$ rpki-client -vvf repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/3130332e35322e36302e302f32342d3234203d3e20313338383831.roa File: 3130332e35322e36302e302f32342d3234203d3e20313338383831.roa (raw, json) Hash identifier: 8aTJRu9foQFYsb9vuOMv9v2Z6K/Xnx4JbU5S1Q47rNw= Subject key identifier: 01:89:46:AD:08:CB:29:86:32:BE:B7:0A:D0:F6:44:89:1B:76:4F:C8 Certificate issuer: /CN=A17DC55845B70106CEB3A498496454BE640F44AB Certificate serial: 7E8AF40B1AD6F2256A4EFF8C2F390920241021B5 Authority key identifier: A1:7D:C5:58:45:B7:01:06:CE:B3:A4:98:49:64:54:BE:64:0F:44:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A17DC55845B70106CEB3A498496454BE640F44AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/3130332e35322e36302e302f32342d3234203d3e20313338383831.roa Signing time: Wed 09 Oct 2024 07:00:01 +0000 ROA not before: Wed 09 Oct 2024 06:55:01 +0000 ROA not after: Wed 08 Oct 2025 07:00:01 +0000 asID: 138881 IP address blocks: 103.52.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/A17DC55845B70106CEB3A498496454BE640F44AB.crl rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/A17DC55845B70106CEB3A498496454BE640F44AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A17DC55845B70106CEB3A498496454BE640F44AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:8a:f4:0b:1a:d6:f2:25:6a:4e:ff:8c:2f:39:09:20:24:10:21:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A17DC55845B70106CEB3A498496454BE640F44AB Validity Not Before: Oct 9 06:55:01 2024 GMT Not After : Oct 8 07:00:01 2025 GMT Subject: CN=018946AD08CB298632BEB70AD0F644891B764FC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:be:5a:9a:31:68:ce:07:5d:38:c7:34:15:a0: 19:82:93:fa:b6:69:ae:62:d0:6c:76:57:2c:14:d1: e6:66:6d:71:f7:f6:f7:d1:0a:87:d9:e7:b4:3e:75: cd:62:9d:68:2d:e5:ae:aa:9d:47:38:5c:48:a6:bd: ab:bc:8d:9f:e9:1c:52:2e:1b:ff:07:83:70:70:6a: 88:f8:42:11:9f:a3:73:6a:17:dc:fa:40:69:d7:64: 3c:f8:4c:1e:ee:d5:c9:8f:4b:56:40:0f:1a:b1:14: 64:47:18:6c:22:dd:98:19:9e:59:d7:55:c0:0f:be: d6:1f:97:1b:76:95:ad:af:f1:d1:00:5a:98:bb:b9: b5:ed:79:dd:c8:4d:fa:05:c0:b9:42:b5:c3:ad:50: 0a:a1:df:12:eb:3b:85:63:d0:0f:cd:70:86:a3:38: 19:21:06:09:0b:e1:4b:e8:61:cd:c0:a0:c1:fd:38: 19:1f:23:26:58:d0:34:25:d4:67:f2:2c:ab:f8:47: 9f:25:20:0e:43:d2:e2:26:b3:44:ab:1a:65:d9:1c: 17:4f:8a:35:8a:77:e9:cd:f7:71:9c:70:3f:6d:94: ad:2b:76:85:c9:70:c6:b4:9d:07:7a:8e:68:1e:24: fe:8d:15:dc:71:0c:83:f5:a3:99:25:32:80:83:6d: 47:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:89:46:AD:08:CB:29:86:32:BE:B7:0A:D0:F6:44:89:1B:76:4F:C8 X509v3 Authority Key Identifier: keyid:A1:7D:C5:58:45:B7:01:06:CE:B3:A4:98:49:64:54:BE:64:0F:44:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/A17DC55845B70106CEB3A498496454BE640F44AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A17DC55845B70106CEB3A498496454BE640F44AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/3130332e35322e36302e302f32342d3234203d3e20313338383831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.52.60.0/24 