$ rpki-client -vvf repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/3130332e36382e3133362e302f32342d3234203d3e203338353131.roa File: 3130332e36382e3133362e302f32342d3234203d3e203338353131.roa (raw, json) Hash identifier: /3OF733rpM3jdRT3EkKeOCDNT6qwcGILSfVrlznc0RM= Subject key identifier: 23:27:53:9B:B1:9B:0D:76:A7:EB:80:C1:31:86:97:E9:A6:AE:96:C4 Certificate issuer: /CN=B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416 Certificate serial: 2A28FFA34E89CDAEFA625B47E3E44CDBEABC1D0F Authority key identifier: B2:C1:8E:11:C8:53:0B:DF:4E:E3:33:F5:DE:BD:0B:05:5F:9D:A4:16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.cer Subject info access: rsync://repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/3130332e36382e3133362e302f32342d3234203d3e203338353131.roa Signing time: Mon 21 Oct 2024 14:00:01 +0000 ROA not before: Mon 21 Oct 2024 13:55:01 +0000 ROA not after: Mon 20 Oct 2025 14:00:01 +0000 asID: 38511 IP address blocks: 103.68.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.crl rsync://repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:28:ff:a3:4e:89:cd:ae:fa:62:5b:47:e3:e4:4c:db:ea:bc:1d:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416 Validity Not Before: Oct 21 13:55:01 2024 GMT Not After : Oct 20 14:00:01 2025 GMT Subject: CN=2327539BB19B0D76A7EB80C1318697E9A6AE96C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:fb:4f:41:cd:4f:56:aa:de:d1:3f:71:8c:3e: a2:08:99:48:dd:b9:fa:ce:73:be:c2:e8:05:23:fe: 66:2e:aa:eb:52:16:ec:d5:00:64:9d:0f:d1:df:84: e8:5c:f3:92:c1:4e:8d:3b:7a:ab:cc:4b:e3:15:c6: 6c:88:22:53:bb:57:a3:c8:22:c3:62:d7:c9:e1:78: e5:b6:8f:43:21:ab:13:77:d3:70:ed:95:ab:a1:65: c2:c5:cc:3e:24:e5:ae:fa:84:47:34:3a:8b:0b:58: 7f:91:68:d7:d1:36:d1:82:80:a7:8e:4c:89:7f:22: ff:8c:5d:4f:69:1f:98:c8:95:86:0b:69:cb:88:0f: 4a:06:e6:08:d1:5d:ed:12:51:df:1d:e3:1b:79:1e: 32:dd:17:3c:50:af:14:68:b0:c7:b3:b3:a9:ed:6a: 37:d6:c9:2d:7a:13:4b:64:fc:be:82:37:7e:e5:d7: e9:37:e9:5d:22:ca:f5:c6:f3:9d:16:4a:1c:b0:f0: b4:ba:ae:ea:66:47:fc:b2:66:b3:28:84:58:46:f7: 94:03:a1:cb:0a:1c:67:1f:e6:4a:ad:40:fc:f2:d9: 72:87:82:d4:2e:61:61:bc:af:aa:61:c3:8b:16:ec: d4:ad:9d:d4:2b:cd:01:a2:71:60:0c:32:11:f8:e7: bb:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:27:53:9B:B1:9B:0D:76:A7:EB:80:C1:31:86:97:E9:A6:AE:96:C4 X509v3 Authority Key Identifier: keyid:B2:C1:8E:11:C8:53:0B:DF:4E:E3:33:F5:DE:BD:0B:05:5F:9D:A4:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2C18E11C8530BDF4EE333F5DEBD0B055F9DA416.