$ rpki-client -vvf repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136382e302f32342d3234203d3e203539313439.roa File: 3130332e3235342e3136382e302f32342d3234203d3e203539313439.roa (raw, json) Hash identifier: pj91Qs2tURvKQAKL6L3l5bFtaBP3SPbqgRHlO/yRwo8= Subject key identifier: D3:93:BA:1D:62:41:3E:E8:E0:6D:67:71:73:F5:87:F9:A6:59:51:43 Certificate issuer: /CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Certificate serial: 0F0F076F2A34DEC8A412D9DA24D01AAACAEB2F18 Authority key identifier: 3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136382e302f32342d3234203d3e203539313439.roa Signing time: Thu 30 May 2024 11:52:34 +0000 ROA not before: Thu 30 May 2024 11:47:34 +0000 ROA not after: Thu 29 May 2025 11:52:34 +0000 asID: 59149 IP address blocks: 103.254.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:0f:07:6f:2a:34:de:c8:a4:12:d9:da:24:d0:1a:aa:ca:eb:2f:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Validity Not Before: May 30 11:47:34 2024 GMT Not After : May 29 11:52:34 2025 GMT Subject: CN=D393BA1D62413EE8E06D677173F587F9A6595143 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:a8:3f:40:ea:dd:64:c2:11:08:10:f4:de:01: 88:1b:6b:15:1a:c4:a0:e3:16:76:98:35:49:8c:ad: ad:67:72:27:c5:de:91:34:27:cf:69:3a:31:0b:e4: 3f:11:c3:1b:06:c3:1d:38:f8:01:61:6f:73:9d:e6: c1:35:ef:50:dd:66:63:d0:f7:b8:e5:a2:57:62:ce: 37:89:c1:e9:32:9e:97:d6:d0:10:55:17:b1:55:1f: c4:d4:e3:67:0f:b6:eb:af:30:55:e6:d9:b9:fd:a1: 42:c9:18:91:5b:78:20:dd:c4:cd:f6:e1:15:9d:95: 0f:40:27:e4:06:c9:f3:d7:03:fc:c9:7c:e5:f0:b7: e8:0a:ee:28:f0:9b:f4:f4:db:ec:7a:73:5c:31:47: 08:bd:47:db:ee:9d:71:1d:67:ee:af:e1:6c:c9:6d: f9:c8:3a:5f:b4:21:0c:f4:e3:a0:10:d2:7d:47:cd: 40:d1:fe:cd:b8:35:81:4d:16:e5:42:bb:18:0d:6f: 11:78:7c:a9:2d:96:ef:ac:c0:dd:dc:52:35:60:2e: 0c:2a:dc:01:61:90:17:e0:c3:a2:32:09:f3:e7:ac: a5:67:47:a3:ca:93:3a:b7:47:d9:d9:5b:a7:c8:f6: a8:c6:85:07:48:ba:41:eb:97:c7:87:0d:0e:a5:20: db:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:93:BA:1D:62:41:3E:E8:E0:6D:67:71:73:F5:87:F9:A6:59:51:43 X509v3 Authority Key Identifier: keyid:3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136382e302f32342d3234203d3e203539313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.254.168.0/24 Signature Algorithm: sha256WithRSAEncryption 75:e2:15:b0:2c:d1:82:b2:27:41:7d:22:c9:2e:b4:38:5b:8d: 65:da:3b:36:f7:3a:34:99:b6:d8:ae:3e:e5:76:82:e2:4c:0c: d7:1e:8f:10:59:3c:8b:db:a2:49:28:95:32:17:1f:6e:28:f8: eb:54:b8:d0:f3:b4:8b:e6:34:e7:1b:7c:43:1e:c1:e8:0a:3b: 8a:27:05:90:29:82:04:4a:a1:64:bb:52:c9:c0:b5:9e:5b:bd: 50:03:9c:74:64:a1:fe:7a:0c:5b:f7:82:48:f6:dd:9f:c2:a5: 28:56:1a:cf:85:30:11:20:11:46:d2:a8:77:c1:b8:6a:a5:d4: b0:1a:4a:f3:f1:7a:f9:93:96:60:17:e5:4a:7e:86:cc:66:ee: ae:75:cc:28:d0:6d:f1:dd:7a:ce:60:6c:0b:5b:7e:61:f4:7b: b3:5e:98:d3:7a:1f:07:85:4a:d1:5e:1c:cd:9e:93:2d:32:18: 9d:a8:ed:3d:07:f5:48:b0:4c:16:1d:ea:b8:35:bb:8c:f7:01: 54:4a:80:ad:98:bb:a5:cd:c5:9b:a3:94:da:de:51:38:d3:ac: 9f:bc:c3:c3:28:07:7d:cc:3b:ea:a8:ed:41:40:13:37:18:c9: ba:ed:d7:38:fa:47:75:52:3b:e8:ef:a1:45:27:87:fb:7b:c2: 76:ef:cf:ec -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDw8Hbyo03sikEtnaJNAaqsrrLxgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5 RTE4MjA3NDAeFw0yNDA1MzAxMTQ3MzRaFw0yNTA1MjkxMTUyMzRaMDMxMTAvBgNV BAMTKEQzOTNCQTFENjI0MTNFRThFMDZENjc3MTczRjU4N0Y5QTY1OTUxNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfqD9A6t1kwhEIEPTeAYgbaxUa xKDjFnaYNUmMra1ncifF3pE0J89pOjEL5D8RwxsGwx04+AFhb3Od5sE171DdZmPQ 97jloldizjeJwekynpfW0BBVF7FVH8TU42cPtuuvMFXm2bn9oULJGJFbeCDdxM32 4RWdlQ9AJ+QGyfPXA/zJfOXwt+gK7ijwm/T02+x6c1wxRwi9R9vunXEdZ+6v4WzJ bfnIOl+0IQz046AQ0n1HzUDR/s24NYFNFuVCuxgNbxF4fKktlu+swN3cUjVgLgwq 3AFhkBfgw6IyCfPnrKVnR6PKkzq3R9nZW6fI9qjGhQdIukHrl8eHDQ6lINt9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU05O6HWJBPujgbWdxc/WH+aZZUUMwHwYDVR0j BBgwFoAUOyup6NU1er13a27EyvfBxZ4YIHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YWU3ZDQ2MS0wZTMyLTRlNjUtYmI4OC1kNzI0MDViMjQ0NTEvMC8zQjJCQTlFOEQ1 MzU3QUJENzc2QjZFQzRDQUY3QzFDNTlFMTgyMDc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5RTE4 MjA3NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhZTdkNDYxLTBlMzItNGU2NS1i Yjg4LWQ3MjQwNWIyNDQ1MS8wLzMxMzAzMzJlMzIzNTM0MmUzMTM2MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/6oMA0GCSqG SIb3DQEBCwUAA4IBAQB14hWwLNGCsidBfSLJLrQ4W41l2js29zo0mbbYrj7ldoLi TAzXHo8QWTyL26JJKJUyFx9uKPjrVLjQ87SL5jTnG3xDHsHoCjuKJwWQKYIESqFk u1LJwLWeW71QA5x0ZKH+egxb94JI9t2fwqUoVhrPhTARIBFG0qh3wbhqpdSwGkrz 8Xr5k5ZgF+VKfobMZu6udcwo0G3x3XrOYGwLW35h9HuzXpjTeh8HhUrRXhzNnpMt MhidqO09B/VIsEwWHeq4NbuM9wFUSoCtmLulzcWbo5Ta3lE406yfvMPDKAd9zDvq qO1BQBM3GMm67dc4+kd1Ujvo76FFJ4f7e8J278/s -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:41 2024 by rpki-client on console-fra.rpki-client.org