$ rpki-client -vvf repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/3130332e31392e3232382e302f32342d3234203d3e20313332363638.roa File: 3130332e31392e3232382e302f32342d3234203d3e20313332363638.roa (raw, json) Hash identifier: 2Tm0gdcz+myuN01m+Uce2N/XVde2LN8VW21KDbbagQI= Subject key identifier: CC:3D:CF:2D:38:F0:D7:63:FD:E1:AC:08:89:79:BA:0A:F6:CE:DF:F6 Certificate issuer: /CN=95966A8DB250307CF9852483F96922EE520F6E2A Certificate serial: 54ED108A3B00E0434AAE84B721317915244A4FF4 Authority key identifier: 95:96:6A:8D:B2:50:30:7C:F9:85:24:83:F9:69:22:EE:52:0F:6E:2A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/3130332e31392e3232382e302f32342d3234203d3e20313332363638.roa Signing time: Thu 08 Aug 2024 08:01:08 +0000 ROA not before: Thu 08 Aug 2024 07:56:08 +0000 ROA not after: Thu 07 Aug 2025 08:01:08 +0000 asID: 132668 IP address blocks: 103.19.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.crl rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:ed:10:8a:3b:00:e0:43:4a:ae:84:b7:21:31:79:15:24:4a:4f:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95966A8DB250307CF9852483F96922EE520F6E2A Validity Not Before: Aug 8 07:56:08 2024 GMT Not After : Aug 7 08:01:08 2025 GMT Subject: CN=CC3DCF2D38F0D763FDE1AC088979BA0AF6CEDFF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:db:4e:5c:bf:29:09:ed:4f:0f:1e:aa:de:cd: 73:f1:b5:04:da:38:f8:c2:7a:4c:6e:e9:e7:44:68: b4:4a:df:80:ea:27:c3:22:e1:19:e6:4d:71:cd:4b: 87:69:23:de:7c:0d:67:82:6d:8e:a2:67:0e:6c:31: 53:2b:85:c1:2b:86:7e:18:60:30:6e:59:d4:a2:cb: 32:50:83:6d:2a:0c:3d:44:3e:8b:20:c5:b5:7b:41: dc:cd:98:83:e7:77:c1:0f:d3:9b:52:9b:1f:74:d6: bb:2d:ae:6f:87:06:1a:03:f5:02:e0:21:4f:d2:d1: 54:8b:94:70:21:ab:04:21:b7:1c:c2:60:d4:34:15: 37:4c:d3:3b:c0:c6:c6:b9:cd:19:4f:99:55:52:96: 24:88:69:c1:10:34:81:c1:0a:c1:a6:9e:79:25:19: 7f:f7:a6:3f:6d:a2:fc:c3:58:59:18:12:f1:0b:f9: 68:f4:fe:dd:a9:82:3a:c4:4e:0e:1a:aa:30:be:f4: 79:b0:78:7c:1b:31:75:2d:28:97:0f:33:e5:97:27: 4c:b9:9c:a3:f8:35:d4:eb:4a:84:c8:5d:57:07:b4: c5:15:01:0e:09:be:28:cf:20:3a:30:98:b7:f5:f7: c6:80:b3:4d:9d:df:4a:bc:e0:e0:fe:4e:20:02:3d: 62:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:3D:CF:2D:38:F0:D7:63:FD:E1:AC:08:89:79:BA:0A:F6:CE:DF:F6 X509v3 Authority Key Identifier: keyid:95:96:6A:8D:B2:50:30:7C:F9:85:24:83:F9:69:22:EE:52:0F:6E:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/3130332e31392e3232382e302f32342d3234203d3e20313332363638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.228.