$ rpki-client -vvf repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132332e302f32342d3234203d3e20313334363538.roa File: 3130332e3231302e3132332e302f32342d3234203d3e20313334363538.roa (raw, json) Hash identifier: Riw6dcMVfaMH7YcdR5/8rwW9Lvi4KEfM0QRQa87aMxU= Subject key identifier: 73:C5:B0:DD:DE:B0:D1:32:D6:65:A3:D0:BA:82:E8:FC:46:BC:A8:26 Certificate issuer: /CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Certificate serial: 74FC14D939A9FCF65B6CDFB22A436E8C651A15FF Authority key identifier: B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132332e302f32342d3234203d3e20313334363538.roa Signing time: Thu 17 Oct 2024 09:00:00 +0000 ROA not before: Thu 17 Oct 2024 08:55:00 +0000 ROA not after: Thu 16 Oct 2025 09:00:00 +0000 asID: 134658 IP address blocks: 103.210.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:fc:14:d9:39:a9:fc:f6:5b:6c:df:b2:2a:43:6e:8c:65:1a:15:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B11E5C9B4E322460FD701387F25B9EAEFE67C3EC Validity Not Before: Oct 17 08:55:00 2024 GMT Not After : Oct 16 09:00:00 2025 GMT Subject: CN=73C5B0DDDEB0D132D665A3D0BA82E8FC46BCA826 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:37:09:cd:94:18:49:e3:03:2f:ba:22:26:14: b8:5d:be:b4:c7:83:d4:7f:b6:18:ab:74:5d:59:b9: 50:48:27:ca:8a:4e:77:4c:b2:8d:8a:9f:45:f0:13: 24:dc:a8:b8:45:e3:aa:fd:a0:4c:12:e0:99:3a:8c: 7b:f9:8e:c6:11:44:23:df:a8:05:7b:36:8a:7c:4a: 24:ea:05:64:25:3b:85:ca:6e:ce:72:e5:bd:b0:67: a6:e9:96:49:ce:9c:fa:77:38:7c:ec:56:ab:51:8c: 67:5d:6d:e5:b8:32:ef:91:64:11:ba:0e:93:02:02: 66:c6:07:d2:c1:e3:5b:2c:c7:e7:fc:5a:aa:ea:e6: f7:fb:a0:7a:7c:4c:ad:67:4f:9b:75:ec:6f:17:7d: 5a:7d:42:8c:dd:0a:a8:4f:fb:5f:9d:f5:1b:de:bf: e2:3e:3c:35:41:41:f5:e8:eb:a0:93:2e:c3:f4:d7: a1:d0:a4:b1:1c:7b:1b:1a:4b:3d:55:64:00:e2:44: 59:e9:3f:ea:63:53:68:fb:a0:a7:7f:cd:be:91:21: 0a:cd:a0:e2:29:9c:d6:eb:66:2c:50:9c:cb:8c:f3: bd:e4:44:5c:9f:ca:54:07:10:e9:64:ee:15:17:8a: 7e:78:90:61:62:dd:44:b4:53:15:79:2b:79:69:af: 91:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:C5:B0:DD:DE:B0:D1:32:D6:65:A3:D0:BA:82:E8:FC:46:BC:A8:26 X509v3 Authority Key Identifier: keyid:B1:1E:5C:9B:4E:32:24:60:FD:70:13:87:F2:5B:9E:AE:FE:67:C3:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11E5C9B4E322460FD701387F25B9EAEFE67C3EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/3130332e3231302e3132332e302f32342d3234203d3e20313334363538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.210.123.0/24 Signature Algorithm: sha256WithRSAEncryption 