$ rpki-client -vvf repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/3130332e32312e39322e302f32342d3234203d3e20313331373338.roa File: 3130332e32312e39322e302f32342d3234203d3e20313331373338.roa (raw, json) Hash identifier: ncuNmuDMRCz7XEGjG+8p/qjKUpvp2YtlNc4JXvP3iGg= Subject key identifier: 95:3F:E2:7F:B1:B2:2A:7E:A2:41:F6:57:81:3C:DB:6A:7B:7D:A7:4E Certificate issuer: /CN=821049BBD22C335A50850F16AB159C0C6BCC28E5 Certificate serial: 5E6A7FF9D3179886801E17B81F7D410FD5CFF6C3 Authority key identifier: 82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/3130332e32312e39322e302f32342d3234203d3e20313331373338.roa Signing time: Fri 15 Nov 2024 08:00:01 +0000 ROA not before: Fri 15 Nov 2024 07:55:01 +0000 ROA not after: Fri 14 Nov 2025 08:00:01 +0000 asID: 131738 IP address blocks: 103.21.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:6a:7f:f9:d3:17:98:86:80:1e:17:b8:1f:7d:41:0f:d5:cf:f6:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821049BBD22C335A50850F16AB159C0C6BCC28E5 Validity Not Before: Nov 15 07:55:01 2024 GMT Not After : Nov 14 08:00:01 2025 GMT Subject: CN=953FE27FB1B22A7EA241F657813CDB6A7B7DA74E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:41:c4:d3:ec:39:94:42:7d:27:01:56:ad:de: 4c:fc:7b:05:10:4a:1c:15:1d:dd:c2:e5:84:90:d3: 39:c1:07:b8:ad:ff:31:6a:cd:8a:29:86:47:24:46: a7:4b:78:e6:0b:fb:3e:e2:b0:62:a8:36:21:6d:be: 36:b8:5a:68:ec:84:45:ae:67:19:e3:6d:eb:b1:fd: 1b:5d:56:31:e4:19:3a:a3:34:2d:be:1b:f5:fc:8b: ec:b8:43:28:0d:8f:87:34:b7:64:85:5e:87:79:28: b0:00:c0:2b:c6:bf:b4:25:7c:69:78:fa:8c:56:41: 08:eb:8f:01:7b:85:3b:90:cc:54:8d:86:ab:a3:c7: 9d:86:b3:71:bf:2f:85:7b:1b:8e:f4:93:18:51:67: 8c:15:6e:fe:69:fe:85:b7:6d:95:e1:12:b9:19:d8: a7:ff:20:61:cf:13:d4:10:3e:8e:f2:c7:b6:70:86: 75:45:73:ee:67:5e:7b:08:b7:a4:65:09:e9:ff:5d: 25:b5:c7:01:e3:ef:f5:72:75:ed:08:10:3c:bc:4a: 1b:c6:4c:6c:eb:b4:d4:97:4b:b3:b7:cd:5c:b8:fb: 9e:f7:cd:3c:8d:a2:46:ea:6d:46:79:4b:7d:96:19: be:94:29:80:0d:15:49:73:e5:e1:15:95:89:f8:26: 3a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:3F:E2:7F:B1:B2:2A:7E:A2:41:F6:57:81:3C:DB:6A:7B:7D:A7:4E X509v3 Authority Key Identifier: keyid:82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/3130332e32312e39322e302f32342d3234203d3e20313331373338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.92.