$ rpki-client -vvf repo-rpki.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/3130332e33392e36382e302f32332d3233203d3e20313530323730.roa File: 3130332e33392e36382e302f32332d3233203d3e20313530323730.roa (raw, json) Hash identifier: CO1KR0PabLd3Qy7I6WrYIHY7Dj4uJDchoSP1DaEOrpM= Subject key identifier: 9F:FF:B9:3E:F7:E7:25:B3:B5:9F:E6:C2:2F:B2:F5:F0:F2:8F:C7:95 Certificate issuer: /CN=75890247E178C40DD3F9A5968202F684AEB89D9A Certificate serial: 3B0B98081D84C67732C8058899D5B0B2C0DC6CCD Authority key identifier: 75:89:02:47:E1:78:C4:0D:D3:F9:A5:96:82:02:F6:84:AE:B8:9D:9A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/75890247E178C40DD3F9A5968202F684AEB89D9A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/3130332e33392e36382e302f32332d3233203d3e20313530323730.roa Signing time: Fri 20 Sep 2024 05:00:02 +0000 ROA not before: Fri 20 Sep 2024 04:55:02 +0000 ROA not after: Fri 19 Sep 2025 05:00:02 +0000 asID: 150270 IP address blocks: 103.39.68.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/75890247E178C40DD3F9A5968202F684AEB89D9A.crl rsync://repo-rpki.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/75890247E178C40DD3F9A5968202F684AEB89D9A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/75890247E178C40DD3F9A5968202F684AEB89D9A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:0b:98:08:1d:84:c6:77:32:c8:05:88:99:d5:b0:b2:c0:dc:6c:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75890247E178C40DD3F9A5968202F684AEB89D9A Validity Not Before: Sep 20 04:55:02 2024 GMT Not After : Sep 19 05:00:02 2025 GMT Subject: CN=9FFFB93EF7E725B3B59FE6C22FB2F5F0F28FC795 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:31:a3:0a:e4:c2:91:12:36:e8:e4:67:4d:b2: af:84:08:48:ec:0f:aa:30:ab:09:04:6f:c1:74:98: 2c:ed:0a:26:49:e9:c3:ab:ae:26:66:b5:97:66:ab: 11:21:1e:58:8d:fe:fb:a1:25:4f:d9:34:14:90:63: ed:e3:bd:ff:a7:c5:77:a0:b5:e0:10:63:ff:0a:63: 17:9e:ce:ec:ff:09:f1:17:1b:f5:2f:23:a8:68:db: e0:54:87:c4:17:ce:78:ca:81:e9:9f:d5:9a:5c:07: 94:e6:89:31:30:65:94:3b:2a:0b:28:55:92:ed:1c: a7:0e:51:96:62:5f:fb:a8:f5:e3:41:c8:cf:2f:f3: cc:26:5c:44:c9:21:94:fe:ad:a4:94:6c:05:27:5a: 0b:41:cc:49:95:57:89:39:b3:8a:e3:c6:a2:52:3f: 39:72:95:20:80:8a:5d:64:d6:b9:e6:19:bf:19:80: c9:c3:5e:3b:eb:c2:81:9a:04:0c:5c:be:ec:fa:0e: 18:de:6b:95:30:c9:a8:e4:8c:b1:e3:dd:57:7b:13: 70:63:c2:9f:42:f4:69:87:c2:26:04:af:00:55:a5: 3c:53:2a:bc:4e:66:2c:48:d1:52:2f:fa:97:d9:1d: f8:ca:09:d4:9b:81:15:cc:77:03:d8:4f:97:2c:a8: bc:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:FF:B9:3E:F7:E7:25:B3:B5:9F:E6:C2:2F:B2:F5:F0:F2:8F:C7:95 X509v3 Authority Key Identifier: keyid:75:89:02:47:E1:78:C4:0D:D3:F9:A5:96:82:02:F6:84:AE:B8:9D:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/75890247E178C40DD3F9A5968202F684AEB89D9A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/75890247E178C40DD3F9A5968202F684AEB89D9A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2226be7b-2e28-4950-aa4c-2185e647db3f/0/3130332e33392e36382e302f32332d3233203d3e20313530323730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.39.68.