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/93dc1b05-2a69-45b0-8c44-626772276bd9/0/3130332e36382e3133362e302f32342d3234203d3e203338353131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.68.136.0/24 Signature Algorithm: sha256WithRSAEncryption aa:c0:f7:98:d7:f7:4d:03:cb:33:d1:b5:f6:59:5c:1c:c1:94: 82:76:3c:36:9e:ae:6d:28:90:b1:c7:0e:0b:26:ee:90:d0:ac: 29:1d:3f:4a:d0:3a:b8:bc:df:57:3c:36:e4:95:f4:fb:c5:9b: 16:ee:11:ef:32:88:f9:87:2d:dd:1a:5c:76:a9:c2:e5:93:4d: f6:96:00:c4:38:53:21:f0:2c:c4:99:83:54:77:19:a1:2a:94: 30:30:21:cd:8e:b5:70:d8:31:4e:c8:0a:d7:cc:6b:d7:e1:49: 3d:52:8d:ad:9e:96:02:bc:e8:70:b9:fd:c0:e2:d2:75:f6:c3: f6:80:db:c8:39:1b:4f:53:0e:7f:69:15:f7:59:04:c4:94:e7: e0:54:a0:d2:7e:b2:a8:e2:b9:79:80:48:ad:46:69:08:6b:6b: 45:d6:63:1c:2c:ec:02:7d:e6:31:f8:ac:9b:f6:13:d7:19:6b: 80:93:3f:42:e5:63:7b:ab:dd:dc:f8:b1:6a:bf:3a:6a:07:97: 2a:29:66:26:e7:ba:02:89:39:70:d0:7e:eb:77:ab:f7:67:9e: c8:16:66:7c:08:45:2e:b7:00:64:cf:98:c1:33:a3:aa:c0:c3: d5:64:84:b7:9e:b8:d9:5c:fa:96:a7:0b:82:5f:50:46:2c:d3: 61:72:4b:ed -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKij/o06Jza76YltH4+RM2+q8HQ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjJDMThFMTFDODUzMEJERjRFRTMzM0Y1REVCRDBCMDU1 RjlEQTQxNjAeFw0yNDEwMjExMzU1MDFaFw0yNTEwMjAxNDAwMDFaMDMxMTAvBgNV BAMTKDIzMjc1MzlCQjE5QjBENzZBN0VCODBDMTMxODY5N0U5QTZBRTk2QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt+09BzU9Wqt7RP3GMPqIImUjd ufrOc77C6AUj/mYuqutSFuzVAGSdD9HfhOhc85LBTo07eqvMS+MVxmyIIlO7V6PI IsNi18nheOW2j0MhqxN303DtlauhZcLFzD4k5a76hEc0OosLWH+RaNfRNtGCgKeO TIl/Iv+MXU9pH5jIlYYLacuID0oG5gjRXe0SUd8d4xt5HjLdFzxQrxRosMezs6nt ajfWyS16E0tk/L6CN37l1+k36V0iyvXG850WShyw8LS6rupmR/yyZrMohFhG95QD ocsKHGcf5kqtQPzy2XKHgtQuYWG8r6phw4sW7NStndQrzQGicWAMMhH457t7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIydTm7GbDXan64DBMYaX6aaulsQwHwYDVR0j BBgwFoAUssGOEchTC99O4zP13r0LBV+dpBYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 M2RjMWIwNS0yYTY5LTQ1YjAtOGM0NC02MjY3NzIyNzZiZDkvMC9CMkMxOEUxMUM4 NTMwQkRGNEVFMzMzRjVERUJEMEIwNTVGOURBNDE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjJDMThFMTFDODUzMEJERjRFRTMzM0Y1REVCRDBCMDU1RjlE QTQxNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkzZGMxYjA1LTJhNjktNDViMC04 YzQ0LTYyNjc3MjI3NmJkOS8wLzMxMzAzMzJlMzYzODJlMzEzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM1MzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdEiDANBgkqhkiG 9w0BAQsFAAOCAQEAqsD3mNf3TQPLM9G19llcHMGUgnY8Np6ubSiQsccOCybukNCs KR0/StA6uLzfVzw25JX0+8WbFu4R7zKI+Yct3RpcdqnC5ZNN9pYAxDhTIfAsxJmD VHcZoSqUMDAhzY61cNgxTsgK18xr1+FJPVKNrZ6WArzocLn9wOLSdfbD9oDbyDkb T1MOf2kV91kExJTn4FSg0n6yqOK5eYBIrUZpCGtrRdZjHCzsAn3mMfism/YT1xlr gJM/QuVje6vd3Pixar86ageXKilmJue6Aok5cNB+63er92eeyBZmfAhFLrcAZM+Y wTOjqsDD1WSEt5642Vz6lqcLgl9QRizTYXJL7Q== -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:48 2024 by rpki-client on console-fra.rpki-client.org