$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232302e302f32332d3233203d3e203234323131.roa File: 3130332e34392e3232302e302f32332d3233203d3e203234323131.roa (raw, json) Hash identifier: VU7yTZJJzE9+CKf+7CWEBUbMLNLkqTfujFALCx1f38Y= Subject key identifier: 45:16:8A:1F:1A:F0:C5:1D:2F:CD:27:AC:5B:80:10:0B:C2:AA:DE:57 Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 6C385276B24C81AFA21F9F6F423839006452A182 Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232302e302f32332d3233203d3e203234323131.roa Signing time: Fri 22 Nov 2024 10:00:06 +0000 ROA not before: Fri 22 Nov 2024 09:55:06 +0000 ROA not after: Fri 21 Nov 2025 10:00:06 +0000 asID: 24211 IP address blocks: 103.49.220.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:38:52:76:b2:4c:81:af:a2:1f:9f:6f:42:38:39:00:64:52:a1:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Nov 22 09:55:06 2024 GMT Not After : Nov 21 10:00:06 2025 GMT Subject: CN=45168A1F1AF0C51D2FCD27AC5B80100BC2AADE57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e0:ab:27:12:ba:5d:b6:44:55:99:f2:f6:d2: 87:92:ea:5d:85:2c:e2:f9:91:d4:f2:c2:dd:47:7e: a3:d6:90:47:49:d7:bc:b9:48:db:b9:3a:01:a6:6e: b2:e2:3a:70:65:66:7a:65:4a:de:96:43:d4:f3:85: 5f:ad:f5:d0:84:86:86:60:df:e4:19:7c:7d:b7:36: d4:a1:ee:9f:00:60:22:87:42:e9:db:9a:49:28:9b: 6c:45:ab:de:7d:5e:67:58:c7:72:ae:6b:95:d4:d5: 81:a6:55:6a:72:33:b0:9e:a4:ce:95:e9:dd:06:98: c4:4e:db:8e:2d:b1:a2:28:96:48:d3:90:27:b1:63: ee:3d:9d:2f:eb:52:b1:be:a5:7a:31:5a:0f:e5:3a: d9:a0:a4:52:0d:d6:bd:5d:3e:db:bf:1f:36:3d:99: 70:8c:ef:1c:a9:a8:27:34:d4:a5:08:99:8c:e8:00: 2f:cf:29:19:97:87:a6:71:6c:97:88:1a:ae:f8:5a: b9:8e:b7:37:4d:6c:5d:8a:45:5d:4c:6c:03:26:c6: 9a:e0:51:c7:fb:83:3f:f7:85:c0:da:0f:9d:22:06: 2c:79:0a:b4:0f:9e:cc:21:62:93:6e:73:b6:b6:45: 60:e4:3a:48:ee:20:85:d9:1d:4d:16:1d:aa:ad:4c: d4:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:16:8A:1F:1A:F0:C5:1D:2F:CD:27:AC:5B:80:10:0B:C2:AA:DE:57 X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232302e302f32332d3233203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.49.220.0/23 Signature Algorithm: sha256WithRSAEncryption b3:70:13:58:cb:41:c9:e1:a5:31:1f:10:53:e9:db:92:59:43: d2:2f:aa:2b:32:f6:74:bb:ea:81:ac:f4:8c:af:61:c5:4e:73: 3e:91:64:c0:87:f5:84:bd:cd:9d:77:0f:59:35:6f:ca:20:85: c5:aa:3e:e7:3b:a0:81:04:b8:49:4d:32:48:40:40:e6:8f:7a: 46:38:5b:0a:a4:56:cc:48:15:7b:14:51:06:dc:3a:26:67:ba: 40:0f:a9:d4:0a:80:d7:45:3e:92:f9:bd:f9:df:85:b3:fb:71: 5b:2d:48:51:4f:fd:9c:d4:5e:26:a4:e5:6f:32:99:42:3f:a2: 43:46:88:14:68:54:0c:6c:8f:7d:5e:ea:1e:bb:a7:64:92:b8: 7f:c3:e2:6c:1b:13:b6:19:d4:4c:c2:d1:39:23:38:c6:f3:b0: 60:91:22:db:69:cf:c4:af:35:b4:e4:95:5c:bc:78:24:13:8f: 32:56:83:d9:7b:2d:50:aa:d6:53:c2:99:d4:0f:a4:fe:c2:a3: 82:c0:cf:6c:cd:ef:30:9c:c1:d6:b1:d4:01:a1:73:64:9a:f0: d0:06:46:5c:3f:56:71:58:f1:44:3e:da:ce:68:28:99:64:bf: 38:be:f6:50:cd:34:98:fb:49:c7:8b:f5:56:11:cb:b2:f4:d9: 81:78:4a:d6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbDhSdrJMga+iH59vQjg5AGRSoYIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNDExMjIwOTU1MDZaFw0yNTExMjExMDAwMDZaMDMxMTAvBgNV BAMTKDQ1MTY4QTFGMUFGMEM1MUQyRkNEMjdBQzVCODAxMDBCQzJBQURFNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD4KsnErpdtkRVmfL20oeS6l2F LOL5kdTywt1HfqPWkEdJ17y5SNu5OgGmbrLiOnBlZnplSt6WQ9TzhV+t9dCEhoZg 3+QZfH23NtSh7p8AYCKHQunbmkkom2xFq959XmdYx3Kua5XU1YGmVWpyM7CepM6V 6d0GmMRO244tsaIolkjTkCexY+49nS/rUrG+pXoxWg/lOtmgpFIN1r1dPtu/HzY9 mXCM7xypqCc01KUImYzoAC/PKRmXh6ZxbJeIGq74WrmOtzdNbF2KRV1MbAMmxprg Ucf7gz/3hcDaD50iBix5CrQPnswhYpNuc7a2RWDkOkjuIIXZHU0WHaqtTNThAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQURRaKHxrwxR0vzSesW4AQC8Kq3lcwHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMxMzAzMzJlMzQzOTJlMzIzMjMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzIzNDMyMzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcx3DANBgkqhkiG 9w0BAQsFAAOCAQEAs3ATWMtByeGlMR8QU+nbkllD0i+qKzL2dLvqgaz0jK9hxU5z PpFkwIf1hL3NnXcPWTVvyiCFxao+5zuggQS4SU0ySEBA5o96RjhbCqRWzEgVexRR Btw6Jme6QA+p1AqA10U+kvm9+d+Fs/txWy1IUU/9nNReJqTlbzKZQj+iQ0aIFGhU DGyPfV7qHrunZJK4f8PibBsTthnUTMLROSM4xvOwYJEi22nPxK81tOSVXLx4JBOP MlaD2XstUKrWU8KZ1A+k/sKjgsDPbM3vMJzB1rHUAaFzZJrw0AZGXD9WcVjxRD7a zmgomWS/OL72UM00mPtJx4v1VhHLsvTZgXhK1g== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:12 2024 by rpki-client on console-fra.rpki-client.org