$ rpki-client -vvf repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3130332e35332e32302e302f32342d3234203d3e203436303334.roa File: 3130332e35332e32302e302f32342d3234203d3e203436303334.roa (raw, json) Hash identifier: YHAiLGhk7A6ZE4X7obU+oz12qWeh7X0M2hlk6hYX8jU= Subject key identifier: 1B:8F:1E:72:C7:6F:E1:B8:D0:B6:61:E8:F3:71:64:A9:17:5F:17:AC Certificate issuer: /CN=E89C93F089A07D03B5794B0C02239EF67E1D721C Certificate serial: 0394321A15EB174C641DD39C20DE5321C6BD99CC Authority key identifier: E8:9C:93:F0:89:A0:7D:03:B5:79:4B:0C:02:23:9E:F6:7E:1D:72:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E89C93F089A07D03B5794B0C02239EF67E1D721C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3130332e35332e32302e302f32342d3234203d3e203436303334.roa Signing time: Thu 21 Nov 2024 12:34:22 +0000 ROA not before: Thu 21 Nov 2024 12:29:22 +0000 ROA not after: Thu 20 Nov 2025 12:34:22 +0000 asID: 46034 IP address blocks: 103.53.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/E89C93F089A07D03B5794B0C02239EF67E1D721C.crl rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/E89C93F089A07D03B5794B0C02239EF67E1D721C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E89C93F089A07D03B5794B0C02239EF67E1D721C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:94:32:1a:15:eb:17:4c:64:1d:d3:9c:20:de:53:21:c6:bd:99:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E89C93F089A07D03B5794B0C02239EF67E1D721C Validity Not Before: Nov 21 12:29:22 2024 GMT Not After : Nov 20 12:34:22 2025 GMT Subject: CN=1B8F1E72C76FE1B8D0B661E8F37164A9175F17AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:26:48:dc:f0:07:85:03:8e:62:32:6d:c7:fb: 4e:04:de:31:af:ca:9a:a9:d9:1c:35:f3:83:be:25: 02:4b:4c:b7:bb:8b:7d:b2:e9:20:bc:ac:9a:28:84: 58:5d:93:8a:57:47:f7:76:3f:49:d3:60:69:0d:e9: 27:e3:35:dc:25:6b:09:00:5a:9d:8e:8a:8c:d0:07: 1b:d3:de:b5:c8:70:76:9c:01:72:2e:69:5b:52:d4: 97:21:dd:b5:c0:27:1e:7d:63:79:78:c4:29:7d:ff: 2d:55:50:cb:7e:c1:44:4f:c0:fd:4f:c3:87:03:c2: 52:e0:b5:ce:1a:96:96:14:89:2d:5a:46:a7:76:d2: d3:34:cf:9a:44:c8:83:40:62:35:b2:72:a8:1a:69: 35:79:ed:f1:1c:21:35:41:d1:af:3a:06:ed:67:81: e6:9d:d2:ec:67:c3:54:94:ce:71:9c:7f:06:03:40: 47:bc:f3:80:a9:a3:2e:e2:45:08:7a:3b:49:35:92: 4b:5d:01:8a:07:44:61:57:43:c2:da:75:42:31:76: cc:82:e0:87:25:05:a5:0f:3b:e0:aa:11:61:68:36: b6:26:2f:2f:e6:7f:57:f6:06:2a:43:f2:a2:8b:00: 9b:31:9d:7c:86:2d:d6:68:ee:85:fe:4c:52:92:f9: 53:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:8F:1E:72:C7:6F:E1:B8:D0:B6:61:E8:F3:71:64:A9:17:5F:17:AC X509v3 Authority Key Identifier: keyid:E8:9C:93:F0:89:A0:7D:03:B5:79:4B:0C:02:23:9E:F6:7E:1D:72:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/E89C93F089A07D03B5794B0C02239EF67E1D721C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E89C93F089A07D03B5794B0C02239EF67E1D721C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3130332e35332e32302e302f32342d3234203d3e203436303334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.53.20.0/24 