$ rpki-client -vvf repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/3130332e37312e3232342e302f32322d3234203d3e2039383735.roa File: 3130332e37312e3232342e302f32322d3234203d3e2039383735.roa (raw, json) Hash identifier: goYMIrX9Ma3OEbrqgp+NBezpiasyCSLm3ZZ0wm8/hF4= Subject key identifier: E6:95:81:0B:D9:A1:4F:CA:03:83:F3:4D:EF:39:1D:5A:BF:19:D6:18 Certificate issuer: /CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Certificate serial: 1651ED59E4BD6B36B720982BF2DB5B700218C56B Authority key identifier: F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/3130332e37312e3232342e302f32322d3234203d3e2039383735.roa Signing time: Fri 01 Mar 2024 09:00:01 +0000 ROA not before: Fri 01 Mar 2024 08:55:01 +0000 ROA not after: Fri 28 Feb 2025 09:00:01 +0000 asID: 9875 IP address blocks: 103.71.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:51:ed:59:e4:bd:6b:36:b7:20:98:2b:f2:db:5b:70:02:18:c5:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33127B2252454B491C5DC9FE3937C56F28F8066 Validity Not Before: Mar 1 08:55:01 2024 GMT Not After : Feb 28 09:00:01 2025 GMT Subject: CN=E695810BD9A14FCA0383F34DEF391D5ABF19D618 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:76:fb:fd:ab:f6:75:d5:e5:8d:85:03:8d:e7: c0:33:70:e9:c7:3c:35:9a:ff:d0:06:89:e4:1a:f7: 91:7d:3c:1a:b7:6b:df:9d:70:63:3a:b5:dd:c9:13: 73:9e:6d:22:54:fd:e9:8a:a1:00:fc:e0:2c:d0:33: 03:35:3e:6c:52:8d:94:a5:e4:9a:5d:5d:6a:bc:c3: a9:a4:18:c6:77:18:11:e5:3b:81:38:d3:9f:44:e3: 9e:1d:84:fa:4b:8b:d4:86:8b:f6:af:ef:f6:02:9d: 50:9f:00:ac:0b:d2:4d:56:7a:71:28:6d:55:15:86: 88:fb:e9:58:9b:48:5c:83:7a:c2:c3:ba:bb:d7:43: 3a:1f:8c:dd:4a:56:b3:e5:2b:54:c9:c6:5f:19:f6: a9:b6:6b:7d:91:2a:fe:04:5b:8f:e1:cc:b5:b0:a8: 14:79:0d:2c:ce:a6:c7:20:5d:c7:79:98:b7:7d:75: a0:ea:77:20:6a:c7:8f:b6:d2:1c:e4:56:4d:df:5e: a1:1f:a4:36:90:ed:9c:70:e8:4c:aa:a5:34:3a:70: e0:cf:20:da:00:b9:b0:7f:b9:12:ed:84:78:69:dd: cd:1b:d4:a1:b5:2f:98:15:9f:bd:e1:75:76:cf:01: a3:d3:d4:f2:b2:6e:4f:35:9b:09:bd:18:af:43:62: ca:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:95:81:0B:D9:A1:4F:CA:03:83:F3:4D:EF:39:1D:5A:BF:19:D6:18 X509v3 Authority Key Identifier: keyid:F3:31:27:B2:25:24:54:B4:91:C5:DC:9F:E3:93:7C:56:F2:8F:80:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/F33127B2252454B491C5DC9FE3937C56F28F8066.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F33127B2252454B491C5DC9FE3937C56F28F8066.