$ rpki-client -vvf repo-rpki.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/3130332e39312e35352e302f32342d3234203d3e20313530323538.roa File: 3130332e39312e35352e302f32342d3234203d3e20313530323538.roa (raw, json) Hash identifier: InZb4Svv3A2DHv8YSHBBCPvqo5sWpcXYdxwGVe0a300= Subject key identifier: 06:BB:78:26:10:42:1E:FB:F9:57:10:BC:A9:D3:FD:C2:02:FF:79:84 Certificate issuer: /CN=248C652A73F35EA32B7EC526D977784EB15D2C7D Certificate serial: 7281BD3A0ABD61F65D55E5813D27224ADAB585DF Authority key identifier: 24:8C:65:2A:73:F3:5E:A3:2B:7E:C5:26:D9:77:78:4E:B1:5D:2C:7D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/248C652A73F35EA32B7EC526D977784EB15D2C7D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/3130332e39312e35352e302f32342d3234203d3e20313530323538.roa Signing time: Mon 23 Sep 2024 11:00:00 +0000 ROA not before: Mon 23 Sep 2024 10:55:00 +0000 ROA not after: Mon 22 Sep 2025 11:00:00 +0000 asID: 150258 IP address blocks: 103.91.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/248C652A73F35EA32B7EC526D977784EB15D2C7D.crl rsync://repo-rpki.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/248C652A73F35EA32B7EC526D977784EB15D2C7D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/248C652A73F35EA32B7EC526D977784EB15D2C7D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:81:bd:3a:0a:bd:61:f6:5d:55:e5:81:3d:27:22:4a:da:b5:85:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=248C652A73F35EA32B7EC526D977784EB15D2C7D Validity Not Before: Sep 23 10:55:00 2024 GMT Not After : Sep 22 11:00:00 2025 GMT Subject: CN=06BB782610421EFBF95710BCA9D3FDC202FF7984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:c1:69:da:6d:63:9e:7f:7e:7f:c0:82:61:93: 89:0e:77:d0:8d:3f:6b:d5:c7:34:59:79:5a:dd:a6: 21:43:36:b8:69:22:91:27:41:73:e9:80:4c:47:f5: ae:08:53:9b:87:af:d3:0c:02:0e:03:15:f0:e5:55: 7c:10:b2:e6:55:c9:52:2c:72:a6:7a:7a:00:67:f2: de:f5:f1:bf:bf:f7:1d:0d:4d:e2:52:7b:f9:3c:ee: 93:87:1a:7a:87:ee:9a:68:2e:e3:a5:be:06:a8:1d: b7:76:a8:09:64:c5:d3:b3:7e:42:4d:7a:14:45:49: 17:1d:b5:26:d0:c5:ae:6c:dc:11:7b:65:37:1a:6a: 83:d5:fc:17:ec:76:90:46:34:36:85:c4:b2:3d:fb: bc:76:84:e5:e4:17:be:59:e0:f3:01:8e:66:e3:ad: 08:16:11:02:0e:90:64:db:8b:ed:c5:b7:b8:6b:33: 0c:b3:01:a2:28:77:1b:f6:c9:5f:68:ce:8f:21:b8: b4:d3:0d:8d:46:ee:f0:0f:5d:03:f0:b8:57:3c:f0: 68:1c:25:7f:7e:d1:50:39:a7:fb:9b:40:39:96:51: 40:c7:c4:e8:97:33:ea:b5:98:65:48:5d:34:c4:58: c2:73:52:c9:21:46:6a:11:65:76:58:9d:b6:74:0e: e4:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:BB:78:26:10:42:1E:FB:F9:57:10:BC:A9:D3:FD:C2:02:FF:79:84 X509v3 Authority Key Identifier: keyid:24:8C:65:2A:73:F3:5E:A3:2B:7E:C5:26:D9:77:78:4E:B1:5D:2C:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/248C652A73F35EA32B7EC526D977784EB15D2C7D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/248C652A73F35EA32B7EC526D977784EB15D2C7D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/3130332e39312e35352e302f32342d3234203d3e20313530323538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.91.55.0/24 