$ rpki-client -vvf repo-rpki.idnic.net/repo/ed808f67-9abc-46dd-9817-b9339093f88e/0/3130332e3232342e3132342e302f32332d3234203d3e20313530313937.roa File: 3130332e3232342e3132342e302f32332d3234203d3e20313530313937.roa (raw, json) Hash identifier: BZo1iQGJtOH0KYD7EjAIqb+6wWHVZqj9bpdNw1+DGvc= Subject key identifier: 64:D5:6D:31:BE:62:F3:FE:0F:E8:C7:F3:C4:97:1D:37:02:59:E1:D3 Certificate issuer: /CN=CE118685D363E20B6D3B3955972062D9581B9E43 Certificate serial: 1653E62CF87F1BA4F9388409900CA7B442335AED Authority key identifier: CE:11:86:85:D3:63:E2:0B:6D:3B:39:55:97:20:62:D9:58:1B:9E:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE118685D363E20B6D3B3955972062D9581B9E43.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ed808f67-9abc-46dd-9817-b9339093f88e/0/3130332e3232342e3132342e302f32332d3234203d3e20313530313937.roa Signing time: Tue 06 Aug 2024 16:00:00 +0000 ROA not before: Tue 06 Aug 2024 15:55:00 +0000 ROA not after: Tue 05 Aug 2025 16:00:00 +0000 asID: 150197 IP address blocks: 103.224.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ed808f67-9abc-46dd-9817-b9339093f88e/0/CE118685D363E20B6D3B3955972062D9581B9E43.crl rsync://repo-rpki.idnic.net/repo/ed808f67-9abc-46dd-9817-b9339093f88e/0/CE118685D363E20B6D3B3955972062D9581B9E43.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE118685D363E20B6D3B3955972062D9581B9E43.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:53:e6:2c:f8:7f:1b:a4:f9:38:84:09:90:0c:a7:b4:42:33:5a:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE118685D363E20B6D3B3955972062D9581B9E43 Validity Not Before: Aug 6 15:55:00 2024 GMT Not After : Aug 5 16:00:00 2025 GMT Subject: CN=64D56D31BE62F3FE0FE8C7F3C4971D370259E1D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c5:79:62:e1:1d:e2:c9:28:f5:e6:7b:0d:fb: 2e:03:e9:b0:42:4c:48:dc:69:4d:3e:1d:4c:f5:79: 1b:0f:17:05:7c:9f:e9:3d:97:6c:31:83:c8:c1:25: cf:07:8b:e9:b1:45:05:c3:8c:10:60:c7:4a:73:a6: 1c:0f:59:42:e7:e6:ca:1c:bc:b5:fa:f7:3c:f7:d3: 0a:cb:66:5e:fe:47:6f:a2:fc:44:95:af:71:8e:b6: 66:7b:54:1c:3a:e4:33:de:44:9c:32:28:cf:5d:0f: cb:c4:13:b2:70:55:95:ad:2d:ab:a0:c7:b4:03:01: 5c:7f:46:4a:2f:5a:1a:d4:b1:68:83:a2:5c:be:d7: 8e:11:6a:f1:83:3d:d1:ae:45:f8:5d:0f:f6:8c:a9: 13:fd:2b:d0:c9:23:56:1c:b8:61:9f:c8:93:9a:f4: 15:ce:5a:1b:7d:60:3b:50:76:ad:6c:6c:68:36:1c: f3:50:63:1f:ac:67:87:5d:67:0c:a1:33:13:24:d9: d7:0b:da:d1:bf:26:45:1d:1e:16:41:2e:68:dd:e6: 18:27:32:7d:73:e6:64:e4:b4:a3:7a:0c:81:05:0c: 33:bc:c6:91:cc:41:30:47:6c:e1:da:29:ef:9c:d3: 05:a4:14:f5:12:9c:4a:6c:a3:37:58:6c:f2:c9:e9: 98:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:D5:6D:31:BE:62:F3:FE:0F:E8:C7:F3:C4:97:1D:37:02:59:E1:D3 X509v3 Authority Key Identifier: keyid:CE:11:86:85:D3:63:E2:0B:6D:3B:39:55:97:20:62:D9:58:1B:9E:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ed808f67-9abc-46dd-9817-b9339093f88e/0/CE118685D363E20B6D3B3955972062D9581B9E43.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CE118685D363E20B6D3B3955972062D9581B9E43.