$ rpki-client -vvf repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/3130332e32312e3232342e302f32342d3234203d3e20313331373430.roa File: 3130332e32312e3232342e302f32342d3234203d3e20313331373430.roa (raw, json) Hash identifier: kgwSBgAj0NAHhQ0HBlTTWI79Lga9cujB96EsuYLHI+s= Subject key identifier: AC:1F:4C:DE:23:F1:BF:34:80:30:EB:CA:18:FF:61:7B:27:77:21:53 Certificate issuer: /CN=AEB32FFA0007C0A067FB8CE9DD77CFEF92310504 Certificate serial: 2F46CA81445F77D90CCC3ECE95FC27CFFD0563EE Authority key identifier: AE:B3:2F:FA:00:07:C0:A0:67:FB:8C:E9:DD:77:CF:EF:92:31:05:04 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/3130332e32312e3232342e302f32342d3234203d3e20313331373430.roa Signing time: Fri 02 Aug 2024 12:00:01 +0000 ROA not before: Fri 02 Aug 2024 11:55:01 +0000 ROA not after: Fri 01 Aug 2025 12:00:01 +0000 asID: 131740 IP address blocks: 103.21.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.crl rsync://repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 22:16:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:46:ca:81:44:5f:77:d9:0c:cc:3e:ce:95:fc:27:cf:fd:05:63:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEB32FFA0007C0A067FB8CE9DD77CFEF92310504 Validity Not Before: Aug 2 11:55:01 2024 GMT Not After : Aug 1 12:00:01 2025 GMT Subject: CN=AC1F4CDE23F1BF348030EBCA18FF617B27772153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1e:5e:b8:66:d2:71:d0:c5:ed:f5:0d:95:6f: 73:ec:95:74:30:83:c1:06:70:5b:df:83:f4:0f:76: 09:b1:82:60:89:54:dd:85:69:d9:d3:2a:93:c1:25: 66:f1:54:23:c0:18:d0:90:5b:21:eb:a0:1d:2f:26: 94:48:be:10:45:21:94:d7:97:e4:ee:05:ca:58:07: 60:f4:9f:ec:ba:43:0f:0e:67:5c:be:8e:74:97:28: 5a:2b:b4:95:25:aa:19:ad:8a:9f:4b:94:ef:cb:5a: 61:f5:71:6e:cd:35:b7:f9:52:c0:58:48:8c:41:6c: 33:0e:bc:32:0d:01:4b:41:ba:29:f3:8a:27:e4:d2: 26:5f:2e:a2:cb:61:74:a0:5d:8f:76:d3:14:12:1f: a5:1c:07:cd:a3:02:d1:15:c7:f7:e7:0c:1f:d3:59: 2d:86:ba:3f:8a:53:3e:5c:33:3b:ca:0d:d7:66:d6: ac:27:6f:48:2d:f1:bc:71:2e:89:a3:6b:59:4c:92: a6:1e:1d:44:e3:f8:95:24:81:70:ed:3b:10:5f:22: a1:67:bc:2c:b7:bc:47:a5:ae:d7:59:31:b1:69:e9: fb:b8:14:14:1d:dc:e8:40:fb:bf:63:0a:bc:cc:03: 0a:08:40:a8:87:18:c7:6a:99:57:c4:5e:44:2c:82: e5:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:1F:4C:DE:23:F1:BF:34:80:30:EB:CA:18:FF:61:7B:27:77:21:53 X509v3 Authority Key Identifier: keyid:AE:B3:2F:FA:00:07:C0:A0:67:FB:8C:E9:DD:77:CF:EF:92:31:05:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB32FFA0007C0A067FB8CE9DD77CFEF92310504.