$ rpki-client -vvf repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3130332e332e3231342e302f32342d3234203d3e203338313439.roa File: 3130332e332e3231342e302f32342d3234203d3e203338313439.roa (raw, json) Hash identifier: P0Fuek0y0r48VX6ZLm6FM/n0b+U4fqsoqHFff5P/ei4= Subject key identifier: 16:F0:F2:C2:F7:FA:BC:EB:E3:DF:BD:9C:E3:EC:FB:CA:99:D5:B3:44 Certificate issuer: /CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Certificate serial: 52C100239258696E790B3E70C244EAF3DDD7E3B8 Authority key identifier: 50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3130332e332e3231342e302f32342d3234203d3e203338313439.roa Signing time: Tue 17 Sep 2024 00:35:06 +0000 ROA not before: Tue 17 Sep 2024 00:30:06 +0000 ROA not after: Tue 16 Sep 2025 00:35:06 +0000 asID: 38149 IP address blocks: 103.3.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:c1:00:23:92:58:69:6e:79:0b:3e:70:c2:44:ea:f3:dd:d7:e3:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5058CBC5AF21280546887DEF6CFA4341A8F99150 Validity Not Before: Sep 17 00:30:06 2024 GMT Not After : Sep 16 00:35:06 2025 GMT Subject: CN=16F0F2C2F7FABCEBE3DFBD9CE3ECFBCA99D5B344 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:11:96:04:6a:2d:57:79:b6:18:e6:00:dc:13: ba:46:08:ae:21:08:e0:94:02:3e:11:90:ed:6b:cb: 55:82:89:6a:58:a5:0a:26:4d:e9:53:49:c2:11:48: a9:f2:64:d2:35:ff:9d:95:e6:7d:f7:fe:fb:e1:14: e7:37:d9:84:3a:04:8e:00:58:fc:6d:18:35:20:5a: e0:e5:d7:20:fe:c1:f9:ec:db:4f:3e:32:e7:0f:94: 02:f2:6a:cd:b6:45:b8:ff:37:1c:7f:5d:00:a0:63: 8d:56:b7:ff:ab:b6:71:49:95:33:59:7d:a9:4d:12: 99:9f:cb:e3:9e:9b:e1:95:a4:fc:9a:89:4c:4e:c2: f4:8a:bc:61:14:a0:39:10:10:86:83:a3:24:f5:8e: 16:0e:76:33:d4:ba:fd:61:93:c0:1f:df:fb:85:fd: 23:f1:cf:89:a0:75:bb:99:ad:06:25:b8:d3:e1:47: fa:45:67:74:93:7a:9b:21:36:c8:b9:41:63:56:2d: 2f:55:84:8d:08:b0:f1:93:fa:7e:ad:21:e7:54:e5: d8:a8:4d:5f:fb:8e:37:ab:d5:72:91:09:61:91:80: b9:18:6b:e1:fa:c8:b4:23:27:e0:7e:11:d5:28:80: 65:17:f8:43:96:13:8c:21:cb:68:a3:92:97:8a:70: 1d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:F0:F2:C2:F7:FA:BC:EB:E3:DF:BD:9C:E3:EC:FB:CA:99:D5:B3:44 X509v3 Authority Key Identifier: keyid:50:58:CB:C5:AF:21:28:05:46:88:7D:EF:6C:FA:43:41:A8:F9:91:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/5058CBC5AF21280546887DEF6CFA4341A8F99150.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5058CBC5AF21280546887DEF6CFA4341A8F99150.