$ rpki-client -vvf repo-rpki.idnic.net/repo/506cd155-b53f-4146-a17c-7f1375eca24a/0/3130332e37392e39362e302f32342d3234203d3e203634333038.roa File: 3130332e37392e39362e302f32342d3234203d3e203634333038.roa (raw, json) Hash identifier: tFB1HPiNNH8Uh3Ocgju9qGe/kSMQxPeWa2faa9cGAvE= Subject key identifier: F2:42:D3:DE:D1:4D:D1:61:C7:95:69:EF:AC:62:A0:49:7B:EF:FD:D0 Certificate issuer: /CN=A8ACDEBC6EB4FF09A48B38FEB17CC145AA5E9F36 Certificate serial: 132F0F4BC16425BA20B96C9A2767CF3997959AF9 Authority key identifier: A8:AC:DE:BC:6E:B4:FF:09:A4:8B:38:FE:B1:7C:C1:45:AA:5E:9F:36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A8ACDEBC6EB4FF09A48B38FEB17CC145AA5E9F36.cer Subject info access: rsync://repo-rpki.idnic.net/repo/506cd155-b53f-4146-a17c-7f1375eca24a/0/3130332e37392e39362e302f32342d3234203d3e203634333038.roa Signing time: Mon 01 Jul 2024 01:04:47 +0000 ROA not before: Mon 01 Jul 2024 00:59:47 +0000 ROA not after: Mon 30 Jun 2025 01:04:47 +0000 asID: 64308 IP address blocks: 103.79.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/506cd155-b53f-4146-a17c-7f1375eca24a/0/A8ACDEBC6EB4FF09A48B38FEB17CC145AA5E9F36.crl rsync://repo-rpki.idnic.net/repo/506cd155-b53f-4146-a17c-7f1375eca24a/0/A8ACDEBC6EB4FF09A48B38FEB17CC145AA5E9F36.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A8ACDEBC6EB4FF09A48B38FEB17CC145AA5E9F36.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:2f:0f:4b:c1:64:25:ba:20:b9:6c:9a:27:67:cf:39:97:95:9a:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A8ACDEBC6EB4FF09A48B38FEB17CC145AA5E9F36 Validity Not Before: Jul 1 00:59:47 2024 GMT Not After : Jun 30 01:04:47 2025 GMT Subject: CN=F242D3DED14DD161C79569EFAC62A0497BEFFDD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:be:7e:85:64:bd:b8:64:c2:4d:ba:be:04:59: 0d:bd:1c:56:c4:c0:3f:ed:21:12:46:cb:ec:93:e8: ed:2a:3c:6a:cd:10:f5:c3:af:32:67:10:99:c7:66: 15:ce:d4:87:8c:b9:71:b2:c6:fd:a0:af:14:06:80: fe:31:5e:f0:eb:f2:eb:10:9e:6a:e3:fc:60:68:00: eb:94:e5:e0:83:96:36:a2:a1:6f:24:11:e9:53:98: e2:53:93:8f:88:58:09:f8:cb:03:7e:d5:a0:e8:bf: 59:35:2d:cb:0a:8e:e9:b9:82:79:fd:f6:d7:3d:5a: a6:43:f6:6d:c4:74:85:f5:e7:f1:5f:d8:8a:d8:a5: 1d:41:67:f1:cb:5e:bb:46:94:f7:cd:48:89:ca:79: 65:35:b7:73:68:3f:d1:59:63:c1:c0:f1:d3:c3:d6: 01:4b:1c:41:b5:07:0f:d9:1c:c8:62:03:be:34:e3: ec:ec:51:37:e2:03:53:cc:be:1c:11:b2:be:84:a9: 96:3e:7a:07:8c:0d:5d:33:5f:e3:14:20:5e:3b:03: 74:64:bd:49:52:6e:58:dc:43:1c:58:68:c3:ff:6b: f1:12:bc:1e:8e:13:40:aa:6a:71:f4:17:cc:5a:56: 5e:68:36:3d:cb:e3:61:c7:c6:f6:83:27:a4:13:dc: d7:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:42:D3:DE:D1:4D:D1:61:C7:95:69:EF:AC:62:A0:49:7B:EF:FD:D0 X509v3 Authority Key Identifier: keyid:A8:AC:DE:BC:6E:B4:FF:09:A4:8B:38:FE:B1:7C:C1:45:AA:5E:9F:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/506cd155-b53f-4146-a17c-7f1375eca24a/0/A8ACDEBC6EB4FF09A48B38FEB17CC145AA5E9F36.