$ rpki-client -vvf repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3130332e3234382e35382e302f32332d3233203d3e203538383136.roa File: 3130332e3234382e35382e302f32332d3233203d3e203538383136.roa (raw, json) Hash identifier: Q3sAB6lEFo6eJ+ZtUed3/26pHP+mf0hItiSeLsLoC5Y= Subject key identifier: 47:D4:CD:36:B0:73:4F:75:52:1E:BB:E1:FE:CB:78:A2:F0:70:BD:EE Certificate issuer: /CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Certificate serial: 3F6A0DAC0969DAA991D339A1D129660CAEFA4AFA Authority key identifier: 20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3130332e3234382e35382e302f32332d3233203d3e203538383136.roa Signing time: Tue 20 Feb 2024 05:19:46 +0000 ROA not before: Tue 20 Feb 2024 05:14:46 +0000 ROA not after: Tue 18 Feb 2025 05:19:46 +0000 asID: 58816 IP address blocks: 103.248.58.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:6a:0d:ac:09:69:da:a9:91:d3:39:a1:d1:29:66:0c:ae:fa:4a:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2042008AEC80152F373D2A04DFD3893EE2F92166 Validity Not Before: Feb 20 05:14:46 2024 GMT Not After : Feb 18 05:19:46 2025 GMT Subject: CN=47D4CD36B0734F75521EBBE1FECB78A2F070BDEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:06:aa:4e:b9:87:28:34:5c:6c:56:bf:9d:7f: b6:0d:23:f9:b3:0c:12:a3:10:4a:4f:6d:8c:aa:5c: 95:ac:b7:75:14:4e:e9:d9:81:8b:14:d8:84:17:53: 8d:ff:2a:f7:05:9e:f3:52:cb:72:4a:f9:35:69:1a: 24:0c:ce:93:ff:ea:1b:7d:2b:63:97:d3:6c:e7:da: c9:64:df:7f:0a:63:0c:71:66:43:5a:c1:1c:3f:c5: b9:1d:6d:c4:82:53:2a:14:c5:4a:ec:31:5a:9a:00: f1:d4:f9:8c:33:14:50:a1:16:ed:e8:b7:63:d8:69: f8:c9:a2:e1:4b:dd:84:e8:a0:99:df:0a:36:fa:f6: 6e:cc:b7:2e:8f:7e:fa:e7:76:7f:0b:b0:f4:4a:05: ce:34:af:ca:23:47:ed:fa:00:f3:da:b0:17:45:63: 15:af:2d:f6:38:12:3a:d4:9e:df:c5:85:05:da:48: 94:d5:cb:8c:31:42:4a:99:df:77:69:ad:66:f1:c7: f5:70:e0:3c:59:0e:b0:43:40:91:27:22:ba:6b:20: 37:e1:46:bb:7f:db:00:1d:54:8d:1f:d3:48:ac:82: 4e:8f:c1:b5:ed:75:a8:52:a2:9b:fe:86:79:e4:25: 3b:27:23:44:f7:c6:76:2d:e0:97:4d:ad:7c:ed:ed: 91:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:D4:CD:36:B0:73:4F:75:52:1E:BB:E1:FE:CB:78:A2:F0:70:BD:EE X509v3 Authority Key Identifier: keyid:20:42:00:8A:EC:80:15:2F:37:3D:2A:04:DF:D3:89:3E:E2:F9:21:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/2042008AEC80152F373D2A04DFD3893EE2F92166.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2042008AEC80152F373D2A04DFD3893EE2F92166.