$ rpki-client -vvf repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/3130332e38342e3131362e302f32342d3234203d3e20313336303730.roa File: 3130332e38342e3131362e302f32342d3234203d3e20313336303730.roa (raw, json) Hash identifier: ejo3/L+3kmLyjnvdSLMOsbUtjtQhrjGsr2lCCkclPu4= Subject key identifier: 60:26:D7:DB:FE:90:C9:AA:B7:14:A6:AA:13:D2:66:CE:A7:37:70:24 Certificate issuer: /CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Certificate serial: 6DA6E286BC521361303A4E39A16B5CD87DE3DE2D Authority key identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/3130332e38342e3131362e302f32342d3234203d3e20313336303730.roa Signing time: Sat 17 Aug 2024 12:00:01 +0000 ROA not before: Sat 17 Aug 2024 11:55:01 +0000 ROA not after: Sat 16 Aug 2025 12:00:01 +0000 asID: 136070 IP address blocks: 103.84.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:a6:e2:86:bc:52:13:61:30:3a:4e:39:a1:6b:5c:d8:7d:e3:de:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Validity Not Before: Aug 17 11:55:01 2024 GMT Not After : Aug 16 12:00:01 2025 GMT Subject: CN=6026D7DBFE90C9AAB714A6AA13D266CEA7377024 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2f:2d:3d:b1:75:5f:03:65:b1:5a:9e:66:0b: ef:d7:5d:16:8c:58:f1:c3:e0:e5:d1:96:86:f8:bf: 94:d2:44:00:a5:60:75:7f:2b:11:23:12:c8:b4:df: 6f:03:27:80:2d:3f:f9:72:10:c4:99:09:12:fe:9b: 75:ec:13:d3:bc:66:dc:db:2e:3e:ea:68:7e:89:14: db:e8:7b:80:bd:9a:61:96:ef:d0:6e:1f:87:79:2b: e2:0a:32:76:fd:96:4a:48:39:1d:c7:d7:95:d7:98: d9:42:cb:6a:8c:16:0a:9f:3b:b2:88:b5:3b:9a:2e: c2:ff:5b:b4:96:80:09:26:30:3e:7f:35:e9:ff:ad: 4b:1f:70:2b:36:93:64:65:60:1e:ce:e8:60:a7:37: 4b:3b:9e:21:af:f2:eb:98:a2:88:2d:8b:79:39:d8: 07:b8:19:c8:02:e2:36:40:d8:08:1a:86:26:a9:d6: c5:ca:6a:8a:fd:76:4b:f9:b0:2d:94:5c:5d:b2:47: c2:4f:0e:07:bb:b7:71:53:31:d3:d6:0d:8b:ba:d7: 67:6e:66:bc:2b:07:7d:01:30:79:7c:73:f9:6c:10: df:25:71:86:56:27:8b:d2:04:b8:89:a4:2b:4d:b2: fe:0b:b0:d5:d5:58:77:53:f9:b6:9b:81:92:47:85: d1:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:26:D7:DB:FE:90:C9:AA:B7:14:A6:AA:13:D2:66:CE:A7:37:70:24 X509v3 Authority Key Identifier: keyid:A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/3130332e38342e3131362e302f32342d3234203d3e20313336303730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.84.116.0/24 Signature Algorithm: sha256WithRSAEncryption 10:c1:60:e0:be:2e:60:4c:56:0e:3b:38:d9:b4:3b:af:36:ca: 