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A8ACDEBC6EB4FF09A48B38FEB17CC145AA5E9F36.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/506cd155-b53f-4146-a17c-7f1375eca24a/0/3130332e37392e39362e302f32342d3234203d3e203634333038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.79.96.0/24 Signature Algorithm: sha256WithRSAEncryption 57:d0:66:d6:93:1f:29:c2:99:60:60:ec:4a:a7:c8:2b:f2:db: f5:f4:37:c0:bf:1a:f6:ef:30:74:50:71:4f:ea:94:ba:d4:7a: f0:9e:da:b8:c3:91:14:bc:ec:95:9a:a0:9e:4e:c3:89:d5:f9: c1:a4:af:0f:01:be:9d:eb:c5:ae:99:72:b8:12:73:f3:3f:b9: f6:14:03:da:e5:a4:94:3f:63:ad:95:1a:37:03:bb:c0:81:dc: 4c:6d:18:68:74:0d:a1:b4:75:cf:b4:3a:d5:84:b7:0d:b4:8f: 77:74:0e:35:36:f0:01:3f:a1:a3:ce:0b:3d:cb:dd:0b:16:09: ba:27:39:78:d3:60:81:78:78:56:51:fe:b7:f3:bd:a1:81:7c: 2c:56:32:df:2c:64:7f:9f:c5:0a:66:a9:64:1c:e9:15:f9:91: 12:9e:ef:8c:60:59:a2:27:28:f0:52:30:1c:a9:bf:6c:d7:8f: 2a:ad:c3:9d:6a:d7:31:73:35:32:fc:88:c1:2c:16:14:05:de: d2:64:d6:5a:6e:15:c3:29:79:ac:bc:9e:0f:34:7f:79:84:f2: f2:ca:29:fc:93:8c:a3:31:dc:10:76:ce:fd:a5:6a:8a:a3:42: 79:18:2e:09:77:20:36:fd:37:dc:6b:ee:0b:61:c7:93:69:39: 52:e9:a8:8e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUEy8PS8FkJboguWyaJ2fPOZeVmvkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQThBQ0RFQkM2RUI0RkYwOUE0OEIzOEZFQjE3Q0MxNDVB QTVFOUYzNjAeFw0yNDA3MDEwMDU5NDdaFw0yNTA2MzAwMTA0NDdaMDMxMTAvBgNV BAMTKEYyNDJEM0RFRDE0REQxNjFDNzk1NjlFRkFDNjJBMDQ5N0JFRkZERDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1vn6FZL24ZMJNur4EWQ29HFbE wD/tIRJGy+yT6O0qPGrNEPXDrzJnEJnHZhXO1IeMuXGyxv2grxQGgP4xXvDr8usQ nmrj/GBoAOuU5eCDljaioW8kEelTmOJTk4+IWAn4ywN+1aDov1k1LcsKjum5gnn9 9tc9WqZD9m3EdIX15/Ff2IrYpR1BZ/HLXrtGlPfNSInKeWU1t3NoP9FZY8HA8dPD 1gFLHEG1Bw/ZHMhiA7404+zsUTfiA1PMvhwRsr6EqZY+egeMDV0zX+MUIF47A3Rk vUlSbljcQxxYaMP/a/ESvB6OE0CqanH0F8xaVl5oNj3L42HHxvaDJ6QT3NeZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU8kLT3tFN0WHHlWnvrGKgSXvv/dAwHwYDVR0j BBgwFoAUqKzevG60/wmkizj+sXzBRapenzYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MDZjZDE1NS1iNTNmLTQxNDYtYTE3Yy03ZjEzNzVlY2EyNGEvMC9BOEFDREVCQzZF QjRGRjA5QTQ4QjM4RkVCMTdDQzE0NUFBNUU5RjM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQThBQ0RFQkM2RUI0RkYwOUE0OEIzOEZFQjE3Q0MxNDVBQTVF OUYzNi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUwNmNkMTU1LWI1M2YtNDE0Ni1h MTdjLTdmMTM3NWVjYTI0YS8wLzMxMzAzMzJlMzczOTJlMzkzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzQzMzMwMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnT2AwDQYJKoZIhvcN AQELBQADggEBAFfQZtaTHynCmWBg7EqnyCvy2/X0N8C/GvbvMHRQcU/qlLrUevCe 2rjDkRS87JWaoJ5Ow4nV+cGkrw8Bvp3rxa6ZcrgSc/M/ufYUA9rlpJQ/Y62VGjcD u8CB3ExtGGh0DaG0dc+0OtWEtw20j3d0DjU28AE/oaPOCz3L3QsWCbonOXjTYIF4 eFZR/rfzvaGBfCxWMt8sZH+fxQpmqWQc6RX5kRKe74xgWaInKPBSMBypv2zXjyqt w51q1zFzNTL8iMEsFhQF3tJk1lpuFcMpeay8ng80f3mE8vLKKfyTjKMx3BB2zv2l aoqjQnkYLgl3IDb9N9xr7gthx5NpOVLpqI4= -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org