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fc6f832b-5a9e-4caa-bdd4-2634727a9ed4/0/3130332e32312e3232342e302f32342d3234203d3e20313331373430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.224.0/24 Signature Algorithm: sha256WithRSAEncryption 53:cd:97:7d:57:4d:b2:7a:4a:19:bc:6d:ff:98:3b:8f:ee:46: b5:43:e5:89:96:a9:1f:48:0f:2f:1b:b7:8b:c6:79:31:30:87: 7b:e9:ef:62:42:75:30:cf:0d:1d:76:b6:81:7f:1f:90:76:bd: b9:25:50:29:df:55:bf:d5:6e:de:f0:5d:3b:bb:7a:7d:4d:8e: 87:de:6c:30:3d:df:67:ed:f9:59:48:26:eb:03:5a:4d:0c:f8: c3:e7:9e:d1:04:1c:2f:76:b2:1b:98:88:12:25:da:84:85:10: 24:ba:2b:c9:76:fb:1b:63:ee:8d:a4:cd:b7:9a:33:7f:51:6e: f7:60:f7:35:08:9d:ba:bb:5c:be:a3:3f:ac:4f:cf:cd:1a:53: 8a:d2:bf:4a:de:a2:68:59:94:7a:7a:86:04:e7:5c:e3:1c:d0: b3:3b:67:62:4c:e2:e9:f1:31:e0:78:52:53:62:ba:8a:73:e6: ad:4b:bd:94:51:3b:0c:41:46:6c:38:c4:f7:1b:b3:af:1a:9f: 1c:bf:18:a5:f0:2b:80:9a:e7:01:6b:8c:d3:e4:e5:0e:71:84: 1a:70:1b:45:4f:fc:c9:41:e1:ab:8e:6c:48:21:4f:f5:4b:63: 7a:1d:9f:12:fa:79:e5:7a:a4:1c:0a:40:2e:ea:a2:06:d3:40: 55:98:8d:93 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUL0bKgURfd9kMzD7Olfwnz/0FY+4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVCMzJGRkEwMDA3QzBBMDY3RkI4Q0U5REQ3N0NGRUY5 MjMxMDUwNDAeFw0yNDA4MDIxMTU1MDFaFw0yNTA4MDExMjAwMDFaMDMxMTAvBgNV BAMTKEFDMUY0Q0RFMjNGMUJGMzQ4MDMwRUJDQTE4RkY2MTdCMjc3NzIxNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnHl64ZtJx0MXt9Q2Vb3PslXQw g8EGcFvfg/QPdgmxgmCJVN2FadnTKpPBJWbxVCPAGNCQWyHroB0vJpRIvhBFIZTX l+TuBcpYB2D0n+y6Qw8OZ1y+jnSXKFortJUlqhmtip9LlO/LWmH1cW7NNbf5UsBY SIxBbDMOvDINAUtBuinziifk0iZfLqLLYXSgXY920xQSH6UcB82jAtEVx/fnDB/T WS2Guj+KUz5cMzvKDddm1qwnb0gt8bxxLomja1lMkqYeHUTj+JUkgXDtOxBfIqFn vCy3vEelrtdZMbFp6fu4FBQd3OhA+79jCrzMAwoIQKiHGMdqmVfEXkQsguXdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrB9M3iPxvzSAMOvKGP9heyd3IVMwHwYDVR0j BBgwFoAUrrMv+gAHwKBn+4zp3XfP75IxBQQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YzZmODMyYi01YTllLTRjYWEtYmRkNC0yNjM0NzI3YTllZDQvMC9BRUIzMkZGQTAw MDdDMEEwNjdGQjhDRTlERDc3Q0ZFRjkyMzEwNTA0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUVCMzJGRkEwMDA3QzBBMDY3RkI4Q0U5REQ3N0NGRUY5MjMx MDUwNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZjNmY4MzJiLTVhOWUtNGNhYS1i ZGQ0LTI2MzQ3MjdhOWVkNC8wLzMxMzAzMzJlMzIzMTJlMzIzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxXgMA0GCSqG SIb3DQEBCwUAA4IBAQBTzZd9V02yekoZvG3/mDuP7ka1Q+WJlqkfSA8vG7eLxnkx MId76e9iQnUwzw0ddraBfx+Qdr25JVAp31W/1W7e8F07u3p9TY6H3mwwPd9n7flZ SCbrA1pNDPjD557RBBwvdrIbmIgSJdqEhRAkuivJdvsbY+6NpM23mjN/UW73YPc1 CJ26u1y+oz+sT8/NGlOK0r9K3qJoWZR6eoYE51zjHNCzO2diTOLp8THgeFJTYrqK c+atS72UUTsMQUZsOMT3G7OvGp8cvxil8CuAmucBa4zT5OUOcYQacBtFT/zJQeGr jmxIIU/1S2N6HZ8S+nnleqQcCkAu6qIG00BVmI2T -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org