$ rpki-client -vvf repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/3130332e3230332e37362e302f32322d3232203d3e20313334363230.roa File: 3130332e3230332e37362e302f32322d3232203d3e20313334363230.roa (raw, json) Hash identifier: YqWb08XU4Ju7/nGoQJo+q2RiYjqzpe+bq60/2z57A5Q= Subject key identifier: CF:08:19:E9:F4:3E:A5:F2:82:6B:0A:C9:3F:91:0B:AE:FA:7D:6F:DD Certificate issuer: /CN=E1A24B098E9AC07C658F6AFEE0990751CDB692A4 Certificate serial: 647333F35411ED03A9F25AFAF30CE8DBB9C2A5BB Authority key identifier: E1:A2:4B:09:8E:9A:C0:7C:65:8F:6A:FE:E0:99:07:51:CD:B6:92:A4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/3130332e3230332e37362e302f32322d3232203d3e20313334363230.roa Signing time: Sat 14 Sep 2024 07:00:00 +0000 ROA not before: Sat 14 Sep 2024 06:55:00 +0000 ROA not after: Sat 13 Sep 2025 07:00:00 +0000 asID: 134620 IP address blocks: 103.203.76.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.crl rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:73:33:f3:54:11:ed:03:a9:f2:5a:fa:f3:0c:e8:db:b9:c2:a5:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A24B098E9AC07C658F6AFEE0990751CDB692A4 Validity Not Before: Sep 14 06:55:00 2024 GMT Not After : Sep 13 07:00:00 2025 GMT Subject: CN=CF0819E9F43EA5F2826B0AC93F910BAEFA7D6FDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:9b:d1:84:d9:e6:a4:ff:d3:03:33:01:12:6f: 18:1c:06:96:2c:7b:62:86:7e:45:90:6d:ed:32:2d: b1:a0:07:8f:ff:1b:9f:c4:54:d5:e6:65:c1:74:dd: e9:4a:d8:7c:2a:ac:25:c9:21:f9:f8:b6:78:9a:6f: 7b:ba:01:a8:93:28:71:3b:66:dc:c6:ae:91:0f:01: af:ca:65:46:a9:fa:63:8c:65:2e:eb:95:33:73:15: 2b:31:b7:9e:fd:de:29:09:68:71:8f:5e:d1:71:cb: 59:7a:8b:32:60:dd:f8:4f:62:c8:03:5f:c6:10:f4: b9:ce:6b:91:d9:bf:d9:67:4c:bb:ab:8d:b2:9b:b4: 12:cd:d5:4a:e3:52:2f:99:00:54:79:75:24:c1:81: 23:90:b2:44:fe:2a:b4:78:95:91:57:ee:c4:15:45: 2e:29:47:62:de:6d:b9:ce:5b:72:35:d7:44:70:93: 52:09:8e:89:23:c4:3c:df:39:06:91:33:6e:4f:f1: 7e:26:a4:68:fa:be:b9:2b:71:f9:dc:14:49:2e:02: f7:1c:f3:29:d2:12:04:d2:fb:44:30:65:54:08:e2: 7b:f5:00:fb:39:5c:50:18:65:42:83:a8:c7:3a:26: 62:04:02:de:f3:86:8c:76:e4:a9:2e:b7:97:3a:38: af:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:08:19:E9:F4:3E:A5:F2:82:6B:0A:C9:3F:91:0B:AE:FA:7D:6F:DD X509v3 Authority Key Identifier: keyid:E1:A2:4B:09:8E:9A:C0:7C:65:8F:6A:FE:E0:99:07:51:CD:B6:92:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/3130332e3230332e37362e302f32322d3232203d3e20313334363230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.203.76.0/22 Signature Algorithm: sha256WithRSAEncryption 64:55:e8:7b:3e:ac:a5:1f:ca:68:f4:9f:66:a7:57:6a:f0:d8: 