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d8e3b39c-da11-45ee-aab3-5cb14ec4470c/0/3130332e332e3231342e302f32342d3234203d3e203338313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.3.214.0/24 Signature Algorithm: sha256WithRSAEncryption 16:14:db:5b:c1:c6:fa:50:de:75:14:6c:1a:a8:a9:01:3f:02: 90:26:52:36:b9:29:22:e6:f0:b8:e9:8c:60:25:95:c6:d0:c1: dc:15:ec:64:07:ea:9c:87:65:0f:8f:08:12:21:b8:05:65:46: 72:7f:c5:0d:f3:54:05:5c:4a:39:d6:ba:42:fb:5e:35:93:63: ae:05:69:08:65:a2:9f:cd:57:d1:97:21:5a:c8:7d:33:1d:3c: c5:95:29:59:7a:43:bb:56:91:6b:70:48:15:54:d6:ad:8e:bf: 87:fe:af:79:bf:73:3b:68:95:22:6c:60:39:bb:5c:a1:85:36: 26:47:52:e3:65:b5:43:b1:ac:02:0c:c1:52:b9:e3:ac:f8:e3: c6:d9:71:3e:7e:5f:77:21:e3:ac:26:89:e0:2f:8a:4c:44:f0: d6:34:d8:50:17:c1:07:10:68:9a:86:f4:c4:ef:0d:a6:50:41: a1:7e:44:76:e2:46:9d:04:95:7d:6b:77:f0:59:91:d0:30:76: f2:fb:db:e8:f3:fe:b9:30:74:14:bc:01:57:0a:64:15:d6:7e: 57:36:12:b8:4e:84:1b:33:48:8f:43:63:d2:9c:25:6e:5d:4f: 51:fc:05:07:24:52:35:3c:21:1e:d5:eb:4d:32:94:f0:59:e6: 36:73:95:30 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUUsEAI5JYaW55Cz5wwkTq893X47gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFB OEY5OTE1MDAeFw0yNDA5MTcwMDMwMDZaFw0yNTA5MTYwMDM1MDZaMDMxMTAvBgNV BAMTKDE2RjBGMkMyRjdGQUJDRUJFM0RGQkQ5Q0UzRUNGQkNBOTlENUIzNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9EZYEai1XebYY5gDcE7pGCK4h COCUAj4RkO1ry1WCiWpYpQomTelTScIRSKnyZNI1/52V5n33/vvhFOc32YQ6BI4A WPxtGDUgWuDl1yD+wfns208+MucPlALyas22Rbj/Nxx/XQCgY41Wt/+rtnFJlTNZ falNEpmfy+Oem+GVpPyaiUxOwvSKvGEUoDkQEIaDoyT1jhYOdjPUuv1hk8Af3/uF /SPxz4mgdbuZrQYluNPhR/pFZ3STepshNsi5QWNWLS9VhI0IsPGT+n6tIedU5dio TV/7jjer1XKRCWGRgLkYa+H6yLQjJ+B+EdUogGUX+EOWE4why2ijkpeKcB2TAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUFvDywvf6vOvj372c4+z7ypnVs0QwHwYDVR0j BBgwFoAUUFjLxa8hKAVGiH3vbPpDQaj5kVAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OGUzYjM5Yy1kYTExLTQ1ZWUtYWFiMy01Y2IxNGVjNDQ3MGMvMC81MDU4Q0JDNUFG MjEyODA1NDY4ODdERUY2Q0ZBNDM0MUE4Rjk5MTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTA1OENCQzVBRjIxMjgwNTQ2ODg3REVGNkNGQTQzNDFBOEY5 OTE1MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4ZTNiMzljLWRhMTEtNDVlZS1h YWIzLTVjYjE0ZWM0NDcwYy8wLzMxMzAzMzJlMzMyZTMyMzEzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMzMzgzMTM0Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnA9YwDQYJKoZIhvcN AQELBQADggEBABYU21vBxvpQ3nUUbBqoqQE/ApAmUja5KSLm8LjpjGAllcbQwdwV 7GQH6pyHZQ+PCBIhuAVlRnJ/xQ3zVAVcSjnWukL7XjWTY64FaQhlop/NV9GXIVrI fTMdPMWVKVl6Q7tWkWtwSBVU1q2Ov4f+r3m/cztolSJsYDm7XKGFNiZHUuNltUOx rAIMwVK546z448bZcT5+X3ch46wmieAvikxE8NY02FAXwQcQaJqG9MTvDaZQQaF+ RHbiRp0ElX1rd/BZkdAwdvL72+jz/rkwdBS8AVcKZBXWflc2ErhOhBszSI9DY9Kc JW5dT1H8BQckUjU8IR7V600ylPBZ5jZzlTA= -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:14 2024 by rpki-client on console-ams.rpki-client.org