$ rpki-client -vvf repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3233322e33332e302f32342d3234203d3e20313333333534.roa File: 3130332e3233322e33332e302f32342d3234203d3e20313333333534.roa (raw, json) Hash identifier: IoXihcWrLe60DlpQzVRAOXX3umofZd3ManAso30bXVY= Subject key identifier: 58:F5:1F:C4:D2:75:7E:F6:78:B2:65:32:6F:14:88:B9:CF:87:72:41 Certificate issuer: /CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6 Certificate serial: 538206584ECE51A85A01DA210A819A5434B1D342 Authority key identifier: C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3233322e33332e302f32342d3234203d3e20313333333534.roa Signing time: Tue 24 Sep 2024 17:12:42 +0000 ROA not before: Tue 24 Sep 2024 17:07:42 +0000 ROA not after: Tue 23 Sep 2025 17:12:42 +0000 asID: 133354 IP address blocks: 103.232.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.crl rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 20:48:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:82:06:58:4e:ce:51:a8:5a:01:da:21:0a:81:9a:54:34:b1:d3:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6 Validity Not Before: Sep 24 17:07:42 2024 GMT Not After : Sep 23 17:12:42 2025 GMT Subject: CN=58F51FC4D2757EF678B265326F1488B9CF877241 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:db:64:69:1e:d1:f8:b9:34:49:e9:39:db:6a: 5d:8e:8d:0b:82:db:ea:9e:4c:9e:b0:77:49:d8:40: 40:5d:d0:c3:3b:83:78:65:31:6a:38:18:16:be:cc: 1d:21:b7:de:36:f7:5e:10:97:1d:ab:ab:02:bf:f3: 2c:9d:75:fb:49:c4:62:83:98:14:9e:5d:2c:94:d8: 31:c5:44:4a:48:3c:8e:9c:f1:3b:b4:9c:87:cd:b8: 86:50:85:cd:8b:4d:5c:e3:23:4f:a3:44:2a:ee:b4: f6:94:cb:4b:23:5e:29:dc:62:9d:21:46:ef:57:2c: 4c:cb:7f:7d:cb:96:28:f8:d0:fc:77:ec:69:46:14: 8e:e7:9a:7d:b1:60:c7:5f:02:2c:c4:37:9c:02:55: 65:a3:0b:13:1d:31:87:8f:23:f8:ad:5a:fe:b1:1c: e7:26:35:16:48:3d:54:8d:72:ea:1c:2a:4c:3c:29: e3:75:39:d9:b6:57:aa:6e:ff:bb:79:88:2c:1b:33: ba:a3:d9:6b:e4:c2:c5:f9:3a:85:28:c9:8a:2e:1b: d4:b7:9c:cb:71:af:09:be:6b:28:9b:b3:ac:da:be: c1:64:35:d6:f8:42:38:5a:f4:b2:b3:d6:5d:25:1f: f1:11:bf:40:3b:0e:1a:eb:1d:4d:18:6a:ef:5b:0f: 0c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:F5:1F:C4:D2:75:7E:F6:78:B2:65:32:6F:14:88:B9:CF:87:72:41 X509v3 Authority Key Identifier: keyid:C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3233322e33332e302f32342d3234203d3e20313333333534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.232.33.0/24 Signature Algorithm: sha256WithRSAEncryption 24:5b:ba:fe:53:72:0f:dd:bd:fd:8c:76:99:f2:c1:ce:4d:1c: af:76:15:81:29:b0:37:72:4c:96:fa:97:f9:43:c1:24:7d:1a: