$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32302e302f32342d3234203d3e203538343835.roa File: 3130332e3234372e32302e302f32342d3234203d3e203538343835.roa (raw, json) Hash identifier: ta+CeznmYk+NlJf3zjpKb1lHli6gDaXja14GG+35B8U= Subject key identifier: 2F:13:A5:55:B9:38:4E:21:97:6F:76:56:6C:3D:36:D4:72:5B:02:73 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 2841FEBC045EB743766F18D6D385ACFC85BF537F Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32302e302f32342d3234203d3e203538343835.roa Signing time: Fri 08 Nov 2024 03:00:00 +0000 ROA not before: Fri 08 Nov 2024 02:55:00 +0000 ROA not after: Fri 07 Nov 2025 03:00:00 +0000 asID: 58485 IP address blocks: 103.247.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:41:fe:bc:04:5e:b7:43:76:6f:18:d6:d3:85:ac:fc:85:bf:53:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Nov 8 02:55:00 2024 GMT Not After : Nov 7 03:00:00 2025 GMT Subject: CN=2F13A555B9384E21976F76566C3D36D4725B0273 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:08:3b:54:6a:ab:13:94:b4:55:36:09:5d:e1: bf:cf:f8:44:d4:1b:51:66:91:fe:25:d3:96:0b:58: c5:a0:f4:b4:4d:31:1e:8c:78:f9:0b:95:e1:5a:7c: 0f:f2:a4:ac:bc:ab:2d:89:cd:ff:5c:4b:b2:32:6a: 10:46:02:62:e8:98:51:9b:d4:4a:bd:ae:a9:d7:9f: e8:72:0a:30:8b:0e:a2:0b:d7:c7:b0:e4:50:9f:28: 60:9e:7d:1b:af:77:ae:c9:cb:a7:3a:75:13:12:a0: 74:e1:78:d0:da:85:13:da:cd:c9:72:2b:28:81:11: ca:16:6a:b3:15:16:7f:8c:e5:49:5d:9f:00:f0:55: 0d:3e:7f:17:5d:43:ec:75:e5:24:a1:58:e1:d1:29: 43:58:e9:8c:7b:a6:07:77:f4:34:f4:9f:1f:31:73: ac:19:42:43:86:eb:67:ef:e0:a2:72:36:92:b3:da: c3:ad:b7:cc:cb:99:6c:33:f5:bf:fe:c0:e5:44:58: 06:b0:a6:e3:10:93:3b:07:a1:15:a2:19:fe:a2:11: 5d:29:65:a2:72:da:c5:cc:a4:59:78:0e:cb:da:9e: 95:a9:d1:c0:d5:0d:4e:40:49:2b:17:f8:74:37:3e: 9b:2e:81:4f:69:a8:d0:34:39:9f:ca:06:c0:c9:0d: 94:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:13:A5:55:B9:38:4E:21:97:6F:76:56:6C:3D:36:D4:72:5B:02:73 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32302e302f32342d3234203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.20.0/24 Signature Algorithm: sha256WithRSAEncryption a6:b7:2c:65:36:4e:b9:41:09:d4:11:69:88:fe:03:75:6d:47: 48:31:52:3e:7b:0f:66:11:12:3a:32:f4:66:e3:59:60:21:d1: 22:f8:44:3a:53:2e:bc:1f:ba:b8:ba:18:4f:5b:2b:40:08:eb: 8e:0d:02:12:e6:72:20:c4:39:de:5d:7e:87:11:ae:11:18:e7: ee:3e:5d:71:e0:94:2f:e7:23:80:b5:49:35:c3:8d:68:22:dd: f6:de:ec:e2:a5:d3:49:85:58:82:9e:30:cf:f5:06:b2:10:d3: c3:13:06:a9:c8:86:10:3e:26:2c:91:10:9b:b1:f5:1f:e5:3f: e1:57:26:f3:a6:2f:d4:53:dc:ae:93:89:db:9f:44:ed:d4:3e: 94:19:7a:e6:80:1f:e7:f7:47:ac:bc:a9:cb:9a:54:93:28:c2: 1c:0e:72:4b:a5:85:fb:f1:56:32:6f:8e:19:d2:67:91:1e:0b: 1f:76:ba:27:29:35:78:8b:7f:1f:b6:cf:f4:e9:98:91:ea:57: 76:c6:c2:66:89:44:d0:9d:c7:89:93:a7:fe:bf:86:3a:07:fa: 48:65:b4:5e:4f:93:6d:b7:03:40:be:b6:f7:ce:cd:f3:de:6f: 3e:1d:55:23:24:dc:6d:8c:ba:91:4c:6e:d2:fb:6e:11:2d:97: 41:8e:94:c9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKEH+vARet0N2bxjW04Ws/IW/U38wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNDExMDgwMjU1MDBaFw0yNTExMDcwMzAwMDBaMDMxMTAvBgNV BAMTKDJGMTNBNTU1QjkzODRFMjE5NzZGNzY1NjZDM0QzNkQ0NzI1QjAyNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpCDtUaqsTlLRVNgld4b/P+ETU G1Fmkf4l05YLWMWg9LRNMR6MePkLleFafA/ypKy8qy2Jzf9cS7IyahBGAmLomFGb 1Eq9rqnXn+hyCjCLDqIL18ew5FCfKGCefRuvd67Jy6c6dRMSoHTheNDahRPazcly KyiBEcoWarMVFn+M5UldnwDwVQ0+fxddQ+x15SShWOHRKUNY6Yx7pgd39DT0nx8x c6wZQkOG62fv4KJyNpKz2sOtt8zLmWwz9b/+wOVEWAawpuMQkzsHoRWiGf6iEV0p ZaJy2sXMpFl4DsvanpWp0cDVDU5ASSsX+HQ3PpsugU9pqNA0OZ/KBsDJDZQrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQULxOlVbk4TiGXb3ZWbD021HJbAnMwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMxMzAzMzJlMzIzNDM3MmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf3FDANBgkqhkiG 9w0BAQsFAAOCAQEAprcsZTZOuUEJ1BFpiP4DdW1HSDFSPnsPZhESOjL0ZuNZYCHR IvhEOlMuvB+6uLoYT1srQAjrjg0CEuZyIMQ53l1+hxGuERjn7j5dceCUL+cjgLVJ NcONaCLd9t7s4qXTSYVYgp4wz/UGshDTwxMGqciGED4mLJEQm7H1H+U/4Vcm86Yv 1FPcrpOJ259E7dQ+lBl65oAf5/dHrLypy5pUkyjCHA5yS6WF+/FWMm+OGdJnkR4L H3a6Jyk1eIt/H7bP9OmYkepXdsbCZolE0J3HiZOn/r+GOgf6SGW0Xk+TbbcDQL62 987N895vPh1VIyTcbYy6kUxu0vtuES2XQY6UyQ== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org