$ rpki-client -vvf repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232322e302f32332d3233203d3e203234323131.roa File: 3130332e34392e3232322e302f32332d3233203d3e203234323131.roa (raw, json) Hash identifier: eEzhgEkeswxEJB6cH8f720KKqD00kZq88ScuJtLKf4Q= Subject key identifier: 3C:B6:EF:DC:6E:86:14:7F:79:23:79:39:83:74:0D:D9:DC:AB:EA:A9 Certificate issuer: /CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Certificate serial: 35B6C3FC439747789639C866A9CD26EFBB24E7A4 Authority key identifier: DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232322e302f32332d3233203d3e203234323131.roa Signing time: Fri 22 Nov 2024 10:00:05 +0000 ROA not before: Fri 22 Nov 2024 09:55:05 +0000 ROA not after: Fri 21 Nov 2025 10:00:05 +0000 asID: 24211 IP address blocks: 103.49.222.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:b6:c3:fc:43:97:47:78:96:39:c8:66:a9:cd:26:ef:bb:24:e7:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC935B44A30F5AECC1B1A1508E4B812572AB769B Validity Not Before: Nov 22 09:55:05 2024 GMT Not After : Nov 21 10:00:05 2025 GMT Subject: CN=3CB6EFDC6E86147F7923793983740DD9DCABEAA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:0d:b2:7a:af:c7:0e:c0:87:72:f3:49:d6:da: f9:3e:2e:05:27:92:e9:5e:2a:9d:1d:a1:7c:5b:82: 1c:1b:2d:8d:ec:51:8b:a9:28:0d:41:b5:ac:48:4f: ac:02:fb:b3:dc:37:dc:03:1f:1c:02:7a:28:6c:4c: d4:70:73:10:4a:af:ac:87:9c:c3:07:7a:e5:59:c4: 11:9e:5b:8d:e1:e7:5e:e9:9b:b2:74:1a:c9:aa:2a: 0f:5a:8d:c4:5a:fd:e8:a1:2b:ef:f2:69:14:65:82: ed:a4:60:da:fa:3d:3f:ff:84:59:88:7e:7c:b8:fd: 38:de:98:18:19:a7:a3:3b:60:b2:63:b6:35:cf:e5: 9f:21:92:a9:2a:fa:1b:96:1d:0c:79:47:7c:21:06: 89:cc:d3:70:a0:98:86:f6:6c:92:36:21:35:62:47: dd:c2:61:4c:6b:65:d4:14:71:c5:37:52:49:41:fb: 18:91:81:8a:7f:13:07:55:85:3d:4e:99:9c:7d:33: ee:1d:f8:e8:a0:d1:69:d0:7d:c1:bc:ea:0b:e6:8b: 84:96:0c:ff:09:c4:69:62:48:ee:15:d0:fe:36:06: 2b:ba:e5:cc:e3:33:0b:90:3a:24:64:9b:61:e9:6b: 68:05:2c:0e:65:d8:8d:f9:da:f2:c4:75:61:ac:7a: 11:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:B6:EF:DC:6E:86:14:7F:79:23:79:39:83:74:0D:D9:DC:AB:EA:A9 X509v3 Authority Key Identifier: keyid:DC:93:5B:44:A3:0F:5A:EC:C1:B1:A1:50:8E:4B:81:25:72:AB:76:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/DC935B44A30F5AECC1B1A1508E4B812572AB769B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC935B44A30F5AECC1B1A1508E4B812572AB769B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59f013f9-b4f7-458c-aac5-08041b3f65e6/0/3130332e34392e3232322e302f32332d3233203d3e203234323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.49.222.0/23 Signature Algorithm: sha256WithRSAEncryption 63:87:17:03:5d:24:de:2e:75:f4:0e:9e:5e:93:e4:3d:1a:16: 27:d8:65:d4:56:02:0d:63:5e:4d:02:d7:b7:9c:fc:03:46:a9: 5d:a0:a2:e9:62:d5:74:0e:29:7a:53:ec:e6:02:49:73:d1:99: 09:a2:6c:f5:9a:cd:85:31:3d:7c:6e:3d:ae:46:32:44:9f:c6: 42:b6:a1:3a:53:85:4e:90:8f:13:e4:0f:b9:b0:a0:7c:ea:2b: 3f:10:db:0d:19:98:9f:c8:83:4a:5b:54:4d:58:5f:03:d7:6e: e0:07:b4:6f:00:2e:61:ad:50:d0:22:2f:97:3a:cf:3b:45:06: 7e:3b:58:8f:34:0a:4a:a0:96:b2:b0:c7:90:68:1f:12:bd:2c: ca:cf:e0:7c:34:f2:18:b5:64:9b:2d:1d:17:86:0d:e6:cc:b6: 94:ce:c5:13:89:d4:32:51:76:fa:4e:1d:9e:ac:f7:da:eb:71: 1c:4e:12:ec:29:5f:7c:8e:5c:cd:e3:73:22:70:ab:46:b8:46: f3:72:19:5e:9e:a2:d3:31:b7:d8:d1:88:1b:39:0b:6a:54:0a: a1:19:a0:b7:4a:54:92:2c:7b:b5:81:29:37:36:0e:04:cc:c1: 9d:e0:ef:1f:68:20:a8:ff:99:b8:31:6d:e5:3d:85:3d:c8:ee: ac:a2:a8:f6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUNbbD/EOXR3iWOchmqc0m77sk56QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3 MkFCNzY5QjAeFw0yNDExMjIwOTU1MDVaFw0yNTExMjExMDAwMDVaMDMxMTAvBgNV BAMTKDNDQjZFRkRDNkU4NjE0N0Y3OTIzNzkzOTgzNzQwREQ5RENBQkVBQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQDbJ6r8cOwIdy80nW2vk+LgUn kuleKp0doXxbghwbLY3sUYupKA1BtaxIT6wC+7PcN9wDHxwCeihsTNRwcxBKr6yH nMMHeuVZxBGeW43h517pm7J0GsmqKg9ajcRa/eihK+/yaRRlgu2kYNr6PT//hFmI fny4/TjemBgZp6M7YLJjtjXP5Z8hkqkq+huWHQx5R3whBonM03CgmIb2bJI2ITVi R93CYUxrZdQUccU3UklB+xiRgYp/EwdVhT1OmZx9M+4d+Oig0WnQfcG86gvmi4SW DP8JxGliSO4V0P42Biu65czjMwuQOiRkm2Hpa2gFLA5l2I352vLEdWGsehHZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUPLbv3G6GFH95I3k5g3QN2dyr6qkwHwYDVR0j BBgwFoAU3JNbRKMPWuzBsaFQjkuBJXKrdpswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWYwMTNmOS1iNGY3LTQ1OGMtYWFjNS0wODA0MWIzZjY1ZTYvMC9EQzkzNUI0NEEz MEY1QUVDQzFCMUExNTA4RTRCODEyNTcyQUI3NjlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM5MzVCNDRBMzBGNUFFQ0MxQjFBMTUwOEU0QjgxMjU3MkFC NzY5Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5ZjAxM2Y5LWI0ZjctNDU4Yy1h YWM1LTA4MDQxYjNmNjVlNi8wLzMxMzAzMzJlMzQzOTJlMzIzMjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzIzNDMyMzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcx3jANBgkqhkiG 9w0BAQsFAAOCAQEAY4cXA10k3i519A6eXpPkPRoWJ9hl1FYCDWNeTQLXt5z8A0ap XaCi6WLVdA4pelPs5gJJc9GZCaJs9ZrNhTE9fG49rkYyRJ/GQrahOlOFTpCPE+QP ubCgfOorPxDbDRmYn8iDSltUTVhfA9du4Ae0bwAuYa1Q0CIvlzrPO0UGfjtYjzQK SqCWsrDHkGgfEr0sys/gfDTyGLVkmy0dF4YN5sy2lM7FE4nUMlF2+k4dnqz32utx HE4S7ClffI5czeNzInCrRrhG83IZXp6i0zG32NGIGzkLalQKoRmgt0pUkix7tYEp NzYOBMzBneDvH2ggqP+ZuDFt5T2FPcjurKKo9g== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:12 2024 by rpki-client on console-fra.rpki-client.org