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6fc3cbc4-8883-411c-876e-e9e23a8d8ad9/0/3130332e3234382e35382e302f32332d3233203d3e203538383136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.248.58.0/23 Signature Algorithm: sha256WithRSAEncryption 16:3b:54:14:f8:c1:a6:8c:b3:de:8b:30:d0:b6:35:22:70:7b: c7:54:c2:fc:9f:65:f8:75:08:5a:98:73:4c:c9:d0:d1:13:ce: 5c:f6:ee:e4:0c:6b:c9:ea:1e:ae:f1:5a:58:ce:c3:d8:8b:92: 08:48:f0:21:37:7e:65:89:98:c9:82:6c:31:9f:01:96:57:5f: 4a:a3:67:ce:bd:53:53:87:e6:56:2c:a0:4d:f1:ad:0a:a3:45: e0:fd:2f:56:39:fd:37:e0:d7:81:21:ca:b9:9a:61:e8:90:3f: f3:66:6c:61:e5:ab:c5:23:5b:ef:36:7b:db:72:8d:23:41:78: 50:a9:21:c7:62:83:aa:ac:a5:37:4b:58:e3:32:34:66:26:f5: 00:44:cd:42:10:6d:33:76:65:e4:ce:9a:d0:0e:f9:68:75:f9: 99:41:da:95:6b:c5:a0:75:64:60:ff:af:39:11:9a:8d:e9:d0: b4:1b:6c:fc:85:68:6a:ae:ee:c0:83:95:d3:b5:0f:f5:80:30: 5e:e0:ae:6e:e4:f6:ab:ba:fd:70:7c:5a:7e:52:1f:f9:14:02: ef:cc:fb:8e:7a:5c:52:9f:80:ed:13:ee:60:77:ee:00:e9:ab: 64:46:4e:07:e3:13:24:75:05:46:4c:4e:bf:40:b3:cc:b1:7c: a1:74:b3:f8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUP2oNrAlp2qmR0zmh0SlmDK76SvowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VF MkY5MjE2NjAeFw0yNDAyMjAwNTE0NDZaFw0yNTAyMTgwNTE5NDZaMDMxMTAvBgNV BAMTKDQ3RDRDRDM2QjA3MzRGNzU1MjFFQkJFMUZFQ0I3OEEyRjA3MEJERUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuBqpOuYcoNFxsVr+df7YNI/mz DBKjEEpPbYyqXJWst3UUTunZgYsU2IQXU43/KvcFnvNSy3JK+TVpGiQMzpP/6ht9 K2OX02zn2slk338KYwxxZkNawRw/xbkdbcSCUyoUxUrsMVqaAPHU+YwzFFChFu3o t2PYafjJouFL3YTooJnfCjb69m7Mty6Pfvrndn8LsPRKBc40r8ojR+36APPasBdF YxWvLfY4EjrUnt/FhQXaSJTVy4wxQkqZ33dprWbxx/Vw4DxZDrBDQJEnIrprIDfh Rrt/2wAdVI0f00isgk6PwbXtdahSopv+hnnkJTsnI0T3xnYt4JdNrXzt7ZFbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUR9TNNrBzT3VSHrvh/st4ovBwve4wHwYDVR0j BBgwFoAUIEIAiuyAFS83PSoE39OJPuL5IWYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmMzY2JjNC04ODgzLTQxMWMtODc2ZS1lOWUyM2E4ZDhhZDkvMC8yMDQyMDA4QUVD ODAxNTJGMzczRDJBMDRERkQzODkzRUUyRjkyMTY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA0MjAwOEFFQzgwMTUyRjM3M0QyQTA0REZEMzg5M0VFMkY5 MjE2Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmYzNjYmM0LTg4ODMtNDExYy04 NzZlLWU5ZTIzYThkOGFkOS8wLzMxMzAzMzJlMzIzNDM4MmUzNTM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzUzODM4MzEzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWf4OjANBgkqhkiG 9w0BAQsFAAOCAQEAFjtUFPjBpoyz3osw0LY1InB7x1TC/J9l+HUIWphzTMnQ0RPO XPbu5AxryeoervFaWM7D2IuSCEjwITd+ZYmYyYJsMZ8BlldfSqNnzr1TU4fmViyg TfGtCqNF4P0vVjn9N+DXgSHKuZph6JA/82ZsYeWrxSNb7zZ723KNI0F4UKkhx2KD qqylN0tY4zI0Zib1AETNQhBtM3Zl5M6a0A75aHX5mUHalWvFoHVkYP+vORGajenQ tBts/IVoaq7uwIOV07UP9YAwXuCubuT2q7r9cHxaflIf+RQC78z7jnpcUp+A7RPu YHfuAOmrZEZOB+MTJHUFRkxOv0CzzLF8oXSz+A== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org