$ rpki-client -vvf repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137322e302f32342d3234203d3e20313333333534.roa File: 3130332e3231372e3137322e302f32342d3234203d3e20313333333534.roa (raw, json) Hash identifier: 1nHw01smVx1ZOqDKUmuMmLHS8nfmS5SZFRiTVrT39OY= Subject key identifier: 01:E3:33:A0:05:54:55:EB:8F:B2:81:38:DA:B9:E3:82:87:1C:58:82 Certificate issuer: /CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6 Certificate serial: 178B8E5D962D0C56302CC246E1A8A645EA214FAB Authority key identifier: C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137322e302f32342d3234203d3e20313333333534.roa Signing time: Tue 24 Sep 2024 17:13:29 +0000 ROA not before: Tue 24 Sep 2024 17:08:29 +0000 ROA not after: Tue 23 Sep 2025 17:13:29 +0000 asID: 133354 IP address blocks: 103.217.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.crl rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 20:48:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:8b:8e:5d:96:2d:0c:56:30:2c:c2:46:e1:a8:a6:45:ea:21:4f:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6 Validity Not Before: Sep 24 17:08:29 2024 GMT Not After : Sep 23 17:13:29 2025 GMT Subject: CN=01E333A0055455EB8FB28138DAB9E382871C5882 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:62:de:38:ec:77:e7:b2:3d:67:12:c8:bc:1a: 9a:19:c7:31:f5:a3:4b:d8:22:1a:10:12:8d:60:b8: 8c:3d:64:90:23:ae:30:22:fb:65:84:5b:c6:86:25: 46:a9:02:11:56:61:28:77:a6:7c:ee:7b:9e:50:fb: 4b:0b:48:e8:78:d9:ab:bf:d6:4d:1d:8e:e5:cf:55: ad:ca:24:eb:71:c2:7c:29:98:0b:a9:86:84:34:86: c2:0e:83:5e:36:b8:b0:21:4e:9e:cf:fc:9d:2f:e1: d7:70:e9:31:27:5e:a9:b1:4e:1c:63:5b:37:57:97: 0b:bf:ac:f8:ad:23:1d:d7:81:79:1b:bd:45:73:83: 31:2a:90:8f:42:8f:aa:4c:f1:b9:f6:d1:4b:bd:b6: c5:dc:84:7d:9a:76:39:31:5f:06:20:30:c5:20:aa: e9:45:00:3d:84:d8:1d:57:4b:09:bc:b6:b7:3e:39: 4a:fc:2e:28:c3:c0:ba:7d:91:49:0c:22:81:f8:28: c0:6d:c3:fc:9c:90:79:25:e2:44:04:74:f5:7d:95: 11:3b:24:e8:a2:b9:33:b4:0a:e4:e5:4a:22:d9:9f: f9:9d:b6:86:17:40:06:6d:67:6f:e8:56:00:29:6d: e8:5a:ae:2c:cd:5d:61:61:fe:90:00:2c:9d:97:60: 6c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:E3:33:A0:05:54:55:EB:8F:B2:81:38:DA:B9:E3:82:87:1C:58:82 X509v3 Authority Key Identifier: keyid:C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137322e302f32342d3234203d3e20313333333534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.217.172.0/24 Signature Algorithm: sha256WithRSAEncryption 54:72:0e:49:13:20:a0:fe:38:ad:eb:65:7d:59:59:cb:11:48: 18:92:d2:97:8f:fd:fa:b5:b5:9b:9e:cc:e6:76:e3:21:d7:ac: 