$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232302e302f32322d3232203d3e203234323131.roa File: 3130332e34392e3232302e302f32322d3232203d3e203234323131.roa (raw, json) Hash identifier: jn5ELD9d7J3S6Is4OuoIa81jRUPNRS7VH/L2BxODy7U= Subject key identifier: 79:DB:3F:7E:A1:C9:4C:95:B2:61:CF:B1:AD:19:69:FA:62:53:71:30 Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 242F899C017C64E5AA0D7867B5C8221CD2549756 Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232302e302f32322d3232203d3e203234323131.roa Signing time: Fri 22 Nov 2024 10:00:06 +0000 ROA not before: Fri 22 Nov 2024 09:55:06 +0000 ROA not after: Fri 21 Nov 2025 10:00:06 +0000 asID: 24211 IP address blocks: 103.49.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:2f:89:9c:01:7c:64:e5:aa:0d:78:67:b5:c8:22:1c:d2:54:97:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Nov 22 09:55:06 2024 GMT Not After : Nov 21 10:00:06 2025 GMT Subject: CN=79DB3F7EA1C94C95B261CFB1AD1969FA62537130 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:7f:19:53:76:26:de:78:27:f9:09:3c:9d:53: 57:7a:08:46:0b:d1:53:60:0b:8a:93:ed:c1:fc:54: 41:24:a2:58:42:f4:38:fc:e3:b5:e9:1c:ca:94:ce: 9a:e5:e4:2d:7b:e6:9c:2e:23:1d:4f:70:b0:57:0e: d7:0a:4e:40:cb:51:d9:74:0f:19:62:ac:ba:f9:70: 36:ef:6d:80:a1:1d:20:22:61:68:94:56:df:f3:4c: 8d:82:0c:6e:87:62:0d:0f:e5:93:97:a4:b9:aa:f7: 26:52:c6:68:77:80:16:5f:b8:68:a7:1e:59:8a:ee: 9c:f1:ee:78:6d:f1:3d:1c:d0:e6:54:ea:38:d6:44: da:19:0b:51:28:22:e5:54:08:91:13:6b:9d:e4:f1: 9a:76:b6:0b:f8:21:df:46:ed:67:6f:1a:14:c8:8b: 9b:8e:50:f1:dc:fc:87:5f:8a:06:b8:c8:bb:df:ac: 27:b5:70:ea:f9:94:8b:06:8a:7f:23:b3:27:1a:64: 94:d4:dd:f7:63:47:b9:d5:11:7b:95:60:09:e0:50: 2e:40:c9:94:f9:ab:3c:61:36:b4:81:f6:1c:b7:ab: d0:ba:8a:c1:38:59:db:b5:ea:ce:86:fe:1d:04:c6: 29:da:b1:c1:28:c1:bc:0a:45:7e:a7:58:50:b1:db: 7c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:DB:3F:7E:A1:C9:4C:95:B2:61:CF:B1:AD:19:69:FA:62:53:71:30 X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232302e302f32322d3232203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.49.220.0/22 Signature Algorithm: sha256WithRSAEncryption 59:0c:f2:e3:1e:30:7d:80:78:33:6e:e1:fe:0b:34:f2:4b:cb: 2b:14:e4:a0:7c:3e:db:8f:1b:e0:14:f7:db:e7:71:57:31:05: 9c:5c:b6:87:df:e7:f8:54:31:7b:3f:66:53:3c:f0:27:bc:23: 60:13:9c:31:05:6e:7d:5b:9d:48:24:0a:d8:54:ea:5a:e5:09: ca:e7:8a:23:d6:12:91:94:53:6d:69:8f:ed:3c:ac:2b:27:63: ce:19:df:18:e4:3a:1b:34:67:82:d2:3b:b2:bb:b5:36:94:eb: 24:7d:d9:a1:e1:e3:d6:70:e8:88:3e:3a:1b:57:73:c2:04:e6: 20:ce:71:9e:08:1a:d7:f5:06:08:31:f5:88:c0:bf:14:7f:55: e3:39:9a:ee:bf:af:96:bb:ad:1d:a7:77:6e:c9:c4:5a:b1:94: 3d:95:b0:df:d0:90:01:0a:25:34:3e:39:42:c8:39:f4:a3:2c: cd:a7:8e:25:14:b0:f3:fe:14:43:6e:62:a1:f1:a8:77:c3:14: 83:b3:bf:2d:ab:b8:6d:e5:09:81:46:07:87:19:8b:ae:83:5e: fc:83:27:b5:30:c0:6c:74:38:0f:3e:94:1f:48:56:83:c8:42: ed:76:75:af:12:35:19:83:b0:eb:46:05:3f:13:85:33:80:25: 0b:af:b8:5f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJC+JnAF8ZOWqDXhntcgiHNJUl1YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNDExMjIwOTU1MDZaFw0yNTExMjExMDAwMDZaMDMxMTAvBgNV BAMTKDc5REIzRjdFQTFDOTRDOTVCMjYxQ0ZCMUFEMTk2OUZBNjI1MzcxMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYfxlTdibeeCf5CTydU1d6CEYL 0VNgC4qT7cH8VEEkolhC9Dj847XpHMqUzprl5C175pwuIx1PcLBXDtcKTkDLUdl0 DxlirLr5cDbvbYChHSAiYWiUVt/zTI2CDG6HYg0P5ZOXpLmq9yZSxmh3gBZfuGin HlmK7pzx7nht8T0c0OZU6jjWRNoZC1EoIuVUCJETa53k8Zp2tgv4Id9G7WdvGhTI i5uOUPHc/Idfiga4yLvfrCe1cOr5lIsGin8jsycaZJTU3fdjR7nVEXuVYAngUC5A yZT5qzxhNrSB9hy3q9C6isE4Wdu16s6G/h0ExinascEowbwKRX6nWFCx23xvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUeds/fqHJTJWyYc+xrRlp+mJTcTAwHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMxMzAzMzJlMzQzOTJlMzIzMjMwMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzIzNDMyMzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcx3DANBgkqhkiG 9w0BAQsFAAOCAQEAWQzy4x4wfYB4M27h/gs08kvLKxTkoHw+248b4BT32+dxVzEF nFy2h9/n+FQxez9mUzzwJ7wjYBOcMQVufVudSCQK2FTqWuUJyueKI9YSkZRTbWmP 7TysKydjzhnfGOQ6GzRngtI7sru1NpTrJH3ZoeHj1nDoiD46G1dzwgTmIM5xngga 1/UGCDH1iMC/FH9V4zma7r+vlrutHad3bsnEWrGUPZWw39CQAQolND45Qsg59KMs zaeOJRSw8/4UQ25iofGod8MUg7O/Lau4beUJgUYHhxmLroNe/IMntTDAbHQ4Dz6U H0hWg8hC7XZ1rxI1GYOw60YFPxOFM4AlC6+4Xw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:12 2024 by rpki-client on console-fra.rpki-client.org