$ rpki-client -vvf repo-rpki.idnic.net/repo/e1f29aba-6d7c-4435-953c-604988731596/0/3130332e3136322e37322e302f32342d3234203d3e20313431363436.roa File: 3130332e3136322e37322e302f32342d3234203d3e20313431363436.roa (raw, json) Hash identifier: M/Ju5mYiYULdoDAFDktbRdkMaN2jwf5Cj2qaEO3as9I= Subject key identifier: 5B:31:95:AA:B0:01:D6:A5:CA:8A:F0:DB:F2:24:DB:0B:AC:80:ED:B4 Certificate issuer: /CN=4AA75AF77EC48924696455B9F02192353D9C4014 Certificate serial: 216C67E1012434B2E62EB1A73AC5321789A331B6 Authority key identifier: 4A:A7:5A:F7:7E:C4:89:24:69:64:55:B9:F0:21:92:35:3D:9C:40:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA75AF77EC48924696455B9F02192353D9C4014.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e1f29aba-6d7c-4435-953c-604988731596/0/3130332e3136322e37322e302f32342d3234203d3e20313431363436.roa Signing time: Fri 19 Jul 2024 09:49:56 +0000 ROA not before: Fri 19 Jul 2024 09:44:56 +0000 ROA not after: Fri 18 Jul 2025 09:49:56 +0000 asID: 141646 IP address blocks: 103.162.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e1f29aba-6d7c-4435-953c-604988731596/0/4AA75AF77EC48924696455B9F02192353D9C4014.crl rsync://repo-rpki.idnic.net/repo/e1f29aba-6d7c-4435-953c-604988731596/0/4AA75AF77EC48924696455B9F02192353D9C4014.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA75AF77EC48924696455B9F02192353D9C4014.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:6c:67:e1:01:24:34:b2:e6:2e:b1:a7:3a:c5:32:17:89:a3:31:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AA75AF77EC48924696455B9F02192353D9C4014 Validity Not Before: Jul 19 09:44:56 2024 GMT Not After : Jul 18 09:49:56 2025 GMT Subject: CN=5B3195AAB001D6A5CA8AF0DBF224DB0BAC80EDB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d7:cf:20:83:c6:9c:60:ff:1e:6f:3b:44:5e: 78:ab:94:2a:7f:06:b0:1d:ec:35:fd:34:6e:ba:19: 1e:3a:60:ec:38:c7:d3:25:cc:56:b2:de:dc:70:db: 9a:fd:4d:ea:86:12:05:af:78:42:18:63:2c:12:6f: 3a:6d:4e:81:0f:2c:39:5a:f1:b6:e8:b4:d1:b6:04: d4:f0:53:10:ed:7d:ec:b1:a9:f9:e9:92:ce:52:6d: 38:d1:67:e3:7e:ca:15:eb:e8:96:1c:cb:72:98:d4: 15:55:f8:f2:20:eb:52:b2:a1:26:2e:a8:6d:09:d5: 34:3a:76:be:3c:cd:28:aa:fd:83:87:54:fa:95:ef: 65:0a:d0:c6:20:9b:bf:21:70:41:1f:3a:c8:bc:20: 45:10:7e:38:fe:6f:3b:78:4a:58:e6:17:18:e0:c9: 88:61:c7:38:74:9c:9c:a9:58:99:43:89:52:4e:8b: 01:aa:be:68:4e:59:77:53:5d:93:c1:8d:10:bf:6e: 0c:f1:9c:db:7d:f2:50:4c:47:73:19:e4:ee:48:a2: 95:33:47:d9:58:d1:a7:35:69:e1:32:91:aa:da:e5: 3e:9a:8d:e6:1a:8f:f3:eb:82:ce:32:32:55:d0:68: c1:06:1f:9e:7a:43:0e:12:f1:f5:a1:ee:3e:45:b6: 2a:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:31:95:AA:B0:01:D6:A5:CA:8A:F0:DB:F2:24:DB:0B:AC:80:ED:B4 X509v3 Authority Key Identifier: keyid:4A:A7:5A:F7:7E:C4:89:24:69:64:55:B9:F0:21:92:35:3D:9C:40:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e1f29aba-6d7c-4435-953c-604988731596/0/4AA75AF77EC48924696455B9F02192353D9C4014.