Signature Algorithm: sha256WithRSAEncryption 49:a3:82:66:a0:7c:2c:1d:5f:00:36:1f:60:77:c6:16:90:4e: 1e:8d:29:60:d3:90:93:78:7f:a7:08:4b:29:91:c8:40:bf:01: 80:a6:11:c7:07:07:5b:91:06:6a:92:5d:a6:24:4f:f3:d0:93: d9:4e:7d:44:1b:44:28:2e:c6:64:c6:c6:a0:b5:6e:08:79:88: 4e:82:d1:15:25:dc:98:74:b9:06:37:7e:c8:ae:47:f3:1a:49: ca:b9:03:d8:c0:11:9b:7f:fa:a6:7e:ef:1d:8b:e8:8e:dc:41: f8:f1:76:64:cb:d2:fd:f4:12:59:f5:c8:62:88:21:58:b5:a7: 01:0e:7f:a3:7d:d7:ab:80:3c:a8:ae:6f:89:5d:6b:e2:c6:4d: 3e:71:a4:ac:09:36:e4:d0:ac:36:37:3b:81:8a:dd:cc:bc:2c: 45:c9:34:3e:d5:25:5a:b8:c4:5a:14:d3:83:04:1f:d3:5b:1a: 87:2a:19:31:cc:00:2e:56:e5:c3:4e:bd:3e:25:70:f8:f9:0c: 53:02:5a:e4:a3:7d:ef:c8:76:33:30:8a:b2:da:81:26:10:23: cc:ef:a0:f8:ed:12:25:df:33:17:02:7b:43:37:c8:14:59:39: 3a:0c:e9:8d:cc:d7:be:73:0f:cf:21:70:3f:e6:25:b0:2d:a7: aa:81:20:58 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfor0CxrW8iVqTv+MLzkJICQQIbUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTE3REM1NTg0NUI3MDEwNkNFQjNBNDk4NDk2NDU0QkU2 NDBGNDRBQjAeFw0yNDEwMDkwNjU1MDFaFw0yNTEwMDgwNzAwMDFaMDMxMTAvBgNV BAMTKDAxODk0NkFEMDhDQjI5ODYzMkJFQjcwQUQwRjY0NDg5MUI3NjRGQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdvlqaMWjOB104xzQVoBmCk/q2 aa5i0Gx2VywU0eZmbXH39vfRCofZ57Q+dc1inWgt5a6qnUc4XEimvau8jZ/pHFIu G/8Hg3Bwaoj4QhGfo3NqF9z6QGnXZDz4TB7u1cmPS1ZADxqxFGRHGGwi3ZgZnlnX VcAPvtYflxt2la2v8dEAWpi7ubXted3ITfoFwLlCtcOtUAqh3xLrO4Vj0A/NcIaj OBkhBgkL4UvoYc3AoMH9OBkfIyZY0DQl1GfyLKv4R58lIA5D0uIms0SrGmXZHBdP ijWKd+nN93GccD9tlK0rdoXJcMa0nQd6jmgeJP6NFdxxDIP1o5klMoCDbUcFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUAYlGrQjLKYYyvrcK0PZEiRt2T8gwHwYDVR0j BBgwFoAUoX3FWEW3AQbOs6SYSWRUvmQPRKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NjFiOGNjYy02YzIyLTQyNGUtOTYxNC04YWI4YWQyODg0OWMvMC9BMTdEQzU1ODQ1 QjcwMTA2Q0VCM0E0OTg0OTY0NTRCRTY0MEY0NEFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTE3REM1NTg0NUI3MDEwNkNFQjNBNDk4NDk2NDU0QkU2NDBG NDRBQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2MWI4Y2NjLTZjMjItNDI0ZS05 NjE0LThhYjhhZDI4ODQ5Yy8wLzMxMzAzMzJlMzUzMjJlMzYzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzODM4MzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc0PDANBgkqhkiG 9w0BAQsFAAOCAQEASaOCZqB8LB1fADYfYHfGFpBOHo0pYNOQk3h/pwhLKZHIQL8B gKYRxwcHW5EGapJdpiRP89CT2U59RBtEKC7GZMbGoLVuCHmIToLRFSXcmHS5Bjd+ yK5H8xpJyrkD2MARm3/6pn7vHYvojtxB+PF2ZMvS/fQSWfXIYoghWLWnAQ5/o33X q4A8qK5viV1r4sZNPnGkrAk25NCsNjc7gYrdzLwsRck0PtUlWrjEWhTTgwQf01sa hyoZMcwALlblw069PiVw+PkMUwJa5KN978h2MzCKstqBJhAjzO+g+O0SJd8zFwJ7 QzfIFFk5OgzpjczXvnMPzyFwP+YlsC2nqoEgWA== -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:55 2024 by rpki-client on console-ams.rpki-client.org