtPMcx9Ti/4mKJlq/KN2COIw1c3wIUq+QUYhGDo/ZdBLtFsY8s1YNsal Jn6B0ZRaE6TLnpGQQfCryuHXdZ0/8ee6SL3HVWwjJDg= -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:49 2024 by rpki-client on console-ams.rpki-client.org