$ rpki-client -vvf repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136392e302f32342d3234203d3e203539313439.roa File: 3130332e3235342e3136392e302f32342d3234203d3e203539313439.roa (raw, json) Hash identifier: NK7ClTvv4/NDBbf89x9B3VnTnm5k2ddyF3YW/vuXpLs= Subject key identifier: 35:C8:B8:88:E5:FB:13:95:69:69:9F:E8:1E:9B:42:B5:F8:F7:73:36 Certificate issuer: /CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Certificate serial: 0A321EB8A1AC5415B6B757E4769AA7BB1B9F5A75 Authority key identifier: 3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136392e302f32342d3234203d3e203539313439.roa Signing time: Mon 09 Sep 2024 08:00:02 +0000 ROA not before: Mon 09 Sep 2024 07:55:02 +0000 ROA not after: Mon 08 Sep 2025 08:00:02 +0000 asID: 59149 IP address blocks: 103.254.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:32:1e:b8:a1:ac:54:15:b6:b7:57:e4:76:9a:a7:bb:1b:9f:5a:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Validity Not Before: Sep 9 07:55:02 2024 GMT Not After : Sep 8 08:00:02 2025 GMT Subject: CN=35C8B888E5FB139569699FE81E9B42B5F8F77336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:19:a1:3d:20:7f:94:a3:c3:81:50:0d:72:12: 6c:e6:52:96:f0:39:75:b8:a4:32:6a:e4:d3:64:45: ac:7c:16:54:20:5c:57:b9:ad:cc:28:a2:51:f7:93: 8c:88:91:d8:03:c4:ac:65:6e:ba:5f:fd:a8:77:bd: f3:d0:80:a9:9d:96:a7:66:7b:d7:ea:25:f1:1a:fd: 24:1d:43:2b:c0:f4:b3:8b:3a:fe:dc:85:e3:f6:61: 24:d4:b4:17:08:46:f9:e0:62:62:85:b3:3c:af:a6: c5:32:3c:c1:8d:1c:63:bd:57:67:b9:11:a5:4c:51: 9b:94:d8:ca:3e:70:e6:8c:3d:ff:0c:56:0a:d3:86: 83:a3:23:f0:bc:6b:8e:f0:0b:d4:56:a2:4b:89:12: 01:38:9e:78:e5:0d:9a:56:ae:51:81:0d:5c:24:a0: 36:85:44:9e:c3:01:54:af:2b:59:65:d0:d5:e1:fc: 0c:f1:a4:02:e6:5c:12:ed:46:83:0b:f8:2f:38:68: 47:2f:ba:43:e8:41:72:f2:b6:de:49:6c:3c:44:10: a2:d1:c1:83:8c:dd:7d:a9:40:4f:bb:6e:0a:ec:55: 54:e4:c9:d6:37:f7:bd:7b:9c:1b:3b:28:6c:6f:f5: 19:4f:06:71:ae:dc:29:65:88:82:80:40:f0:c9:8f: 53:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:C8:B8:88:E5:FB:13:95:69:69:9F:E8:1E:9B:42:B5:F8:F7:73:36 X509v3 Authority Key Identifier: keyid:3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3136392e302f32342d3234203d3e203539313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.254.169.0/24 Signature Algorithm: sha256WithRSAEncryption aa:24:34:5a:4d:0c:a8:d3:9c:69:ca:a1:8d:3c:b1:4a:b0:df: 80:e1:95:a1:7f:2d:30:c0:78:4e:6e:6a:65:b8:00:73:99:95: 