$ rpki-client -vvf repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/3130332e39362e35332e302f32342d3234203d3e20313530393232.roa File: 3130332e39362e35332e302f32342d3234203d3e20313530393232.roa (raw, json) Hash identifier: ZJZJCd03bG8tskGWzVhwquwwe0VlutofkPzv8QbyrsQ= Subject key identifier: CF:FE:2C:A7:CB:3F:A1:DF:52:E5:22:74:CF:D5:23:31:D1:1B:77:CF Certificate issuer: /CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Certificate serial: 653695E1AB54CB4B9C1C774E0A85607849D485B3 Authority key identifier: 03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/3130332e39362e35332e302f32342d3234203d3e20313530393232.roa Signing time: Wed 07 Feb 2024 10:00:01 +0000 ROA not before: Wed 07 Feb 2024 09:55:01 +0000 ROA not after: Wed 05 Feb 2025 10:00:01 +0000 asID: 150922 IP address blocks: 103.96.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:36:95:e1:ab:54:cb:4b:9c:1c:77:4e:0a:85:60:78:49:d4:85:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Validity Not Before: Feb 7 09:55:01 2024 GMT Not After : Feb 5 10:00:01 2025 GMT Subject: CN=CFFE2CA7CB3FA1DF52E52274CFD52331D11B77CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f9:2f:2f:ce:80:4b:87:76:0f:0b:c9:cf:fd: 2a:8d:a9:6f:a3:ee:8b:df:51:76:80:02:56:02:5a: 74:19:fd:05:ae:23:86:a3:be:18:97:92:12:d0:10: a4:62:fb:16:5d:7d:8f:8e:3e:d3:7e:7a:b3:4a:1a: 1d:2b:e5:55:2a:7b:df:a0:4a:af:a9:3c:c5:b0:fd: b2:64:10:cc:bd:c9:41:30:0d:0c:55:1e:05:a9:b7: 63:e4:b1:7e:ee:dd:14:98:5a:c8:12:52:a6:1a:93: bc:3d:7c:e7:83:80:2a:2a:63:aa:fa:c9:87:41:3c: 2b:ed:ad:64:dd:04:a8:b3:15:e1:a0:89:79:ea:55: 3a:60:af:b9:f7:53:86:71:8e:bb:4f:f0:f3:bc:9e: 18:ad:3e:56:8c:d1:09:a4:75:ef:5d:89:3e:dc:f4: e7:15:ee:76:7c:61:17:d8:47:34:df:af:70:62:59: 19:48:b2:f6:c0:c6:c5:db:9e:1c:28:80:45:ce:7a: 8c:c6:97:93:0e:f5:71:fa:79:93:77:7e:21:71:a9: c8:cc:96:67:17:8d:d5:19:44:3a:1d:09:a8:ae:b8: f2:c7:4a:f7:b8:e2:9d:19:51:9c:5a:7f:41:6a:16: 85:1e:c9:9b:e2:8f:7c:f2:aa:b2:5d:cd:00:b2:4f: 6c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:FE:2C:A7:CB:3F:A1:DF:52:E5:22:74:CF:D5:23:31:D1:1B:77:CF X509v3 Authority Key Identifier: keyid:03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/3130332e39362e35332e302f32342d3234203d3e20313530393232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.96.53.0/24 Signature Algorithm: sha256WithRSAEncryption 33:dc:4f:3d:41:96:df:bc:75:4b:ed:c0:de:14:5a:c7:d9:8c: f5:9d:de:4f:4e:6a:c7:03:60:1a:90:b5:10:72:45:ca:ab:b4: