$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32322e302f32342d3234203d3e203538343835.roa File: 3130332e3234372e32322e302f32342d3234203d3e203538343835.roa (raw, json) Hash identifier: NDkVul9KXhtJg6B0VexGFQxWft7hFFCgSyZ0tKQsElE= Subject key identifier: 8C:44:B0:F5:D9:C3:6A:D4:19:C2:7D:B9:84:46:52:00:FD:80:86:95 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 188577162EA996B4D8610F78232438B2E158E600 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32322e302f32342d3234203d3e203538343835.roa Signing time: Thu 03 Oct 2024 19:00:00 +0000 ROA not before: Thu 03 Oct 2024 18:55:00 +0000 ROA not after: Thu 02 Oct 2025 19:00:00 +0000 asID: 58485 IP address blocks: 103.247.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:85:77:16:2e:a9:96:b4:d8:61:0f:78:23:24:38:b2:e1:58:e6:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Oct 3 18:55:00 2024 GMT Not After : Oct 2 19:00:00 2025 GMT Subject: CN=8C44B0F5D9C36AD419C27DB984465200FD808695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e2:12:20:2d:b6:8b:d1:a5:e9:71:a5:ce:bb: fd:4a:c2:cf:19:55:3b:05:82:e4:21:f0:c0:55:e4: ed:74:a2:9d:af:1e:35:b1:f0:cd:58:c3:f8:9b:d3: 5a:40:7b:72:97:0b:f3:79:ae:a7:3d:b5:9d:64:1c: 58:83:9a:44:49:4e:d3:3e:76:a7:8e:d0:ef:7e:d0: 24:91:48:77:9a:15:8b:d0:07:b1:59:45:40:a0:55: a3:8d:c7:df:8d:97:5f:37:dc:81:a5:ad:92:db:4c: 6c:2e:01:79:a9:30:85:e0:cf:26:0e:5a:e3:ec:3a: 20:c9:ab:49:f5:01:ba:5c:61:c0:6b:a2:cb:ed:9d: 26:29:32:01:b8:05:7e:7a:32:83:10:01:3c:18:b7: e6:92:50:30:89:6a:4d:3a:46:a8:56:f5:ab:1b:bc: 28:e6:86:85:32:2d:fa:9f:20:f7:6a:51:d9:63:f7: 51:2e:b7:03:5c:2f:58:1b:48:59:0a:75:a0:b8:1d: 67:be:44:e7:cc:57:8f:4d:c7:84:28:a5:69:27:35: c6:e5:0a:e9:dc:88:01:fa:2c:a7:f5:6a:51:ec:e1: 6b:91:ad:99:ed:0e:f2:4a:02:dc:07:85:3b:97:51: ad:ca:39:51:61:3b:0a:fe:c5:2e:e3:48:5e:70:21: 17:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:44:B0:F5:D9:C3:6A:D4:19:C2:7D:B9:84:46:52:00:FD:80:86:95 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32322e302f32342d3234203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.22.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:1f:c8:08:20:45:b7:d4:ab:59:07:5f:5f:c4:4d:24:36:74: d6:b0:03:a8:d4:19:50:f4:a1:7b:e1:6a:4d:81:ee:5b:e4:9b: 4e:5a:5b:73:6b:c5:2d:85:16:d9:87:46:62:d5:bb:00:99:dd: e0:be:7c:55:2f:1e:2d:52:bb:3a:f7:69:3f:99:08:4c:b4:f5: fb:13:28:15:d3:82:6f:43:16:06:c8:83:31:f2:97:34:23:2b: 3f:c4:08:ae:dd:19:6e:0c:d8:e4:be:41:f9:4e:38:1d:d5:8a: 72:71:24:55:8c:e7:98:34:a1:ae:b6:d9:9c:7c:ae:40:e2:e9: 19:7f:37:c7:f2:14:21:14:af:11:16:89:fa:e5:0e:a7:a2:ad: 6c:bc:30:b4:54:61:20:15:2d:e5:cf:f2:b2:01:27:de:9e:b3: 21:2b:2e:8c:cb:5b:0f:d5:1c:9c:19:3e:49:b2:4b:94:9d:b7: 29:16:a1:47:15:38:d1:56:b3:b5:69:d2:83:fa:15:57:cd:1e: 87:af:65:fa:12:ea:eb:c9:32:1a:14:e0:62:d6:23:bf:1b:d6: dd:97:94:8a:42:2f:b8:04:24:20:be:c6:e7:09:2d:06:15:69: 8a:77:a8:64:7e:8d:8b:68:37:6c:a0:f3:c2:e2:d4:63:ac:2f: 28:b3:52:93 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUGIV3Fi6plrTYYQ94IyQ4suFY5gAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNDEwMDMxODU1MDBaFw0yNTEwMDIxOTAwMDBaMDMxMTAvBgNV BAMTKDhDNDRCMEY1RDlDMzZBRDQxOUMyN0RCOTg0NDY1MjAwRkQ4MDg2OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV4hIgLbaL0aXpcaXOu/1Kws8Z VTsFguQh8MBV5O10op2vHjWx8M1Yw/ib01pAe3KXC/N5rqc9tZ1kHFiDmkRJTtM+ dqeO0O9+0CSRSHeaFYvQB7FZRUCgVaONx9+Nl1833IGlrZLbTGwuAXmpMIXgzyYO WuPsOiDJq0n1AbpcYcBrosvtnSYpMgG4BX56MoMQATwYt+aSUDCJak06RqhW9asb vCjmhoUyLfqfIPdqUdlj91EutwNcL1gbSFkKdaC4HWe+ROfMV49Nx4QopWknNcbl CunciAH6LKf1alHs4WuRrZntDvJKAtwHhTuXUa3KOVFhOwr+xS7jSF5wIRfRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjESw9dnDatQZwn25hEZSAP2AhpUwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMxMzAzMzJlMzIzNDM3MmUzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf3FjANBgkqhkiG 9w0BAQsFAAOCAQEAnx/ICCBFt9SrWQdfX8RNJDZ01rADqNQZUPShe+FqTYHuW+Sb Tlpbc2vFLYUW2YdGYtW7AJnd4L58VS8eLVK7OvdpP5kITLT1+xMoFdOCb0MWBsiD MfKXNCMrP8QIrt0ZbgzY5L5B+U44HdWKcnEkVYznmDShrrbZnHyuQOLpGX83x/IU IRSvERaJ+uUOp6KtbLwwtFRhIBUt5c/ysgEn3p6zISsujMtbD9UcnBk+SbJLlJ23 KRahRxU40VaztWnSg/oVV80eh69l+hLq68kyGhTgYtYjvxvW3ZeUikIvuAQkIL7G 5wktBhVpineoZH6Ni2g3bKDzwuLUY6wvKLNSkw== -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:45 2024 by rpki-client on console-ams.rpki-client.org