$ rpki-client -vvf repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/3130332e35322e31372e302f32342d3234203d3e20313333383131.roa File: 3130332e35322e31372e302f32342d3234203d3e20313333383131.roa (raw, json) Hash identifier: yblUfrf5SIh1ilGvgnHlCA4piWC1NnXyvHb/63k5VZg= Subject key identifier: B8:A0:C1:93:60:FA:58:4B:DD:43:59:DD:7D:91:4C:8D:F7:F4:44:6B Certificate issuer: /CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Certificate serial: 69E0CDD2EE448A9F9015239534FCF0016AA2D7E5 Authority key identifier: 82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/3130332e35322e31372e302f32342d3234203d3e20313333383131.roa Signing time: Mon 01 Jul 2024 01:02:30 +0000 ROA not before: Mon 01 Jul 2024 00:57:30 +0000 ROA not after: Mon 30 Jun 2025 01:02:30 +0000 asID: 133811 IP address blocks: 103.52.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 23:19:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:e0:cd:d2:ee:44:8a:9f:90:15:23:95:34:fc:f0:01:6a:a2:d7:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Validity Not Before: Jul 1 00:57:30 2024 GMT Not After : Jun 30 01:02:30 2025 GMT Subject: CN=B8A0C19360FA584BDD4359DD7D914C8DF7F4446B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:12:e1:af:94:e0:4b:ef:3d:5e:a5:a5:35:11: 03:8a:0c:60:49:2d:f0:34:41:86:2e:99:e4:52:cb: ad:29:14:1f:22:4d:90:ab:42:94:60:95:05:b1:30: ec:e2:8c:36:b3:d6:e5:b5:76:df:8a:3f:dd:e8:90: 19:41:c6:2e:48:56:a6:33:41:3b:e9:36:3e:f8:05: 5b:4e:35:fd:97:0c:3a:2d:1f:74:b0:37:d2:d5:c8: 63:89:d9:e4:b1:f6:16:1b:aa:b5:c9:95:55:e5:0d: 18:83:74:fb:bd:c9:89:5f:e2:36:cf:0a:4c:06:27: fc:a9:2a:1d:1a:23:27:ac:5c:1a:16:8e:7e:0d:b1: 76:d0:a5:95:9f:2c:08:c3:2c:33:36:71:6f:36:80: 63:69:f0:6b:5e:94:3f:fa:1e:88:ba:e4:e6:2a:48: 82:12:a6:10:f0:08:de:b3:c5:2c:62:75:78:a3:99: b6:9f:5c:c2:cb:0c:c2:e8:f2:2f:44:6a:9b:40:77: ae:0a:bc:e6:e8:ed:73:8f:50:07:bd:a9:e7:c9:d1: d9:13:b0:af:10:3f:01:62:fc:37:37:39:db:16:12: 08:b2:c6:8f:eb:b9:16:27:7e:d4:e8:c3:6b:9d:4e: ef:44:a3:7c:df:c6:d9:38:4b:ae:d0:db:5c:7e:77: 83:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:A0:C1:93:60:FA:58:4B:DD:43:59:DD:7D:91:4C:8D:F7:F4:44:6B X509v3 Authority Key Identifier: keyid:82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/3130332e35322e31372e302f32342d3234203d3e20313333383131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.52.17.