$ rpki-client -vvf repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139392e302f32342d3234203d3e20313530343937.roa File: 3130332e35382e3139392e302f32342d3234203d3e20313530343937.roa (raw, json) Hash identifier: nepxzQwvJ312nV9iZgEKlOIPKHQAkqWcvRmCemfI68k= Subject key identifier: F2:83:26:DE:03:55:04:8E:CF:76:DD:3F:05:28:4B:D6:5F:F4:73:00 Certificate issuer: /CN=65E29AACDF8556B440C4D7180F51C447FFE5238F Certificate serial: 7AC0426C43817B298348397CE64A46FA5E8767FB Authority key identifier: 65:E2:9A:AC:DF:85:56:B4:40:C4:D7:18:0F:51:C4:47:FF:E5:23:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139392e302f32342d3234203d3e20313530343937.roa Signing time: Tue 13 Aug 2024 10:00:00 +0000 ROA not before: Tue 13 Aug 2024 09:55:00 +0000 ROA not after: Tue 12 Aug 2025 10:00:00 +0000 asID: 150497 IP address blocks: 103.58.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.crl rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 06:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:c0:42:6c:43:81:7b:29:83:48:39:7c:e6:4a:46:fa:5e:87:67:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65E29AACDF8556B440C4D7180F51C447FFE5238F Validity Not Before: Aug 13 09:55:00 2024 GMT Not After : Aug 12 10:00:00 2025 GMT Subject: CN=F28326DE0355048ECF76DD3F05284BD65FF47300 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e9:f7:61:29:02:aa:e3:f1:43:4e:c1:c1:b3: 17:50:6b:68:b9:61:a5:f3:08:01:f7:18:8c:e9:26: 67:e4:e1:e2:c2:a1:85:1e:a8:2d:24:27:eb:91:0c: b9:10:36:09:64:d2:24:76:25:f0:8d:c6:ed:80:2d: e8:09:4e:77:35:22:c9:8c:0a:c7:42:43:6f:f6:f8: 27:78:ef:d0:f8:93:e0:c9:05:d8:8c:9a:b9:8c:93: 36:51:07:eb:39:23:4d:a9:10:5c:ce:87:5d:1d:3b: f8:00:1c:f8:84:3c:0f:31:5f:a8:93:58:65:93:3d: e9:cf:e6:36:c8:db:5a:3a:c1:68:9f:6c:19:66:ea: 04:85:8e:ce:f2:95:3b:80:40:5c:36:85:4c:4a:5e: 3a:e8:84:cb:62:73:e5:02:34:3a:fe:f4:e3:34:58: 06:63:e0:d4:4b:a6:74:ee:3c:56:6e:bc:21:7e:8a: ee:7b:63:32:c7:95:ed:d2:f0:4f:cb:56:cd:9d:a8: 4d:70:93:2e:a2:dc:f1:9c:03:ba:02:8e:f6:8d:59: 49:81:af:0d:c0:59:be:3a:e1:a7:f3:e0:7f:af:ce: dd:67:03:17:91:5f:e6:05:46:82:bc:f2:cd:d9:11: 06:26:8c:51:e1:50:60:f6:b9:42:7d:37:9c:14:f4: 2f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:83:26:DE:03:55:04:8E:CF:76:DD:3F:05:28:4B:D6:5F:F4:73:00 X509v3 Authority Key Identifier: keyid:65:E2:9A:AC:DF:85:56:B4:40:C4:D7:18:0F:51:C4:47:FF:E5:23:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/65E29AACDF8556B440C4D7180F51C447FFE5238F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/65E29AACDF8556B440C4D7180F51C447FFE5238F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8ce2008-84b7-4bef-94b9-bb3fdb17b238/0/3130332e35382e3139392e302f32342d3234203d3e20313530343937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.58.199.