Signature Algorithm: sha256WithRSAEncryption c2:e2:88:36:b3:8a:20:9b:ec:96:8b:57:ed:93:ec:b4:73:26: 4f:48:90:84:07:c3:e5:a6:1a:bc:24:f1:5d:7d:90:22:35:6c: c6:ec:5b:f7:5c:ac:df:f7:2f:bb:47:3b:76:00:94:4a:1e:e5: e6:16:0b:31:06:9d:c8:98:5a:ad:98:49:a1:fb:ae:9f:5f:d4: 39:c8:59:cd:91:bd:3c:3d:2f:13:8a:5b:9f:fe:a1:01:ee:a0: 49:0f:4f:39:a1:7c:ac:f5:c5:72:69:39:be:7f:b8:42:31:38: 86:f6:9e:6b:91:4c:4b:b9:b1:10:35:76:32:39:35:bb:a6:e2: a1:b3:d2:27:75:9f:21:8d:2e:10:0f:64:b4:bb:d3:e5:4b:94: 7e:b5:48:3d:9c:67:a5:dd:cc:2d:db:1d:19:76:77:0d:c6:30: 92:19:1d:77:1b:cf:7c:0d:7e:dd:60:00:15:96:f4:a0:bd:44: 84:1b:ca:a0:48:cf:33:da:85:00:2b:bd:40:24:27:a7:85:c4: a1:96:92:98:ab:bd:cf:26:14:b3:ae:26:0f:7a:c3:ed:57:4f: d5:68:12:59:86:25:fa:f0:4d:2f:90:22:71:87:c7:1e:84:b9: 96:79:bb:62:fa:c2:88:b2:2a:5d:f3:06:de:7b:ba:e3:6b:67: fb:a5:95:3b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUA5QyGhXrF0xkHdOcIN5TIca9mcwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5QzkzRjA4OUEwN0QwM0I1Nzk0QjBDMDIyMzlFRjY3 RTFENzIxQzAeFw0yNDExMjExMjI5MjJaFw0yNTExMjAxMjM0MjJaMDMxMTAvBgNV BAMTKDFCOEYxRTcyQzc2RkUxQjhEMEI2NjFFOEYzNzE2NEE5MTc1RjE3QUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/Jkjc8AeFA45iMm3H+04E3jGv ypqp2Rw184O+JQJLTLe7i32y6SC8rJoohFhdk4pXR/d2P0nTYGkN6SfjNdwlawkA Wp2OiozQBxvT3rXIcHacAXIuaVtS1Jch3bXAJx59Y3l4xCl9/y1VUMt+wURPwP1P w4cDwlLgtc4alpYUiS1aRqd20tM0z5pEyINAYjWycqgaaTV57fEcITVB0a86Bu1n gead0uxnw1SUznGcfwYDQEe884Cpoy7iRQh6O0k1kktdAYoHRGFXQ8LadUIxdsyC 4IclBaUPO+CqEWFoNrYmLy/mf1f2BipD8qKLAJsxnXyGLdZo7oX+TFKS+VNvAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUG48ecsdv4bjQtmHo83FkqRdfF6wwHwYDVR0j BBgwFoAU6JyT8ImgfQO1eUsMAiOe9n4dchwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 Zjg4NTFlNS1lZTViLTQxZTEtOWFiYy00NDI2NTFkMjcyOTQvMC9FODlDOTNGMDg5 QTA3RDAzQjU3OTRCMEMwMjIzOUVGNjdFMUQ3MjFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTg5QzkzRjA4OUEwN0QwM0I1Nzk0QjBDMDIyMzlFRjY3RTFE NzIxQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmODg1MWU1LWVlNWItNDFlMS05 YWJjLTQ0MjY1MWQyNzI5NC8wLzMxMzAzMzJlMzUzMzJlMzIzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDMzMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnNRQwDQYJKoZIhvcN AQELBQADggEBAMLiiDaziiCb7JaLV+2T7LRzJk9IkIQHw+WmGrwk8V19kCI1bMbs W/dcrN/3L7tHO3YAlEoe5eYWCzEGnciYWq2YSaH7rp9f1DnIWc2RvTw9LxOKW5/+ oQHuoEkPTzmhfKz1xXJpOb5/uEIxOIb2nmuRTEu5sRA1djI5Nbum4qGz0id1nyGN LhAPZLS70+VLlH61SD2cZ6XdzC3bHRl2dw3GMJIZHXcbz3wNft1gABWW9KC9RIQb yqBIzzPahQArvUAkJ6eFxKGWkpirvc8mFLOuJg96w+1XT9VoElmGJfrwTS+QInGH xx6EuZZ5u2L6woiyKl3zBt57uuNrZ/ullTs= -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org