$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32302e302f32322d3234203d3e203538343835.roa File: 3130332e3234372e32302e302f32322d3234203d3e203538343835.roa (raw, json) Hash identifier: DP/2k9eWqHW/SM23+QyMOpb0K8TKtquLxWKJtGxiHXc= Subject key identifier: C0:3E:2F:4A:06:95:54:1F:1D:53:89:F6:1F:44:07:6E:EC:9F:CD:4E Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 7AB1C767FE02DDBD02FD9F802196CD44FEB85E9B Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32302e302f32322d3234203d3e203538343835.roa Signing time: Sat 30 Dec 2023 10:17:33 +0000 ROA not before: Sat 30 Dec 2023 10:12:33 +0000 ROA not after: Sat 28 Dec 2024 10:17:33 +0000 asID: 58485 IP address blocks: 103.247.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:b1:c7:67:fe:02:dd:bd:02:fd:9f:80:21:96:cd:44:fe:b8:5e:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Dec 30 10:12:33 2023 GMT Not After : Dec 28 10:17:33 2024 GMT Subject: CN=C03E2F4A0695541F1D5389F61F44076EEC9FCD4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:bd:b2:a0:ff:21:86:1a:74:00:e3:2e:69:d5: a5:97:63:95:57:fb:f1:d7:c5:26:04:c3:60:b3:d3: 7d:e9:64:63:73:ec:23:a3:7b:ba:24:60:cd:0d:22: 91:fb:c5:25:79:55:be:05:f6:17:d5:ed:9b:dc:4e: be:e3:ec:1e:14:63:ce:f6:5e:50:c7:6a:cd:33:45: 76:7b:5d:3c:ac:10:a6:ef:28:53:02:09:f1:4f:89: d3:68:46:24:a5:2d:82:5b:45:ce:b2:83:19:0f:ed: 29:c4:c4:8e:4d:2c:18:bc:7a:65:b2:3a:2f:c2:f7: 96:e2:36:11:64:ac:51:c7:59:a7:16:9a:2a:be:47: b6:77:60:4a:a9:a4:4d:86:1d:1b:34:bf:e7:da:db: c2:40:6b:66:33:73:00:14:ce:df:ec:ff:30:99:a4: 46:da:49:c3:35:10:32:64:64:1c:ea:5a:01:99:77: 78:9c:51:71:44:2a:80:0c:26:b4:43:e4:17:61:dd: bb:a6:72:2c:0a:31:4f:0b:27:86:b2:ad:f6:9d:53: bf:f6:ae:f3:cb:a5:cf:8b:d4:fa:1c:f4:1c:90:8a: 4a:81:36:5d:1e:ff:01:80:f9:96:73:ef:66:30:8f: d1:4e:d8:79:29:c8:c4:38:66:0f:c4:af:5a:f9:6e: 97:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:3E:2F:4A:06:95:54:1F:1D:53:89:F6:1F:44:07:6E:EC:9F:CD:4E X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32302e302f32322d3234203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.20.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:27:bf:3e:ef:e0:0b:a8:9e:9f:a9:75:e4:c7:d9:bf:92:c1: 10:cb:cf:b6:be:cc:d7:62:49:b8:64:d3:fe:bc:bf:8d:cc:0b: 8b:9a:e7:b5:9e:aa:a5:31:4f:1e:5f:d1:47:91:10:fb:73:ff: 6b:50:b0:bd:64:ae:6a:7d:24:1d:94:28:28:96:4b:0c:93:bb: 1e:03:37:b8:d4:c2:83:5d:4e:37:90:c4:cd:91:dd:15:b2:70: b9:94:37:ff:53:0d:65:43:93:d8:52:31:85:0c:c0:27:08:f3: 58:a0:4b:dd:42:c7:0a:5a:88:d5:f0:b0:bf:29:fa:e9:bb:37: 49:42:ab:ba:5f:0a:a4:08:22:04:5c:72:19:ec:90:c7:d7:72: 88:f1:82:22:75:db:23:8a:66:f3:c3:43:0e:71:c5:73:0a:d1: 84:45:8c:e9:4d:98:70:27:35:0b:75:b2:61:4e:8c:66:5f:c4: 94:45:5a:50:8f:18:c5:85:d2:32:49:9f:92:4f:7c:64:c0:54: 5d:d3:4f:34:ca:19:e6:d6:2d:0b:ce:e8:5e:b1:0d:f8:e3:53: 9e:d5:40:e7:da:6d:80:06:58:44:0a:1f:50:18:e2:ff:43:37: 1f:7d:81:9f:4f:14:74:35:d0:36:97:fb:bd:7c:4f:95:e4:93: ce:e5:00:7e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUerHHZ/4C3b0C/Z+AIZbNRP64XpswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yMzEyMzAxMDEyMzNaFw0yNDEyMjgxMDE3MzNaMDMxMTAvBgNV BAMTKEMwM0UyRjRBMDY5NTU0MUYxRDUzODlGNjFGNDQwNzZFRUM5RkNENEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4vbKg/yGGGnQA4y5p1aWXY5VX +/HXxSYEw2Cz033pZGNz7COje7okYM0NIpH7xSV5Vb4F9hfV7ZvcTr7j7B4UY872 XlDHas0zRXZ7XTysEKbvKFMCCfFPidNoRiSlLYJbRc6ygxkP7SnExI5NLBi8emWy Oi/C95biNhFkrFHHWacWmiq+R7Z3YEqppE2GHRs0v+fa28JAa2YzcwAUzt/s/zCZ pEbaScM1EDJkZBzqWgGZd3icUXFEKoAMJrRD5Bdh3bumciwKMU8LJ4ayrfadU7/2 rvPLpc+L1Poc9ByQikqBNl0e/wGA+ZZz72Ywj9FO2HkpyMQ4Zg/Er1r5bpetAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwD4vSgaVVB8dU4n2H0QHbuyfzU4wHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMxMzAzMzJlMzIzNDM3MmUzMjMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzUzODM0MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmf3FDANBgkqhkiG 9w0BAQsFAAOCAQEAjye/Pu/gC6ien6l15MfZv5LBEMvPtr7M12JJuGTT/ry/jcwL i5rntZ6qpTFPHl/RR5EQ+3P/a1CwvWSuan0kHZQoKJZLDJO7HgM3uNTCg11ON5DE zZHdFbJwuZQ3/1MNZUOT2FIxhQzAJwjzWKBL3ULHClqI1fCwvyn66bs3SUKrul8K pAgiBFxyGeyQx9dyiPGCInXbI4pm88NDDnHFcwrRhEWM6U2YcCc1C3WyYU6MZl/E lEVaUI8YxYXSMkmfkk98ZMBUXdNPNMoZ5tYtC87oXrEN+ONTntVA59ptgAZYRAof UBji/0M3H32Bn08UdDXQNpf7vXxPleSTzuUAfg== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org