a6:3d:03:a8:ab:95:4f:c0:7c:3e:de:8b:aa:61:90:f9:22:af: 0b:93:79:c6:c4:2e:27:1f:99:48:7a:a5:df:de:d8:bb:09:7a: 8a:f7:9d:79:e2:2b:4f:aa:42:02:b0:80:90:6c:d5:37:aa:b7: 95:69:df:45:f8:65:02:2c:b1:d2:55:f0:a6:dd:9d:48:70:b4: 3e:77:1a:92:ba:fb:86:6c:d2:76:b1:34:db:91:df:fb:9a:93: 4a:d4:e0:b0:70:88:80:80:2e:2e:f7:1e:de:d5:8e:5b:ea:c4: 69:8c:57:8f:e7:a1:b5:58:59:b8:03:a5:0c:31:c3:26:62:ac: 2a:e9:39:4f:ed:99:d7:aa:2a:34:96:46:43:3d:d6:22:84:48: 67:ce:70:f8:08:56:bc:be:89:fd:de:45:9f:56:5e:d0:dc:32: 7e:77:5c:c4:7d:12:31:4e:5c:a0:74:cf:27:0c:63:20:0f:3e: 4d:c2:73:93:90:38:8a:9e:aa:e1:57:5d:21:22:27:4c:e7:97: 8c:e7:34:5e:d1:ff:b9:70:33:19:37:05:b0:07:65:72:71:2b: 14:2f:ab:d1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZTaV4atUy0ucHHdOCoVgeEnUhbMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2 ODY3QkY3OTAeFw0yNDAyMDcwOTU1MDFaFw0yNTAyMDUxMDAwMDFaMDMxMTAvBgNV BAMTKENGRkUyQ0E3Q0IzRkExREY1MkU1MjI3NENGRDUyMzMxRDExQjc3Q0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA+S8vzoBLh3YPC8nP/SqNqW+j 7ovfUXaAAlYCWnQZ/QWuI4ajvhiXkhLQEKRi+xZdfY+OPtN+erNKGh0r5VUqe9+g Sq+pPMWw/bJkEMy9yUEwDQxVHgWpt2PksX7u3RSYWsgSUqYak7w9fOeDgCoqY6r6 yYdBPCvtrWTdBKizFeGgiXnqVTpgr7n3U4ZxjrtP8PO8nhitPlaM0Qmkde9diT7c 9OcV7nZ8YRfYRzTfr3BiWRlIsvbAxsXbnhwogEXOeozGl5MO9XH6eZN3fiFxqcjM lmcXjdUZRDodCaiuuPLHSve44p0ZUZxaf0FqFoUeyZvij3zyqrJdzQCyT2zlAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUz/4sp8s/od9S5SJ0z9UjMdEbd88wHwYDVR0j BBgwFoAUAyHIkqaqwKbqSjA12IymvGhnv3kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTFjNGMxZi03MTQxLTQ3ZDYtYTdmOC1lMzVmZmUxMTc0MDQvMC8wMzIxQzg5MkE2 QUFDMEE2RUE0QTMwMzVEODhDQTZCQzY4NjdCRjc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2ODY3 QkY3OS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhMWM0YzFmLTcxNDEtNDdkNi1h N2Y4LWUzNWZmZTExNzQwNC8wLzMxMzAzMzJlMzkzNjJlMzUzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM5MzIzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdgNTANBgkqhkiG 9w0BAQsFAAOCAQEAM9xPPUGW37x1S+3A3hRax9mM9Z3eT05qxwNgGpC1EHJFyqu0 pj0DqKuVT8B8Pt6LqmGQ+SKvC5N5xsQuJx+ZSHql397Yuwl6ivedeeIrT6pCArCA kGzVN6q3lWnfRfhlAiyx0lXwpt2dSHC0Pncakrr7hmzSdrE025Hf+5qTStTgsHCI gIAuLvce3tWOW+rEaYxXj+ehtVhZuAOlDDHDJmKsKuk5T+2Z16oqNJZGQz3WIoRI Z85w+AhWvL6J/d5Fn1Ze0NwyfndcxH0SMU5coHTPJwxjIA8+TcJzk5A4ip6q4Vdd ISInTOeXjOc0XtH/uXAzGTcFsAdlcnErFC+r0Q== -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:41 2024 by rpki-client on console-fra.rpki-client.org