$ rpki-client -vvf repo-rpki.idnic.net/repo/d868cf22-d029-45e2-9e21-d9892d3af7a6/0/3130332e3133382e31302e302f32342d3234203d3e20313339393436.roa File: 3130332e3133382e31302e302f32342d3234203d3e20313339393436.roa (raw, json) Hash identifier: x0FyH+54tGVIHMkduN+M1I4U/hMtfVuXH222Qje9UQ4= Subject key identifier: 73:6E:F5:3D:DD:44:B4:F1:EE:BD:23:15:C7:C0:E2:67:72:3C:13:96 Certificate issuer: /CN=2D23C629ED956F1736B7DAECCD2AAF31C4F17C26 Certificate serial: 0772B3BC22941E4788B514730BAA6F883B08C5DE Authority key identifier: 2D:23:C6:29:ED:95:6F:17:36:B7:DA:EC:CD:2A:AF:31:C4:F1:7C:26 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D23C629ED956F1736B7DAECCD2AAF31C4F17C26.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d868cf22-d029-45e2-9e21-d9892d3af7a6/0/3130332e3133382e31302e302f32342d3234203d3e20313339393436.roa Signing time: Tue 01 Oct 2024 16:16:21 +0000 ROA not before: Tue 01 Oct 2024 16:11:21 +0000 ROA not after: Tue 30 Sep 2025 16:16:21 +0000 asID: 139946 IP address blocks: 103.138.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d868cf22-d029-45e2-9e21-d9892d3af7a6/0/2D23C629ED956F1736B7DAECCD2AAF31C4F17C26.crl rsync://repo-rpki.idnic.net/repo/d868cf22-d029-45e2-9e21-d9892d3af7a6/0/2D23C629ED956F1736B7DAECCD2AAF31C4F17C26.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D23C629ED956F1736B7DAECCD2AAF31C4F17C26.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:72:b3:bc:22:94:1e:47:88:b5:14:73:0b:aa:6f:88:3b:08:c5:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D23C629ED956F1736B7DAECCD2AAF31C4F17C26 Validity Not Before: Oct 1 16:11:21 2024 GMT Not After : Sep 30 16:16:21 2025 GMT Subject: CN=736EF53DDD44B4F1EEBD2315C7C0E267723C1396 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:c1:dc:31:77:5a:fa:26:72:58:aa:aa:df:9f: 12:83:0c:f2:49:d5:92:a3:68:8e:4e:11:75:54:a2: f2:c1:01:a8:65:92:70:c5:66:f0:ce:15:40:22:25: a1:18:88:71:de:5e:c3:3b:86:8d:d2:67:8e:34:17: ae:c5:85:e8:04:3a:ff:8c:d1:c8:cd:b3:d4:03:e3: b8:2e:c4:f6:8a:7c:a5:d2:bf:1b:42:a4:c6:0c:22: 33:e2:01:8d:7f:fe:2e:52:02:12:84:3d:1c:62:a6: c4:08:66:ce:1f:3b:37:2b:05:95:b1:4b:82:ab:e9: 21:09:a0:fe:af:a8:41:da:4e:5e:73:cc:f3:76:89: 5e:75:c8:ca:81:ea:11:17:84:1e:69:6c:c8:83:fb: 35:b2:40:32:e5:b4:d5:cb:65:4a:02:aa:21:12:2c: 67:b1:39:1a:07:8f:9e:cb:d8:da:0d:72:a2:51:a7: 97:94:ff:5f:28:fe:9f:e9:20:5b:40:67:7b:79:78: 23:b6:a7:3a:32:34:50:99:9f:aa:d9:6a:42:9b:94: 4b:68:bd:34:64:40:16:63:9a:e7:a8:f2:69:65:f1: 1c:32:0d:96:91:c2:05:00:22:74:e4:97:71:a7:59: c6:a2:3c:bc:2f:60:e1:09:d5:75:c7:52:1d:c0:cf: fe:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:6E:F5:3D:DD:44:B4:F1:EE:BD:23:15:C7:C0:E2:67:72:3C:13:96 X509v3 Authority Key Identifier: keyid:2D:23:C6:29:ED:95:6F:17:36:B7:DA:EC:CD:2A:AF:31:C4:F1:7C:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d868cf22-d029-45e2-9e21-d9892d3af7a6/0/2D23C629ED956F1736B7DAECCD2AAF31C4F17C26.