$ rpki-client -vvf repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/3130332e3230332e37382e302f32342d3234203d3e20313334363230.roa File: 3130332e3230332e37382e302f32342d3234203d3e20313334363230.roa (raw, json) Hash identifier: 9S8Hab+C+7s4q0CA4zayu/dByexmy88UzDOs+RZmtOs= Subject key identifier: 72:A5:ED:A7:1E:9D:59:18:19:A7:25:9F:A5:8F:6C:EF:CD:A4:38:91 Certificate issuer: /CN=E1A24B098E9AC07C658F6AFEE0990751CDB692A4 Certificate serial: 7C509BDEF57CE297B1CF65697AA0B69F9C0DCEB8 Authority key identifier: E1:A2:4B:09:8E:9A:C0:7C:65:8F:6A:FE:E0:99:07:51:CD:B6:92:A4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/3130332e3230332e37382e302f32342d3234203d3e20313334363230.roa Signing time: Sat 14 Sep 2024 08:00:00 +0000 ROA not before: Sat 14 Sep 2024 07:55:00 +0000 ROA not after: Sat 13 Sep 2025 08:00:00 +0000 asID: 134620 IP address blocks: 103.203.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.crl rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:50:9b:de:f5:7c:e2:97:b1:cf:65:69:7a:a0:b6:9f:9c:0d:ce:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A24B098E9AC07C658F6AFEE0990751CDB692A4 Validity Not Before: Sep 14 07:55:00 2024 GMT Not After : Sep 13 08:00:00 2025 GMT Subject: CN=72A5EDA71E9D591819A7259FA58F6CEFCDA43891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:93:42:58:36:90:61:10:1f:35:67:b3:0d:17: 18:81:41:35:5e:2a:fc:0a:67:d7:22:88:08:ae:9c: 00:be:ad:eb:44:06:d9:cc:03:0d:37:51:64:06:c7: 22:5d:7f:9c:9b:bf:1d:41:e8:c2:c9:3c:f3:49:37: 32:07:7c:16:a0:7d:b3:dd:a4:1b:d9:26:36:d3:97: 2e:54:59:d3:cc:52:80:1c:d9:1e:7f:4a:4f:4d:4a: 15:1a:45:0c:fc:bd:35:7f:cb:ef:b1:b8:7e:b4:d9: af:ca:0e:f9:25:09:cf:7b:a3:40:1b:b0:93:54:3c: 5c:ac:64:5c:48:7f:b2:e9:0c:64:71:fe:1f:42:38: a9:9d:d5:3b:e6:41:69:2d:1a:2a:70:a6:fa:09:d8: b8:8f:fd:37:ac:04:92:60:7e:7f:80:73:4e:e2:05: c4:f0:d2:03:e6:15:c3:09:44:34:eb:ed:3c:41:f5: 23:61:a0:4a:78:8d:a0:12:39:78:70:d7:3d:b0:fe: 4a:2e:38:08:aa:b6:42:0c:c3:03:1b:32:ec:2e:ac: 20:de:97:99:ef:90:5d:cb:95:99:37:ac:d7:5f:f9: 62:39:a1:66:45:56:f8:bf:de:aa:2c:49:b9:bd:12: cc:8c:a6:5b:d6:fc:e6:4c:1e:47:60:ac:c4:bc:5c: 5c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:A5:ED:A7:1E:9D:59:18:19:A7:25:9F:A5:8F:6C:EF:CD:A4:38:91 X509v3 Authority Key Identifier: keyid:E1:A2:4B:09:8E:9A:C0:7C:65:8F:6A:FE:E0:99:07:51:CD:B6:92:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E1A24B098E9AC07C658F6AFEE0990751CDB692A4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8daa4c0f-9992-42fc-a542-eff74091b334/0/3130332e3230332e37382e302f32342d3234203d3e20313334363230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.203.78.