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ebbfe776-00a3-4776-bf3f-5211946101c3/0/3130332e37312e3232342e302f32322d3234203d3e2039383735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.71.224.0/22 Signature Algorithm: sha256WithRSAEncryption 3e:83:28:5c:2e:6c:20:dd:0d:ce:3e:41:66:74:b6:6c:00:a0: 41:92:93:57:a3:4c:d9:d8:77:bd:61:76:e3:94:22:3b:7b:71: 55:10:75:52:06:eb:9d:9a:6a:44:48:09:fd:4c:f6:d7:ac:47: 2a:76:37:6d:32:da:aa:05:ca:32:48:66:61:fb:92:b5:4c:ff: 92:ac:30:9b:71:37:d6:ed:d0:4a:af:b8:c3:5c:24:66:ba:7c: ac:47:7d:ec:4c:f2:08:e0:4e:e1:5c:55:d7:e4:60:4c:4b:a7: 45:f6:2d:d4:37:af:ed:f0:36:9b:eb:ee:13:cd:1b:e6:4e:ca: ce:ba:8a:ee:31:fa:c7:6f:f6:f3:58:31:f0:fe:57:31:a3:fc: a9:5a:08:8e:90:1b:80:f7:ae:f6:1f:7c:3e:8b:ac:09:c0:7c: 9c:49:fe:f1:7d:67:ff:b1:1e:b3:f7:4d:17:49:a5:9d:cb:66: 58:98:9d:ef:4e:e1:05:9c:81:cd:c1:40:91:db:78:ed:8e:c8: 1f:9b:f6:1e:30:6f:36:69:df:81:5e:e6:a5:4e:76:a3:c9:44: 75:8e:bf:58:74:ba:36:bb:b8:b1:e7:1c:eb:78:8a:8d:75:f4: b8:93:d8:a0:e0:a2:22:fb:c7:95:61:23:cc:1b:80:9a:33:b5: 92:a9:4b:a3 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUFlHtWeS9aza3IJgr8ttbcAIYxWswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZG MjhGODA2NjAeFw0yNDAzMDEwODU1MDFaFw0yNTAyMjgwOTAwMDFaMDMxMTAvBgNV BAMTKEU2OTU4MTBCRDlBMTRGQ0EwMzgzRjM0REVGMzkxRDVBQkYxOUQ2MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjdvv9q/Z11eWNhQON58AzcOnH PDWa/9AGieQa95F9PBq3a9+dcGM6td3JE3OebSJU/emKoQD84CzQMwM1PmxSjZSl 5JpdXWq8w6mkGMZ3GBHlO4E4059E454dhPpLi9SGi/av7/YCnVCfAKwL0k1WenEo bVUVhoj76VibSFyDesLDurvXQzofjN1KVrPlK1TJxl8Z9qm2a32RKv4EW4/hzLWw qBR5DSzOpscgXcd5mLd9daDqdyBqx4+20hzkVk3fXqEfpDaQ7Zxw6EyqpTQ6cODP INoAubB/uRLthHhp3c0b1KG1L5gVn73hdXbPAaPT1PKybk81mwm9GK9DYsorAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU5pWBC9mhT8oDg/NN7zkdWr8Z1hgwHwYDVR0j BBgwFoAU8zEnsiUkVLSRxdyf45N8VvKPgGYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YmJmZTc3Ni0wMGEzLTQ3NzYtYmYzZi01MjExOTQ2MTAxYzMvMC9GMzMxMjdCMjI1 MjQ1NEI0OTFDNURDOUZFMzkzN0M1NkYyOEY4MDY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjMzMTI3QjIyNTI0NTRCNDkxQzVEQzlGRTM5MzdDNTZGMjhG ODA2Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViYmZlNzc2LTAwYTMtNDc3Ni1i ZjNmLTUyMTE5NDYxMDFjMy8wLzMxMzAzMzJlMzczMTJlMzIzMjM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzkzODM3MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnR+AwDQYJKoZIhvcN AQELBQADggEBAD6DKFwubCDdDc4+QWZ0tmwAoEGSk1ejTNnYd71hduOUIjt7cVUQ dVIG652aakRICf1M9tesRyp2N20y2qoFyjJIZmH7krVM/5KsMJtxN9bt0EqvuMNc JGa6fKxHfexM8gjgTuFcVdfkYExLp0X2LdQ3r+3wNpvr7hPNG+ZOys66iu4x+sdv 9vNYMfD+VzGj/KlaCI6QG4D3rvYffD6LrAnAfJxJ/vF9Z/+xHrP3TRdJpZ3LZliY ne9O4QWcgc3BQJHbeO2OyB+b9h4wbzZp34Fe5qVOdqPJRHWOv1h0uja7uLHnHOt4 io119LiT2KDgoiL7x5VhI8wbgJoztZKpS6M= -----END CERTIFICATE-----Generated at Fri Nov 22 08:00:09 2024 by rpki-client on console-ams.rpki-client.org