08:19:2f:4d:78:fe:17:1c:62:25:01:11:81:f2:ac:0f:6a:f3: 57:7b:f4:e5:ee:7c:e9:46:c4:43:f6:bf:9b:14:a1:c2:42:48: 5f:8e:be:13:47:60:65:4e:4b:a0:b8:9f:32:c7:c1:22:4d:83: 15:e6:b5:8b:93:51:1e:3f:22:24:17:fb:11:97:96:72:33:74: b4:bd:45:af:8a:74:13:e7:0b:e9:9d:cc:22:7d:4a:a6:96:01: 28:44:d0:00:72:39:a7:44:7f:8c:da:03:88:35:3e:d6:87:f0: 49:93:ff:dd:5f:6a:ea:3c:d3:1b:9c:97:26:85:82:a9:9d:8c: 00:a4:42:64:ac:b9:38:37:b6:73:7d:d9:0e:38:98:e7:01:62: a5:b3:46:b5:85:d8:07:21:02:4b:5d:a8:9a:70:9f:fb:44:7b: c4:07:eb:2a:bd:d3:ae:87:d6:d4:45:b0:19:35:68:8c:b8:46: 1c:64:aa:a1:a1:02:91:19:fe:38:e9:1d:88:97:e7:bb:b5:db: 88:07:bf:40:f5:6a:8d:ae:56:4f:e5:c7:47:d1:fd:45:33:9f: 16:51:5f:da -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUF4uOXZYtDFYwLMJG4aimReohT6swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBDQjUwOEY3RDFBOUVGOTA0OUNDRjlFQkQwNTk2RTc2 OTNDMkZDNjAeFw0yNDA5MjQxNzA4MjlaFw0yNTA5MjMxNzEzMjlaMDMxMTAvBgNV BAMTKDAxRTMzM0EwMDU1NDU1RUI4RkIyODEzOERBQjlFMzgyODcxQzU4ODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqYt447Hfnsj1nEsi8GpoZxzH1 o0vYIhoQEo1guIw9ZJAjrjAi+2WEW8aGJUapAhFWYSh3pnzue55Q+0sLSOh42au/ 1k0djuXPVa3KJOtxwnwpmAuphoQ0hsIOg142uLAhTp7P/J0v4ddw6TEnXqmxThxj WzdXlwu/rPitIx3XgXkbvUVzgzEqkI9Cj6pM8bn20Uu9tsXchH2adjkxXwYgMMUg qulFAD2E2B1XSwm8trc+OUr8LijDwLp9kUkMIoH4KMBtw/yckHkl4kQEdPV9lRE7 JOiiuTO0CuTlSiLZn/mdtoYXQAZtZ2/oVgApbeharizNXWFh/pAALJ2XYGx3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUAeMzoAVUVeuPsoE42rnjgoccWIIwHwYDVR0j BBgwFoAUwMtQj30anvkEnM+evQWW52k8L8YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2U0NTAzOS02ZWQwLTQ4M2QtYTFiOS1jNGY0ODU0YzVjZjUvMC9DMENCNTA4RjdE MUE5RUY5MDQ5Q0NGOUVCRDA1OTZFNzY5M0MyRkM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzBDQjUwOEY3RDFBOUVGOTA0OUNDRjlFQkQwNTk2RTc2OTND MkZDNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzZTQ1MDM5LTZlZDAtNDgzZC1h MWI5LWM0ZjQ4NTRjNWNmNS8wLzMxMzAzMzJlMzIzMTM3MmUzMTM3MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzMzM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn2awwDQYJ KoZIhvcNAQELBQADggEBAFRyDkkTIKD+OK3rZX1ZWcsRSBiS0peP/fq1tZuezOZ2 4yHXrAgZL014/hccYiUBEYHyrA9q81d79OXufOlGxEP2v5sUocJCSF+OvhNHYGVO S6C4nzLHwSJNgxXmtYuTUR4/IiQX+xGXlnIzdLS9Ra+KdBPnC+mdzCJ9SqaWAShE 0AByOadEf4zaA4g1PtaH8EmT/91fauo80xuclyaFgqmdjACkQmSsuTg3tnN92Q44 mOcBYqWzRrWF2AchAktdqJpwn/tEe8QH6yq9066H1tRFsBk1aIy4RhxkqqGhApEZ /jjpHYiX57u124gHv0D1ao2uVk/lx0fR/UUznxZRX9o= -----END CERTIFICATE-----Generated at Mon Nov 25 15:49:32 2024 by rpki-client on console-ams.rpki-client.org