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:0a:40:65:9c:b4:2b:87:9f:bb:e4:02:41:3e:b3:68:64:e2: 2b:29:16:f3:c4:17:ac:32:88:ec:b6:90:3c:34:bc:da:b2:c9: 2e:2b:b9:2c:25:c5:6d:32:d2:67:3c:66:3a:0c:18:8a:ee:f7: bc:9e:bd:92:c9:f5:40:72:8a:5a:19:42:fd:5f:2e:b4:b0:1c: 94:af:e2:31:c2:19:92:4d:c7:18:09:25:30:a1:58:f4:6a:62: 69:b4:16:cc:ca:ef:15:3f:ad:67:82:a3:a9:d8:17:36:b5:ac: 66:27:3b:b3:4e:cc:cd:d9:93:c6:61:bc:79:42:25:4a:20:fe: c9:13:cc:81:b5:b8:25:54:04:0c:5e:65:4b:01:d3:52:14:6d: 70:35:17:18:d4:cd:5b:47:e2:84:00:e2:5d:b3:01:b1:20:6d: d1:1d:37:e2:7f:e0:49:38:6c:cf:cd:bc:57:15:4e:3a:4f:d7: f8:94:3d:e9:99:b2:55:2e:11:06:d1:a0:b2:62:45:13:29:f0: f6:71:0e:85:10:ec:b3:16:26:6b:5e:53:2b:44:8d:b1:e4:3e: 02:6b:a4:e7:d5:85:a4:72:64:2b:2d:42:70:a2:f1:e9:76:51: 17:31:83:29:5e:4c:86:be:b9:5b:1c:ae:51:f9:73:dc:e0:63: f7:73:cb:ee -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXmp/+dMXmIaAHhe4H31BD9XP9sMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlDMEM2 QkNDMjhFNTAeFw0yNDExMTUwNzU1MDFaFw0yNTExMTQwODAwMDFaMDMxMTAvBgNV BAMTKDk1M0ZFMjdGQjFCMjJBN0VBMjQxRjY1NzgxM0NEQjZBN0I3REE3NEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfQcTT7DmUQn0nAVat3kz8ewUQ ShwVHd3C5YSQ0znBB7it/zFqzYophkckRqdLeOYL+z7isGKoNiFtvja4WmjshEWu Zxnjbeux/RtdVjHkGTqjNC2+G/X8i+y4QygNj4c0t2SFXod5KLAAwCvGv7QlfGl4 +oxWQQjrjwF7hTuQzFSNhqujx52Gs3G/L4V7G470kxhRZ4wVbv5p/oW3bZXhErkZ 2Kf/IGHPE9QQPo7yx7ZwhnVFc+5nXnsIt6RlCen/XSW1xwHj7/Vyde0IEDy8ShvG TGzrtNSXS7O3zVy4+573zTyNokbqbUZ5S32WGb6UKYANFUlz5eEVlYn4JjoXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUlT/if7GyKn6iQfZXgTzbant9p04wHwYDVR0j BBgwFoAUghBJu9IsM1pQhQ8WqxWcDGvMKOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZGU4ZTE4ZC1hMDQ3LTQ1OTAtOWU1Ni00NjRhNzNlMjNjNmMvMC84MjEwNDlCQkQy MkMzMzVBNTA4NTBGMTZBQjE1OUMwQzZCQ0MyOEU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlDMEM2QkND MjhFNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkZThlMThkLWEwNDctNDU5MC05 ZTU2LTQ2NGE3M2UyM2M2Yy8wLzMxMzAzMzJlMzIzMTJlMzkzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMTM3MzMzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcVXDANBgkqhkiG 9w0BAQsFAAOCAQEAHQpAZZy0K4efu+QCQT6zaGTiKykW88QXrDKI7LaQPDS82rLJ Liu5LCXFbTLSZzxmOgwYiu73vJ69ksn1QHKKWhlC/V8utLAclK/iMcIZkk3HGAkl MKFY9GpiabQWzMrvFT+tZ4KjqdgXNrWsZic7s07MzdmTxmG8eUIlSiD+yRPMgbW4 JVQEDF5lSwHTUhRtcDUXGNTNW0fihADiXbMBsSBt0R034n/gSThsz828VxVOOk/X +JQ96ZmyVS4RBtGgsmJFEynw9nEOhRDssxYma15TK0SNseQ+Amuk59WFpHJkKy1C cKLx6XZRFzGDKV5Mhr65WxyuUflz3OBj93PL7g== -----END CERTIFICATE-----Generated at Fri Nov 22 08:00:09 2024 by rpki-client on console-ams.rpki-client.org