$ rpki-client -vvf repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/3130332e32332e32302e302f32322d3234203d3e203538333937.roa File: 3130332e32332e32302e302f32322d3234203d3e203538333937.roa (raw, json) Hash identifier: y/aRgAk/Ol217uqThdECq/g+tO93bdhzL10rqxPOy5s= Subject key identifier: B9:85:2E:A8:9A:9C:7C:DF:DE:95:C1:EC:3F:61:1C:AA:0D:58:EF:7C Certificate issuer: /CN=8A95FAF723EC129E336E75ACE1CD4F3094FB6481 Certificate serial: 58FEE5AFA3AC165291E9C72E3700A35695F5E5EA Authority key identifier: 8A:95:FA:F7:23:EC:12:9E:33:6E:75:AC:E1:CD:4F:30:94:FB:64:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/3130332e32332e32302e302f32322d3234203d3e203538333937.roa Signing time: Sat 09 Nov 2024 12:00:01 +0000 ROA not before: Sat 09 Nov 2024 11:55:01 +0000 ROA not after: Sat 08 Nov 2025 12:00:01 +0000 asID: 58397 IP address blocks: 103.23.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.crl rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:fe:e5:af:a3:ac:16:52:91:e9:c7:2e:37:00:a3:56:95:f5:e5:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A95FAF723EC129E336E75ACE1CD4F3094FB6481 Validity Not Before: Nov 9 11:55:01 2024 GMT Not After : Nov 8 12:00:01 2025 GMT Subject: CN=B9852EA89A9C7CDFDE95C1EC3F611CAA0D58EF7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:0f:a2:0e:93:e3:34:98:49:0c:cd:29:e9:41: 07:56:a7:25:95:54:bf:ae:92:83:c7:79:c1:c0:5a: 06:90:ad:54:14:46:fe:f9:c5:07:37:7b:77:6b:9b: 13:cf:cd:16:50:68:5d:4c:c2:29:fa:51:ed:d7:2e: 98:ad:5f:58:dd:53:2a:69:5b:de:8a:2e:65:e7:58: 3d:33:fb:a2:48:91:85:17:72:7a:9a:36:ef:0b:2c: 94:d1:71:f6:94:15:4b:79:34:bf:7c:e4:47:a0:cb: 8f:e2:06:e2:3a:03:b4:ce:9f:ca:5d:23:b5:8f:ef: a1:ee:a0:b7:e5:34:3d:cb:e6:cf:59:08:7f:4e:d6: f3:3d:f8:4a:e2:3c:24:5a:2c:d4:34:ff:a4:35:45: cf:ff:6c:4b:5c:5e:c3:43:4f:1b:87:1c:61:21:f6: b4:96:dc:4c:a5:1d:06:55:80:f8:e6:74:50:f5:33: 61:f2:b4:e1:79:71:8d:0e:91:97:a6:b8:c9:38:b4: 43:d0:6b:23:3e:bb:2f:42:10:c0:7a:c5:46:68:9a: 17:02:8b:65:38:3e:fe:ea:ff:35:02:39:a3:06:fe: 96:7e:4f:34:85:21:51:fb:bd:d1:45:0d:dd:50:a0: 23:2e:c2:40:ea:de:10:af:9e:c2:93:99:19:7d:6e: 53:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:85:2E:A8:9A:9C:7C:DF:DE:95:C1:EC:3F:61:1C:AA:0D:58:EF:7C X509v3 Authority Key Identifier: keyid:8A:95:FA:F7:23:EC:12:9E:33:6E:75:AC:E1:CD:4F:30:94:FB:64:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A95FAF723EC129E336E75ACE1CD4F3094FB6481.