$ rpki-client -vvf repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32332e302f32342d3234203d3e203538343835.roa File: 3130332e3234372e32332e302f32342d3234203d3e203538343835.roa (raw, json) Hash identifier: qF0wlcPw1qwhsMc0OmW9DCrZIr905TTb/pN0hD6R2o0= Subject key identifier: 56:36:FD:22:50:CE:BC:BF:AE:2B:60:38:E4:99:15:26:8B:33:07:16 Certificate issuer: /CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Certificate serial: 27F44D12ACB62BB7DA15EE37AC7B13DD3B1F5677 Authority key identifier: FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32332e302f32342d3234203d3e203538343835.roa Signing time: Tue 05 Nov 2024 17:00:00 +0000 ROA not before: Tue 05 Nov 2024 16:55:00 +0000 ROA not after: Tue 04 Nov 2025 17:00:00 +0000 asID: 58485 IP address blocks: 103.247.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:f4:4d:12:ac:b6:2b:b7:da:15:ee:37:ac:7b:13:dd:3b:1f:56:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39 Validity Not Before: Nov 5 16:55:00 2024 GMT Not After : Nov 4 17:00:00 2025 GMT Subject: CN=5636FD2250CEBCBFAE2B6038E49915268B330716 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:8d:49:57:bd:1d:07:60:23:28:15:01:ca:5f: f3:9e:e7:08:24:59:18:b1:ad:a2:26:19:b7:31:d6: 3f:e7:58:03:54:29:43:c3:ac:f6:ba:92:18:2d:87: 07:7b:66:bb:a8:0b:8c:9f:d8:e2:28:b9:8c:20:59: 15:f5:ce:a6:8e:e9:ec:26:38:d7:e0:cc:45:d5:21: e3:5c:02:23:01:f3:bd:d6:27:4f:d8:26:5a:b1:ed: ae:7b:30:91:51:01:7b:90:c0:51:fd:1b:96:3a:06: 2c:fa:b6:1a:01:7b:85:66:59:f4:9e:f7:bd:1b:aa: 1a:69:2f:19:0b:26:c2:35:5a:0d:5b:a0:32:d9:7b: 0d:ff:5f:87:35:eb:60:13:11:4c:d0:02:d9:50:df: 69:d4:c3:f0:69:41:96:17:d9:33:3c:f9:7d:de:5e: 41:e4:c1:af:a0:a8:bc:71:d3:72:f0:4e:e7:47:45: c2:84:c5:8e:52:39:67:00:1c:a4:a7:55:29:03:69: ee:ea:6f:a4:15:ae:bc:74:3a:15:78:d0:52:90:25: 5c:f4:72:c0:9e:e1:7a:5d:75:dd:fb:9b:2e:34:50: 2d:c1:05:a7:4b:a8:f5:f6:d7:13:1e:9b:21:39:16: 9a:88:41:3f:8e:f0:cd:ef:89:8e:b7:44:36:55:5e: 76:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:36:FD:22:50:CE:BC:BF:AE:2B:60:38:E4:99:15:26:8B:33:07:16 X509v3 Authority Key Identifier: keyid:FA:5B:CA:98:4E:EB:AF:FD:CE:D8:41:90:C7:07:56:DB:EB:3B:FF:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA5BCA984EEBAFFDCED84190C70756DBEB3BFF39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ee47bbf-ba84-448f-962b-2aaf5c7dd68d/0/3130332e3234372e32332e302f32342d3234203d3e203538343835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.23.0/24 Signature Algorithm: sha256WithRSAEncryption