Signature Algorithm: sha256WithRSAEncryption 95:36:cc:e1:a3:65:3b:5f:d9:b3:9f:1e:ae:d1:8e:33:a1:92: ca:91:0f:7d:81:64:a4:5c:cb:0d:8c:b4:5d:c1:cc:64:5c:8f: f9:c7:42:38:95:d5:88:fa:c1:e8:82:39:be:a8:ba:6a:dd:11: b1:0e:1a:62:8f:d6:50:f1:e8:52:94:09:4d:19:07:6e:e3:02: 14:d8:c3:e9:eb:d8:d1:d6:07:38:6b:21:46:bc:51:76:26:65: 97:2c:0e:35:87:94:f2:ae:cb:be:5c:27:1b:c3:7c:d7:c7:a9: 91:bf:97:99:6c:1e:21:af:bb:80:8e:3b:bc:33:cb:b8:a1:2a: 17:ae:cb:6f:03:e3:38:22:e2:eb:5b:d3:56:05:42:bb:1f:96: aa:2c:ff:f0:9d:d8:66:f0:be:d5:0a:cc:77:d5:c2:0c:90:7e: 20:e7:ff:f6:37:1f:f5:14:fe:cc:ca:39:0f:b2:11:76:cd:52: ea:bb:be:ff:1a:5d:21:2e:ea:c3:9e:cf:d1:b1:7f:b0:61:71: 99:04:65:d6:ee:38:e7:04:8f:04:90:33:61:00:d6:77:40:f4: 94:a0:9c:27:ff:28:69:2d:a2:67:9f:95:9d:f6:7a:ec:8a:17: 8e:02:2a:c3:40:47:70:e0:cc:ac:19:dd:0f:b2:4b:28:27:66: 7f:97:68:9b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcoG9Ogq9YfZdVeWBPSciStq1hd8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjQ4QzY1MkE3M0YzNUVBMzJCN0VDNTI2RDk3Nzc4NEVC MTVEMkM3RDAeFw0yNDA5MjMxMDU1MDBaFw0yNTA5MjIxMTAwMDBaMDMxMTAvBgNV BAMTKDA2QkI3ODI2MTA0MjFFRkJGOTU3MTBCQ0E5RDNGREMyMDJGRjc5ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzwWnabWOef35/wIJhk4kOd9CN P2vVxzRZeVrdpiFDNrhpIpEnQXPpgExH9a4IU5uHr9MMAg4DFfDlVXwQsuZVyVIs cqZ6egBn8t718b+/9x0NTeJSe/k87pOHGnqH7ppoLuOlvgaoHbd2qAlkxdOzfkJN ehRFSRcdtSbQxa5s3BF7ZTcaaoPV/BfsdpBGNDaFxLI9+7x2hOXkF75Z4PMBjmbj rQgWEQIOkGTbi+3Ft7hrMwyzAaIodxv2yV9ozo8huLTTDY1G7vAPXQPwuFc88Ggc JX9+0VA5p/ubQDmWUUDHxOiXM+q1mGVIXTTEWMJzUskhRmoRZXZYnbZ0DuQVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBrt4JhBCHvv5VxC8qdP9wgL/eYQwHwYDVR0j BBgwFoAUJIxlKnPzXqMrfsUm2Xd4TrFdLH0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZmZiYWY3MS0yZDU3LTRlNGEtOTFkMC1jYWM4YWIwYWNlZmUvMC8yNDhDNjUyQTcz RjM1RUEzMkI3RUM1MjZEOTc3Nzg0RUIxNUQyQzdELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjQ4QzY1MkE3M0YzNUVBMzJCN0VDNTI2RDk3Nzc4NEVCMTVE MkM3RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmZmJhZjcxLTJkNTctNGU0YS05 MWQwLWNhYzhhYjBhY2VmZS8wLzMxMzAzMzJlMzkzMTJlMzUzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzUzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdbNzANBgkqhkiG 9w0BAQsFAAOCAQEAlTbM4aNlO1/Zs58ertGOM6GSypEPfYFkpFzLDYy0XcHMZFyP +cdCOJXViPrB6II5vqi6at0RsQ4aYo/WUPHoUpQJTRkHbuMCFNjD6evY0dYHOGsh RrxRdiZllywONYeU8q7LvlwnG8N818epkb+XmWweIa+7gI47vDPLuKEqF67LbwPj OCLi61vTVgVCux+Wqiz/8J3YZvC+1QrMd9XCDJB+IOf/9jcf9RT+zMo5D7IRds1S 6ru+/xpdIS7qw57P0bF/sGFxmQRl1u445wSPBJAzYQDWd0D0lKCcJ/8oaS2iZ5+V nfZ67IoXjgIqw0BHcODMrBndD7JLKCdmf5domw== -----END CERTIFICATE-----Generated at Mon Nov 25 17:55:28 2024 by rpki-client on console-fra.rpki-client.org