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8b98722-1cb4-40d4-ac8b-c3bca2bca217/0/3130332e32332e32302e302f32322d3234203d3e203538333937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.23.20.0/22 Signature Algorithm: sha256WithRSAEncryption 7b:fb:d8:2d:f4:49:14:d8:19:28:4b:e9:a4:90:72:83:85:82: 4b:be:a9:c6:0b:29:aa:30:c6:46:98:26:01:c5:09:ab:39:c1: 6b:37:0f:07:3d:52:00:24:e5:73:06:79:2e:db:30:0a:8a:3e: 92:d8:14:44:17:47:f7:1f:ee:4f:6d:52:b9:f5:49:ff:43:2e: 10:17:09:0a:9f:7c:ff:42:b0:dc:fa:6c:96:ac:02:80:1a:f1: 0a:e2:6a:5c:38:a2:57:87:40:ee:e5:64:14:ff:af:aa:3f:42: a1:39:c0:82:38:6a:b9:d7:bd:77:b8:35:c6:a7:42:4f:58:31: 76:05:95:3e:14:66:20:a2:5a:e8:30:80:a1:14:29:59:23:9a: 58:32:df:d9:46:55:a3:9d:77:8e:33:57:53:1e:53:ae:8f:05: 8a:51:05:86:c5:6f:24:e7:71:78:b7:48:ab:f3:b4:2c:1b:2f: 0e:a4:04:58:9b:c1:f5:e9:cc:68:f6:3a:19:62:83:e6:7a:a3: e5:3d:ce:26:96:e9:a8:f5:6d:af:81:3d:52:c4:53:85:13:6c: 9f:63:00:e2:37:27:b6:8f:bf:3e:bf:1b:f8:30:b3:58:c0:0a: 82:12:39:bc:d2:3b:92:ed:9a:95:44:34:2f:fc:c9:f4:74:58: 73:b5:b2:9c -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUWP7lr6OsFlKR6ccuNwCjVpX15eowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEE5NUZBRjcyM0VDMTI5RTMzNkU3NUFDRTFDRDRGMzA5 NEZCNjQ4MTAeFw0yNDExMDkxMTU1MDFaFw0yNTExMDgxMjAwMDFaMDMxMTAvBgNV BAMTKEI5ODUyRUE4OUE5QzdDREZERTk1QzFFQzNGNjExQ0FBMEQ1OEVGN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUD6IOk+M0mEkMzSnpQQdWpyWV VL+ukoPHecHAWgaQrVQURv75xQc3e3drmxPPzRZQaF1Mwin6Ue3XLpitX1jdUypp W96KLmXnWD0z+6JIkYUXcnqaNu8LLJTRcfaUFUt5NL985Eegy4/iBuI6A7TOn8pd I7WP76HuoLflND3L5s9ZCH9O1vM9+EriPCRaLNQ0/6Q1Rc//bEtcXsNDTxuHHGEh 9rSW3EylHQZVgPjmdFD1M2HytOF5cY0OkZemuMk4tEPQayM+uy9CEMB6xUZomhcC i2U4Pv7q/zUCOaMG/pZ+TzSFIVH7vdFFDd1QoCMuwkDq3hCvnsKTmRl9blNFAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUuYUuqJqcfN/elcHsP2Ecqg1Y73wwHwYDVR0j BBgwFoAUipX69yPsEp4zbnWs4c1PMJT7ZIEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGI5ODcyMi0xY2I0LTQwZDQtYWM4Yi1jM2JjYTJiY2EyMTcvMC84QTk1RkFGNzIz RUMxMjlFMzM2RTc1QUNFMUNENEYzMDk0RkI2NDgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEE5NUZBRjcyM0VDMTI5RTMzNkU3NUFDRTFDRDRGMzA5NEZC NjQ4MS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4Yjk4NzIyLTFjYjQtNDBkNC1h YzhiLWMzYmNhMmJjYTIxNy8wLzMxMzAzMzJlMzIzMzJlMzIzMDJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM1MzgzMzM5Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnFxQwDQYJKoZIhvcN AQELBQADggEBAHv72C30SRTYGShL6aSQcoOFgku+qcYLKaowxkaYJgHFCas5wWs3 Dwc9UgAk5XMGeS7bMAqKPpLYFEQXR/cf7k9tUrn1Sf9DLhAXCQqffP9CsNz6bJas AoAa8Qrialw4oleHQO7lZBT/r6o/QqE5wII4arnXvXe4NcanQk9YMXYFlT4UZiCi WugwgKEUKVkjmlgy39lGVaOdd44zV1MeU66PBYpRBYbFbyTncXi3SKvztCwbLw6k BFibwfXpzGj2Ohlig+Z6o+U9ziaW6aj1ba+BPVLEU4UTbJ9jAOI3J7aPvz6/G/gw s1jACoISObzSO5LtmpVENC/8yfR0WHO1spw= -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:15 2024 by rpki-client on console-ams.rpki-client.org