56:32:e7:c4:4a:26:e9:76:78:a1:51:5a:cb:b8:21:85:b8:84: fc:18:e5:03:ff:2d:84:7f:50:9d:d4:8a:44:c3:82:5a:cb:de: 0e:a0:46:bc:8e:c4:50:ea:db:51:46:ee:38:6f:07:e7:04:47: 13:65:9b:5f:52:fd:0b:f2:b3:14:a9:bf:99:6c:79:c2:88:96: 43:9b:8d:a3:a0:70:a6:0e:d4:9c:95:42:cc:42:b7:cb:bc:e2: e6:6d:82:62:4e:f3:d1:12:af:67:f6:d4:b6:f8:7c:6e:16:de: 73:86:5c:f4:66:63:bd:88:08:5a:b7:ff:9f:4b:52:a9:b9:b2: 40:16:ac:35:0e:8c:ac:5a:40:c8:ac:dd:f2:72:31:cf:95:25: b8:3e:68:61:c9:90:99:8e:3e:a2:9d:87:82:4e:15:f2:c6:bf: 33:9a:cb:d6:9c:27:3b:62:92:3d:9c:18:b5:b0:16:ab:01:37: 7e:7c:63:6d:a9:e7:bf:5a:db:51:98:ed:cb:3f:c9:00:98:2a: 30:7d:b2:d9:35:f1:77:a3:38:ea:c0:04:68:a1:84:b6:07:08: 15:00:b6:e6:98:72:76:24:a0:2c:c2:75:f9:b6:fc:f3:3a:21: 95:cb:6f:64 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbabihrxSE2EwOk45oWtc2H3j3i0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2 RjNGRTBCMzAeFw0yNDA4MTcxMTU1MDFaFw0yNTA4MTYxMjAwMDFaMDMxMTAvBgNV BAMTKDYwMjZEN0RCRkU5MEM5QUFCNzE0QTZBQTEzRDI2NkNFQTczNzcwMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDELy09sXVfA2WxWp5mC+/XXRaM WPHD4OXRlob4v5TSRAClYHV/KxEjEsi0328DJ4AtP/lyEMSZCRL+m3XsE9O8Ztzb Lj7qaH6JFNvoe4C9mmGW79BuH4d5K+IKMnb9lkpIOR3H15XXmNlCy2qMFgqfO7KI tTuaLsL/W7SWgAkmMD5/Nen/rUsfcCs2k2RlYB7O6GCnN0s7niGv8uuYoogti3k5 2Ae4GcgC4jZA2Agahiap1sXKaor9dkv5sC2UXF2yR8JPDge7t3FTMdPWDYu612du ZrwrB30BMHl8c/lsEN8lcYZWJ4vSBLiJpCtNsv4LsNXVWHdT+babgZJHhdErAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYCbX2/6Qyaq3FKaqE9Jmzqc3cCQwHwYDVR0j BBgwFoAUoKKlyowgp89toTJcm9XDN28/4LMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjM3NzcxMS0xZTNkLTRlNWEtYTRhYy0wNWExYzUwMmFkMjgvMC9BMEEyQTVDQThD MjBBN0NGNkRBMTMyNUM5QkQ1QzMzNzZGM0ZFMEIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2RjNG RTBCMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmMzc3NzExLTFlM2QtNGU1YS1h NGFjLTA1YTFjNTAyYWQyOC8wLzMxMzAzMzJlMzgzNDJlMzEzMTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1R0MA0GCSqG SIb3DQEBCwUAA4IBAQAQwWDgvi5gTFYOOzjZtDuvNspWMufESibpdnihUVrLuCGF uIT8GOUD/y2Ef1Cd1IpEw4Jay94OoEa8jsRQ6ttRRu44bwfnBEcTZZtfUv0L8rMU qb+ZbHnCiJZDm42joHCmDtSclULMQrfLvOLmbYJiTvPREq9n9tS2+HxuFt5zhlz0 ZmO9iAhat/+fS1KpubJAFqw1DoysWkDIrN3ycjHPlSW4PmhhyZCZjj6inYeCThXy xr8zmsvWnCc7YpI9nBi1sBarATd+fGNtqee/WttRmO3LP8kAmCowfbLZNfF3ozjq wARooYS2BwgVALbmmHJ2JKAswnX5tvzzOiGVy29k -----END CERTIFICATE-----Generated at Sun Nov 24 18:33:16 2024 by rpki-client on console-fra.rpki-client.org