$ rpki-client -vvf repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/3130332e32392e3231322e302f32322d3234203d3e203538333737.roa File: 3130332e32392e3231322e302f32322d3234203d3e203538333737.roa (raw, json) Hash identifier: 2zg3+ojc2ldWr1hYGPlN7pWiEGKSHVQx8tzBkq6ETPg= Subject key identifier: F0:1C:F6:85:40:23:FF:AD:51:63:80:FC:81:12:42:52:6D:8C:82:07 Certificate issuer: /CN=43A0899A11D5A51202F1304338672AF19B201A74 Certificate serial: 1F3827ECE410CEA5B2DC505FF34BA08512F852E8 Authority key identifier: 43:A0:89:9A:11:D5:A5:12:02:F1:30:43:38:67:2A:F1:9B:20:1A:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/3130332e32392e3231322e302f32322d3234203d3e203538333737.roa Signing time: Wed 21 Feb 2024 07:00:02 +0000 ROA not before: Wed 21 Feb 2024 06:55:02 +0000 ROA not after: Wed 19 Feb 2025 07:00:02 +0000 asID: 58377 IP address blocks: 103.29.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.crl rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:38:27:ec:e4:10:ce:a5:b2:dc:50:5f:f3:4b:a0:85:12:f8:52:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43A0899A11D5A51202F1304338672AF19B201A74 Validity Not Before: Feb 21 06:55:02 2024 GMT Not After : Feb 19 07:00:02 2025 GMT Subject: CN=F01CF6854023FFAD516380FC811242526D8C8207 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:25:fa:0e:c9:0d:c1:f8:4b:31:6c:c5:81:4a: 86:1f:ee:8b:07:d1:78:fa:71:34:43:39:c5:f2:cd: f7:ab:d4:0a:85:2a:98:08:15:cd:8a:43:b5:c0:2a: 2b:8c:37:cc:b0:f8:91:b3:43:29:d8:66:da:c3:0b: f2:44:0b:3f:b1:69:f3:ab:eb:3e:6c:5a:c8:5d:90: cc:bb:4e:54:fa:16:0b:53:7f:49:72:0c:8d:6a:69: da:2f:b0:40:8a:f1:0e:8f:f6:2b:7f:ea:1c:4a:bb: bb:48:0b:7b:3f:a6:88:f5:d2:3e:54:e8:49:e4:46: 24:f7:69:28:cf:46:1f:cc:14:73:50:72:39:df:8a: 96:27:1c:b2:6e:c0:fd:ce:4c:06:6c:38:81:3e:40: 1f:6d:ba:13:42:42:d9:8b:df:4c:cd:09:2b:b0:c3: 0a:35:19:ee:ca:46:c3:82:07:30:15:a5:ef:0e:9f: a6:01:32:26:64:76:54:73:fb:75:bb:91:f3:c6:cb: 15:5c:ec:31:9b:ff:81:ae:49:90:9e:66:fa:d0:04: c7:34:af:1e:f1:26:b9:5b:cb:d9:8d:5f:e4:1e:d5: ef:b0:32:bf:a2:d2:50:b4:e8:e0:64:89:37:c8:7f: b2:cb:2c:8b:17:82:ed:88:3e:76:24:33:5d:bb:20: 59:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:1C:F6:85:40:23:FF:AD:51:63:80:FC:81:12:42:52:6D:8C:82:07 X509v3 Authority Key Identifier: keyid:43:A0:89:9A:11:D5:A5:12:02:F1:30:43:38:67:2A:F1:9B:20:1A:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/3130332e32392e3231322e302f32322d3234203d3e203538333737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.29.212.0/22 Signature Algorithm: sha256WithRSAEncryption 07:a5:67:53:14:5f:8d:76:14:62:9d:39:cb:74:6d:aa:16:fc: fe:d3:cd:ea:ab:90:ed:27:33:0f:e8:bf:c4:30:40:c1:03:4e: 27:3c:2f:67:0c:ad:4f:81:8a:0d:cd:8b:8e:7b:aa:14:3e:1c: f7:23:21:46:6d:72:75:24:c6:ca:cd:16:11:99:d0:db:45:99: b7:4f:d6:ab:35:42:6c:94:3f:da:b2:05:08:27:1f:d1:18:47: bf:f7:09:6b:8d:2c:70:56:9a:b1:06:aa:d7:87:22:ea:57:4e: ba:da:90:e8:80:e3:ca:1f:2c:b1:f5:c7:55:21:a3:96:67:fb: e9:2b:3b:b2:8c:1a:34:01:68:1d:3a:2a:e8:ce:a0:10:a0:43: 73:9e:f8:16:73:18:0b:cc:12:17:1d:af:5e:c0:f2:da:47:7d: 12:80:28:d5:0d:16:fc:40:43:4b:4a:fe:36:96:c2:b9:d4:9b: 0b:47:1f:3c:fc:07:6c:7d:ef:89:e2:98:57:f4:12:36:f0:f8: e1:40:ed:94:e6:6e:7c:f3:46:db:37:99:08:e6:d0:a8:52:b5: db:93:b7:0b:8a:16:6d:58:14:cb:84:19:70:dc:86:34:f0:69: 13:a3:5b:3b:23:5e:bc:67:5e:3f:e7:26:1c:36:07:45:73:d2: 63:93:47:0c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHzgn7OQQzqWy3FBf80ughRL4UugwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNBMDg5OUExMUQ1QTUxMjAyRjEzMDQzMzg2NzJBRjE5 QjIwMUE3NDAeFw0yNDAyMjEwNjU1MDJaFw0yNTAyMTkwNzAwMDJaMDMxMTAvBgNV BAMTKEYwMUNGNjg1NDAyM0ZGQUQ1MTYzODBGQzgxMTI0MjUyNkQ4QzgyMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxJfoOyQ3B+EsxbMWBSoYf7osH 0Xj6cTRDOcXyzfer1AqFKpgIFc2KQ7XAKiuMN8yw+JGzQynYZtrDC/JECz+xafOr 6z5sWshdkMy7TlT6FgtTf0lyDI1qadovsECK8Q6P9it/6hxKu7tIC3s/poj10j5U 6EnkRiT3aSjPRh/MFHNQcjnfipYnHLJuwP3OTAZsOIE+QB9tuhNCQtmL30zNCSuw wwo1Ge7KRsOCBzAVpe8On6YBMiZkdlRz+3W7kfPGyxVc7DGb/4GuSZCeZvrQBMc0 rx7xJrlby9mNX+Qe1e+wMr+i0lC06OBkiTfIf7LLLIsXgu2IPnYkM127IFk1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8Bz2hUAj/61RY4D8gRJCUm2MggcwHwYDVR0j BBgwFoAUQ6CJmhHVpRIC8TBDOGcq8ZsgGnQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDAxYjJkMS0wMWNhLTQwZTgtYmY3Ny05ODYxNTk4NjdhMDQvMC80M0EwODk5QTEx RDVBNTEyMDJGMTMwNDMzODY3MkFGMTlCMjAxQTc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDNBMDg5OUExMUQ1QTUxMjAyRjEzMDQzMzg2NzJBRjE5QjIw MUE3NC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0MDFiMmQxLTAxY2EtNDBlOC1i Zjc3LTk4NjE1OTg2N2EwNC8wLzMxMzAzMzJlMzIzOTJlMzIzMTMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzODMzMzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcd1DANBgkqhkiG 9w0BAQsFAAOCAQEAB6VnUxRfjXYUYp05y3Rtqhb8/tPN6quQ7SczD+i/xDBAwQNO JzwvZwytT4GKDc2LjnuqFD4c9yMhRm1ydSTGys0WEZnQ20WZt0/WqzVCbJQ/2rIF CCcf0RhHv/cJa40scFaasQaq14ci6ldOutqQ6IDjyh8ssfXHVSGjlmf76Ss7sowa NAFoHToq6M6gEKBDc574FnMYC8wSFx2vXsDy2kd9EoAo1Q0W/EBDS0r+NpbCudSb C0cfPPwHbH3vieKYV/QSNvD44UDtlOZufPNG2zeZCObQqFK125O3C4oWbVgUy4QZ cNyGNPBpE6NbOyNevGdeP+cmHDYHRXPSY5NHDA== -----END CERTIFICATE-----Generated at Fri Nov 22 23:37:26 2024 by rpki-client on console-fra.rpki-client.org