18:b2:8f:e5:63:ba:f0:9a:a3:54:ab:72:5d:c7:d2:98:d2:59: 74:72:81:db:01:13:f1:43:a0:fd:9b:72:cb:15:d3:b6:cf:ba: 6d:a7:11:24:e2:5d:2d:e4:f2:2c:c3:e9:ff:2c:4e:47:4e:f9: df:f3:4d:ba:bf:6c:b1:4d:1d:f4:cf:f6:84:e6:bb:6a:4c:00: 6b:3d:82:e1:45:02:f2:33:61:d4:3b:3b:50:1b:9c:a3:17:c6: 60:5c:3f:c2:33:f4:87:fb:17:d1:54:84:4d:9c:3f:20:25:28: 0b:3e:27:37:8a:a2:08:94:93:3e:12:f3:8c:0f:55:85:98:1d: 6e:f9:1b:7b:e7:4f:d6:e7:90:51:20:8e:6a:13:a6:0b:c0:34: 21:2e:b4:9b:bd:31:d8:15:63:d8:37:2a:42:65:b7:dd:b8:93: c8:2e:a6:b3:8b:07:8d:e7:ce:89:cc:d5:d0:f3:66:97:f4:b0: f8:4f:69:19:e5:48:15:e7:5c:04:3e:31:32:69:09:67:43:16: 00:47:e3:8a:2b:de:6c:bc:af:da:58:6f:5d:1a:51:27:18:a1: a0:ae:1f:6a:c0:54:e2:e4:70:d5:0b:23:3f:3b:89:42:a6:39: a0:d3:98:82 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZHMz81QR7QOp8lr68wzo27nCpbswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTFBMjRCMDk4RTlBQzA3QzY1OEY2QUZFRTA5OTA3NTFD REI2OTJBNDAeFw0yNDA5MTQwNjU1MDBaFw0yNTA5MTMwNzAwMDBaMDMxMTAvBgNV BAMTKENGMDgxOUU5RjQzRUE1RjI4MjZCMEFDOTNGOTEwQkFFRkE3RDZGREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDem9GE2eak/9MDMwESbxgcBpYs e2KGfkWQbe0yLbGgB4//G5/EVNXmZcF03elK2HwqrCXJIfn4tniab3u6AaiTKHE7 ZtzGrpEPAa/KZUap+mOMZS7rlTNzFSsxt5793ikJaHGPXtFxy1l6izJg3fhPYsgD X8YQ9LnOa5HZv9lnTLurjbKbtBLN1UrjUi+ZAFR5dSTBgSOQskT+KrR4lZFX7sQV RS4pR2LebbnOW3I110Rwk1IJjokjxDzfOQaRM25P8X4mpGj6vrkrcfncFEkuAvcc 8ynSEgTS+0QwZVQI4nv1APs5XFAYZUKDqMc6JmIEAt7zhox25Kkut5c6OK87AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzwgZ6fQ+pfKCawrJP5ELrvp9b90wHwYDVR0j BBgwFoAU4aJLCY6awHxlj2r+4JkHUc22kqQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZGFhNGMwZi05OTkyLTQyZmMtYTU0Mi1lZmY3NDA5MWIzMzQvMC9FMUEyNEIwOThF OUFDMDdDNjU4RjZBRkVFMDk5MDc1MUNEQjY5MkE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTFBMjRCMDk4RTlBQzA3QzY1OEY2QUZFRTA5OTA3NTFDREI2 OTJBNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkYWE0YzBmLTk5OTItNDJmYy1h NTQyLWVmZjc0MDkxYjMzNC8wLzMxMzAzMzJlMzIzMDMzMmUzNzM2MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzEzMzM0MzYzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ8tMMA0GCSqG SIb3DQEBCwUAA4IBAQBkVeh7PqylH8po9J9mp1dq8NgYso/lY7rwmqNUq3Jdx9KY 0ll0coHbARPxQ6D9m3LLFdO2z7ptpxEk4l0t5PIsw+n/LE5HTvnf8026v2yxTR30 z/aE5rtqTABrPYLhRQLyM2HUOztQG5yjF8ZgXD/CM/SH+xfRVIRNnD8gJSgLPic3 iqIIlJM+EvOMD1WFmB1u+Rt750/W55BRII5qE6YLwDQhLrSbvTHYFWPYNypCZbfd uJPILqaziweN586JzNXQ82aX9LD4T2kZ5UgV51wEPjEyaQlnQxYAR+OKK95svK/a WG9dGlEnGKGgrh9qwFTi5HDVCyM/O4lCpjmg05iC -----END CERTIFICATE-----Generated at Sun Nov 24 10:18:22 2024 by rpki-client on console-fra.rpki-client.org