$ rpki-client -vvf repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/3130332e382e3233382e302f32342d3234203d3e20313332363334.roa File: 3130332e382e3233382e302f32342d3234203d3e20313332363334.roa (raw, json) Hash identifier: NylVEzXL/5C7BT5pU6Bs2ehe4F1U33BnM/T+bbxW6JQ= Subject key identifier: 67:17:B0:65:36:D9:4B:CD:54:F8:6E:A4:08:79:19:43:E9:2C:20:0C Certificate issuer: /CN=0B47BFC94FDCEC084CD7B35536C8510E41F55130 Certificate serial: 10CFF18D40605B0AB5481BFBA44816DD24AEFAA7 Authority key identifier: 0B:47:BF:C9:4F:DC:EC:08:4C:D7:B3:55:36:C8:51:0E:41:F5:51:30 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0B47BFC94FDCEC084CD7B35536C8510E41F55130.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/3130332e382e3233382e302f32342d3234203d3e20313332363334.roa Signing time: Sat 13 Jan 2024 10:00:01 +0000 ROA not before: Sat 13 Jan 2024 09:55:01 +0000 ROA not after: Sat 11 Jan 2025 10:00:01 +0000 asID: 132634 IP address blocks: 103.8.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/0B47BFC94FDCEC084CD7B35536C8510E41F55130.crl rsync://repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/0B47BFC94FDCEC084CD7B35536C8510E41F55130.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0B47BFC94FDCEC084CD7B35536C8510E41F55130.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:cf:f1:8d:40:60:5b:0a:b5:48:1b:fb:a4:48:16:dd:24:ae:fa:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0B47BFC94FDCEC084CD7B35536C8510E41F55130 Validity Not Before: Jan 13 09:55:01 2024 GMT Not After : Jan 11 10:00:01 2025 GMT Subject: CN=6717B06536D94BCD54F86EA408791943E92C200C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e5:1c:03:1e:5b:5d:b3:e1:df:d2:bd:0f:33: fd:50:6d:1c:71:26:4a:72:42:e3:47:cb:8b:43:08: 21:71:1e:fe:0b:07:2e:b6:2d:bc:20:c5:c3:7f:2b: dd:34:fe:c5:87:0f:57:a6:ad:8e:ab:a7:af:68:ac: 29:f2:4c:02:01:d3:c7:5b:8c:40:0a:48:c0:2d:5b: fc:85:49:d9:1a:a7:f6:fc:15:6d:6b:f9:0c:8c:bc: fe:cf:a7:2f:bb:ac:fb:d7:e3:17:93:b0:34:4b:b0: 5b:2e:64:a8:b9:3f:d4:7a:f2:2b:44:6e:62:72:00: de:a9:91:cf:46:09:48:45:68:57:fd:05:69:12:d9: 2a:7e:93:da:b1:fe:d7:a8:9e:c3:1f:a4:da:e9:9f: 3d:13:50:b2:b1:58:1f:65:d1:e6:2e:67:f9:62:6e: e9:6c:64:25:4c:bf:91:ab:17:d0:6a:f1:3b:83:17: 0b:e4:10:a8:51:16:ae:44:d7:9b:c3:11:80:d3:d5: c8:c9:b4:27:3a:69:6c:33:b2:76:48:46:53:3a:29: 8b:55:8a:e4:6e:5e:d1:91:7f:40:a5:6f:46:e8:17: db:77:02:2b:e7:f6:c9:8d:78:41:83:af:48:c8:62: 64:48:dc:78:c8:e6:e8:0e:3c:4e:78:b3:16:25:bc: a8:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:17:B0:65:36:D9:4B:CD:54:F8:6E:A4:08:79:19:43:E9:2C:20:0C X509v3 Authority Key Identifier: keyid:0B:47:BF:C9:4F:DC:EC:08:4C:D7:B3:55:36:C8:51:0E:41:F5:51:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/0B47BFC94FDCEC084CD7B35536C8510E41F55130.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0B47BFC94FDCEC084CD7B35536C8510E41F55130.