$ rpki-client -vvf repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3233322e33322e302f32342d3234203d3e20313333333534.roa File: 3130332e3233322e33322e302f32342d3234203d3e20313333333534.roa (raw, json) Hash identifier: rvmmuygSDQqp3VTFfTdTUgUhuWy6VU7o/YE+GwA04qY= Subject key identifier: 9A:F1:C7:B8:5E:48:17:12:F3:A9:43:59:00:CF:89:A6:19:D5:FF:6D Certificate issuer: /CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6 Certificate serial: 468A1CD1F03C6085623772CDDCEF27B3E2380E03 Authority key identifier: C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3233322e33322e302f32342d3234203d3e20313333333534.roa Signing time: Tue 24 Sep 2024 17:12:33 +0000 ROA not before: Tue 24 Sep 2024 17:07:33 +0000 ROA not after: Tue 23 Sep 2025 17:12:33 +0000 asID: 133354 IP address blocks: 103.232.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.crl rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 20:48:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:8a:1c:d1:f0:3c:60:85:62:37:72:cd:dc:ef:27:b3:e2:38:0e:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6 Validity Not Before: Sep 24 17:07:33 2024 GMT Not After : Sep 23 17:12:33 2025 GMT Subject: CN=9AF1C7B85E481712F3A9435900CF89A619D5FF6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3f:58:29:80:90:a9:04:8f:0c:fd:4c:fa:35: 81:d8:08:19:7d:03:c6:ab:d7:17:01:7a:0c:7e:d6: 84:c6:90:55:02:17:28:c3:55:d3:cd:6f:05:eb:b5: 1f:03:99:30:75:a2:fd:dd:d2:70:71:a2:34:83:ce: 0b:1a:d0:30:2e:f3:71:c6:81:af:85:a3:b8:be:7c: 57:22:09:00:6d:a1:c0:88:f9:9a:06:6a:0b:0c:0c: 36:e7:1a:7e:4f:5a:55:42:1f:e2:eb:d1:2f:ca:2d: 0c:9b:b5:77:96:27:5c:f1:a3:28:f7:1b:2d:3d:d0: f3:fd:a3:b3:d4:14:7d:95:a3:81:2e:2d:57:7a:2b: 7a:1f:64:26:d3:5c:0a:14:a1:a9:9f:b9:7e:49:5c: e2:77:4e:7f:98:46:f4:ab:4c:9d:57:9c:c7:1f:3d: 5a:27:0c:f8:30:c6:2e:a2:2e:14:68:4c:e1:46:8b: b1:11:5c:62:fc:4e:e8:77:89:b0:73:67:1a:ea:93: 23:af:b6:ad:b1:87:47:f2:fb:ca:40:9c:33:1d:e5: c3:26:85:23:0c:29:ca:5c:ff:c8:a1:20:e3:ac:f0: 7c:ed:89:7a:61:ff:0e:fe:f7:e4:01:2e:81:30:74: 65:7f:82:af:f7:07:7f:96:05:73:ca:0e:69:ab:08: cb:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:F1:C7:B8:5E:48:17:12:F3:A9:43:59:00:CF:89:A6:19:D5:FF:6D X509v3 Authority Key Identifier: keyid:C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3233322e33322e302f32342d3234203d3e20313333333534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.232.32.0/24 Signature Algorithm: sha256WithRSAEncryption dd:18:4a:38:d5:96:f4:0b:f9:6c:0a:96:74:2b:5c:ab:0e:ef: 83:c7:b8:c2:93:91:05:fe:65:dd:76:d4:82:0c:27:7c:4c:1c: 