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:06:e8:dc:64:04:c9:5c:47:e6:eb:82:42:75:1b:62:fb:15: 5a:6f:41:cc:9f:08:e4:4d:cf:b8:c7:28:8e:6c:75:54:ba:e1: 06:29:b2:72:3b:67:ce:0f:a8:17:09:18:51:ea:2c:30:fa:19: 80:59:b4:19:22:7f:b4:24:a3:de:04:ad:7c:9c:0f:b9:1c:6d: 2c:2b:76:b0:8d:5c:d1:69:82:1e:9f:87:1a:32:2e:b5:07:ef: 94:82:dd:6a:0f:c3:88:a6:0e:fd:2d:9d:8c:f1:ea:82:f7:28: c6:9d:c9:83:2e:41:cd:26:57:f7:bb:44:f3:9e:7e:c1:5b:38: 29:6d:36:05:37:4b:82:2d:69:6e:df:63:aa:5b:3e:be:16:9d: 54:0f:88:c7:a1:33:d5:02:be:9d:41:d2:1c:da:86:5d:ae:ca: 4d:d7:b0:58:86:c0:11:b2:b4:0e:31:e9:29:37:98:41:c0:dd: d4:b6:8c:5a:6d:c6:3d:02:58:7f:97:eb:45:9f:51:7e:58:ec: e8:cd:a3:51:20:c7:34:87:98:01:38:e0:9b:4c:3a:06:50:07: 13:2f:8c:c1:af:ff:6b:e9:12:fa:8a:d5:76:cb:80:2d:2e:42: bd:b1:6f:12:d2:3d:49:75:d0:17:62:53:c5:eb:35:6e:bd:c3: 3a:d8:cf:38 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfFCb3vV84pexz2VpeqC2n5wNzrgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTFBMjRCMDk4RTlBQzA3QzY1OEY2QUZFRTA5OTA3NTFD REI2OTJBNDAeFw0yNDA5MTQwNzU1MDBaFw0yNTA5MTMwODAwMDBaMDMxMTAvBgNV BAMTKDcyQTVFREE3MUU5RDU5MTgxOUE3MjU5RkE1OEY2Q0VGQ0RBNDM4OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdk0JYNpBhEB81Z7MNFxiBQTVe KvwKZ9ciiAiunAC+retEBtnMAw03UWQGxyJdf5ybvx1B6MLJPPNJNzIHfBagfbPd pBvZJjbTly5UWdPMUoAc2R5/Sk9NShUaRQz8vTV/y++xuH602a/KDvklCc97o0Ab sJNUPFysZFxIf7LpDGRx/h9COKmd1TvmQWktGipwpvoJ2LiP/TesBJJgfn+Ac07i BcTw0gPmFcMJRDTr7TxB9SNhoEp4jaASOXhw1z2w/kouOAiqtkIMwwMbMuwurCDe l5nvkF3LlZk3rNdf+WI5oWZFVvi/3qosSbm9EsyMplvW/OZMHkdgrMS8XFzrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcqXtpx6dWRgZpyWfpY9s782kOJEwHwYDVR0j BBgwFoAU4aJLCY6awHxlj2r+4JkHUc22kqQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZGFhNGMwZi05OTkyLTQyZmMtYTU0Mi1lZmY3NDA5MWIzMzQvMC9FMUEyNEIwOThF OUFDMDdDNjU4RjZBRkVFMDk5MDc1MUNEQjY5MkE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTFBMjRCMDk4RTlBQzA3QzY1OEY2QUZFRTA5OTA3NTFDREI2 OTJBNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkYWE0YzBmLTk5OTItNDJmYy1h NTQyLWVmZjc0MDkxYjMzNC8wLzMxMzAzMzJlMzIzMDMzMmUzNzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM0MzYzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ8tOMA0GCSqG SIb3DQEBCwUAA4IBAQBfBujcZATJXEfm64JCdRti+xVab0HMnwjkTc+4xyiObHVU uuEGKbJyO2fOD6gXCRhR6iww+hmAWbQZIn+0JKPeBK18nA+5HG0sK3awjVzRaYIe n4caMi61B++Ugt1qD8OIpg79LZ2M8eqC9yjGncmDLkHNJlf3u0Tznn7BWzgpbTYF N0uCLWlu32OqWz6+Fp1UD4jHoTPVAr6dQdIc2oZdrspN17BYhsARsrQOMekpN5hB wN3UtoxabcY9Alh/l+tFn1F+WOzozaNRIMc0h5gBOOCbTDoGUAcTL4zBr/9r6RL6 itV2y4AtLkK9sW8S0j1JddAXYlPF6zVuvcM62M84 -----END CERTIFICATE-----Generated at Sun Nov 24 10:18:22 2024 by rpki-client on console-fra.rpki-client.org