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:26:b2:f0:cf:11:e4:91:d5:39:97:46:23:62:c0:14:ab:58: 43:9f:de:25:dd:60:8b:f6:6b:9c:91:8e:2e:4c:12:ca:ac:ee: a2:b6:d7:7a:20:f5:99:49:37:4e:91:13:0b:9d:07:03:8f:6e: 00:d2:b9:f0:c9:a0:59:b5:b5:2f:b2:83:23:cb:eb:fa:0b:82: 9d:3b:0b:bc:9a:d2:94:7b:9c:51:2d:9f:ff:cf:62:3f:dd:f2: bb:3f:37:c6:3a:53:f6:87:07:07:ab:de:24:09:fc:69:ed:ea: d1:a1:27:12:69:2b:eb:f8:10:9d:71:e4:75:fd:2f:da:bc:e6: 59:a0:3f:65:63:3f:ba:96:40:87:88:34:81:75:66:e3:5b:9b: c3:3a:70:b6:a4:be:ab:46:65:12:c9:86:66:a9:f7:89:bd:1c: b1:1a:99:8e:ab:c1:ac:14:35:5d:2e:51:4b:b4:ca:1a:9f:2c: 90:93:64:9a:b5:82:7e:2e:e1:46:25:c4:fa:f6:93:54:f0:d0: a8:f9:90:ee:96:09:ad:72:87:bf:fd:f5:b2:d0:ea:cc:1c:16: 45:73:b6:18:86:8a:5c:bf:4f:4c:23:8a:0e:45:0f:26:52:76: 67:5b:a5:ca:60:9e:f4:8e:00:1f:c9:0e:6a:83:ae:b7:ad:fd: f9:30:3e:87 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOwuYCB2ExncyyAWImdWwssDcbM0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzU4OTAyNDdFMTc4QzQwREQzRjlBNTk2ODIwMkY2ODRB RUI4OUQ5QTAeFw0yNDA5MjAwNDU1MDJaFw0yNTA5MTkwNTAwMDJaMDMxMTAvBgNV BAMTKDlGRkZCOTNFRjdFNzI1QjNCNTlGRTZDMjJGQjJGNUYwRjI4RkM3OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoMaMK5MKREjbo5GdNsq+ECEjs D6owqwkEb8F0mCztCiZJ6cOrriZmtZdmqxEhHliN/vuhJU/ZNBSQY+3jvf+nxXeg teAQY/8KYxeezuz/CfEXG/UvI6ho2+BUh8QXznjKgemf1ZpcB5TmiTEwZZQ7Kgso VZLtHKcOUZZiX/uo9eNByM8v88wmXETJIZT+raSUbAUnWgtBzEmVV4k5s4rjxqJS PzlylSCAil1k1rnmGb8ZgMnDXjvrwoGaBAxcvuz6Dhjea5UwyajkjLHj3Vd7E3Bj wp9C9GmHwiYErwBVpTxTKrxOZixI0VIv+pfZHfjKCdSbgRXMdwPYT5csqLyPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUn/+5PvfnJbO1n+bCL7L18PKPx5UwHwYDVR0j BBgwFoAUdYkCR+F4xA3T+aWWggL2hK64nZowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MjI2YmU3Yi0yZTI4LTQ5NTAtYWE0Yy0yMTg1ZTY0N2RiM2YvMC83NTg5MDI0N0Ux NzhDNDBERDNGOUE1OTY4MjAyRjY4NEFFQjg5RDlBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzU4OTAyNDdFMTc4QzQwREQzRjlBNTk2ODIwMkY2ODRBRUI4 OUQ5QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyMjZiZTdiLTJlMjgtNDk1MC1h YTRjLTIxODVlNjQ3ZGIzZi8wLzMxMzAzMzJlMzMzOTJlMzYzODJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMDMyMzczMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcnRDANBgkqhkiG 9w0BAQsFAAOCAQEAniay8M8R5JHVOZdGI2LAFKtYQ5/eJd1gi/ZrnJGOLkwSyqzu orbXeiD1mUk3TpETC50HA49uANK58MmgWbW1L7KDI8vr+guCnTsLvJrSlHucUS2f /89iP93yuz83xjpT9ocHB6veJAn8ae3q0aEnEmkr6/gQnXHkdf0v2rzmWaA/ZWM/ upZAh4g0gXVm41ubwzpwtqS+q0ZlEsmGZqn3ib0csRqZjqvBrBQ1XS5RS7TKGp8s kJNkmrWCfi7hRiXE+vaTVPDQqPmQ7pYJrXKHv/31stDqzBwWRXO2GIaKXL9PTCOK DkUPJlJ2Z1ulymCe9I4AH8kOaoOut639+TA+hw== -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:03 2024 by rpki-client on console-fra.rpki-client.org