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D23C629ED956F1736B7DAECCD2AAF31C4F17C26.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d868cf22-d029-45e2-9e21-d9892d3af7a6/0/3130332e3133382e31302e302f32342d3234203d3e20313339393436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.138.10.0/24 Signature Algorithm: sha256WithRSAEncryption 95:59:f8:3d:ed:8c:46:65:b3:a9:ce:ca:95:44:69:89:a3:a0: 06:fb:ca:b6:02:cb:af:e4:89:95:7b:b7:37:a8:f8:bb:8e:68: bb:8a:4d:5a:89:2c:9c:15:76:18:08:37:dd:7f:2b:80:44:7f: ce:60:f5:2e:b3:68:03:21:9d:52:39:ff:d3:0f:69:52:74:12: fc:db:7a:68:9e:ff:5d:7b:c9:19:d2:10:f8:95:d9:c0:e4:92: 34:25:71:f6:f1:ee:09:71:0a:46:a5:a9:f9:37:d5:23:94:78: cd:2d:9f:a4:19:d6:7f:82:e4:f7:35:91:d5:b5:82:e2:5b:16: ee:c5:63:e0:fd:48:f9:f2:93:0e:60:2d:dc:6e:fc:9d:51:cf: 9d:e1:bb:0b:f0:33:8b:df:79:48:6e:d4:30:a8:04:48:f1:4d: ad:5c:20:96:d4:c1:60:b6:dc:14:b4:4b:fd:27:10:85:bf:62: 95:fa:5b:cd:90:53:ff:ab:02:1f:60:fc:db:95:ac:37:48:ee: 49:54:9e:0d:e1:23:17:60:b4:cd:86:3f:1c:61:a0:71:63:44: 07:43:06:ee:67:72:34:99:66:e8:dc:78:b9:35:e9:be:4f:28: 73:66:35:d4:62:1a:63:b3:cc:52:6f:77:7a:34:58:f3:62:db: 7d:5b:5d:f6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUB3KzvCKUHkeItRRzC6pviDsIxd4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQyM0M2MjlFRDk1NkYxNzM2QjdEQUVDQ0QyQUFGMzFD NEYxN0MyNjAeFw0yNDEwMDExNjExMjFaFw0yNTA5MzAxNjE2MjFaMDMxMTAvBgNV BAMTKDczNkVGNTNEREQ0NEI0RjFFRUJEMjMxNUM3QzBFMjY3NzIzQzEzOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpwdwxd1r6JnJYqqrfnxKDDPJJ 1ZKjaI5OEXVUovLBAahlknDFZvDOFUAiJaEYiHHeXsM7ho3SZ440F67FhegEOv+M 0cjNs9QD47guxPaKfKXSvxtCpMYMIjPiAY1//i5SAhKEPRxipsQIZs4fOzcrBZWx S4Kr6SEJoP6vqEHaTl5zzPN2iV51yMqB6hEXhB5pbMiD+zWyQDLltNXLZUoCqiES LGexORoHj57L2NoNcqJRp5eU/18o/p/pIFtAZ3t5eCO2pzoyNFCZn6rZakKblEto vTRkQBZjmueo8mll8RwyDZaRwgUAInTkl3GnWcaiPLwvYOEJ1XXHUh3Az/7fAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUc271Pd1EtPHuvSMVx8DiZ3I8E5YwHwYDVR0j BBgwFoAULSPGKe2Vbxc2t9rszSqvMcTxfCYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ODY4Y2YyMi1kMDI5LTQ1ZTItOWUyMS1kOTg5MmQzYWY3YTYvMC8yRDIzQzYyOUVE OTU2RjE3MzZCN0RBRUNDRDJBQUYzMUM0RjE3QzI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQyM0M2MjlFRDk1NkYxNzM2QjdEQUVDQ0QyQUFGMzFDNEYx N0MyNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4NjhjZjIyLWQwMjktNDVlMi05 ZTIxLWQ5ODkyZDNhZjdhNi8wLzMxMzAzMzJlMzEzMzM4MmUzMTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4oKMA0GCSqG SIb3DQEBCwUAA4IBAQCVWfg97YxGZbOpzsqVRGmJo6AG+8q2Asuv5ImVe7c3qPi7 jmi7ik1aiSycFXYYCDfdfyuARH/OYPUus2gDIZ1SOf/TD2lSdBL823ponv9de8kZ 0hD4ldnA5JI0JXH28e4JcQpGpan5N9UjlHjNLZ+kGdZ/guT3NZHVtYLiWxbuxWPg /Uj58pMOYC3cbvydUc+d4bsL8DOL33lIbtQwqARI8U2tXCCW1MFgttwUtEv9JxCF v2KV+lvNkFP/qwIfYPzblaw3SO5JVJ4N4SMXYLTNhj8cYaBxY0QHQwbuZ3I0mWbo 3Hi5Nem+TyhzZjXUYhpjs8xSb3d6NFjzYtt9W132 -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:55 2024 by rpki-client on console-ams.rpki-client.org