$ rpki-client -vvf repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0/3130332e32322e39382e302f32342d3234203d3e20313530323433.roa File: 3130332e32322e39382e302f32342d3234203d3e20313530323433.roa (raw, json) Hash identifier: g9qsg71dBzNY6geBvVqGus+UjLu8X8PH3RYeBMs7PiQ= Subject key identifier: 67:CD:33:E8:B7:A3:F8:C6:22:0C:E3:4B:7A:4B:C4:78:68:0E:46:49 Certificate issuer: /CN=5DFC46925E2D4B3FB044F284111222A8B4C78392 Certificate serial: 4C1F55F3E9158C99F92D41D62F3D7C7DFD68D47F Authority key identifier: 5D:FC:46:92:5E:2D:4B:3F:B0:44:F2:84:11:12:22:A8:B4:C7:83:92 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DFC46925E2D4B3FB044F284111222A8B4C78392.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0/3130332e32322e39382e302f32342d3234203d3e20313530323433.roa Signing time: Tue 30 Jan 2024 06:40:26 +0000 ROA not before: Tue 30 Jan 2024 06:35:26 +0000 ROA not after: Tue 28 Jan 2025 06:40:26 +0000 asID: 150243 IP address blocks: 103.22.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0/5DFC46925E2D4B3FB044F284111222A8B4C78392.crl rsync://repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0/5DFC46925E2D4B3FB044F284111222A8B4C78392.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DFC46925E2D4B3FB044F284111222A8B4C78392.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:1f:55:f3:e9:15:8c:99:f9:2d:41:d6:2f:3d:7c:7d:fd:68:d4:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DFC46925E2D4B3FB044F284111222A8B4C78392 Validity Not Before: Jan 30 06:35:26 2024 GMT Not After : Jan 28 06:40:26 2025 GMT Subject: CN=67CD33E8B7A3F8C6220CE34B7A4BC478680E4649 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:aa:28:ff:a4:e0:ec:61:13:3a:6c:52:a0:4f: bd:66:6e:eb:a0:f5:86:38:d1:a1:8a:12:21:e5:a4: f2:f3:20:c9:04:59:00:35:fe:49:4f:73:b3:a7:ba: ab:59:6c:54:f4:ae:e7:e8:81:41:df:1b:b2:f6:ef: de:2e:35:00:00:2c:18:e8:a0:63:4c:cd:cf:e0:e4: 02:a7:b0:a0:9f:4b:19:bb:44:d3:94:f3:8b:8d:a4: e2:ed:b0:49:b7:9f:5a:d7:f8:6e:31:d3:19:64:62: ef:26:b2:bb:bf:5a:f8:0b:3d:34:c3:17:1c:29:0d: 78:b5:e5:50:4b:ee:0a:15:55:d7:bd:d5:b1:ba:4b: 10:82:02:8b:27:5c:ff:27:8b:00:d7:ee:29:ab:e5: 58:06:c2:57:4b:f5:db:b8:7a:f0:0f:36:a8:03:83: 0c:92:41:36:34:9b:05:1e:e9:96:cc:cf:03:77:e1: 3c:cf:71:7a:a3:ec:29:59:31:93:59:62:46:24:55: f0:b8:91:1c:24:6a:b0:e7:26:11:41:33:1f:2a:2a: 60:b2:e0:fa:9f:da:91:a9:f2:65:4f:66:d1:48:91: b0:21:8d:8a:5f:c9:9b:0f:dc:c7:a5:55:e7:e8:4f: 25:88:ce:60:53:78:0e:20:c7:84:06:83:44:97:3b: 39:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:CD:33:E8:B7:A3:F8:C6:22:0C:E3:4B:7A:4B:C4:78:68:0E:46:49 X509v3 Authority Key Identifier: keyid:5D:FC:46:92:5E:2D:4B:3F:B0:44:F2:84:11:12:22:A8:B4:C7:83:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0/5DFC46925E2D4B3FB044F284111222A8B4C78392.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DFC46925E2D4B3FB044F284111222A8B4C78392.