$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3130332e3231332e3131362e302f32342d3234203d3e203338373530.roa File: 3130332e3231332e3131362e302f32342d3234203d3e203338373530.roa (raw, json) Hash identifier: kGo5Z0dQmddNogvMWcoI94YtEIKcIPX6FTz3PKH2TGQ= Subject key identifier: FD:48:90:05:68:AB:C6:01:99:B9:06:EE:9B:60:E8:53:2F:EA:9B:93 Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Certificate serial: 729CBDF3ECAF35E8873D17D5DED290DEA8A07426 Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3130332e3231332e3131362e302f32342d3234203d3e203338373530.roa Signing time: Mon 11 Nov 2024 08:00:00 +0000 ROA not before: Mon 11 Nov 2024 07:55:00 +0000 ROA not after: Mon 10 Nov 2025 08:00:00 +0000 asID: 38750 IP address blocks: 103.213.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:9c:bd:f3:ec:af:35:e8:87:3d:17:d5:de:d2:90:de:a8:a0:74:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Validity Not Before: Nov 11 07:55:00 2024 GMT Not After : Nov 10 08:00:00 2025 GMT Subject: CN=FD48900568ABC60199B906EE9B60E8532FEA9B93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:61:77:5e:ef:f8:8b:43:56:5a:42:53:0d:99: 71:64:ce:d9:4e:96:a0:3d:3f:93:3e:ae:68:a4:18: c1:8a:99:c2:ec:ef:b7:95:d7:a9:b5:99:bb:7a:2e: 5f:4b:eb:08:3f:01:bb:72:47:c2:7d:5c:91:ab:87: 6c:74:5d:47:26:fc:4a:c6:e1:d6:2b:66:c2:78:6e: 51:c3:ac:70:a4:40:d7:f5:81:84:02:d3:a3:40:e4: 03:5c:56:ac:ad:16:b0:29:d4:a4:ec:82:2a:c0:0f: e9:8c:d6:be:76:86:aa:9a:c9:45:60:a4:36:39:43: 9d:91:fa:aa:54:f2:8a:91:6b:bb:93:bc:99:59:da: 90:62:6a:31:70:df:74:84:e8:e6:39:25:3c:07:0a: fe:01:60:c2:ee:73:2f:bf:2e:68:c8:b3:ac:bc:67: d0:bc:da:b4:93:dc:7f:d3:d0:fa:e1:69:7a:9f:f7: ce:cb:5b:3e:7a:8b:36:50:ac:12:ab:e1:30:06:e0: 45:9a:ff:62:14:1a:35:01:c9:75:23:d5:33:af:94: 1b:a8:22:5d:aa:29:8b:7c:f2:f1:0c:37:9e:37:b7: 5c:21:96:4b:b0:c2:d2:0e:c7:f6:b4:6c:86:4b:a5: f4:a2:e7:ac:7e:49:1f:96:73:76:a1:4d:02:46:94: 24:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:48:90:05:68:AB:C6:01:99:B9:06:EE:9B:60:E8:53:2F:EA:9B:93 X509v3 Authority Key Identifier: keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3130332e3231332e3131362e302f32342d3234203d3e203338373530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.213.116.0/24 Signature Algorithm: sha256WithRSAEncryption 40:dc:15:f7:a1:6c:d6:d7:12:ae:c8:73:bd:ca:59:dc:ba:d2: 07:de:79:82:76:d7:fb:62:f5:b4:00:aa:6b:31:01:2f:2b:76: