$ rpki-client -vvf repo-rpki.idnic.net/repo/2f8d1594-43e9-432d-be82-dc0b9767dcb6/0/3130332e31332e3136342e302f32332d3234203d3e2034383030.roa File: 3130332e31332e3136342e302f32332d3234203d3e2034383030.roa (raw, json) Hash identifier: wIcdCD/tVklftRRrB04ovxGfa9tflhB+E3tjCQLZ9Ac= Subject key identifier: 21:CC:BC:40:B8:09:2C:CB:A1:35:64:DE:84:51:01:9E:82:E2:75:C0 Certificate issuer: /CN=0A84F918C6DCC0E4A989AE30553E8D7FB13ACC99 Certificate serial: 05A9C4DB5546D7312187EAE4B159803286B37D78 Authority key identifier: 0A:84:F9:18:C6:DC:C0:E4:A9:89:AE:30:55:3E:8D:7F:B1:3A:CC:99 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A84F918C6DCC0E4A989AE30553E8D7FB13ACC99.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2f8d1594-43e9-432d-be82-dc0b9767dcb6/0/3130332e31332e3136342e302f32332d3234203d3e2034383030.roa Signing time: Thu 01 Aug 2024 08:00:01 +0000 ROA not before: Thu 01 Aug 2024 07:55:01 +0000 ROA not after: Thu 31 Jul 2025 08:00:01 +0000 asID: 4800 IP address blocks: 103.13.164.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2f8d1594-43e9-432d-be82-dc0b9767dcb6/0/0A84F918C6DCC0E4A989AE30553E8D7FB13ACC99.crl rsync://repo-rpki.idnic.net/repo/2f8d1594-43e9-432d-be82-dc0b9767dcb6/0/0A84F918C6DCC0E4A989AE30553E8D7FB13ACC99.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A84F918C6DCC0E4A989AE30553E8D7FB13ACC99.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:a9:c4:db:55:46:d7:31:21:87:ea:e4:b1:59:80:32:86:b3:7d:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A84F918C6DCC0E4A989AE30553E8D7FB13ACC99 Validity Not Before: Aug 1 07:55:01 2024 GMT Not After : Jul 31 08:00:01 2025 GMT Subject: CN=21CCBC40B8092CCBA13564DE8451019E82E275C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ac:8d:0b:7b:d0:e9:21:92:d2:61:9e:78:de: f4:e2:ee:9c:f1:d2:dc:d6:a4:b8:a0:8c:09:37:d9: 01:25:37:e2:cf:1a:2e:de:72:5d:4d:9c:1b:75:6a: 12:de:3e:e3:f7:7b:6f:c2:98:fa:c6:4a:e9:29:c9: bf:27:2c:77:17:ea:f3:e4:e2:8e:8d:89:f2:79:09: cd:1c:33:50:b8:ea:b6:00:dd:cc:56:b6:d6:ab:63: 8b:0f:68:45:ed:e9:49:90:38:c3:a8:a4:e6:b6:28: 31:a9:e5:bc:80:05:09:db:c1:19:0e:d6:2a:98:11: 42:ec:13:fb:8e:20:2d:3d:ba:4b:38:c1:3f:19:fa: f6:0c:72:54:90:47:df:3a:22:9f:7d:bb:59:86:96: c5:64:9f:ff:82:00:1a:1b:ab:c9:b0:fb:83:7b:bc: f1:6e:ef:ad:f8:c7:e7:09:b8:1f:f1:94:11:17:74: aa:c3:3c:41:25:d5:05:73:f8:1e:e2:85:04:33:81: 11:63:7a:f9:1c:ae:0b:d4:7d:91:a3:c4:b2:33:77: 6c:77:d9:aa:67:f3:a5:56:66:c8:65:8f:fc:3c:82: 7c:69:37:7f:5a:29:83:23:67:ee:23:d9:ff:57:b9: 87:f0:ed:45:83:34:81:63:13:e7:25:a9:9a:04:b1: a9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:CC:BC:40:B8:09:2C:CB:A1:35:64:DE:84:51:01:9E:82:E2:75:C0 X509v3 Authority Key Identifier: keyid:0A:84:F9:18:C6:DC:C0:E4:A9:89:AE:30:55:3E:8D:7F:B1:3A:CC:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2f8d1594-43e9-432d-be82-dc0b9767dcb6/0/0A84F918C6DCC0E4A989AE30553E8D7FB13ACC99.