$ rpki-client -vvf repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231342e302f32332d3233203d3e203538343837.roa File: 3130332e3235332e3231342e302f32332d3233203d3e203538343837.roa (raw, json) Hash identifier: OPDRtC0YANq9aPbjw+CR97g9TL7AgzyFDEfEg4LIzko= Subject key identifier: 6E:53:43:9E:6C:BA:61:FB:F1:A1:E0:BD:0C:04:B1:CD:25:CE:D1:32 Certificate issuer: /CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Certificate serial: 3F5B1F4F01603E4106F2C78A3BA5DB8DCCB9B819 Authority key identifier: B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231342e302f32332d3233203d3e203538343837.roa Signing time: Wed 20 Nov 2024 10:03:10 +0000 ROA not before: Wed 20 Nov 2024 09:58:10 +0000 ROA not after: Wed 19 Nov 2025 10:03:10 +0000 asID: 58487 IP address blocks: 103.253.214.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:5b:1f:4f:01:60:3e:41:06:f2:c7:8a:3b:a5:db:8d:cc:b9:b8:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F1322321412EFD041A6C2C0B297A1092AABE6E Validity Not Before: Nov 20 09:58:10 2024 GMT Not After : Nov 19 10:03:10 2025 GMT Subject: CN=6E53439E6CBA61FBF1A1E0BD0C04B1CD25CED132 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:25:e7:63:14:55:e6:ac:1e:93:cc:b9:62:2c: 7e:70:80:73:c2:81:58:e2:b2:fc:23:8c:58:02:d4: 66:70:6a:b6:e2:5f:b0:db:5c:60:bd:31:8a:e6:ee: b4:b7:31:43:b8:ba:45:9d:48:f2:67:84:a2:40:50: 9d:97:47:95:1d:dd:07:28:9f:c4:35:8d:1c:b9:d3: bc:6f:fa:f3:a3:29:d8:03:84:a1:6a:51:f9:fc:cd: ec:1d:eb:39:d5:88:b6:cb:b3:1b:bc:3a:34:86:bf: 93:d2:c3:69:f4:e9:e9:e8:ee:60:03:04:6b:e6:06: e6:bc:66:9b:d9:15:88:cd:e8:45:0f:bb:53:89:c1: e3:21:f2:11:b9:66:3f:97:4e:b4:b0:1f:d2:9e:68: dc:1c:e1:1b:fb:ab:b4:16:59:74:74:ae:79:fd:45: 8b:9f:5f:db:51:a4:83:2b:da:e5:04:79:62:81:12: 37:a6:35:0b:ae:b7:f7:54:82:e6:d6:d9:2d:55:e3: 04:14:8e:9c:3e:c4:f3:95:ac:5e:cd:db:84:86:e6: 9a:9c:9b:f0:fc:52:d6:63:f0:5e:35:c3:26:e1:2c: 5d:b9:e0:75:4f:a3:53:52:f6:f1:2c:04:fb:c1:14: c1:15:21:45:c7:9e:59:15:59:34:03:9d:ff:30:8e: 79:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:53:43:9E:6C:BA:61:FB:F1:A1:E0:BD:0C:04:B1:CD:25:CE:D1:32 X509v3 Authority Key Identifier: keyid:B6:F1:32:23:21:41:2E:FD:04:1A:6C:2C:0B:29:7A:10:92:AA:BE:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/B6F1322321412EFD041A6C2C0B297A1092AABE6E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F1322321412EFD041A6C2C0B297A1092AABE6E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d8f060f-e4b3-4a4e-97fd-f61ab17deeed/0/3130332e3235332e3231342e302f32332d3233203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.214.0/23 Signature Algorithm: sha256WithRSAEncryption c3:3b:91:8b:1c:a7:a1:da:00:11:97:7d:83:c2:1c:dc:f6:5a: 8f:48:a0:c0:bc:46:b1:9d:8a:61:27:dd:61:89:38:18:22:4b: 27:c8:a8:64:52:f3:ab:58:ef:c8:87:ec:96:4d:10:cb:06:0b: d8:43:40:e9:e5:a4:c0:0a:2f:35:4b:fa:2c:87:90:47:dd:c8: 9c:d0:5a:44:82:2c:23:8b:33:a9:be:f0:39:b1:6c:f8:88:57: fc:6f:49:de:92:c2:09:5d:de:1e:2c:c3:41:08:ad:a2:63:72: ce:4e:22:55:88:5f:a5:ca:27:d7:7b:fe:fe:62:a7:14:4f:e1: aa:de:15:65:fe:4c:08:57:8c:74:8a:26:2d:0e:6f:46:01:d8: 78:4f:1d:49:b7:dd:6f:2b:42:e2:83:31:fc:44:29:08:21:58: 2b:f4:ec:4a:e5:bf:96:e3:d9:ae:61:3b:04:04:9e:2e:87:02: 64:1c:fb:90:30:35:3d:5a:83:d5:d2:0b:b1:5a:de:c4:9f:74: 64:a6:55:e5:ef:1a:dd:ca:34:11:e7:23:97:36:63:c9:2c:93: a0:fe:5e:b9:1a:9f:ae:f9:ca:af:be:3b:38:3a:9e:63:86:ea: 4d:11:bf:33:07:7d:90:dc:dd:26:79:4b:92:97:21:ea:36:9a: 4c:3f:82:45 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUP1sfTwFgPkEG8seKO6Xbjcy5uBkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5 MkFBQkU2RTAeFw0yNDExMjAwOTU4MTBaFw0yNTExMTkxMDAzMTBaMDMxMTAvBgNV BAMTKDZFNTM0MzlFNkNCQTYxRkJGMUExRTBCRDBDMDRCMUNEMjVDRUQxMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjJedjFFXmrB6TzLliLH5wgHPC gVjisvwjjFgC1GZwarbiX7DbXGC9MYrm7rS3MUO4ukWdSPJnhKJAUJ2XR5Ud3Qco n8Q1jRy507xv+vOjKdgDhKFqUfn8zewd6znViLbLsxu8OjSGv5PSw2n06eno7mAD BGvmBua8ZpvZFYjN6EUPu1OJweMh8hG5Zj+XTrSwH9KeaNwc4Rv7q7QWWXR0rnn9 RYufX9tRpIMr2uUEeWKBEjemNQuut/dUgubW2S1V4wQUjpw+xPOVrF7N24SG5pqc m/D8UtZj8F41wybhLF254HVPo1NS9vEsBPvBFMEVIUXHnlkVWTQDnf8wjnkfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUblNDnmy6YfvxoeC9DASxzSXO0TIwHwYDVR0j BBgwFoAUtvEyIyFBLv0EGmwsCyl6EJKqvm4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDhmMDYwZi1lNGIzLTRhNGUtOTdmZC1mNjFhYjE3ZGVlZWQvMC9CNkYxMzIyMzIx NDEyRUZEMDQxQTZDMkMwQjI5N0ExMDkyQUFCRTZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMTMyMjMyMTQxMkVGRDA0MUE2QzJDMEIyOTdBMTA5MkFB QkU2RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkOGYwNjBmLWU0YjMtNGE0ZS05 N2ZkLWY2MWFiMTdkZWVlZC8wLzMxMzAzMzJlMzIzNTMzMmUzMjMxMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM4MzQzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/3WMA0GCSqG SIb3DQEBCwUAA4IBAQDDO5GLHKeh2gARl32Dwhzc9lqPSKDAvEaxnYphJ91hiTgY IksnyKhkUvOrWO/Ih+yWTRDLBgvYQ0Dp5aTACi81S/osh5BH3cic0FpEgiwjizOp vvA5sWz4iFf8b0neksIJXd4eLMNBCK2iY3LOTiJViF+lyifXe/7+YqcUT+Gq3hVl /kwIV4x0iiYtDm9GAdh4Tx1Jt91vK0LigzH8RCkIIVgr9OxK5b+W49muYTsEBJ4u hwJkHPuQMDU9WoPV0guxWt7En3RkplXl7xrdyjQR5yOXNmPJLJOg/l65Gp+u+cqv vjs4Op5jhupNEb8zB32Q3N0meUuSlyHqNppMP4JF -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:50 2024 by rpki-client on console-fra.rpki-client.org