$ rpki-client -vvf repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3137302e302f32342d3234203d3e203539313439.roa File: 3130332e3235342e3137302e302f32342d3234203d3e203539313439.roa (raw, json) Hash identifier: 1QFmqqnDt9FD4CT5iXH8IaTJeZQAgHohWAPwCtiQfbk= Subject key identifier: FB:E3:5B:A9:8B:10:DB:97:22:84:73:06:D0:C9:CA:5C:F0:9A:6D:3D Certificate issuer: /CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Certificate serial: 230050A2806B41714C0460F0DC4798FC2D6BB196 Authority key identifier: 3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3137302e302f32342d3234203d3e203539313439.roa Signing time: Mon 09 Sep 2024 08:00:02 +0000 ROA not before: Mon 09 Sep 2024 07:55:02 +0000 ROA not after: Mon 08 Sep 2025 08:00:02 +0000 asID: 59149 IP address blocks: 103.254.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:00:50:a2:80:6b:41:71:4c:04:60:f0:dc:47:98:fc:2d:6b:b1:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Validity Not Before: Sep 9 07:55:02 2024 GMT Not After : Sep 8 08:00:02 2025 GMT Subject: CN=FBE35BA98B10DB9722847306D0C9CA5CF09A6D3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:64:f6:fd:aa:fd:7d:5f:62:c7:b9:40:a4:bb: ab:95:59:31:60:8f:7c:3a:95:b2:f2:60:c3:aa:21: 01:91:5f:15:24:d5:57:af:eb:a1:02:df:1a:cf:03: a9:9a:18:b7:88:64:11:0a:59:ec:18:14:1a:6a:32: 93:87:b7:0c:c5:db:64:cc:40:d0:19:c6:e0:78:8e: 2f:ca:c9:72:52:d7:27:31:f3:75:0c:64:24:8b:ea: 78:df:31:55:9a:39:39:2f:d8:87:fb:d8:ae:3e:2d: e2:2e:9d:89:d8:c4:00:d6:9a:ea:a5:2d:55:ed:ea: 61:03:99:b4:ca:7d:fb:e1:c2:fb:14:ca:a9:76:de: d6:ac:ef:74:f3:b6:2c:b0:7c:7f:e5:2d:19:88:bb: 4f:fc:66:36:50:70:c1:b5:31:0d:66:9c:35:eb:96: 7a:7f:1d:84:ea:e8:32:87:e2:04:40:25:6c:d1:bf: 83:83:06:de:79:82:b2:d2:9d:25:a5:50:6a:1e:fe: a9:7e:ab:e5:b8:d2:a9:fc:60:75:52:8b:2b:d8:4f: 08:7d:b2:d3:74:ec:a8:23:f3:d1:84:e8:83:3f:64: 45:eb:40:16:c3:a2:23:3c:55:c2:72:74:15:38:ab: 16:c2:d9:9e:4a:a1:1b:a7:f9:5d:a0:92:b5:22:59: f9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:E3:5B:A9:8B:10:DB:97:22:84:73:06:D0:C9:CA:5C:F0:9A:6D:3D X509v3 Authority Key Identifier: keyid:3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3130332e3235342e3137302e302f32342d3234203d3e203539313439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.254.170.0/24 Signature Algorithm: sha256WithRSAEncryption ae:16:17:29:f8:5b:f0:f4:ef:f0:08:63:a3:95:d5:eb:ad:c0: 95:9b:02:90:1c:64:7d:a8:1c:7c:b3:04:e5:1e:4b:df:cb:f9: a1:71:14:86:5a:30:be:7b:a8:47:85:d5:6f:63:44:35:36:d3: 3d:7d:a3:34:65:b2:bf:3c:91:e4:ec:ef:49:f7:55:33:4a:98: 0c:4f:60:db:7b:ae:ec:db:84:b8:66:a2:3e:60:98:e3:9a:dd: 6e:22:68:31:c2:28:64:66:03:cc:91:33:c5:fb:4c:84:78:da: ec:d3:e1:4e:3e:2d:38:26:f8:24:70:48:f6:7e:d5:8e:9b:ce: f4:4e:38:45:1d:e6:d0:d5:9a:0c:10:6e:28:fb:44:df:1d:bd: 0c:6b:96:70:c0:ff:35:54:54:cd:c7:c8:41:ce:c5:91:59:77: a0:78:cc:83:7c:e5:09:ba:21:7c:7a:2d:31:ed:66:bb:02:d0: 69:9f:20:da:c2:fd:48:46:ac:03:cd:97:00:d6:2f:be:72:72: 01:f3:fe:9f:2f:fb:cc:6c:d8:ad:35:a4:45:bb:96:2b:cc:e6: 0e:42:bf:1d:34:c6:d1:76:e9:a6:ff:03:ee:44:2d:0a:b1:5d: af:13:ca:ff:19:bd:72:60:73:7a:1a:47:a4:91:ee:01:52:72: c1:00:a0:86 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIwBQooBrQXFMBGDw3EeY/C1rsZYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5 RTE4MjA3NDAeFw0yNDA5MDkwNzU1MDJaFw0yNTA5MDgwODAwMDJaMDMxMTAvBgNV BAMTKEZCRTM1QkE5OEIxMERCOTcyMjg0NzMwNkQwQzlDQTVDRjA5QTZEM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuZPb9qv19X2LHuUCku6uVWTFg j3w6lbLyYMOqIQGRXxUk1Vev66EC3xrPA6maGLeIZBEKWewYFBpqMpOHtwzF22TM QNAZxuB4ji/KyXJS1ycx83UMZCSL6njfMVWaOTkv2If72K4+LeIunYnYxADWmuql LVXt6mEDmbTKffvhwvsUyql23tas73TztiywfH/lLRmIu0/8ZjZQcMG1MQ1mnDXr lnp/HYTq6DKH4gRAJWzRv4ODBt55grLSnSWlUGoe/ql+q+W40qn8YHVSiyvYTwh9 stN07Kgj89GE6IM/ZEXrQBbDoiM8VcJydBU4qxbC2Z5KoRun+V2gkrUiWfnpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU++NbqYsQ25cihHMG0MnKXPCabT0wHwYDVR0j BBgwFoAUOyup6NU1er13a27EyvfBxZ4YIHQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YWU3ZDQ2MS0wZTMyLTRlNjUtYmI4OC1kNzI0MDViMjQ0NTEvMC8zQjJCQTlFOEQ1 MzU3QUJENzc2QjZFQzRDQUY3QzFDNTlFMTgyMDc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0IyQkE5RThENTM1N0FCRDc3NkI2RUM0Q0FGN0MxQzU5RTE4 MjA3NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhZTdkNDYxLTBlMzItNGU2NS1i Yjg4LWQ3MjQwNWIyNDQ1MS8wLzMxMzAzMzJlMzIzNTM0MmUzMTM3MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzEzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/6qMA0GCSqG SIb3DQEBCwUAA4IBAQCuFhcp+Fvw9O/wCGOjldXrrcCVmwKQHGR9qBx8swTlHkvf y/mhcRSGWjC+e6hHhdVvY0Q1NtM9faM0ZbK/PJHk7O9J91UzSpgMT2Dbe67s24S4 ZqI+YJjjmt1uImgxwihkZgPMkTPF+0yEeNrs0+FOPi04JvgkcEj2ftWOm870TjhF HebQ1ZoMEG4o+0TfHb0Ma5ZwwP81VFTNx8hBzsWRWXegeMyDfOUJuiF8ei0x7Wa7 AtBpnyDawv1IRqwDzZcA1i++cnIB8/6fL/vMbNitNaRFu5YrzOYOQr8dNMbRdumm /wPuRC0KsV2vE8r/Gb1yYHN6Gkekke4BUnLBAKCG -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:41 2024 by rpki-client on console-fra.rpki-client.org