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0/3130332e32322e39382e302f32342d3234203d3e20313530323433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.22.98.0/24 Signature Algorithm: sha256WithRSAEncryption 25:f7:51:40:22:c0:1b:8b:1b:30:e0:b3:40:10:e9:3d:ea:92: 37:23:20:3f:54:10:d8:0f:2a:b5:cf:95:e1:2c:94:af:95:c6: 59:fd:08:17:2b:a6:92:62:7c:81:85:89:7c:c8:5f:9d:f5:a2: c5:ee:01:f4:1d:a9:59:44:0a:a1:d1:8e:9d:cb:db:7f:cd:b5: 2e:96:80:f1:39:46:01:a0:9b:04:d8:a0:a3:f7:cb:22:eb:bf: d2:be:8d:78:3b:7d:df:54:ce:40:c3:24:9b:c6:a7:ac:7d:53: 22:69:64:2b:8b:c6:d2:01:15:9b:98:1f:65:22:28:b7:0b:b3: 90:f2:cd:ac:dc:70:60:84:16:12:91:96:4b:29:56:b9:e8:6a: 4e:d3:1e:43:ca:e6:f2:41:fa:05:cb:36:5d:ac:36:5f:94:77: 5c:5b:58:96:d7:f1:d7:1c:59:1d:9e:fb:82:a9:ac:01:16:7c: c7:29:09:dc:88:67:3b:02:f1:22:32:25:e7:3c:cd:b3:1c:d1: 9a:7c:7d:dd:58:4e:55:c7:bc:d4:7c:17:be:e8:23:f8:10:81: 16:fe:af:17:3b:22:69:2d:08:3d:3c:e5:18:10:15:39:55:d9: 7d:c3:f9:24:52:4a:db:cb:75:4b:0b:cf:4a:0f:b2:96:6e:ed: 6a:5b:26:f4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTB9V8+kVjJn5LUHWLz18ff1o1H8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGQzQ2OTI1RTJENEIzRkIwNDRGMjg0MTExMjIyQThC NEM3ODM5MjAeFw0yNDAxMzAwNjM1MjZaFw0yNTAxMjgwNjQwMjZaMDMxMTAvBgNV BAMTKDY3Q0QzM0U4QjdBM0Y4QzYyMjBDRTM0QjdBNEJDNDc4NjgwRTQ2NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPqij/pODsYRM6bFKgT71mbuug 9YY40aGKEiHlpPLzIMkEWQA1/klPc7OnuqtZbFT0rufogUHfG7L2794uNQAALBjo oGNMzc/g5AKnsKCfSxm7RNOU84uNpOLtsEm3n1rX+G4x0xlkYu8msru/WvgLPTTD FxwpDXi15VBL7goVVde91bG6SxCCAosnXP8niwDX7imr5VgGwldL9du4evAPNqgD gwySQTY0mwUe6ZbMzwN34TzPcXqj7ClZMZNZYkYkVfC4kRwkarDnJhFBMx8qKmCy 4Pqf2pGp8mVPZtFIkbAhjYpfyZsP3MelVefoTyWIzmBTeA4gx4QGg0SXOzmDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZ80z6Lej+MYiDONLekvEeGgORkkwHwYDVR0j BBgwFoAUXfxGkl4tSz+wRPKEERIiqLTHg5IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NzAxYjI3Ny1jODBjLTQ1ZDUtODA4OS1hOWVmYTM0MDU0MmEvMC81REZDNDY5MjVF MkQ0QjNGQjA0NEYyODQxMTEyMjJBOEI0Qzc4MzkyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNURGQzQ2OTI1RTJENEIzRkIwNDRGMjg0MTExMjIyQThCNEM3 ODM5Mi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3MDFiMjc3LWM4MGMtNDVkNS04 MDg5LWE5ZWZhMzQwNTQyYS8wLzMxMzAzMzJlMzIzMjJlMzkzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcWYjANBgkqhkiG 9w0BAQsFAAOCAQEAJfdRQCLAG4sbMOCzQBDpPeqSNyMgP1QQ2A8qtc+V4SyUr5XG Wf0IFyumkmJ8gYWJfMhfnfWixe4B9B2pWUQKodGOncvbf821LpaA8TlGAaCbBNig o/fLIuu/0r6NeDt931TOQMMkm8anrH1TImlkK4vG0gEVm5gfZSIotwuzkPLNrNxw YIQWEpGWSylWuehqTtMeQ8rm8kH6Bcs2Xaw2X5R3XFtYltfx1xxZHZ77gqmsARZ8 xykJ3IhnOwLxIjIl5zzNsxzRmnx93VhOVce81HwXvugj+BCBFv6vFzsiaS0IPTzl GBAVOVXZfcP5JFJK28t1SwvPSg+ylm7talsm9A== -----END CERTIFICATE-----Generated at Sat Nov 23 21:51:28 2024 by rpki-client on console-fra.rpki-client.org