59:d6:59:f4:58:b6:f9:88:27:d8:57:e6:26:18:73:85:d6:eb: 71:e0:07:92:c4:0f:76:d8:36:25:29:ae:ec:a9:41:8f:79:03: 66:e4:eb:73:d3:25:60:0c:16:c4:c9:b4:bc:17:4b:0a:eb:cc: 5a:b0:1a:4c:6a:33:48:83:cf:fa:e8:6f:e4:b3:69:b0:68:df: 66:6e:c8:2c:bb:f9:fb:47:a5:90:20:0b:a3:7a:91:a1:eb:6c: a8:62:3b:90:c4:fa:55:c8:3a:aa:2a:5b:01:6b:6d:db:4b:18: fb:58:f3:8f:84:71:b7:6d:fd:00:fe:a4:5e:a4:01:fd:b4:87: 90:2a:a6:5e:fb:10:64:cb:a9:33:9e:dc:25:69:9a:60:f6:7e: d3:d1:b6:11:6c:c2:2c:ba:1c:97:b6:2d:36:e7:3d:9a:52:7d: 19:76:87:34:0f:7b:ee:08:ed:db:f1:a4:05:be:87:5e:34:c3: fd:15:b6:81:eb:6f:25:c6:8f:12:a3:3c:94:56:62:b1:0f:7d: 1a:d1:8e:1c:c6:c5:63:4c:63:ff:3f:cc:3b:f3:f8:30:42:76: bb:83:ab:72 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURooc0fA8YIViN3LN3O8ns+I4DgMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBDQjUwOEY3RDFBOUVGOTA0OUNDRjlFQkQwNTk2RTc2 OTNDMkZDNjAeFw0yNDA5MjQxNzA3MzNaFw0yNTA5MjMxNzEyMzNaMDMxMTAvBgNV BAMTKDlBRjFDN0I4NUU0ODE3MTJGM0E5NDM1OTAwQ0Y4OUE2MTlENUZGNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4P1gpgJCpBI8M/Uz6NYHYCBl9 A8ar1xcBegx+1oTGkFUCFyjDVdPNbwXrtR8DmTB1ov3d0nBxojSDzgsa0DAu83HG ga+Fo7i+fFciCQBtocCI+ZoGagsMDDbnGn5PWlVCH+Lr0S/KLQybtXeWJ1zxoyj3 Gy090PP9o7PUFH2Vo4EuLVd6K3ofZCbTXAoUoamfuX5JXOJ3Tn+YRvSrTJ1XnMcf PVonDPgwxi6iLhRoTOFGi7ERXGL8Tuh3ibBzZxrqkyOvtq2xh0fy+8pAnDMd5cMm hSMMKcpc/8ihIOOs8HztiXph/w7+9+QBLoEwdGV/gq/3B3+WBXPKDmmrCMv9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmvHHuF5IFxLzqUNZAM+JphnV/20wHwYDVR0j BBgwFoAUwMtQj30anvkEnM+evQWW52k8L8YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2U0NTAzOS02ZWQwLTQ4M2QtYTFiOS1jNGY0ODU0YzVjZjUvMC9DMENCNTA4RjdE MUE5RUY5MDQ5Q0NGOUVCRDA1OTZFNzY5M0MyRkM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzBDQjUwOEY3RDFBOUVGOTA0OUNDRjlFQkQwNTk2RTc2OTND MkZDNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzZTQ1MDM5LTZlZDAtNDgzZC1h MWI5LWM0ZjQ4NTRjNWNmNS8wLzMxMzAzMzJlMzIzMzMyMmUzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzMzNTM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+ggMA0GCSqG SIb3DQEBCwUAA4IBAQDdGEo41Zb0C/lsCpZ0K1yrDu+Dx7jCk5EF/mXddtSCDCd8 TBxZ1ln0WLb5iCfYV+YmGHOF1utx4AeSxA922DYlKa7sqUGPeQNm5Otz0yVgDBbE ybS8F0sK68xasBpMajNIg8/66G/ks2mwaN9mbsgsu/n7R6WQIAujepGh62yoYjuQ xPpVyDqqKlsBa23bSxj7WPOPhHG3bf0A/qRepAH9tIeQKqZe+xBky6kzntwlaZpg 9n7T0bYRbMIsuhyXti025z2aUn0Zdoc0D3vuCO3b8aQFvodeNMP9FbaB628lxo8S ozyUVmKxD30a0Y4cxsVjTGP/P8w78/gwQna7g6ty -----END CERTIFICATE-----Generated at Mon Nov 25 15:49:32 2024 by rpki-client on console-ams.rpki-client.org