$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231332e302f32342d3234203d3e203538343837.roa File: 3130332e3235332e3231332e302f32342d3234203d3e203538343837.roa (raw, json) Hash identifier: nXd+T08BzwUBsTCm772rTt3T7OGX+ISh5lyg0yjVkpU= Subject key identifier: 9F:57:C4:8B:4C:BD:E4:B6:EE:14:8B:FB:B3:E2:B3:03:49:3E:21:61 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 7D3856F8C6C0A8B49AB753A0F84EC3AC3B888B88 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231332e302f32342d3234203d3e203538343837.roa Signing time: Wed 20 Nov 2024 10:03:10 +0000 ROA not before: Wed 20 Nov 2024 09:58:10 +0000 ROA not after: Wed 19 Nov 2025 10:03:10 +0000 asID: 58487 IP address blocks: 103.253.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:38:56:f8:c6:c0:a8:b4:9a:b7:53:a0:f8:4e:c3:ac:3b:88:8b:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Nov 20 09:58:10 2024 GMT Not After : Nov 19 10:03:10 2025 GMT Subject: CN=9F57C48B4CBDE4B6EE148BFBB3E2B303493E2161 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8a:03:34:97:cd:f5:19:9e:8a:5d:42:dd:9c: e4:4e:a7:dd:8f:89:db:1b:b8:53:69:97:60:a2:45: fd:9d:e4:59:ab:c8:36:c2:d3:f0:4e:68:79:92:7f: db:bf:c4:d1:5f:7f:fa:0d:3b:89:3a:70:44:3b:bc: 06:39:0a:b5:05:21:72:c2:f2:c3:20:f6:6a:f3:c2: 62:bf:18:c8:65:14:1a:b4:a2:2d:9d:91:55:68:51: dd:a0:98:bb:ec:59:be:b2:20:99:c4:bb:94:62:4c: 21:8b:a5:63:eb:af:2e:8c:12:8f:78:28:87:7a:38: 27:70:68:24:59:bc:34:f4:3f:16:9d:3e:4d:c5:95: 02:a4:be:c3:e4:65:74:d0:84:e0:37:c4:7f:30:0a: 43:4d:ad:71:9c:ff:7f:9f:cd:0a:55:0c:37:aa:7d: 22:dc:c5:a8:8e:5f:f0:78:41:23:4d:f1:dd:fd:91: 1d:2a:9b:c9:79:5f:77:47:e2:46:87:af:3b:88:e9: 62:a2:40:f4:b9:0b:da:40:7f:a1:26:af:33:22:88: c3:8e:04:66:29:50:80:9b:3c:7b:29:7f:fc:e1:f9: a8:05:76:46:78:07:4b:2b:d5:6d:77:8c:64:8a:54: 77:58:dc:75:f7:be:1b:86:bf:d7:fa:e6:6b:18:b5: 36:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:57:C4:8B:4C:BD:E4:B6:EE:14:8B:FB:B3:E2:B3:03:49:3E:21:61 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231332e302f32342d3234203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.213.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:f4:03:85:7f:94:c2:88:bb:06:b0:a4:c4:27:26:85:a0:53: fb:81:fd:97:17:72:a5:37:7d:f0:01:d4:29:5c:0f:83:5f:ee: 08:49:79:a3:8c:3e:34:40:4c:9b:49:47:54:4a:56:e4:83:c9: fd:3a:f8:c4:d1:53:6d:0c:02:2d:4c:8f:c9:b7:b7:9d:16:66: aa:15:05:9b:58:a7:c4:e9:b0:84:b4:8a:18:ba:86:de:e4:67: 7d:e5:55:1f:23:f6:4a:46:cb:2d:d4:aa:73:a2:29:10:49:ab: b5:40:59:5f:05:1f:9e:57:de:e3:e3:a4:b0:b7:c4:09:86:a7: 7e:ca:24:ad:70:1d:88:52:33:a8:74:4d:45:de:19:58:0e:6f: 9d:71:14:c7:6b:62:75:ff:91:e2:3a:0f:a8:cf:d3:62:69:1f: 1e:37:da:92:f7:55:1c:56:0f:50:5e:f2:78:64:7d:c4:d7:fe: 5b:ec:32:05:11:61:77:85:9c:55:7b:64:ee:60:c2:6c:8e:9d: a7:77:5d:57:fa:c8:0c:c5:d4:cf:bd:18:c1:40:c4:0c:ea:5c: cb:d2:28:44:e5:e5:f0:e8:30:8a:5f:3c:8d:45:ca:3a:17:1f: 7c:28:c3:1c:f0:52:78:95:c7:40:38:e8:b2:80:71:77:63:24: 36:9c:e6:44 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfThW+MbAqLSat1Og+E7DrDuIi4gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNDExMjAwOTU4MTBaFw0yNTExMTkxMDAzMTBaMDMxMTAvBgNV BAMTKDlGNTdDNDhCNENCREU0QjZFRTE0OEJGQkIzRTJCMzAzNDkzRTIxNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAigM0l831GZ6KXULdnOROp92P idsbuFNpl2CiRf2d5FmryDbC0/BOaHmSf9u/xNFff/oNO4k6cEQ7vAY5CrUFIXLC 8sMg9mrzwmK/GMhlFBq0oi2dkVVoUd2gmLvsWb6yIJnEu5RiTCGLpWPrry6MEo94 KId6OCdwaCRZvDT0PxadPk3FlQKkvsPkZXTQhOA3xH8wCkNNrXGc/3+fzQpVDDeq fSLcxaiOX/B4QSNN8d39kR0qm8l5X3dH4kaHrzuI6WKiQPS5C9pAf6EmrzMiiMOO BGYpUICbPHspf/zh+agFdkZ4B0sr1W13jGSKVHdY3HX3vhuGv9f65msYtTb1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUn1fEi0y95LbuFIv7s+KzA0k+IWEwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMxMzAzMzJlMzIzNTMzMmUzMjMxMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzQzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/3VMA0GCSqG SIb3DQEBCwUAA4IBAQAf9AOFf5TCiLsGsKTEJyaFoFP7gf2XF3KlN33wAdQpXA+D X+4ISXmjjD40QEybSUdUSlbkg8n9OvjE0VNtDAItTI/Jt7edFmaqFQWbWKfE6bCE tIoYuobe5Gd95VUfI/ZKRsst1KpzoikQSau1QFlfBR+eV97j46Swt8QJhqd+yiSt cB2IUjOodE1F3hlYDm+dcRTHa2J1/5HiOg+oz9NiaR8eN9qS91UcVg9QXvJ4ZH3E 1/5b7DIFEWF3hZxVe2TuYMJsjp2nd11X+sgMxdTPvRjBQMQM6lzL0ihE5eXw6DCK XzyNRco6Fx98KMMc8FJ4lcdAOOiygHF3YyQ2nOZE -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:50 2024 by rpki-client on console-fra.rpki-client.org