$ rpki-client -vvf repo-rpki.idnic.net/repo/1653247a-a56e-424a-a07b-36a2511d7caa/0/3130332e31332e3133392e302f32342d3234203d3e20313530323135.roa File: 3130332e31332e3133392e302f32342d3234203d3e20313530323135.roa (raw, json) Hash identifier: qP3Hd0jYELSgERJemItwOkIGwYts7IZIuX5SZqeDBqU= Subject key identifier: 88:34:CB:35:A6:4B:79:5C:C5:10:A2:E8:F1:FE:53:9A:14:4F:A1:C8 Certificate issuer: /CN=FE880CC93B6284E6833106A5BEB71A0CDDE57C0B Certificate serial: 7A8DBD62D8C070EA0DA699305A9D018B9932DD59 Authority key identifier: FE:88:0C:C9:3B:62:84:E6:83:31:06:A5:BE:B7:1A:0C:DD:E5:7C:0B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE880CC93B6284E6833106A5BEB71A0CDDE57C0B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1653247a-a56e-424a-a07b-36a2511d7caa/0/3130332e31332e3133392e302f32342d3234203d3e20313530323135.roa Signing time: Sat 03 Aug 2024 05:44:28 +0000 ROA not before: Sat 03 Aug 2024 05:39:28 +0000 ROA not after: Sat 02 Aug 2025 05:44:28 +0000 asID: 150215 IP address blocks: 103.13.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1653247a-a56e-424a-a07b-36a2511d7caa/0/FE880CC93B6284E6833106A5BEB71A0CDDE57C0B.crl rsync://repo-rpki.idnic.net/repo/1653247a-a56e-424a-a07b-36a2511d7caa/0/FE880CC93B6284E6833106A5BEB71A0CDDE57C0B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE880CC93B6284E6833106A5BEB71A0CDDE57C0B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:8d:bd:62:d8:c0:70:ea:0d:a6:99:30:5a:9d:01:8b:99:32:dd:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FE880CC93B6284E6833106A5BEB71A0CDDE57C0B Validity Not Before: Aug 3 05:39:28 2024 GMT Not After : Aug 2 05:44:28 2025 GMT Subject: CN=8834CB35A64B795CC510A2E8F1FE539A144FA1C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:04:37:a5:bb:28:15:2e:1b:e1:be:ff:0b:56: 0a:2a:e3:62:ff:88:7f:36:d7:12:80:d2:e6:22:0f: 6c:13:f2:ef:67:48:d5:f0:93:42:3b:07:94:df:bf: b6:6a:99:21:ce:62:8b:a9:ba:27:06:2f:69:03:3e: a6:c5:99:fa:a1:19:91:94:0b:c7:fa:7f:44:d6:4d: 47:d3:92:31:a1:97:00:db:09:d6:c2:e5:a2:80:3b: 42:91:1d:dd:8d:f8:7d:84:b8:36:2b:58:07:88:f6: fd:a6:5e:57:ee:df:3e:25:50:ac:93:68:07:7e:0f: a4:8a:a3:e3:30:46:0e:79:bc:3c:06:4c:19:c8:5d: 09:ac:1a:3a:a4:2f:d5:0b:ef:1e:1a:68:dd:6d:cf: 69:f9:99:d6:c1:dd:52:49:77:5f:7a:ae:c9:ee:34: 8a:9b:0f:ce:e3:e2:3e:f9:6f:22:4b:07:70:5b:a8: 49:fa:6b:45:49:e9:f7:a3:65:6a:29:59:07:ef:a4: 0f:87:3c:21:af:c2:84:47:e1:18:1d:8e:85:6a:d7: 71:4a:73:9d:7f:8b:2c:75:f2:7e:18:25:10:a0:ca: 20:8e:67:88:dc:cb:32:6d:f0:80:09:bf:cb:3c:a0: 62:08:ac:5d:2d:90:6a:9d:c2:3d:ec:91:50:34:44: 12:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:34:CB:35:A6:4B:79:5C:C5:10:A2:E8:F1:FE:53:9A:14:4F:A1:C8 X509v3 Authority Key Identifier: keyid:FE:88:0C:C9:3B:62:84:E6:83:31:06:A5:BE:B7:1A:0C:DD:E5:7C:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1653247a-a56e-424a-a07b-36a2511d7caa/0/FE880CC93B6284E6833106A5BEB71A0CDDE57C0B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE880CC93B6284E6833106A5BEB71A0CDDE57C0B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1653247a-a56e-424a-a07b-36a2511d7caa/0/3130332e31332e3133392e302f32342d3234203d3e20313530323135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.13.139.0/24 Signature Algorithm: sha256WithRSAEncryption 16:5e:21:eb:86:bc:e9:bf:7d:80:53:d9:7b:f8:13:af:84:ed: 4e:6a:3b:90:32:f9:76:3b:00:02:f1:d7:45:b3:dc:ec:0a:41: f2:05:c8:47:3d:eb:f3:32:89:e0:a1:24:e8:9a:b9:f8:d9:f9: 40:f5:47:bb:e0:68:01:4c:1b:18:a3:e9:5e:01:64:72:76:e6: de:91:d8:4f:70:de:b2:61:f7:9c:27:66:95:73:cb:fa:c5:fb: a7:a0:8c:a6:f5:a2:af:cc:b8:5f:c3:9b:b2:26:5d:25:8d:6e: 66:78:3d:6e:e7:d2:47:15:17:da:11:29:86:58:32:9f:a8:7a: 78:ce:a0:df:13:8a:d5:3b:27:88:95:d9:f6:30:b3:14:c8:02: 9e:2b:64:62:33:93:6f:e7:6a:8a:fd:f8:d4:e9:57:a4:9c:d6: 24:78:41:51:d4:e2:d3:2a:e4:5f:97:b8:fa:90:df:2c:b6:6a: a4:71:b1:87:6d:c7:ea:42:28:67:4c:7f:53:46:ce:3f:43:d2: 26:12:1a:b0:cb:ac:a9:95:11:de:e1:a0:2c:88:2c:95:78:d2: f9:91:d3:2d:ca:3d:42:75:2b:9a:23:16:74:0d:72:b4:90:48: 00:cd:56:60:bb:f7:52:44:a9:6b:74:79:e0:2c:5f:cb:fd:18: 63:e6:60:61 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeo29YtjAcOoNppkwWp0Bi5ky3VkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkU4ODBDQzkzQjYyODRFNjgzMzEwNkE1QkVCNzFBMENE REU1N0MwQjAeFw0yNDA4MDMwNTM5MjhaFw0yNTA4MDIwNTQ0MjhaMDMxMTAvBgNV BAMTKDg4MzRDQjM1QTY0Qjc5NUNDNTEwQTJFOEYxRkU1MzlBMTQ0RkExQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+BDeluygVLhvhvv8LVgoq42L/ iH821xKA0uYiD2wT8u9nSNXwk0I7B5Tfv7ZqmSHOYoupuicGL2kDPqbFmfqhGZGU C8f6f0TWTUfTkjGhlwDbCdbC5aKAO0KRHd2N+H2EuDYrWAeI9v2mXlfu3z4lUKyT aAd+D6SKo+MwRg55vDwGTBnIXQmsGjqkL9UL7x4aaN1tz2n5mdbB3VJJd196rsnu NIqbD87j4j75byJLB3BbqEn6a0VJ6fejZWopWQfvpA+HPCGvwoRH4RgdjoVq13FK c51/iyx18n4YJRCgyiCOZ4jcyzJt8IAJv8s8oGIIrF0tkGqdwj3skVA0RBJbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUiDTLNaZLeVzFEKLo8f5TmhRPocgwHwYDVR0j BBgwFoAU/ogMyTtihOaDMQalvrcaDN3lfAswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NjUzMjQ3YS1hNTZlLTQyNGEtYTA3Yi0zNmEyNTExZDdjYWEvMC9GRTg4MENDOTNC NjI4NEU2ODMzMTA2QTVCRUI3MUEwQ0RERTU3QzBCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkU4ODBDQzkzQjYyODRFNjgzMzEwNkE1QkVCNzFBMENEREU1 N0MwQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2NTMyNDdhLWE1NmUtNDI0YS1h MDdiLTM2YTI1MTFkN2NhYS8wLzMxMzAzMzJlMzEzMzJlMzEzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzIzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZw2LMA0GCSqG SIb3DQEBCwUAA4IBAQAWXiHrhrzpv32AU9l7+BOvhO1OajuQMvl2OwAC8ddFs9zs CkHyBchHPevzMongoSTomrn42flA9Ue74GgBTBsYo+leAWRydubekdhPcN6yYfec J2aVc8v6xfunoIym9aKvzLhfw5uyJl0ljW5meD1u59JHFRfaESmGWDKfqHp4zqDf E4rVOyeIldn2MLMUyAKeK2RiM5Nv52qK/fjU6VeknNYkeEFR1OLTKuRfl7j6kN8s tmqkcbGHbcfqQihnTH9TRs4/Q9ImEhqwy6yplRHe4aAsiCyVeNL5kdMtyj1CdSua IxZ0DXK0kEgAzVZgu/dSRKlrdHngLF/L/Rhj5mBh -----END CERTIFICATE-----Generated at Mon Nov 25 04:52:34 2024 by rpki-client on console-fra.rpki-client.org