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ed808f67-9abc-46dd-9817-b9339093f88e/0/3130332e3232342e3132342e302f32332d3234203d3e20313530313937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.224.124.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:c6:2f:d8:7b:47:d6:d8:08:be:41:55:b0:0d:90:cd:22:6e: 70:8c:96:83:ee:dc:b6:9d:45:da:c8:06:aa:70:bf:0d:fa:ec: 2b:ac:de:25:1f:c5:59:fc:f8:c0:60:fd:b3:a0:a2:b4:46:87: da:c0:f8:bd:b7:9f:af:28:38:24:af:4c:95:b3:83:fd:0e:f1: 0c:00:c1:13:05:37:0c:e2:cf:52:41:d6:f0:ae:d4:62:b3:78: fd:64:20:9f:17:af:e7:72:42:90:de:22:40:22:15:c2:92:2c: 30:c4:a4:21:5f:d9:eb:8b:f3:78:2f:61:0c:38:fe:85:d3:44: 0f:6e:77:2f:64:4c:73:f7:4a:bf:9b:98:72:bc:6b:81:d8:e3: 10:5d:af:dc:cd:34:45:f8:91:10:58:86:b4:d2:eb:54:a8:1b: b0:07:80:3f:98:72:b5:56:bf:2a:fb:99:42:29:85:ef:0f:61: 42:41:1b:e8:12:4e:02:b0:ba:c3:b3:07:94:40:20:fc:82:05: 7e:6a:de:5c:c6:d4:ff:47:d1:36:98:88:ab:2c:4a:f1:2f:4e: b7:ca:1b:2d:24:41:11:6a:14:9c:9d:76:e0:e5:7a:da:ca:2c: a6:0c:dd:9c:60:dd:b0:56:05:14:9f:88:90:b6:ed:78:0b:9d: 77:62:87:27 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFlPmLPh/G6T5OIQJkAyntEIzWu0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0UxMTg2ODVEMzYzRTIwQjZEM0IzOTU1OTcyMDYyRDk1 ODFCOUU0MzAeFw0yNDA4MDYxNTU1MDBaFw0yNTA4MDUxNjAwMDBaMDMxMTAvBgNV BAMTKDY0RDU2RDMxQkU2MkYzRkUwRkU4QzdGM0M0OTcxRDM3MDI1OUUxRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+xXli4R3iySj15nsN+y4D6bBC TEjcaU0+HUz1eRsPFwV8n+k9l2wxg8jBJc8Hi+mxRQXDjBBgx0pzphwPWULn5soc vLX69zz30wrLZl7+R2+i/ESVr3GOtmZ7VBw65DPeRJwyKM9dD8vEE7JwVZWtLaug x7QDAVx/RkovWhrUsWiDoly+144RavGDPdGuRfhdD/aMqRP9K9DJI1YcuGGfyJOa 9BXOWht9YDtQdq1sbGg2HPNQYx+sZ4ddZwyhMxMk2dcL2tG/JkUdHhZBLmjd5hgn Mn1z5mTktKN6DIEFDDO8xpHMQTBHbOHaKe+c0wWkFPUSnEpsozdYbPLJ6ZgzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUZNVtMb5i8/4P6MfzxJcdNwJZ4dMwHwYDVR0j BBgwFoAUzhGGhdNj4gttOzlVlyBi2VgbnkMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZDgwOGY2Ny05YWJjLTQ2ZGQtOTgxNy1iOTMzOTA5M2Y4OGUvMC9DRTExODY4NUQz NjNFMjBCNkQzQjM5NTU5NzIwNjJEOTU4MUI5RTQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0UxMTg2ODVEMzYzRTIwQjZEM0IzOTU1OTcyMDYyRDk1ODFC OUU0My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkODA4ZjY3LTlhYmMtNDZkZC05 ODE3LWI5MzM5MDkzZjg4ZS8wLzMxMzAzMzJlMzIzMjM0MmUzMTMyMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM1MzAzMTM5Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn4HwwDQYJ KoZIhvcNAQELBQADggEBAB/GL9h7R9bYCL5BVbANkM0ibnCMloPu3LadRdrIBqpw vw367Cus3iUfxVn8+MBg/bOgorRGh9rA+L23n68oOCSvTJWzg/0O8QwAwRMFNwzi z1JB1vCu1GKzeP1kIJ8Xr+dyQpDeIkAiFcKSLDDEpCFf2euL83gvYQw4/oXTRA9u dy9kTHP3Sr+bmHK8a4HY4xBdr9zNNEX4kRBYhrTS61SoG7AHgD+YcrVWvyr7mUIp he8PYUJBG+gSTgKwusOzB5RAIPyCBX5q3lzG1P9H0TaYiKssSvEvTrfKGy0kQRFq FJydduDletrKLKYM3Zxg3bBWBRSfiJC27XgLnXdihyc= -----END CERTIFICATE-----Generated at Mon Nov 25 04:42:07 2024 by rpki-client on console-ams.rpki-client.org