$ rpki-client -vvf repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/3130332e3232352e3234322e302f32342d3234203d3e20313332363334.roa File: 3130332e3232352e3234322e302f32342d3234203d3e20313332363334.roa (raw, json) Hash identifier: VvHlwJjkzp/f4aEvB49xY0cR+dEFdY6LoapVGW4aAes= Subject key identifier: E8:3B:7D:5C:B6:89:4C:38:18:CF:DB:64:59:01:65:89:34:D9:06:60 Certificate issuer: /CN=0B47BFC94FDCEC084CD7B35536C8510E41F55130 Certificate serial: 32C05B45A9A675B06C47CE82ED6784BFA36080E1 Authority key identifier: 0B:47:BF:C9:4F:DC:EC:08:4C:D7:B3:55:36:C8:51:0E:41:F5:51:30 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0B47BFC94FDCEC084CD7B35536C8510E41F55130.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/3130332e3232352e3234322e302f32342d3234203d3e20313332363334.roa Signing time: Sat 13 Jan 2024 04:00:01 +0000 ROA not before: Sat 13 Jan 2024 03:55:01 +0000 ROA not after: Sat 11 Jan 2025 04:00:01 +0000 asID: 132634 IP address blocks: 103.225.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/0B47BFC94FDCEC084CD7B35536C8510E41F55130.crl rsync://repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/0B47BFC94FDCEC084CD7B35536C8510E41F55130.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0B47BFC94FDCEC084CD7B35536C8510E41F55130.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:c0:5b:45:a9:a6:75:b0:6c:47:ce:82:ed:67:84:bf:a3:60:80:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0B47BFC94FDCEC084CD7B35536C8510E41F55130 Validity Not Before: Jan 13 03:55:01 2024 GMT Not After : Jan 11 04:00:01 2025 GMT Subject: CN=E83B7D5CB6894C3818CFDB645901658934D90660 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:b5:0a:a1:90:f8:e2:4c:f3:fa:de:f5:7f:9b: f3:81:aa:66:13:30:fd:3f:a0:90:5a:be:2b:4e:0e: 11:e9:54:ad:d6:0b:ed:aa:78:89:39:54:7c:ce:57: b4:94:1d:ee:c0:3e:b2:c1:66:c5:25:2a:47:08:94: fc:8c:32:52:89:d5:d2:b8:d3:7b:f0:13:69:c0:26: a6:f1:12:f0:88:a1:84:c7:df:c4:9c:39:d5:1b:e2: f2:70:1e:27:43:81:b9:17:a4:c1:4a:36:69:9e:7a: c3:17:9b:12:f0:b7:fe:6b:ab:f1:2e:eb:5a:52:8f: 48:28:8b:2c:ed:f7:e6:6c:21:73:d3:65:03:9c:51: 47:81:df:4b:16:75:ae:a5:5d:2b:75:56:4c:a4:52: 75:67:ff:76:26:dc:bc:4b:5d:f4:bd:c8:b3:5a:63: c4:ac:02:88:84:fd:b9:71:bd:21:2e:b8:5b:c8:ee: 29:2f:18:c0:b1:e9:79:a2:f6:74:f0:9a:d2:3f:7d: 52:7f:45:3e:b9:ed:5c:6f:92:19:a0:72:42:fa:82: 07:95:c8:d8:44:6c:11:c2:b0:e4:15:df:e2:d1:e9: 7b:14:1e:61:11:18:30:f2:16:a0:07:55:38:44:be: 92:db:d7:b8:fc:5d:0c:8c:c7:db:bc:63:a9:b8:6d: b8:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:3B:7D:5C:B6:89:4C:38:18:CF:DB:64:59:01:65:89:34:D9:06:60 X509v3 Authority Key Identifier: keyid:0B:47:BF:C9:4F:DC:EC:08:4C:D7:B3:55:36:C8:51:0E:41:F5:51:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/0B47BFC94FDCEC084CD7B35536C8510E41F55130.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0B47BFC94FDCEC084CD7B35536C8510E41F55130.