$ rpki-client -vvf repo-rpki.idnic.net/repo/e74d0bf9-cc9a-42a3-830a-76f6d32b2f45/0/3130332e32362e3137362e302f32332d3234203d3e203538383231.roa File: 3130332e32362e3137362e302f32332d3234203d3e203538383231.roa (raw, json) Hash identifier: EuZkuHIlSaj82xE0GWoz4GAtuFIhoF+l9vRSJspBJV0= Subject key identifier: 21:9D:D0:EA:78:C5:4A:EB:76:0A:DA:D3:A1:A2:9C:1A:01:1F:30:82 Certificate issuer: /CN=2370B87417B78EB4410F4394F29FB327D1401F0D Certificate serial: 3DE2984633B4BC8457D57925955FB9C7ACF5F75F Authority key identifier: 23:70:B8:74:17:B7:8E:B4:41:0F:43:94:F2:9F:B3:27:D1:40:1F:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2370B87417B78EB4410F4394F29FB327D1401F0D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e74d0bf9-cc9a-42a3-830a-76f6d32b2f45/0/3130332e32362e3137362e302f32332d3234203d3e203538383231.roa Signing time: Thu 26 Sep 2024 08:00:01 +0000 ROA not before: Thu 26 Sep 2024 07:55:01 +0000 ROA not after: Thu 25 Sep 2025 08:00:01 +0000 asID: 58821 IP address blocks: 103.26.176.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e74d0bf9-cc9a-42a3-830a-76f6d32b2f45/0/2370B87417B78EB4410F4394F29FB327D1401F0D.crl rsync://repo-rpki.idnic.net/repo/e74d0bf9-cc9a-42a3-830a-76f6d32b2f45/0/2370B87417B78EB4410F4394F29FB327D1401F0D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2370B87417B78EB4410F4394F29FB327D1401F0D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 08:59:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:e2:98:46:33:b4:bc:84:57:d5:79:25:95:5f:b9:c7:ac:f5:f7:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2370B87417B78EB4410F4394F29FB327D1401F0D Validity Not Before: Sep 26 07:55:01 2024 GMT Not After : Sep 25 08:00:01 2025 GMT Subject: CN=219DD0EA78C54AEB760ADAD3A1A29C1A011F3082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1e:04:27:11:3a:68:d5:88:82:f9:6c:1b:6a: 67:04:d3:2b:1f:6a:c7:7a:53:50:4b:5b:da:72:34: 87:b1:80:34:ca:4f:a7:46:d4:99:b2:28:95:07:f9: a6:0a:ab:10:b3:ec:11:5e:16:c2:f5:a8:ab:eb:58: 87:b2:c9:75:7f:e9:cb:ad:54:94:c4:8c:57:2f:4b: 93:fb:7e:c6:c1:6e:95:98:e3:df:be:90:5f:e9:83: c2:3a:27:bd:7e:cc:ae:8d:c2:14:73:b1:ce:6d:5b: 7f:be:c2:e0:4f:fd:68:3d:40:86:43:2f:fb:3e:f2: fc:9a:ec:63:04:e6:73:60:03:46:21:a9:50:f6:8e: e8:0d:4b:e8:c8:a9:59:9e:96:d0:6d:1a:5d:ee:41: 19:62:21:cc:c0:48:c7:94:b0:a7:9e:5b:c2:be:c8: 11:7c:8f:22:da:12:a2:18:f9:33:1c:c1:56:34:2e: fe:b5:12:f0:45:2b:9d:7b:cb:a8:9c:4b:33:f8:f1: a5:b1:2e:9a:29:36:c4:0b:ac:5c:c2:77:3e:fd:91: da:f9:cc:b7:d5:25:22:60:32:95:57:33:71:7a:8a: 88:10:36:46:f0:7b:48:a9:bc:f8:cd:8b:2d:31:42: 58:34:30:41:69:7b:2d:39:a0:ee:c8:15:dd:c3:7f: 1e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:9D:D0:EA:78:C5:4A:EB:76:0A:DA:D3:A1:A2:9C:1A:01:1F:30:82 X509v3 Authority Key Identifier: keyid:23:70:B8:74:17:B7:8E:B4:41:0F:43:94:F2:9F:B3:27:D1:40:1F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e74d0bf9-cc9a-42a3-830a-76f6d32b2f45/0/2370B87417B78EB4410F4394F29FB327D1401F0D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2370B87417B78EB4410F4394F29FB327D1401F0D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e74d0bf9-cc9a-42a3-830a-76f6d32b2f45/0/3130332e32362e3137362e302f32332d3234203d3e203538383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.26.176.0/23 Signature Algorithm: sha256WithRSAEncryption 77:4f:da:69:82:93:c9:ae:51:a3:84:ad:b9:d6:d0:a0:3e:bd: ef:07:bf:36:cf:16:c1:4f:32:dd:47:be:21:a8:d1:15:02:bd: a9:5c:ec:68:20:39:10:58:4b:d8:4d:0e:9b:89:db:da:8d:22: 8a:e5:c7:29:ef:b0:cd:50:1c:fb:9c:7f:8b:e1:ee:47:7d:50: 6c:c7:63:df:2a:84:36:0c:1c:02:91:dd:a5:1c:97:7c:2f:c3: 75:a6:80:29:03:95:eb:95:4c:90:20:ba:03:af:99:c7:8d:58: 57:57:db:1c:97:32:5a:a3:04:64:f4:80:48:3a:f7:91:7f:86: 87:e6:91:92:10:a5:17:5b:ed:5d:e2:e3:e4:21:c9:f9:82:e3: fc:18:a7:51:53:f7:db:a0:97:d9:cd:ba:2a:1b:c1:66:48:fd: e9:df:f4:28:be:06:9b:0c:87:8f:a5:58:17:a9:ec:ff:1e:8d: fc:05:b8:fe:d2:14:95:4b:b5:81:4f:42:cb:cd:f0:65:b1:27: d1:f4:f6:30:28:db:f1:7d:ba:ec:14:1d:21:d3:4c:67:e1:94: 1f:61:d7:2c:69:6b:47:b1:29:c3:c8:5a:87:9d:8e:80:fe:6a: 65:e1:10:dc:f4:fc:42:1e:9a:a5:b0:7b:9f:0c:a6:e0:6d:84: a7:16:6e:79 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPeKYRjO0vIRX1XkllV+5x6z1918wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjM3MEI4NzQxN0I3OEVCNDQxMEY0Mzk0RjI5RkIzMjdE MTQwMUYwRDAeFw0yNDA5MjYwNzU1MDFaFw0yNTA5MjUwODAwMDFaMDMxMTAvBgNV BAMTKDIxOUREMEVBNzhDNTRBRUI3NjBBREFEM0ExQTI5QzFBMDExRjMwODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8HgQnETpo1YiC+WwbamcE0ysf asd6U1BLW9pyNIexgDTKT6dG1JmyKJUH+aYKqxCz7BFeFsL1qKvrWIeyyXV/6cut VJTEjFcvS5P7fsbBbpWY49++kF/pg8I6J71+zK6NwhRzsc5tW3++wuBP/Wg9QIZD L/s+8vya7GME5nNgA0YhqVD2jugNS+jIqVmeltBtGl3uQRliIczASMeUsKeeW8K+ yBF8jyLaEqIY+TMcwVY0Lv61EvBFK517y6icSzP48aWxLpopNsQLrFzCdz79kdr5 zLfVJSJgMpVXM3F6iogQNkbwe0ipvPjNiy0xQlg0MEFpey05oO7IFd3Dfx69AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIZ3Q6njFSut2CtrToaKcGgEfMIIwHwYDVR0j BBgwFoAUI3C4dBe3jrRBD0OU8p+zJ9FAHw0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NzRkMGJmOS1jYzlhLTQyYTMtODMwYS03NmY2ZDMyYjJmNDUvMC8yMzcwQjg3NDE3 Qjc4RUI0NDEwRjQzOTRGMjlGQjMyN0QxNDAxRjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjM3MEI4NzQxN0I3OEVCNDQxMEY0Mzk0RjI5RkIzMjdEMTQw MUYwRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U3NGQwYmY5LWNjOWEtNDJhMy04 MzBhLTc2ZjZkMzJiMmY0NS8wLzMxMzAzMzJlMzIzNjJlMzEzNzM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzODM4MzIzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcasDANBgkqhkiG 9w0BAQsFAAOCAQEAd0/aaYKTya5Ro4StudbQoD697we/Ns8WwU8y3Ue+IajRFQK9 qVzsaCA5EFhL2E0Om4nb2o0iiuXHKe+wzVAc+5x/i+HuR31QbMdj3yqENgwcApHd pRyXfC/DdaaAKQOV65VMkCC6A6+Zx41YV1fbHJcyWqMEZPSASDr3kX+Gh+aRkhCl F1vtXeLj5CHJ+YLj/BinUVP326CX2c26KhvBZkj96d/0KL4GmwyHj6VYF6ns/x6N /AW4/tIUlUu1gU9Cy83wZbEn0fT2MCjb8X267BQdIdNMZ+GUH2HXLGlrR7Epw8ha h52OgP5qZeEQ3PT8Qh6apbB7nwym4G2EpxZueQ== -----END CERTIFICATE-----Generated at Thu Nov 21 09:07:22 2024 by rpki-client on console-ams.rpki-client.org