19:c2:e3:c7:29:50:39:2f:6a:7a:a4:97:90:d2:19:fa:a0:59: 6b:4a:92:9a:f5:20:aa:d9:ad:a2:81:1c:84:72:27:90:85:c3: b7:0e:19:c6:e2:5c:6f:70:14:55:ce:a6:ae:20:e1:0a:99:8f: 42:ce:41:e2:bb:ec:e4:a6:37:82:a1:41:1b:3e:b0:69:1a:d3: aa:e0:40:9a:ec:ad:ef:c2:2a:05:e4:c9:b9:45:c0:ff:07:ae: 7a:ae:ed:91:10:1d:6d:b5:9d:89:fe:4f:80:7c:88:d5:2d:d7: 54:42:b0:7f:a9:80:ac:bf:56:4a:90:b7:43:13:09:31:02:57: 35:16:28:b4:9c:e3:40:1a:33:8c:a7:56:a4:7a:dd:5e:bd:c3: 93:35:14:da:0a:d8:1c:1c:32:34:3b:6b:07:ce:72:2e:d4:3d: a8:ec:44:4d:1d:89:70:0e:60:71:41:e4:6d:2c:f4:04:fa:ce: 27:cd:93:ca:78:66:0b:28:37:6d:98:91:a8:d4:88:6d:ba:73: c3:e0:cf:9a:f6:85:eb:6b:86:53:67:42:54:1b:b3:fd:16:01: fc:b5:88:b1:a5:96:f6:e5:e5:5c:38:ce:4c:5c:8d:09:f1:4d: 65:d7:e9:11:59:20:27:fd:21:bd:43:ad:2a:11:bb:fd:34:ac: a1:67:98:76 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdPwU2Tmp/PZbbN+yKkNujGUaFf8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVG RTY3QzNFQzAeFw0yNDEwMTcwODU1MDBaFw0yNTEwMTYwOTAwMDBaMDMxMTAvBgNV BAMTKDczQzVCMEREREVCMEQxMzJENjY1QTNEMEJBODJFOEZDNDZCQ0E4MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkNwnNlBhJ4wMvuiImFLhdvrTH g9R/thirdF1ZuVBIJ8qKTndMso2Kn0XwEyTcqLhF46r9oEwS4Jk6jHv5jsYRRCPf qAV7Nop8SiTqBWQlO4XKbs5y5b2wZ6bplknOnPp3OHzsVqtRjGddbeW4Mu+RZBG6 DpMCAmbGB9LB41ssx+f8Wqrq5vf7oHp8TK1nT5t17G8XfVp9QozdCqhP+1+d9Rve v+I+PDVBQfXo66CTLsP016HQpLEcexsaSz1VZADiRFnpP+pjU2j7oKd/zb6RIQrN oOIpnNbrZixQnMuM873kRFyfylQHEOlk7hUXin54kGFi3US0UxV5K3lpr5HPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUc8Ww3d6w0TLWZaPQuoLo/Ea8qCYwHwYDVR0j BBgwFoAUsR5cm04yJGD9cBOH8luerv5nw+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDQ4NzM2MC04NzM1LTQxZDctOTdhOC1kYmIzNGQ3OWVmZjQvMC9CMTFFNUM5QjRF MzIyNDYwRkQ3MDEzODdGMjVCOUVBRUZFNjdDM0VDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjExRTVDOUI0RTMyMjQ2MEZENzAxMzg3RjI1QjlFQUVGRTY3 QzNFQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkNDg3MzYwLTg3MzUtNDFkNy05 N2E4LWRiYjM0ZDc5ZWZmNC8wLzMxMzAzMzJlMzIzMTMwMmUzMTMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzQzNjM1Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn0nswDQYJ KoZIhvcNAQELBQADggEBABnC48cpUDkvanqkl5DSGfqgWWtKkpr1IKrZraKBHIRy J5CFw7cOGcbiXG9wFFXOpq4g4QqZj0LOQeK77OSmN4KhQRs+sGka06rgQJrsre/C KgXkyblFwP8Hrnqu7ZEQHW21nYn+T4B8iNUt11RCsH+pgKy/VkqQt0MTCTECVzUW KLSc40AaM4ynVqR63V69w5M1FNoK2BwcMjQ7awfOci7UPajsRE0diXAOYHFB5G0s 9AT6zifNk8p4ZgsoN22YkajUiG26c8Pgz5r2hetrhlNnQlQbs/0WAfy1iLGllvbl 5Vw4zkxcjQnxTWXX6RFZICf9Ib1DrSoRu/00rKFnmHY= -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org