d7:d2:f6:04:92:17:5b:a7:73:48:7f:0b:0c:f7:90:eb:53:4c: 7e:c6:8e:76:69:ce:f8:87:7b:7c:97:d5:d0:a5:86:cb:99:43: 02:19:87:7c:b4:5e:cd:dc:bc:e4:25:35:93:4c:c1:d6:28:fd: 09:a6:30:11:a6:46:5c:80:34:a9:c6:98:f1:eb:c0:4f:33:50: cb:65:d9:7a:38:84:c9:c3:1b:50:d9:93:c9:20:b3:1b:41:e1: 52:b3:e3:85:ef:33:6c:a6:a8:2f:12:de:5e:b1:9f:11:8e:80: 86:7b:55:1e:d1:e0:0f:d8:b6:19:d9:08:3f:cc:57:c0:00:64: a3:3b:52:49:b8:6b:5c:2b:1a:f6:fb:17:66:d0:d4:14:e1:2b: ec:ed:19:8d:35:ab:14:c7:46:d9:85:41:63:8b:59:42:34:66: f1:48:1b:69:38:2d:05:da:45:c2:a4:35:16:3f:41:15:b8:24: 76:be:d9:f8:c0:20:ba:26:c7:7d:ca:54:aa:00:85:75:c4:6d: cb:fb:b7:4e:74:19:34:b8:61:e1:d2:26:df:f2:bf:0f:ab:17: 6e:f9:20:29 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUU4IGWE7OUahaAdohCoGaVDSx00IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBDQjUwOEY3RDFBOUVGOTA0OUNDRjlFQkQwNTk2RTc2 OTNDMkZDNjAeFw0yNDA5MjQxNzA3NDJaFw0yNTA5MjMxNzEyNDJaMDMxMTAvBgNV BAMTKDU4RjUxRkM0RDI3NTdFRjY3OEIyNjUzMjZGMTQ4OEI5Q0Y4NzcyNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU22RpHtH4uTRJ6Tnbal2OjQuC 2+qeTJ6wd0nYQEBd0MM7g3hlMWo4GBa+zB0ht942914Qlx2rqwK/8yyddftJxGKD mBSeXSyU2DHFREpIPI6c8Tu0nIfNuIZQhc2LTVzjI0+jRCrutPaUy0sjXincYp0h Ru9XLEzLf33Llij40Px37GlGFI7nmn2xYMdfAizEN5wCVWWjCxMdMYePI/itWv6x HOcmNRZIPVSNcuocKkw8KeN1Odm2V6pu/7t5iCwbM7qj2WvkwsX5OoUoyYouG9S3 nMtxrwm+ayibs6zavsFkNdb4Qjha9LKz1l0lH/ERv0A7DhrrHU0Yau9bDwzjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWPUfxNJ1fvZ4smUybxSIuc+HckEwHwYDVR0j BBgwFoAUwMtQj30anvkEnM+evQWW52k8L8YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2U0NTAzOS02ZWQwLTQ4M2QtYTFiOS1jNGY0ODU0YzVjZjUvMC9DMENCNTA4RjdE MUE5RUY5MDQ5Q0NGOUVCRDA1OTZFNzY5M0MyRkM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzBDQjUwOEY3RDFBOUVGOTA0OUNDRjlFQkQwNTk2RTc2OTND MkZDNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzZTQ1MDM5LTZlZDAtNDgzZC1h MWI5LWM0ZjQ4NTRjNWNmNS8wLzMxMzAzMzJlMzIzMzMyMmUzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzMzNTM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+ghMA0GCSqG SIb3DQEBCwUAA4IBAQAkW7r+U3IP3b39jHaZ8sHOTRyvdhWBKbA3ckyW+pf5Q8Ek fRrX0vYEkhdbp3NIfwsM95DrU0x+xo52ac74h3t8l9XQpYbLmUMCGYd8tF7N3Lzk JTWTTMHWKP0JpjARpkZcgDSpxpjx68BPM1DLZdl6OITJwxtQ2ZPJILMbQeFSs+OF 7zNspqgvEt5esZ8RjoCGe1Ue0eAP2LYZ2Qg/zFfAAGSjO1JJuGtcKxr2+xdm0NQU 4Svs7RmNNasUx0bZhUFji1lCNGbxSBtpOC0F2kXCpDUWP0EVuCR2vtn4wCC6Jsd9 ylSqAIV1xG3L+7dOdBk0uGHh0ibf8r8Pqxdu+SAp -----END CERTIFICATE-----Generated at Mon Nov 25 15:49:32 2024 by rpki-client on console-ams.rpki-client.org