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/3130332e3232352e3234322e302f32342d3234203d3e20313332363334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.225.242.0/24 Signature Algorithm: sha256WithRSAEncryption 35:fb:82:5e:27:9f:7c:ce:a4:05:a4:f8:69:7b:28:4c:10:1d: c4:01:02:5a:df:fc:3a:36:92:74:08:95:07:3c:6b:e2:ec:f8: b1:0f:d3:d8:9c:63:71:93:e1:1c:82:fd:6f:51:7a:2e:dc:50: ce:b4:35:39:b5:5d:9c:f4:df:6f:84:4f:59:81:bb:39:21:42: c7:9e:1b:ce:a7:26:ae:c9:14:1d:5d:c8:67:d1:a1:62:ba:9d: 7a:44:03:f9:c3:cd:03:f3:aa:22:5f:e8:17:44:4a:cd:24:d3: 9d:fa:66:0a:04:16:94:ee:4f:74:bb:ae:32:c2:55:cd:03:61: 06:de:f9:44:5f:ed:f2:5b:10:b0:f3:17:47:83:62:5a:14:8c: 77:0d:76:13:6b:7e:03:04:49:b9:cc:60:0c:5d:2d:e7:09:ad: d9:66:28:7c:80:68:8c:3d:cc:75:c8:04:da:1a:3a:cb:02:45: 8b:bd:94:5f:b4:94:ca:f0:49:d2:b0:cb:bf:85:1c:cc:ed:02: 7d:c7:8d:9e:b6:47:58:42:96:be:b2:d0:55:6a:00:fa:fd:93: 24:81:19:b5:a6:94:0c:91:fc:c5:b9:d1:b1:82:6f:82:dc:82: b5:e2:0e:22:12:5b:02:35:4b:42:9a:43:91:3b:54:91:be:d6: 8d:df:12:48 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMsBbRammdbBsR86C7WeEv6NggOEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEI0N0JGQzk0RkRDRUMwODRDRDdCMzU1MzZDODUxMEU0 MUY1NTEzMDAeFw0yNDAxMTMwMzU1MDFaFw0yNTAxMTEwNDAwMDFaMDMxMTAvBgNV BAMTKEU4M0I3RDVDQjY4OTRDMzgxOENGREI2NDU5MDE2NTg5MzREOTA2NjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDttQqhkPjiTPP63vV/m/OBqmYT MP0/oJBavitODhHpVK3WC+2qeIk5VHzOV7SUHe7APrLBZsUlKkcIlPyMMlKJ1dK4 03vwE2nAJqbxEvCIoYTH38ScOdUb4vJwHidDgbkXpMFKNmmeesMXmxLwt/5rq/Eu 61pSj0goiyzt9+ZsIXPTZQOcUUeB30sWda6lXSt1VkykUnVn/3Ym3LxLXfS9yLNa Y8SsAoiE/blxvSEuuFvI7ikvGMCx6Xmi9nTwmtI/fVJ/RT657VxvkhmgckL6ggeV yNhEbBHCsOQV3+LR6XsUHmERGDDyFqAHVThEvpLb17j8XQyMx9u8Y6m4bbjhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU6Dt9XLaJTDgYz9tkWQFliTTZBmAwHwYDVR0j BBgwFoAUC0e/yU/c7AhM17NVNshRDkH1UTAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGY3YmUwNi05NjcyLTQ2NDEtOTdiZC05YmZkZjk1NWRlMTcvMC8wQjQ3QkZDOTRG RENFQzA4NENEN0IzNTUzNkM4NTEwRTQxRjU1MTMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEI0N0JGQzk0RkRDRUMwODRDRDdCMzU1MzZDODUxMEU0MUY1 NTEzMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwZjdiZTA2LTk2NzItNDY0MS05 N2JkLTliZmRmOTU1ZGUxNy8wLzMxMzAzMzJlMzIzMjM1MmUzMjM0MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzIzNjMzMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn4fIwDQYJ KoZIhvcNAQELBQADggEBADX7gl4nn3zOpAWk+Gl7KEwQHcQBAlrf/Do2knQIlQc8 a+Ls+LEP09icY3GT4RyC/W9Rei7cUM60NTm1XZz032+ET1mBuzkhQseeG86nJq7J FB1dyGfRoWK6nXpEA/nDzQPzqiJf6BdESs0k0536ZgoEFpTuT3S7rjLCVc0DYQbe +URf7fJbELDzF0eDYloUjHcNdhNrfgMESbnMYAxdLecJrdlmKHyAaIw9zHXIBNoa OssCRYu9lF+0lMrwSdKwy7+FHMztAn3HjZ62R1hClr6y0FVqAPr9kySBGbWmlAyR /MW50bGCb4LcgrXiDiISWwI1S0KaQ5E7VJG+1o3fEkg= -----END CERTIFICATE-----Generated at Sun Nov 24 11:34:08 2024 by rpki-client on console-fra.rpki-client.org