ee:ae:b2:69:cd:6f:4b:ca:6c:80:7e:64:c8:fe:c8:33:85:65: c2:dd:43:32:31:a9:31:8f:7e:d6:97:64:10:c0:d1:c6:81:e7: 8f:a0:b2:ac:e2:94:ff:61:e1:fc:ce:6c:38:43:de:a6:da:8e: 97:49:1d:9e:54:81:98:be:b5:a2:bc:1f:96:b5:fa:f2:38:6f: ab:cf:54:09:2f:c5:6a:97:39:eb:a6:61:17:e8:15:e8:7c:da: 41:99:cd:1d:c3:de:8f:1b:3f:1b:e8:c0:3e:bf:8e:4e:55:3a: ef:6b:aa:4b:73:16:4c:a1:cb:bc:1f:2a:c1:e2:68:48:04:00: c9:8b:73:bb:3d:55:89:d4:45:9e:d0:1c:55:66:9d:0e:25:ce: d7:2c:dd:1f:04:3b:5f:42:63:8a:11:26:b4:25:d4:f4:d0:55: 4e:ff:25:b4:8b:b7:51:b1:e9:61:50:2d:72:ff:0f:eb:3c:c4: ef:64:7d:72:49:0f:49:e5:3d:30:c6:7a:06:53:88:2d:09:ca: c2:4f:97:7e:81:52:ff:42:86:70:f9:f6:b0:31:96:44:8c:70: c7:d2:54:2a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcpy98+yvNeiHPRfV3tKQ3qigdCYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5 REUzMjAxQjAeFw0yNDExMTEwNzU1MDBaFw0yNTExMTAwODAwMDBaMDMxMTAvBgNV BAMTKEZENDg5MDA1NjhBQkM2MDE5OUI5MDZFRTlCNjBFODUzMkZFQTlCOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBYXde7/iLQ1ZaQlMNmXFkztlO lqA9P5M+rmikGMGKmcLs77eV16m1mbt6Ll9L6wg/AbtyR8J9XJGrh2x0XUcm/ErG 4dYrZsJ4blHDrHCkQNf1gYQC06NA5ANcVqytFrAp1KTsgirAD+mM1r52hqqayUVg pDY5Q52R+qpU8oqRa7uTvJlZ2pBiajFw33SE6OY5JTwHCv4BYMLucy+/LmjIs6y8 Z9C82rST3H/T0PrhaXqf987LWz56izZQrBKr4TAG4EWa/2IUGjUByXUj1TOvlBuo Il2qKYt88vEMN543t1whlkuwwtIOx/a0bIZLpfSi56x+SR+Wc3ahTQJGlCS3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/UiQBWirxgGZuQbum2DoUy/qm5MwHwYDVR0j BBgwFoAU1VvoIXoiIS+Xe9lbQffJ7p3jIBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGY1Y2ZkYi03OTg3LTQzNTEtYmMyZS02NmMyNGY0OWY0NDAvMC9ENTVCRTgyMTdB MjIyMTJGOTc3QkQ5NUI0MUY3QzlFRTlERTMyMDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5REUz MjAxQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwZjVjZmRiLTc5ODctNDM1MS1i YzJlLTY2YzI0ZjQ5ZjQ0MC8wLzMxMzAzMzJlMzIzMTMzMmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9V0MA0GCSqG SIb3DQEBCwUAA4IBAQBA3BX3oWzW1xKuyHO9ylncutIH3nmCdtf7YvW0AKprMQEv K3burrJpzW9LymyAfmTI/sgzhWXC3UMyMakxj37Wl2QQwNHGgeePoLKs4pT/YeH8 zmw4Q96m2o6XSR2eVIGYvrWivB+WtfryOG+rz1QJL8VqlznrpmEX6BXofNpBmc0d w96PGz8b6MA+v45OVTrva6pLcxZMocu8HyrB4mhIBADJi3O7PVWJ1EWe0BxVZp0O Jc7XLN0fBDtfQmOKESa0JdT00FVO/yW0i7dRselhUC1y/w/rPMTvZH1ySQ9J5T0w xnoGU4gtCcrCT5d+gVL/QoZw+fawMZZEjHDH0lQq -----END CERTIFICATE-----Generated at Sun Nov 24 18:20:18 2024 by rpki-client on console-ams.rpki-client.org