$ rpki-client -vvf repo-rpki.idnic.net/repo/60eea08c-3fd2-488e-a574-9f9bb631a62b/0/3130332e38342e3230362e302f32332d3233203d3e203538343837.roa File: 3130332e38342e3230362e302f32332d3233203d3e203538343837.roa (raw, json) Hash identifier: 3M2XlAUkWUOgGm0S5JrWoHlfUxPXjBveBq4SSc5Mgk0= Subject key identifier: 1F:B5:74:5C:46:37:46:44:4B:C1:D7:FF:E3:97:8F:D9:39:39:AF:E8 Certificate issuer: /CN=FFCC3C879250F6351654AFE2ED137EED71DCACA1 Certificate serial: 77825490AB7C950330758C41D67842F953E2C196 Authority key identifier: FF:CC:3C:87:92:50:F6:35:16:54:AF:E2:ED:13:7E:ED:71:DC:AC:A1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FFCC3C879250F6351654AFE2ED137EED71DCACA1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/60eea08c-3fd2-488e-a574-9f9bb631a62b/0/3130332e38342e3230362e302f32332d3233203d3e203538343837.roa Signing time: Tue 23 Jan 2024 10:01:55 +0000 ROA not before: Tue 23 Jan 2024 09:56:55 +0000 ROA not after: Tue 21 Jan 2025 10:01:55 +0000 asID: 58487 IP address blocks: 103.84.206.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/60eea08c-3fd2-488e-a574-9f9bb631a62b/0/FFCC3C879250F6351654AFE2ED137EED71DCACA1.crl rsync://repo-rpki.idnic.net/repo/60eea08c-3fd2-488e-a574-9f9bb631a62b/0/FFCC3C879250F6351654AFE2ED137EED71DCACA1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FFCC3C879250F6351654AFE2ED137EED71DCACA1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:82:54:90:ab:7c:95:03:30:75:8c:41:d6:78:42:f9:53:e2:c1:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FFCC3C879250F6351654AFE2ED137EED71DCACA1 Validity Not Before: Jan 23 09:56:55 2024 GMT Not After : Jan 21 10:01:55 2025 GMT Subject: CN=1FB5745C463746444BC1D7FFE3978FD93939AFE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a3:f1:a4:30:d0:09:6e:8a:b2:1a:f0:5f:b9: c1:d1:e4:84:aa:ad:ed:8d:79:96:4f:10:c3:b0:26: c7:b2:f1:3c:03:18:73:63:94:49:6b:f5:0f:68:c3: ce:b3:85:db:8b:27:d4:e4:27:d6:d6:3e:34:71:18: e0:bc:d0:aa:c0:2b:23:6b:ec:e1:fe:aa:81:88:c2: a5:b9:02:b4:7d:a1:78:45:3d:f3:ee:06:6e:08:95: 6b:13:02:36:08:21:d1:b3:63:d2:3f:8f:6c:c3:4a: fa:6c:d1:b5:ff:92:df:c0:10:3e:01:51:3d:06:ba: 32:dd:16:da:9f:94:00:bf:fb:dd:e3:02:a5:61:d5: 7a:5c:16:63:87:2d:b1:ee:3d:99:b3:70:32:32:5b: fc:f5:92:26:83:e2:c9:1f:2e:ce:ba:ca:55:18:30: 75:63:15:fb:79:d4:4f:a6:9b:0f:92:ba:68:13:16: 9f:31:4d:ed:15:91:bf:4a:91:e4:39:ff:58:be:6c: 95:5b:ce:2e:0f:30:bf:2d:63:87:b5:82:95:a8:2c: c8:6e:e5:37:5c:46:94:95:ba:96:89:46:bc:ac:85: 13:68:4e:5d:8b:73:4b:13:ef:97:07:cc:30:b5:5f: 3c:2e:63:d8:be:be:dd:cf:38:8f:c6:da:4f:ae:0b: 4f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:B5:74:5C:46:37:46:44:4B:C1:D7:FF:E3:97:8F:D9:39:39:AF:E8 X509v3 Authority Key Identifier: keyid:FF:CC:3C:87:92:50:F6:35:16:54:AF:E2:ED:13:7E:ED:71:DC:AC:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/60eea08c-3fd2-488e-a574-9f9bb631a62b/0/FFCC3C879250F6351654AFE2ED137EED71DCACA1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FFCC3C879250F6351654AFE2ED137EED71DCACA1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/60eea08c-3fd2-488e-a574-9f9bb631a62b/0/3130332e38342e3230362e302f32332d3233203d3e203538343837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.84.206.0/23 Signature Algorithm: sha256WithRSAEncryption 0d:22:2f:b7:88:f3:66:b0:4f:af:da:76:bd:69:7c:78:3e:dc: b5:cf:9a:53:ba:f4:b4:62:91:ad:ab:ab:2d:d8:b4:bc:81:54: 6c:8a:a1:15:71:1b:4c:6e:fb:d6:60:65:d4:a3:b0:49:c7:a7: bc:26:e9:91:f6:fa:a0:7b:5b:ef:f3:5f:00:ef:80:4b:28:89: 76:6c:64:68:cd:c1:db:be:c3:da:22:f3:23:2d:91:e2:a7:6e: 81:78:23:47:fb:ae:35:29:e8:29:cb:88:e6:4c:68:06:aa:a0: ef:6b:6a:92:1d:ce:a6:d7:64:b9:d1:63:1c:64:db:96:b5:d6: 50:f7:3a:8e:ef:f8:b4:d6:f6:d2:37:fe:b8:fb:65:a4:fa:c1: 95:e8:4d:55:02:ba:37:28:62:24:12:a4:90:70:15:23:1b:ec: 2f:fc:8c:04:d0:51:14:af:5d:d4:06:58:6f:59:f3:e8:8b:d3: f5:7f:fb:ef:01:b5:20:e0:72:d0:23:9f:8f:69:80:48:4a:a6: f6:e7:bb:6e:39:0a:21:a8:83:7f:0b:31:1d:61:09:97:16:38: 1a:b6:88:fd:9b:97:f5:aa:7b:58:8f:ba:00:26:15:8f:6c:76: 2b:15:f6:14:20:da:3e:3a:0a:15:d8:25:4f:57:0d:21:2d:34: 93:42:7e:af -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUd4JUkKt8lQMwdYxB1nhC+VPiwZYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkZDQzNDODc5MjUwRjYzNTE2NTRBRkUyRUQxMzdFRUQ3 MURDQUNBMTAeFw0yNDAxMjMwOTU2NTVaFw0yNTAxMjExMDAxNTVaMDMxMTAvBgNV BAMTKDFGQjU3NDVDNDYzNzQ2NDQ0QkMxRDdGRkUzOTc4RkQ5MzkzOUFGRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPo/GkMNAJboqyGvBfucHR5ISq re2NeZZPEMOwJsey8TwDGHNjlElr9Q9ow86zhduLJ9TkJ9bWPjRxGOC80KrAKyNr 7OH+qoGIwqW5ArR9oXhFPfPuBm4IlWsTAjYIIdGzY9I/j2zDSvps0bX/kt/AED4B UT0GujLdFtqflAC/+93jAqVh1XpcFmOHLbHuPZmzcDIyW/z1kiaD4skfLs66ylUY MHVjFft51E+mmw+SumgTFp8xTe0Vkb9KkeQ5/1i+bJVbzi4PML8tY4e1gpWoLMhu 5TdcRpSVupaJRryshRNoTl2Lc0sT75cHzDC1XzwuY9i+vt3POI/G2k+uC09VAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUH7V0XEY3RkRLwdf/45eP2Tk5r+gwHwYDVR0j BBgwFoAU/8w8h5JQ9jUWVK/i7RN+7XHcrKEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MGVlYTA4Yy0zZmQyLTQ4OGUtYTU3NC05ZjliYjYzMWE2MmIvMC9GRkNDM0M4Nzky NTBGNjM1MTY1NEFGRTJFRDEzN0VFRDcxRENBQ0ExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkZDQzNDODc5MjUwRjYzNTE2NTRBRkUyRUQxMzdFRUQ3MURD QUNBMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwZWVhMDhjLTNmZDItNDg4ZS1h NTc0LTlmOWJiNjMxYTYyYi8wLzMxMzAzMzJlMzgzNDJlMzIzMDM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzUzODM0MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWdUzjANBgkqhkiG 9w0BAQsFAAOCAQEADSIvt4jzZrBPr9p2vWl8eD7ctc+aU7r0tGKRraurLdi0vIFU bIqhFXEbTG771mBl1KOwScenvCbpkfb6oHtb7/NfAO+ASyiJdmxkaM3B277D2iLz Iy2R4qdugXgjR/uuNSnoKcuI5kxoBqqg72tqkh3OptdkudFjHGTblrXWUPc6ju/4 tNb20jf+uPtlpPrBlehNVQK6NyhiJBKkkHAVIxvsL/yMBNBRFK9d1AZYb1nz6IvT 9X/77wG1IOBy0COfj2mASEqm9ue7bjkKIaiDfwsxHWEJlxY4GraI/ZuX9ap7WI+6 ACYVj2x2KxX2FCDaPjoKFdglT1cNIS00k0J+rw== -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:48 2024 by rpki-client on console-fra.rpki-client.org