69:ec:86:cd:a5:94:df:28:1b:b0:c9:08:1b:ed:48:1a:2f:71: fd:a0:f1:e2:e8:12:b1:5e:32:0a:64:46:ba:26:d2:f7:a4:da: 3c:dc:d2:e4:e3:28:c4:51:37:f1:0f:45:7e:d1:7d:f2:2e:61: 69:92:a4:45:00:e2:b6:3a:5f:8a:47:c7:29:7a:ad:5c:74:f1: 4d:7e:79:8b:57:44:4e:fa:fa:fb:6e:2f:e6:65:40:b3:c4:86: d7:c5:09:e9:cb:49:ec:9f:4f:a0:ac:e7:72:09:8b:98:2f:3a: 3f:8d:81:a7:0c:02:b5:93:38:37:92:2e:d5:87:0a:d6:4f:57: d0:fb:0c:52:b9:ad:35:d6:d1:3c:f8:d6:04:4c:3e:07:b2:b4: 59:b4:6a:42:5a:fd:be:00:20:43:07:0a:92:e3:80:50:fa:d3: 60:9a:23:75:72:fe:1d:19:e1:5c:9b:0c:b8:48:a5:4f:c0:12: 9b:28:0b:d2:9b:8c:fe:48:4a:eb:9e:1f:fd:d2:6d:85:30:d5: fa:13:92:03:47:3a:c8:9a:38:a3:28:1f:42:b5:a5:ee:dc:4e: e4:c4:72:77 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCjIeuKGsVBW2t1fkdpqnuxufWnUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5 RTE4MjA3NDAeFw0yNDA5MDkwNzU1MDJaFw0yNTA5MDgwODAwMDJaMDMxMTAvBgNV BAMTKDM1QzhCODg4RTVGQjEzOTU2OTY5OUZFODFFOUI0MkI1RjhGNzczMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3GaE9IH+Uo8OBUA1yEmzmUpbw OXW4pDJq5NNkRax8FlQgXFe5rcwoolH3k4yIkdgDxKxlbrpf/ah3vfPQgKmdlqdm e9fqJfEa/SQdQyvA9LOLOv7cheP2YSTUtBcIRvngYmKFszyvpsUyPMGNHGO9V2e5 EaVMUZuU2Mo+cOaMPf8MVgrThoOjI/C8a47wC9RWokuJEgE4nnjlDZpWrlGBDVwk oDaFRJ7DAVSvK1ll0NXh/AzxpALmXBLtRoML+C84aEcvukPoQXLytt5JbDxEEKLR wYOM3X2pQE+7bgrsVVTkydY39717nBs7KGxv9RlPBnGu3ClliIKAQPDJj1OTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNci4iOX7E5VpaZ/oHptCtfj3czYwHwYDVR0j BBgwFoAUOyup6NU1er13a27EyvfBxZ4YIHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YWU3ZDQ2MS0wZTMyLTRlNjUtYmI4OC1kNzI0MDViMjQ0NTEvMC8zQjJCQTlFOEQ1 MzU3QUJENzc2QjZFQzRDQUY3QzFDNTlFMTgyMDc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5RTE4 MjA3NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhZTdkNDYxLTBlMzItNGU2NS1i Yjg4LWQ3MjQwNWIyNDQ1MS8wLzMxMzAzMzJlMzIzNTM0MmUzMTM2MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/6pMA0GCSqG SIb3DQEBCwUAA4IBAQCqJDRaTQyo05xpyqGNPLFKsN+A4ZWhfy0wwHhObmpluABz mZVp7IbNpZTfKBuwyQgb7UgaL3H9oPHi6BKxXjIKZEa6JtL3pNo83NLk4yjEUTfx D0V+0X3yLmFpkqRFAOK2Ol+KR8cpeq1cdPFNfnmLV0RO+vr7bi/mZUCzxIbXxQnp y0nsn0+grOdyCYuYLzo/jYGnDAK1kzg3ki7VhwrWT1fQ+wxSua011tE8+NYETD4H srRZtGpCWv2+ACBDBwqS44BQ+tNgmiN1cv4dGeFcmwy4SKVPwBKbKAvSm4z+SErr nh/90m2FMNX6E5IDRzrImjijKB9CtaXu3E7kxHJ3 -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:41 2024 by rpki-client on console-fra.rpki-client.org