$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32342d3234203d3e203538343837.roa File: 3130332e3235332e3231322e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: LfLeLwmqbwIkdEDU9U48eQJPk8ImKB/XqlPEOEL8JqE= Subject key identifier: AC:AB:AA:A4:20:3A:AE:9E:F6:48:16:08:F5:71:B1:D4:0C:D8:D1:D7 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 14E1A98008D7D8CF1F275A534255DF8E0A22F680 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32342d3234203d3e203538343837.roa Signing time: Wed 20 Nov 2024 09:00:03 +0000 ROA not before: Wed 20 Nov 2024 08:55:03 +0000 ROA not after: Wed 19 Nov 2025 09:00:03 +0000 asID: 58487 IP address blocks: 103.253.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:e1:a9:80:08:d7:d8:cf:1f:27:5a:53:42:55:df:8e:0a:22:f6:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Nov 20 08:55:03 2024 GMT Not After : Nov 19 09:00:03 2025 GMT Subject: CN=ACABAAA4203AAE9EF6481608F571B1D40CD8D1D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ee:dc:70:5c:7b:5f:0c:83:b0:ae:4f:1e:f8: 8c:91:2c:2c:65:5d:bc:cd:ef:ff:2a:de:0e:b0:29: ce:fd:64:b5:06:08:d6:00:e6:98:1c:38:fd:bd:8c: 6a:bb:b7:e7:e0:77:19:08:a7:5e:e8:f7:6b:ef:f4: b3:91:87:6a:7c:e2:ac:05:d1:b6:cd:cf:c1:66:21: 98:76:e5:7c:7b:5a:3a:fb:ed:5a:11:c5:98:c5:37: 68:1c:c4:6c:24:51:87:3c:43:7b:a0:23:51:d9:13: 7f:b1:fb:00:de:2f:08:84:d7:a0:ef:42:29:ae:17: 3d:0a:da:50:8a:b4:31:a8:8c:b2:d9:19:8a:f3:17: c0:ed:29:15:a8:a0:60:17:d0:2e:d5:21:38:10:82: 84:f1:f7:1f:a2:63:2e:86:57:bd:a1:06:7c:34:fe: ea:2c:79:c3:af:10:6f:c1:0e:7b:ca:f4:15:57:30: b3:8c:14:4d:b6:8d:d7:ab:af:66:5e:01:89:25:ce: af:36:c6:f5:8d:9f:44:b8:4a:b1:51:b2:20:d0:77: 33:bb:55:6d:e6:11:6c:da:7d:bc:a9:81:04:2a:10: fc:54:b0:48:71:3b:b7:2b:24:23:e5:cc:4c:85:1e: e5:3e:03:59:06:b3:be:51:e1:84:16:60:c8:14:c5: b9:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:AB:AA:A4:20:3A:AE:9E:F6:48:16:08:F5:71:B1:D4:0C:D8:D1:D7 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231322e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.212.0/24 Signature Algorithm: sha256WithRSAEncryption 68:57:a3:02:c9:1d:b8:c7:73:97:41:f5:45:7a:0d:2c:ad:fd: c1:81:b9:1a:4b:47:00:49:51:3f:0c:47:90:38:59:f3:3b:06: e7:09:5e:78:1d:4b:d2:06:e1:ff:5c:19:f2:43:45:58:69:1a: 19:34:8d:c9:3a:92:14:3d:f0:b8:0c:05:8d:e1:e9:10:8a:36: f9:ee:31:33:d1:5d:3a:15:8b:92:15:2d:04:6b:e8:20:f6:59: ba:8e:98:78:c8:16:59:bd:bd:28:ac:19:32:6c:95:91:4c:f4: 04:10:76:0f:0d:0b:46:67:72:73:0a:a2:09:72:c8:54:af:51: a0:df:b4:db:b9:d1:1f:5e:a3:e1:c4:56:dc:e5:1d:2e:7d:b9: b4:de:95:dc:17:0a:ab:38:c8:cf:99:77:da:b7:54:1e:b4:e3: ed:31:0a:db:6c:51:9e:be:30:f0:c3:2b:a6:51:16:12:cc:b3: 2e:a5:d0:41:8e:6f:17:f3:15:bd:b4:1c:67:b3:7c:57:bb:19: 06:3a:f9:c6:91:0a:d0:18:ba:25:a2:47:d1:58:3d:6e:31:d1: cf:25:aa:06:14:33:96:35:1b:03:88:1c:6e:5e:4e:97:9b:a8: 94:cf:af:83:f4:f4:2a:55:18:ba:4e:60:63:4d:0b:c6:14:a6: ea:83:a8:47 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFOGpgAjX2M8fJ1pTQlXfjgoi9oAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNDExMjAwODU1MDNaFw0yNTExMTkwOTAwMDNaMDMxMTAvBgNV BAMTKEFDQUJBQUE0MjAzQUFFOUVGNjQ4MTYwOEY1NzFCMUQ0MENEOEQxRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDh7txwXHtfDIOwrk8e+IyRLCxl XbzN7/8q3g6wKc79ZLUGCNYA5pgcOP29jGq7t+fgdxkIp17o92vv9LORh2p84qwF 0bbNz8FmIZh25Xx7Wjr77VoRxZjFN2gcxGwkUYc8Q3ugI1HZE3+x+wDeLwiE16Dv QimuFz0K2lCKtDGojLLZGYrzF8DtKRWooGAX0C7VITgQgoTx9x+iYy6GV72hBnw0 /uosecOvEG/BDnvK9BVXMLOMFE22jderr2ZeAYklzq82xvWNn0S4SrFRsiDQdzO7 VW3mEWzafbypgQQqEPxUsEhxO7crJCPlzEyFHuU+A1kGs75R4YQWYMgUxbltAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrKuqpCA6rp72SBYI9XGx1AzY0dcwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMxMzAzMzJlMzIzNTMzMmUzMjMxMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzQzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/3UMA0GCSqG SIb3DQEBCwUAA4IBAQBoV6MCyR24x3OXQfVFeg0srf3BgbkaS0cASVE/DEeQOFnz OwbnCV54HUvSBuH/XBnyQ0VYaRoZNI3JOpIUPfC4DAWN4ekQijb57jEz0V06FYuS FS0Ea+gg9lm6jph4yBZZvb0orBkybJWRTPQEEHYPDQtGZ3JzCqIJcshUr1Gg37Tb udEfXqPhxFbc5R0ufbm03pXcFwqrOMjPmXfat1QetOPtMQrbbFGevjDwwyumURYS zLMupdBBjm8X8xW9tBxns3xXuxkGOvnGkQrQGLolokfRWD1uMdHPJaoGFDOWNRsD iBxuXk6Xm6iUz6+D9PQqVRi6TmBjTQvGFKbqg6hH -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:32 2024 by rpki-client on console-ams.rpki-client.org