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:8e:01:fe:a9:4f:d5:ea:e8:08:b4:3f:15:39:ba:e8:56:6b: 0b:75:f4:78:77:50:8b:58:8b:da:2e:16:7f:3a:95:a3:37:01: 2d:dc:0a:41:c4:c5:0e:6c:cc:95:70:f5:6b:09:3d:c1:8f:0f: 82:1c:d1:47:aa:ad:6f:6b:cf:b4:0e:c7:e1:0d:ed:f1:b4:d3: 54:a5:f1:45:d8:e7:d1:0d:3d:8d:a3:f0:6d:ae:43:8d:3c:0b: e9:e2:5c:16:2a:37:d4:ea:65:02:39:b0:ec:65:1b:cb:07:4c: c4:17:65:e5:a0:94:e7:1d:35:1b:55:dc:4d:ff:dc:92:ff:7f: 27:23:00:fb:19:e0:35:ed:b0:14:8e:8d:ec:80:c7:01:2c:15: 14:6d:bd:af:1d:32:7b:52:6b:90:e9:36:23:3a:94:44:59:24: 6f:1a:cf:50:03:74:f3:9d:a9:45:b6:d7:73:dd:95:f5:c9:54: 87:0a:fe:bb:0c:d9:1e:b1:01:56:e6:af:8b:3e:c4:48:2a:c1: 49:d4:95:88:c7:0b:ee:8e:30:62:85:69:8b:77:f6:0d:f3:67: a7:fc:87:fa:54:e1:c3:db:32:64:4b:ca:ed:d0:89:05:cc:77: 49:f7:61:ea:35:48:df:7c:69:63:38:05:59:5e:af:22:63:fe: 09:2c:d9:64 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaeDN0u5Eip+QFSOVNPzwAWqi1+UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIwNTNB OUMwQjZBMDAeFw0yNDA3MDEwMDU3MzBaFw0yNTA2MzAwMTAyMzBaMDMxMTAvBgNV BAMTKEI4QTBDMTkzNjBGQTU4NEJERDQzNTlERDdEOTE0QzhERjdGNDQ0NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKEuGvlOBL7z1epaU1EQOKDGBJ LfA0QYYumeRSy60pFB8iTZCrQpRglQWxMOzijDaz1uW1dt+KP93okBlBxi5IVqYz QTvpNj74BVtONf2XDDotH3SwN9LVyGOJ2eSx9hYbqrXJlVXlDRiDdPu9yYlf4jbP CkwGJ/ypKh0aIyesXBoWjn4NsXbQpZWfLAjDLDM2cW82gGNp8GtelD/6Hoi65OYq SIISphDwCN6zxSxidXijmbafXMLLDMLo8i9EaptAd64KvObo7XOPUAe9qefJ0dkT sK8QPwFi/Dc3OdsWEgiyxo/ruRYnftTow2udTu9Eo3zfxtk4S67Q21x+d4OlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUuKDBk2D6WEvdQ1ndfZFMjff0RGswHwYDVR0j BBgwFoAUgh8WWB+TGhmhS0Db8eKwU6nAtqAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YWRkN2MwZi0wMmQzLTQyMTctOWZjMy0wMDQ3YWUxODM2ZGMvMC84MjFGMTY1ODFG OTMxQTE5QTE0QjQwREJGMUUyQjA1M0E5QzBCNkEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIwNTNBOUMw QjZBMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZhZGQ3YzBmLTAyZDMtNDIxNy05 ZmMzLTAwNDdhZTE4MzZkYy8wLzMxMzAzMzJlMzUzMjJlMzEzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMzM4MzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc0ETANBgkqhkiG 9w0BAQsFAAOCAQEAf44B/qlP1eroCLQ/FTm66FZrC3X0eHdQi1iL2i4WfzqVozcB LdwKQcTFDmzMlXD1awk9wY8PghzRR6qtb2vPtA7H4Q3t8bTTVKXxRdjn0Q09jaPw ba5DjTwL6eJcFio31OplAjmw7GUbywdMxBdl5aCU5x01G1XcTf/ckv9/JyMA+xng Ne2wFI6N7IDHASwVFG29rx0ye1JrkOk2IzqURFkkbxrPUAN0852pRbbXc92V9clU hwr+uwzZHrEBVuaviz7ESCrBSdSViMcL7o4wYoVpi3f2DfNnp/yH+lThw9syZEvK 7dCJBcx3Sfdh6jVI33xpYzgFWV6vImP+CSzZZA== -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:58 2024 by rpki-client on console-ams.rpki-client.org