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A84F918C6DCC0E4A989AE30553E8D7FB13ACC99.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2f8d1594-43e9-432d-be82-dc0b9767dcb6/0/3130332e31332e3136342e302f32332d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.13.164.0/23 Signature Algorithm: sha256WithRSAEncryption ae:55:08:7e:68:e2:5a:ef:5f:6b:eb:3a:36:c4:60:0d:00:aa: be:27:90:1b:5d:70:85:7a:4d:ab:10:02:ab:48:4b:f0:0c:e2: 25:70:7f:e7:e0:b2:76:5d:a0:47:1f:b2:cb:a9:30:12:48:ea: ff:ea:dc:bf:17:2f:19:41:45:42:82:d5:4b:bc:5f:1f:44:b8: 50:b4:5b:59:62:9a:f2:0a:c5:75:44:ff:8b:a6:3f:f8:12:f3: 78:7a:a5:43:39:4a:3c:84:50:19:f0:ed:5b:df:53:2d:dd:be: 0c:d7:40:f7:b1:f7:00:76:4f:b7:99:aa:5c:93:2a:9f:fa:f8: 5f:23:df:90:60:25:f7:05:8d:b5:2a:56:7e:12:05:ae:77:a4: 1e:a0:6b:c6:46:2a:65:b6:1c:bc:52:ee:9f:dc:b4:9d:f1:82: a7:63:d6:10:a2:54:5a:04:96:56:56:72:24:b2:b3:96:5f:c9: bc:4f:c6:18:c1:3c:d1:c9:ea:53:5b:aa:ce:c9:ce:7b:13:78: 59:81:4c:5e:81:45:2f:08:a5:27:d6:4a:09:a6:09:da:92:87: b7:c9:bb:26:ec:92:04:c7:87:63:ad:89:0b:f3:3d:71:35:54: 3c:04:96:93:63:d8:2e:39:9f:b9:e3:33:5b:b9:85:d4:e7:b6: ac:32:df:4f -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUBanE21VG1zEhh+rksVmAMoazfXgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEE4NEY5MThDNkRDQzBFNEE5ODlBRTMwNTUzRThEN0ZC MTNBQ0M5OTAeFw0yNDA4MDEwNzU1MDFaFw0yNTA3MzEwODAwMDFaMDMxMTAvBgNV BAMTKDIxQ0NCQzQwQjgwOTJDQ0JBMTM1NjRERTg0NTEwMTlFODJFMjc1QzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnrI0Le9DpIZLSYZ543vTi7pzx 0tzWpLigjAk32QElN+LPGi7ecl1NnBt1ahLePuP3e2/CmPrGSukpyb8nLHcX6vPk 4o6NifJ5Cc0cM1C46rYA3cxWttarY4sPaEXt6UmQOMOopOa2KDGp5byABQnbwRkO 1iqYEULsE/uOIC09uks4wT8Z+vYMclSQR986Ip99u1mGlsVkn/+CABobq8mw+4N7 vPFu7634x+cJuB/xlBEXdKrDPEEl1QVz+B7ihQQzgRFjevkcrgvUfZGjxLIzd2x3 2apn86VWZshlj/w8gnxpN39aKYMjZ+4j2f9XuYfw7UWDNIFjE+clqZoEsanpAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUIcy8QLgJLMuhNWTehFEBnoLidcAwHwYDVR0j BBgwFoAUCoT5GMbcwOSpia4wVT6Nf7E6zJkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZjhkMTU5NC00M2U5LTQzMmQtYmU4Mi1kYzBiOTc2N2RjYjYvMC8wQTg0RjkxOEM2 RENDMEU0QTk4OUFFMzA1NTNFOEQ3RkIxM0FDQzk5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEE4NEY5MThDNkRDQzBFNEE5ODlBRTMwNTUzRThEN0ZCMTNB Q0M5OS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmOGQxNTk0LTQzZTktNDMyZC1i ZTgyLWRjMGI5NzY3ZGNiNi8wLzMxMzAzMzJlMzEzMzJlMzEzNjM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzODMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnDaQwDQYJKoZIhvcN AQELBQADggEBAK5VCH5o4lrvX2vrOjbEYA0Aqr4nkBtdcIV6TasQAqtIS/AM4iVw f+fgsnZdoEcfssupMBJI6v/q3L8XLxlBRUKC1Uu8Xx9EuFC0W1limvIKxXVE/4um P/gS83h6pUM5SjyEUBnw7VvfUy3dvgzXQPex9wB2T7eZqlyTKp/6+F8j35BgJfcF jbUqVn4SBa53pB6ga8ZGKmW2HLxS7p/ctJ3xgqdj1hCiVFoEllZWciSys5ZfybxP xhjBPNHJ6lNbqs7JznsTeFmBTF6BRS8IpSfWSgmmCdqSh7fJuybskgTHh2OtiQvz PXE1VDwElpNj2C45n7njM1u5hdTntqwy308= -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:39 2024 by rpki-client on console-fra.rpki-client.org