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20f7be06-9672-4641-97bd-9bfdf955de17/0/3130332e382e3233382e302f32342d3234203d3e20313332363334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.8.238.0/24 Signature Algorithm: sha256WithRSAEncryption b9:78:8c:03:b4:1a:64:31:20:49:9d:fe:a2:c7:7e:1b:20:3e: 13:32:98:ae:43:c3:5e:ca:23:5f:a6:3e:eb:a7:cc:df:f9:0f: 08:f1:21:b9:ee:f4:de:a7:fb:40:0f:ef:f1:1c:89:79:ae:2a: 75:55:0f:62:ad:da:6a:27:b5:60:c5:67:12:db:f8:f7:0f:6d: f1:7b:76:e3:24:23:da:e1:13:24:e3:93:f6:b7:c2:48:dc:86: a3:67:19:9d:81:d3:2c:51:87:48:0a:17:96:a1:70:b5:6a:15: b9:4e:05:3b:3f:d0:0b:38:06:9e:c2:0f:34:f5:71:aa:63:72: 2c:d7:6a:d1:49:b8:0a:85:12:c9:d4:a9:1d:f6:4d:75:74:af: f2:82:01:a7:b1:f7:5b:83:ba:65:16:21:29:dd:94:e1:23:d7: a2:8a:39:37:5e:9f:4b:02:6a:d5:6d:57:6c:d7:4c:9b:84:6b: c5:79:82:09:6a:bf:28:33:70:47:8c:99:a7:d7:8c:13:ae:75: 82:b8:90:fd:74:ba:56:28:a1:3f:9f:9c:71:cb:b8:34:78:03: 33:5e:90:73:15:8a:29:e3:85:df:63:01:be:af:a4:41:f3:be: b6:cf:db:5c:da:43:f5:15:3c:78:85:6f:d2:70:21:45:2b:94: 99:f5:c9:21 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEM/xjUBgWwq1SBv7pEgW3SSu+qcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEI0N0JGQzk0RkRDRUMwODRDRDdCMzU1MzZDODUxMEU0 MUY1NTEzMDAeFw0yNDAxMTMwOTU1MDFaFw0yNTAxMTExMDAwMDFaMDMxMTAvBgNV BAMTKDY3MTdCMDY1MzZEOTRCQ0Q1NEY4NkVBNDA4NzkxOTQzRTkyQzIwMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC5RwDHltds+Hf0r0PM/1QbRxx JkpyQuNHy4tDCCFxHv4LBy62LbwgxcN/K900/sWHD1emrY6rp69orCnyTAIB08db jEAKSMAtW/yFSdkap/b8FW1r+QyMvP7Ppy+7rPvX4xeTsDRLsFsuZKi5P9R68itE bmJyAN6pkc9GCUhFaFf9BWkS2Sp+k9qx/teonsMfpNrpnz0TULKxWB9l0eYuZ/li bulsZCVMv5GrF9Bq8TuDFwvkEKhRFq5E15vDEYDT1cjJtCc6aWwzsnZIRlM6KYtV iuRuXtGRf0Clb0boF9t3Aivn9smNeEGDr0jIYmRI3HjI5ugOPE54sxYlvKgBAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZxewZTbZS81U+G6kCHkZQ+ksIAwwHwYDVR0j BBgwFoAUC0e/yU/c7AhM17NVNshRDkH1UTAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGY3YmUwNi05NjcyLTQ2NDEtOTdiZC05YmZkZjk1NWRlMTcvMC8wQjQ3QkZDOTRG RENFQzA4NENEN0IzNTUzNkM4NTEwRTQxRjU1MTMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEI0N0JGQzk0RkRDRUMwODRDRDdCMzU1MzZDODUxMEU0MUY1 NTEzMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwZjdiZTA2LTk2NzItNDY0MS05 N2JkLTliZmRmOTU1ZGUxNy8wLzMxMzAzMzJlMzgyZTMyMzMzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMjM2MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcI7jANBgkqhkiG 9w0BAQsFAAOCAQEAuXiMA7QaZDEgSZ3+osd+GyA+EzKYrkPDXsojX6Y+66fM3/kP CPEhue703qf7QA/v8RyJea4qdVUPYq3aaie1YMVnEtv49w9t8Xt24yQj2uETJOOT 9rfCSNyGo2cZnYHTLFGHSAoXlqFwtWoVuU4FOz/QCzgGnsIPNPVxqmNyLNdq0Um4 CoUSydSpHfZNdXSv8oIBp7H3W4O6ZRYhKd2U4SPXooo5N16fSwJq1W1XbNdMm4Rr xXmCCWq/KDNwR4yZp9eME651griQ/XS6ViihP5+cccu4NHgDM16QcxWKKeOF32MB vq+kQfO+ts/bXNpD9RU8eIVv0nAhRSuUmfXJIQ== -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:03 2024 by rpki-client on console-fra.rpki-client.org