a1:e0:07:0c:3b:a4:f0:e4:31:7c:8d:77:24:19:36:52:e3:45: d8:ef:59:fb:d6:de:fa:1d:15:d0:81:c0:a9:f4:e8:48:d4:88: 80:bf:c6:89:f5:71:3a:46:03:83:62:9d:60:ee:a8:b9:2b:21: c7:60:c5:1f:0a:3c:9d:9f:93:af:8b:e2:b3:29:e2:a2:c6:72: 49:d8:9b:66:d6:1e:33:4a:df:f5:25:eb:f3:5f:bf:3e:bb:9f: 48:b7:c9:58:3a:c2:8b:ab:0d:a9:e1:dd:2b:42:d7:90:e3:13: 9b:fa:18:6e:7a:c0:61:75:e2:85:86:80:e4:d6:3a:33:d0:ac: 33:81:bd:bc:95:4b:04:35:48:dd:5c:67:c3:99:d1:d1:e4:1c: cf:74:24:a4:fc:2b:9b:38:71:5d:5a:c1:bd:3c:b3:36:af:50: 34:1b:6f:a8:2b:3d:fb:57:37:2c:d5:f5:38:e9:3f:23:6b:2b: b3:ce:90:96:a0:30:07:3b:04:2b:54:db:63:82:61:21:bc:ef: 38:e5:ed:f2:56:17:e4:01:04:97:50:17:a3:c7:e8:26:c6:96: 0b:59:72:12:88:85:a7:75:60:f4:eb:b6:54:44:9f:61:85:03: 04:f7:25:e8:80:22:f5:32:65:f5:e9:1b:36:15:14:9b:0d:3d: cc:6e:dc:b9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJ/RNEqy2K7faFe43rHsT3TsfVncwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJF QjNCRkYzOTAeFw0yNDExMDUxNjU1MDBaFw0yNTExMDQxNzAwMDBaMDMxMTAvBgNV BAMTKDU2MzZGRDIyNTBDRUJDQkZBRTJCNjAzOEU0OTkxNTI2OEIzMzA3MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0jUlXvR0HYCMoFQHKX/Oe5wgk WRixraImGbcx1j/nWANUKUPDrPa6khgthwd7ZruoC4yf2OIouYwgWRX1zqaO6ewm ONfgzEXVIeNcAiMB873WJ0/YJlqx7a57MJFRAXuQwFH9G5Y6Biz6thoBe4VmWfSe 970bqhppLxkLJsI1Wg1boDLZew3/X4c162ATEUzQAtlQ32nUw/BpQZYX2TM8+X3e XkHkwa+gqLxx03LwTudHRcKExY5SOWcAHKSnVSkDae7qb6QVrrx0OhV40FKQJVz0 csCe4Xpddd37my40UC3BBadLqPX21xMemyE5FpqIQT+O8M3viY63RDZVXnY5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUVjb9IlDOvL+uK2A45JkVJoszBxYwHwYDVR0j BBgwFoAU+lvKmE7rr/3O2EGQxwdW2+s7/zkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWU0N2JiZi1iYTg0LTQ0OGYtOTYyYi0yYWFmNWM3ZGQ2OGQvMC9GQTVCQ0E5ODRF RUJBRkZEQ0VEODQxOTBDNzA3NTZEQkVCM0JGRjM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE1QkNBOTg0RUVCQUZGRENFRDg0MTkwQzcwNzU2REJFQjNC RkYzOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJlZTQ3YmJmLWJhODQtNDQ4Zi05 NjJiLTJhYWY1YzdkZDY4ZC8wLzMxMzAzMzJlMzIzNDM3MmUzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf3FzANBgkqhkiG 9w0BAQsFAAOCAQEAoeAHDDuk8OQxfI13JBk2UuNF2O9Z+9be+h0V0IHAqfToSNSI gL/GifVxOkYDg2KdYO6ouSshx2DFHwo8nZ+Tr4visyniosZySdibZtYeM0rf9SXr 81+/PrufSLfJWDrCi6sNqeHdK0LXkOMTm/oYbnrAYXXihYaA5NY6M9CsM4G9vJVL BDVI3Vxnw5nR0eQcz3QkpPwrmzhxXVrBvTyzNq9QNBtvqCs9+1c3LNX1OOk/I2sr s86QlqAwBzsEK1TbY4JhIbzvOOXt8lYX5AEEl1AXo8foJsaWC1lyEoiFp3Vg9Ou2 VESfYYUDBPcl6IAi9TJl9ekbNhUUmw09zG7cuQ== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org