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:43:a5:b6:8c:32:e3:21:48:67:3f:d2:c9:f9:59:ea:17:e6: 59:3e:10:35:3a:14:63:cb:0a:5f:5a:f9:18:c7:48:56:7d:79: 6b:a8:50:c1:69:cd:25:24:58:15:00:20:c0:88:d9:0a:f1:58: af:b9:cf:99:bb:62:95:66:96:30:11:f9:a8:df:a2:9f:65:25: 40:81:af:3a:4a:66:a7:27:38:d0:56:95:56:80:68:13:ce:c5: 6f:79:f9:1d:d0:bb:8f:0e:25:69:62:13:a6:bf:cb:84:e8:2c: 57:42:ac:49:00:60:68:ef:fe:98:11:99:15:37:b0:06:38:6d: f8:40:c1:92:4f:85:13:51:83:3e:8b:3b:39:45:8c:3b:7f:02: 67:40:b9:41:da:c8:75:72:a6:3d:12:8d:54:ca:10:8f:87:15: 2f:40:0d:29:a0:c9:77:0d:84:89:27:83:42:7c:88:42:e2:a8: 89:57:cd:0c:ed:68:ea:a5:f1:4b:54:fb:8c:30:1f:71:3f:3b: e1:80:e6:56:34:31:30:90:f9:8b:a4:76:98:2a:89:41:bb:6c: dc:1d:59:eb:6d:07:fd:de:2a:ea:62:8b:32:34:84:04:e0:b9: f4:17:fa:88:48:68:9c:df:94:8c:e7:e3:89:48:39:28:40:5d: 40:0e:e9:a7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUesBCbEOBeymDSDl85kpG+l6HZ/swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjVFMjlBQUNERjg1NTZCNDQwQzRENzE4MEY1MUM0NDdG RkU1MjM4RjAeFw0yNDA4MTMwOTU1MDBaFw0yNTA4MTIxMDAwMDBaMDMxMTAvBgNV BAMTKEYyODMyNkRFMDM1NTA0OEVDRjc2REQzRjA1Mjg0QkQ2NUZGNDczMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX6fdhKQKq4/FDTsHBsxdQa2i5 YaXzCAH3GIzpJmfk4eLCoYUeqC0kJ+uRDLkQNglk0iR2JfCNxu2ALegJTnc1IsmM CsdCQ2/2+Cd479D4k+DJBdiMmrmMkzZRB+s5I02pEFzOh10dO/gAHPiEPA8xX6iT WGWTPenP5jbI21o6wWifbBlm6gSFjs7ylTuAQFw2hUxKXjrohMtic+UCNDr+9OM0 WAZj4NRLpnTuPFZuvCF+iu57YzLHle3S8E/LVs2dqE1wky6i3PGcA7oCjvaNWUmB rw3AWb464afz4H+vzt1nAxeRX+YFRoK88s3ZEQYmjFHhUGD2uUJ9N5wU9C8RAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8oMm3gNVBI7Pdt0/BShL1l/0cwAwHwYDVR0j BBgwFoAUZeKarN+FVrRAxNcYD1HER//lI48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGNlMjAwOC04NGI3LTRiZWYtOTRiOS1iYjNmZGIxN2IyMzgvMC82NUUyOUFBQ0RG ODU1NkI0NDBDNEQ3MTgwRjUxQzQ0N0ZGRTUyMzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjVFMjlBQUNERjg1NTZCNDQwQzRENzE4MEY1MUM0NDdGRkU1 MjM4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4Y2UyMDA4LTg0YjctNGJlZi05 NGI5LWJiM2ZkYjE3YjIzOC8wLzMxMzAzMzJlMzUzODJlMzEzOTM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzQzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzrHMA0GCSqG SIb3DQEBCwUAA4IBAQCdQ6W2jDLjIUhnP9LJ+VnqF+ZZPhA1OhRjywpfWvkYx0hW fXlrqFDBac0lJFgVACDAiNkK8Vivuc+Zu2KVZpYwEfmo36KfZSVAga86SmanJzjQ VpVWgGgTzsVvefkd0LuPDiVpYhOmv8uE6CxXQqxJAGBo7/6YEZkVN7AGOG34QMGS T4UTUYM+izs5RYw7fwJnQLlB2sh1cqY9Eo1UyhCPhxUvQA0poMl3DYSJJ4NCfIhC 4qiJV80M7WjqpfFLVPuMMB9xPzvhgOZWNDEwkPmLpHaYKolBu2zcHVnrbQf93irq YosyNIQE4Ln0F/qISGic35SM5+OJSDkoQF1ADumn -----END CERTIFICATE-----Generated at Sat Nov 23 01:25:27 2024 by rpki-client on console-ams.rpki-client.org