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA75AF77EC48924696455B9F02192353D9C4014.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e1f29aba-6d7c-4435-953c-604988731596/0/3130332e3136322e37322e302f32342d3234203d3e20313431363436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.72.0/24 Signature Algorithm: sha256WithRSAEncryption a9:62:16:27:d8:1f:9e:c8:56:c3:90:dd:1c:a3:0a:79:be:43: 24:33:fc:31:cb:27:01:cb:7b:8b:08:cb:31:7c:47:56:eb:90: 1c:68:b1:bb:3a:74:1e:f6:ee:1e:4a:50:54:e9:f6:d6:05:28: 40:8b:e3:b5:e1:c0:f9:b9:d4:1c:4a:13:33:5d:ea:ed:59:c5: 09:9c:eb:bb:f2:6f:3f:9e:5d:b0:6c:a3:6e:5d:50:6d:f3:01: 19:ca:c1:55:3d:8c:9c:2c:99:04:9e:ac:9f:2f:f2:f1:fb:0a: 11:c0:ed:71:9d:01:5e:23:10:8c:ac:b6:d4:f9:2b:15:cd:50: c4:17:07:56:a9:e0:cc:3e:dc:da:3a:bb:06:de:c5:cd:c5:1d: 1c:c2:e1:6b:a9:28:2c:02:03:ab:4c:bf:da:eb:a9:61:9d:96: 95:53:a0:f5:e4:69:4a:89:44:48:3f:a2:8e:f7:51:c9:b6:5e: 22:05:f4:e6:75:94:9d:3e:5f:fc:95:9b:01:fb:0d:ef:c4:d2: b6:f6:fa:48:a2:88:09:d0:da:f1:d6:9e:26:c5:ad:70:51:7a: 37:36:1b:8c:22:a5:c3:eb:23:f7:2d:c8:8c:b3:33:d0:8a:b3: af:41:2f:f6:96:7c:f8:68:33:4d:e6:fa:3e:c8:2c:56:47:1c: ff:bd:f2:b3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIWxn4QEkNLLmLrGnOsUyF4mjMbYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFBNzVBRjc3RUM0ODkyNDY5NjQ1NUI5RjAyMTkyMzUz RDlDNDAxNDAeFw0yNDA3MTkwOTQ0NTZaFw0yNTA3MTgwOTQ5NTZaMDMxMTAvBgNV BAMTKDVCMzE5NUFBQjAwMUQ2QTVDQThBRjBEQkYyMjREQjBCQUM4MEVEQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw188gg8acYP8ebztEXnirlCp/ BrAd7DX9NG66GR46YOw4x9MlzFay3txw25r9TeqGEgWveEIYYywSbzptToEPLDla 8bbotNG2BNTwUxDtfeyxqfnpks5SbTjRZ+N+yhXr6JYcy3KY1BVV+PIg61KyoSYu qG0J1TQ6dr48zSiq/YOHVPqV72UK0MYgm78hcEEfOsi8IEUQfjj+bzt4SljmFxjg yYhhxzh0nJypWJlDiVJOiwGqvmhOWXdTXZPBjRC/bgzxnNt98lBMR3MZ5O5IopUz R9lY0ac1aeEykara5T6ajeYaj/Prgs4yMlXQaMEGH556Qw4S8fWh7j5FtirhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWzGVqrAB1qXKivDb8iTbC6yA7bQwHwYDVR0j BBgwFoAUSqda937EiSRpZFW58CGSNT2cQBQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MWYyOWFiYS02ZDdjLTQ0MzUtOTUzYy02MDQ5ODg3MzE1OTYvMC80QUE3NUFGNzdF QzQ4OTI0Njk2NDU1QjlGMDIxOTIzNTNEOUM0MDE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFBNzVBRjc3RUM0ODkyNDY5NjQ1NUI5RjAyMTkyMzUzRDlD NDAxNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxZjI5YWJhLTZkN2MtNDQzNS05 NTNjLTYwNDk4ODczMTU5Ni8wLzMxMzAzMzJlMzEzNjMyMmUzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6JIMA0GCSqG SIb3DQEBCwUAA4IBAQCpYhYn2B+eyFbDkN0cowp5vkMkM/wxyycBy3uLCMsxfEdW 65AcaLG7OnQe9u4eSlBU6fbWBShAi+O14cD5udQcShMzXertWcUJnOu78m8/nl2w bKNuXVBt8wEZysFVPYycLJkEnqyfL/Lx+woRwO1xnQFeIxCMrLbU+SsVzVDEFwdW qeDMPtzaOrsG3sXNxR0cwuFrqSgsAgOrTL/a66lhnZaVU6D15GlKiURIP6KO91HJ tl4iBfTmdZSdPl/8lZsB+w3vxNK29vpIoogJ0Nrx1p4mxa1wUXo3NhuMIqXD6yP3 LciMszPQirOvQS/2lnz4aDNN5vo+yCxWRxz/vfKz -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:27 2024 by rpki-client on console-ams.rpki-client.org