$ rpki-client -vvf repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3130332e32342e3130362e302f32332d3234203d3e203436303233.roa File: 3130332e32342e3130362e302f32332d3234203d3e203436303233.roa (raw, json) Hash identifier: i/IoOLtTiWJL/fLTKYcJEWWt6yIxNsdBzDyz0wVIt9E= Subject key identifier: DD:F8:B2:DA:EC:84:45:66:AE:2D:D9:9A:14:EC:B0:E1:B8:CE:1D:F2 Certificate issuer: /CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Certificate serial: 135C2778EA2EFAC8DC2033109ABD64A1E0AB3D5D Authority key identifier: 7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject info access: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3130332e32342e3130362e302f32332d3234203d3e203436303233.roa Signing time: Tue 12 Nov 2024 12:33:14 +0000 ROA not before: Tue 12 Nov 2024 12:28:14 +0000 ROA not after: Tue 11 Nov 2025 12:33:14 +0000 asID: 46023 IP address blocks: 103.24.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:5c:27:78:ea:2e:fa:c8:dc:20:33:10:9a:bd:64:a1:e0:ab:3d:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7DF6602C113DDEE922AA019C74EF4283764A4695 Validity Not Before: Nov 12 12:28:14 2024 GMT Not After : Nov 11 12:33:14 2025 GMT Subject: CN=DDF8B2DAEC844566AE2DD99A14ECB0E1B8CE1DF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:55:5c:a2:9e:6d:0a:77:19:f9:ad:42:b3:fc: f9:8a:c6:36:00:6c:ff:db:4d:36:5e:0b:76:83:dd: 17:cc:42:78:45:a3:1f:c2:f4:1d:f0:02:ea:78:a0: 85:75:43:e0:27:7a:1c:fa:1c:74:b2:35:ee:98:c2: 83:07:6f:98:b8:2c:3e:d3:20:c0:bd:83:89:bf:55: 6f:47:5f:6c:28:1a:d3:d3:d2:22:90:10:97:64:68: c2:36:28:97:b3:29:af:1c:5d:59:69:2b:0c:be:ac: 1f:60:f4:cb:09:09:4f:64:43:86:28:b1:a0:64:01: 9e:8d:f4:31:07:9b:e3:71:8e:a6:ff:96:1c:21:16: 22:3c:bf:3f:0a:48:43:4c:05:3b:f8:ae:43:59:13: 33:71:30:4b:0c:83:95:0e:23:b4:60:e8:ee:81:75: 8e:9f:c5:68:0d:df:87:b5:50:f7:2d:e7:72:52:4c: 65:5c:36:73:f0:c7:9e:70:25:1a:54:7d:66:26:90: 09:43:ae:6d:26:f8:52:eb:73:4b:44:69:f5:77:12: 2f:3b:fd:1a:2e:79:e7:a2:17:b0:83:e1:f4:b6:3a: 08:6d:b4:64:6d:d5:70:98:af:7f:92:92:8f:0f:45: 32:16:25:db:9c:7a:a7:ac:be:db:e6:53:e8:bf:ab: 84:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:F8:B2:DA:EC:84:45:66:AE:2D:D9:9A:14:EC:B0:E1:B8:CE:1D:F2 X509v3 Authority Key Identifier: keyid:7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/3130332e32342e3130362e302f32332d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.106.0/23 Signature Algorithm: sha256WithRSAEncryption c7:d3:44:f3:95:b2:5e:2e:0f:2b:ad:e2:77:14:d1:76:65:ee: f9:90:fe:9a:51:d8:96:af:0b:ed:11:28:0b:f8:bf:5c:59:c0: 7a:8d:10:b3:bf:52:8c:8d:a9:af:51:8a:cf:fb:24:65:c8:ff: 55:12:d9:81:8e:28:78:ca:7c:f0:db:76:65:00:48:37:32:9f: 7d:75:1f:0c:0d:3a:2f:3d:85:ca:14:bd:4a:c5:cf:0a:04:46: 41:0f:79:77:f8:65:bc:4d:0a:0a:fa:ca:d4:81:45:ff:eb:dd: 87:6f:21:26:8a:c3:55:2b:df:88:44:c4:92:2c:4d:1f:0b:4b: 25:6b:e4:fa:ca:cf:7c:2b:d5:be:83:27:a6:fb:0c:92:93:4c: df:6c:6b:b8:67:5b:60:b6:e9:3b:37:9b:27:7b:79:cb:92:2f: b3:9b:44:16:23:81:0f:a8:12:57:34:38:64:10:ef:f5:03:25: 44:96:d7:cf:78:79:dd:60:ff:50:0a:f6:5f:ee:db:42:e7:a6: dd:c4:66:e2:94:1c:2c:84:4f:88:5c:13:a7:fe:54:ed:03:02: b4:56:a8:15:41:f0:40:8a:cb:b6:05:2e:cd:d8:74:20:6a:7a: 0e:d3:fb:f5:09:12:50:7a:e5:89:0f:4a:02:06:7e:ad:71:fc: ae:3f:69:e3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUE1wneOou+sjcIDMQmr1koeCrPV0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3 NjRBNDY5NTAeFw0yNDExMTIxMjI4MTRaFw0yNTExMTExMjMzMTRaMDMxMTAvBgNV BAMTKERERjhCMkRBRUM4NDQ1NjZBRTJERDk5QTE0RUNCMEUxQjhDRTFERjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfVVyinm0Kdxn5rUKz/PmKxjYA bP/bTTZeC3aD3RfMQnhFox/C9B3wAup4oIV1Q+Anehz6HHSyNe6YwoMHb5i4LD7T IMC9g4m/VW9HX2woGtPT0iKQEJdkaMI2KJezKa8cXVlpKwy+rB9g9MsJCU9kQ4Yo saBkAZ6N9DEHm+Nxjqb/lhwhFiI8vz8KSENMBTv4rkNZEzNxMEsMg5UOI7Rg6O6B dY6fxWgN34e1UPct53JSTGVcNnPwx55wJRpUfWYmkAlDrm0m+FLrc0tEafV3Ei87 /RoueeeiF7CD4fS2OghttGRt1XCYr3+Sko8PRTIWJduceqesvtvmU+i/q4QZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU3fiy2uyERWauLdmaFOyw4bjOHfIwHwYDVR0j BBgwFoAUffZgLBE93ukiqgGcdO9Cg3ZKRpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MGE5ODViMC1lMTdhLTQyMWItOTY1NS0wMzI0NWEwMWFlZjgvMC83REY2NjAyQzEx M0RERUU5MjJBQTAxOUM3NEVGNDI4Mzc2NEE0Njk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0RGNjYwMkMxMTNEREVFOTIyQUEwMTlDNzRFRjQyODM3NjRB NDY5NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwYTk4NWIwLWUxN2EtNDIxYi05 NjU1LTAzMjQ1YTAxYWVmOC8wLzMxMzAzMzJlMzIzNDJlMzEzMDM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNjMwMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcYajANBgkqhkiG 9w0BAQsFAAOCAQEAx9NE85WyXi4PK63idxTRdmXu+ZD+mlHYlq8L7REoC/i/XFnA eo0Qs79SjI2pr1GKz/skZcj/VRLZgY4oeMp88Nt2ZQBINzKffXUfDA06Lz2FyhS9 SsXPCgRGQQ95d/hlvE0KCvrK1IFF/+vdh28hJorDVSvfiETEkixNHwtLJWvk+srP fCvVvoMnpvsMkpNM32xruGdbYLbpOzebJ3t5y5Ivs5tEFiOBD6gSVzQ4ZBDv9QMl RJbXz3h53WD/UAr2X+7bQuem3cRm4pQcLIRPiFwTp/5U7QMCtFaoFUHwQIrLtgUu zdh0IGp6DtP79QkSUHrliQ9KAgZ+rXH8rj9p4w== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:01 2024 by rpki-client on console-fra.rpki-client.org