$ rpki-client -vvf repo-rpki.idnic.net/repo/6107fd8a-150f-453f-a0f5-57ead41ed032/0/3130332e3231342e3138372e302f32342d3234203d3e203634303239.roa File: 3130332e3231342e3138372e302f32342d3234203d3e203634303239.roa (raw, json) Hash identifier: VYk0jX+OGoB4/7D73QnDw8fy7xRRmNePMPCehWSGzIk= Subject key identifier: EB:C5:52:42:8E:FB:95:F3:5E:63:F0:F6:3B:34:14:F1:AE:5F:E3:24 Certificate issuer: /CN=C51F648FDD8891397EA20B34F6DE036DC2234E2F Certificate serial: 50C3DF9FA5D0BAF737623F6FD8A808F5AF1679AA Authority key identifier: C5:1F:64:8F:DD:88:91:39:7E:A2:0B:34:F6:DE:03:6D:C2:23:4E:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C51F648FDD8891397EA20B34F6DE036DC2234E2F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6107fd8a-150f-453f-a0f5-57ead41ed032/0/3130332e3231342e3138372e302f32342d3234203d3e203634303239.roa Signing time: Fri 27 Sep 2024 16:00:00 +0000 ROA not before: Fri 27 Sep 2024 15:55:00 +0000 ROA not after: Fri 26 Sep 2025 16:00:00 +0000 asID: 64029 IP address blocks: 103.214.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6107fd8a-150f-453f-a0f5-57ead41ed032/0/C51F648FDD8891397EA20B34F6DE036DC2234E2F.crl rsync://repo-rpki.idnic.net/repo/6107fd8a-150f-453f-a0f5-57ead41ed032/0/C51F648FDD8891397EA20B34F6DE036DC2234E2F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C51F648FDD8891397EA20B34F6DE036DC2234E2F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:c3:df:9f:a5:d0:ba:f7:37:62:3f:6f:d8:a8:08:f5:af:16:79:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C51F648FDD8891397EA20B34F6DE036DC2234E2F Validity Not Before: Sep 27 15:55:00 2024 GMT Not After : Sep 26 16:00:00 2025 GMT Subject: CN=EBC552428EFB95F35E63F0F63B3414F1AE5FE324 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1c:68:b1:52:b0:08:bf:fe:dc:a6:63:57:dd: bc:cd:23:55:81:cb:e2:de:4d:b9:91:88:af:04:ef: 1c:07:6b:a5:f9:ce:83:c5:be:19:16:96:8c:9e:89: bb:e7:f3:12:88:be:3a:6c:03:60:de:e8:c4:38:e5: a9:98:b8:72:e5:3b:bd:f7:37:03:2a:a7:93:ab:7e: 1c:13:6f:9c:5c:d9:d5:e6:02:d0:fb:f6:c7:dd:5a: 4f:81:cc:3e:a7:a5:65:8f:e4:b6:57:02:b9:b8:77: 14:0e:57:a7:5a:50:57:38:2d:cb:d9:ed:7b:54:09: 8b:b4:e6:c6:6c:47:62:4f:c5:94:25:be:03:ab:3b: 6a:fc:63:18:7c:dc:73:f3:f2:63:cf:de:41:97:af: 7f:9f:bd:35:9f:e5:21:51:23:5d:0d:1f:4c:4c:0d: a2:22:1f:ae:bb:f6:e4:4e:fa:7b:12:5c:d5:e4:83: ed:df:ed:ba:95:a4:3f:dc:0d:4b:a3:6e:3c:af:a7: e0:be:1e:67:f4:d2:ac:45:41:31:16:8e:ff:96:ea: cf:03:15:72:37:f4:83:dc:5a:ed:ee:96:71:af:be: 9a:78:2a:63:3b:be:c4:4d:07:cd:40:26:80:ab:e8: 73:de:49:b9:76:4e:1c:bf:bd:6e:36:bf:ef:a6:00: a2:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:C5:52:42:8E:FB:95:F3:5E:63:F0:F6:3B:34:14:F1:AE:5F:E3:24 X509v3 Authority Key Identifier: keyid:C5:1F:64:8F:DD:88:91:39:7E:A2:0B:34:F6:DE:03:6D:C2:23:4E:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6107fd8a-150f-453f-a0f5-57ead41ed032/0/C51F648FDD8891397EA20B34F6DE036DC2234E2F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C51F648FDD8891397EA20B34F6DE036DC2234E2F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6107fd8a-150f-453f-a0f5-57ead41ed032/0/3130332e3231342e3138372e302f32342d3234203d3e203634303239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.214.187.0/24 Signature Algorithm: sha256WithRSAEncryption bd:05:64:32:53:a0:66:b7:19:53:38:6f:a3:db:24:95:33:39: fd:33:e3:19:05:a7:59:01:ec:1c:82:17:0e:ea:d3:92:91:2b: 17:4d:7d:b2:fe:6a:f4:29:8e:fa:b8:7d:b0:fa:45:3b:51:91: e1:0c:06:b1:79:db:64:fd:33:29:c4:bf:7a:9b:ed:60:11:70: ea:4c:d3:2d:9f:ee:fc:9a:b7:38:1d:c2:f4:b4:7c:d1:1f:d3: b1:22:84:c1:33:af:0c:df:67:d5:c3:ce:fc:38:4d:e2:2c:db: 43:2e:dd:e2:2e:d0:1e:0f:e3:23:be:0b:aa:f9:5c:2f:71:55: ae:57:58:bf:bf:bb:0d:05:ec:44:f3:5b:c9:ba:19:01:e1:f0: 83:a9:f8:43:38:1c:e4:77:85:c4:33:a1:82:64:61:97:42:c1: 86:24:2a:a1:d1:30:64:12:a9:b0:31:65:42:32:37:fc:92:6c: d8:59:21:87:8f:74:6e:0b:5b:78:0c:aa:55:0a:c4:ce:11:25: f3:ec:83:23:57:7d:91:cc:02:d7:90:a7:70:f4:40:34:af:32: 3e:53:87:75:97:0c:e1:d1:56:72:ab:c7:5e:35:7d:b9:a8:7d: ca:e2:b9:28:fb:e4:72:8e:ce:88:66:ea:25:cf:06:32:8c:d1: 55:92:15:d7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUMPfn6XQuvc3Yj9v2KgI9a8WeaowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzUxRjY0OEZERDg4OTEzOTdFQTIwQjM0RjZERTAzNkRD MjIzNEUyRjAeFw0yNDA5MjcxNTU1MDBaFw0yNTA5MjYxNjAwMDBaMDMxMTAvBgNV BAMTKEVCQzU1MjQyOEVGQjk1RjM1RTYzRjBGNjNCMzQxNEYxQUU1RkUzMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnHGixUrAIv/7cpmNX3bzNI1WB y+LeTbmRiK8E7xwHa6X5zoPFvhkWloyeibvn8xKIvjpsA2De6MQ45amYuHLlO733 NwMqp5OrfhwTb5xc2dXmAtD79sfdWk+BzD6npWWP5LZXArm4dxQOV6daUFc4LcvZ 7XtUCYu05sZsR2JPxZQlvgOrO2r8Yxh83HPz8mPP3kGXr3+fvTWf5SFRI10NH0xM DaIiH6679uRO+nsSXNXkg+3f7bqVpD/cDUujbjyvp+C+Hmf00qxFQTEWjv+W6s8D FXI39IPcWu3ulnGvvpp4KmM7vsRNB81AJoCr6HPeSbl2Thy/vW42v++mAKK/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU68VSQo77lfNeY/D2OzQU8a5f4yQwHwYDVR0j BBgwFoAUxR9kj92IkTl+ogs09t4DbcIjTi8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MTA3ZmQ4YS0xNTBmLTQ1M2YtYTBmNS01N2VhZDQxZWQwMzIvMC9DNTFGNjQ4RkRE ODg5MTM5N0VBMjBCMzRGNkRFMDM2REMyMjM0RTJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzUxRjY0OEZERDg4OTEzOTdFQTIwQjM0RjZERTAzNkRDMjIz NEUyRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYxMDdmZDhhLTE1MGYtNDUzZi1h MGY1LTU3ZWFkNDFlZDAzMi8wLzMxMzAzMzJlMzIzMTM0MmUzMTM4MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjM0MzAzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9a7MA0GCSqG SIb3DQEBCwUAA4IBAQC9BWQyU6BmtxlTOG+j2ySVMzn9M+MZBadZAewcghcO6tOS kSsXTX2y/mr0KY76uH2w+kU7UZHhDAaxedtk/TMpxL96m+1gEXDqTNMtn+78mrc4 HcL0tHzRH9OxIoTBM68M32fVw878OE3iLNtDLt3iLtAeD+Mjvguq+VwvcVWuV1i/ v7sNBexE81vJuhkB4fCDqfhDOBzkd4XEM6GCZGGXQsGGJCqh0TBkEqmwMWVCMjf8 kmzYWSGHj3RuC1t4DKpVCsTOESXz7IMjV32RzALXkKdw9EA0rzI+U4d1lwzh0VZy q8deNX25qH3K4rko++Ryjs6IZuolzwYyjNFVkhXX -----END CERTIFICATE-----Generated at Sun Nov 24 22:10:12 2024 by rpki-client on console-fra.rpki-client.org