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:a7:d9:df:34:4c:f4:4d:26:c1:61:a8:64:91:ed:9c:84:50: aa:a2:b1:39:ed:1f:28:2b:d8:23:7d:08:50:5a:95:85:e0:9b: 5f:3b:9c:94:85:97:4e:e6:ab:f8:ca:98:98:8f:bb:bb:2c:ac: 93:8c:c2:c6:5e:09:15:76:e4:ad:9d:77:db:dd:1a:23:c9:3f: b9:1b:c5:e4:38:04:0b:13:6c:4c:f4:9b:7c:53:cc:56:a4:71: ec:f4:7c:8a:f9:6f:21:59:26:77:e0:9f:bf:03:1a:45:98:b0: 04:99:b7:e9:79:34:33:30:b8:bd:5f:11:e9:53:24:43:dd:37: 22:96:46:3b:42:e6:5c:b0:47:06:34:8d:1a:8b:42:84:41:6f: 4a:56:15:1d:d5:94:ac:ef:0a:f7:34:2c:08:ed:4e:8f:70:49: f9:9f:f7:3d:83:10:df:d4:05:5f:a4:8d:e1:2a:2e:48:c5:ad: 26:81:e0:b4:60:c0:fb:4f:7c:f8:1d:f7:f6:cb:86:71:e2:cc: ef:28:9d:b3:90:fc:b7:d4:d9:94:41:82:e7:c5:c2:58:b6:0c: 5b:e4:e5:57:97:c3:f5:b1:5c:c7:92:74:15:af:f0:22:e1:1e: f6:6a:28:25:97:73:d1:05:09:36:07:f5:c7:0d:0b:9f:7b:dd: d3:b1:60:70 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVO0QijsA4ENKroS3ITF5FSRKT/QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU5NjZBOERCMjUwMzA3Q0Y5ODUyNDgzRjk2OTIyRUU1 MjBGNkUyQTAeFw0yNDA4MDgwNzU2MDhaFw0yNTA4MDcwODAxMDhaMDMxMTAvBgNV BAMTKENDM0RDRjJEMzhGMEQ3NjNGREUxQUMwODg5NzlCQTBBRjZDRURGRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX205cvykJ7U8PHqrezXPxtQTa OPjCekxu6edEaLRK34DqJ8Mi4RnmTXHNS4dpI958DWeCbY6iZw5sMVMrhcErhn4Y YDBuWdSiyzJQg20qDD1EPosgxbV7QdzNmIPnd8EP05tSmx901rstrm+HBhoD9QLg IU/S0VSLlHAhqwQhtxzCYNQ0FTdM0zvAxsa5zRlPmVVSliSIacEQNIHBCsGmnnkl GX/3pj9tovzDWFkYEvEL+Wj0/t2pgjrETg4aqjC+9HmweHwbMXUtKJcPM+WXJ0y5 nKP4NdTrSoTIXVcHtMUVAQ4JvijPIDowmLf198aAs02d30q84OD+TiACPWIpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzD3PLTjw12P94awIiXm6CvbO3/YwHwYDVR0j BBgwFoAUlZZqjbJQMHz5hSSD+Wki7lIPbiowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MmYxNDE3YS01NzE4LTQwNzEtOWYzNS1jMTIyNTU1ZGFjN2EvMC85NTk2NkE4REIy NTAzMDdDRjk4NTI0ODNGOTY5MjJFRTUyMEY2RTJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTU5NjZBOERCMjUwMzA3Q0Y5ODUyNDgzRjk2OTIyRUU1MjBG NkUyQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyZjE0MTdhLTU3MTgtNDA3MS05 ZjM1LWMxMjI1NTVkYWM3YS8wLzMxMzAzMzJlMzEzOTJlMzIzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMyMzYzNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxPkMA0GCSqG SIb3DQEBCwUAA4IBAQB+p9nfNEz0TSbBYahkke2chFCqorE57R8oK9gjfQhQWpWF 4JtfO5yUhZdO5qv4ypiYj7u7LKyTjMLGXgkVduStnXfb3RojyT+5G8XkOAQLE2xM 9Jt8U8xWpHHs9HyK+W8hWSZ34J+/AxpFmLAEmbfpeTQzMLi9XxHpUyRD3TcilkY7 QuZcsEcGNI0ai0KEQW9KVhUd1ZSs7wr3NCwI7U6PcEn5n/c9gxDf1AVfpI3hKi5I xa0mgeC0YMD7T3z4Hff2y4Zx4szvKJ2zkPy31NmUQYLnxcJYtgxb5OVXl8P1sVzH knQVr/Ai4R72aigll3PRBQk2B/XHDQufe93TsWBw -----END CERTIFICATE-----Generated at Tue Nov 26 02:25:09 2024 by rpki-client on console-ams.rpki-client.org