$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa File: 3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa (raw, json) Hash identifier: 6ejxm/D7fWLYd/jA5kGnDm4Adf1D2VKSxCwudEm22iA= Subject key identifier: 0A:2D:99:4B:08:DE:4C:21:1A:40:D2:E1:DA:A1:8C:7D:51:12:5A:8D Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 4C75257FFF913A9841F0B24AF2BCA3A147D8A21A Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa Signing time: Mon 01 Jul 2024 01:04:49 +0000 ROA not before: Mon 01 Jul 2024 00:59:49 +0000 ROA not after: Mon 30 Jun 2025 01:04:49 +0000 asID: 63497 IP address blocks: 103.250.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:75:25:7f:ff:91:3a:98:41:f0:b2:4a:f2:bc:a3:a1:47:d8:a2:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Jul 1 00:59:49 2024 GMT Not After : Jun 30 01:04:49 2025 GMT Subject: CN=0A2D994B08DE4C211A40D2E1DAA18C7D51125A8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:ed:b4:f8:ee:51:61:03:aa:18:9b:5b:ae:24: 74:67:42:e5:58:7e:2e:a3:f2:1e:a2:4e:59:a1:89: 1c:72:d0:80:3c:66:d9:fb:58:b5:c2:b1:8e:9e:0f: fd:b9:9e:6c:a9:6b:f6:57:c7:44:51:55:5c:11:05: 60:53:ad:90:f8:eb:07:72:83:99:7a:69:e6:59:30: 99:41:92:9a:00:50:ac:ef:4e:5b:0f:1b:6f:11:8d: 82:31:05:65:bd:bc:12:24:18:76:0e:1c:b8:22:df: 08:fe:73:f1:c5:b2:65:5d:f5:ef:f6:c7:45:85:d0: 08:ec:36:66:0f:d7:4b:dc:f7:3b:f4:bf:d7:d4:24: e9:ac:f9:09:9e:8e:97:39:7f:05:c7:62:31:cc:00: 9c:a0:a8:da:e2:d8:d2:af:80:cd:8c:27:b0:35:f5: 1e:05:99:6b:32:26:b8:19:f9:70:bc:54:36:5b:32: cc:7d:13:b4:d8:6c:16:0b:fc:23:e5:0c:de:c6:45: 9d:43:c5:db:83:0b:f4:e8:cb:c5:77:f5:5b:4f:77: 2e:67:f0:7b:93:58:1b:09:ac:56:3e:11:27:84:1b: cf:6e:0b:a6:66:29:98:d0:dd:5f:9a:24:7c:7a:a5: 5e:6c:2d:1d:46:1e:95:0b:05:1a:dd:06:6e:a0:03: 22:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:2D:99:4B:08:DE:4C:21:1A:40:D2:E1:DA:A1:8C:7D:51:12:5A:8D X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.250.199.0/24 Signature Algorithm: sha256WithRSAEncryption 61:0d:b6:bd:6a:34:58:b5:d8:b3:b0:27:51:26:1f:d6:5b:45: cd:47:11:91:ea:b4:69:39:9f:a7:2f:4c:60:8e:06:f0:4b:06: 2c:a7:30:d6:f0:0f:40:4d:87:af:38:04:8d:92:41:3d:4e:64: 7f:39:99:07:f0:c7:72:1f:44:ef:ae:5d:b2:b1:de:41:ab:f8: 33:70:a1:b2:cd:cb:44:7a:73:13:30:22:8b:65:ae:38:c5:f8: 6a:64:c7:c8:d7:e9:16:62:c5:4c:a8:c0:54:aa:f2:ef:1c:dd: 69:1f:2f:b3:96:cd:eb:e7:23:94:90:5d:7d:9d:9b:d0:28:16: 02:54:9c:85:19:c8:8d:db:df:9f:f6:ea:cb:83:19:62:f6:63: 0d:5d:7a:5f:19:da:e0:03:8a:30:db:d3:43:9e:ed:c4:6b:f0: 8a:5b:93:e3:37:6e:40:54:33:d3:54:9f:b5:3e:b7:8e:09:ef: 9a:05:9f:f5:a0:e8:aa:8a:1c:f2:90:7d:e7:09:8b:84:cf:8f: 65:c0:e7:fa:59:47:12:bb:b7:68:d1:c5:9a:26:39:17:70:85: ee:6d:57:47:1e:fe:16:11:cb:b8:27:8f:56:c6:9a:1b:12:13: 11:a9:ca:5e:43:d3:f0:91:e3:60:29:67:83:76:7a:92:ef:95: 38:62:bf:c7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTHUlf/+ROphB8LJK8ryjoUfYohowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNDA3MDEwMDU5NDlaFw0yNTA2MzAwMTA0NDlaMDMxMTAvBgNV BAMTKDBBMkQ5OTRCMDhERTRDMjExQTQwRDJFMURBQTE4QzdENTExMjVBOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb7bT47lFhA6oYm1uuJHRnQuVY fi6j8h6iTlmhiRxy0IA8Ztn7WLXCsY6eD/25nmypa/ZXx0RRVVwRBWBTrZD46wdy g5l6aeZZMJlBkpoAUKzvTlsPG28RjYIxBWW9vBIkGHYOHLgi3wj+c/HFsmVd9e/2 x0WF0AjsNmYP10vc9zv0v9fUJOms+Qmejpc5fwXHYjHMAJygqNri2NKvgM2MJ7A1 9R4FmWsyJrgZ+XC8VDZbMsx9E7TYbBYL/CPlDN7GRZ1DxduDC/Toy8V39VtPdy5n 8HuTWBsJrFY+ESeEG89uC6ZmKZjQ3V+aJHx6pV5sLR1GHpULBRrdBm6gAyJxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCi2ZSwjeTCEaQNLh2qGMfVESWo0wHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExNjMzYjhlLTBkZjktNDRhYy05 Y2FlLWQ2ZjY3NjVhNTJjOS8wLzMxMzAzMzJlMzIzNTMwMmUzMTM5MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzQzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/rHMA0GCSqG SIb3DQEBCwUAA4IBAQBhDba9ajRYtdizsCdRJh/WW0XNRxGR6rRpOZ+nL0xgjgbw SwYspzDW8A9ATYevOASNkkE9TmR/OZkH8MdyH0Tvrl2ysd5Bq/gzcKGyzctEenMT MCKLZa44xfhqZMfI1+kWYsVMqMBUqvLvHN1pHy+zls3r5yOUkF19nZvQKBYCVJyF GciN29+f9urLgxli9mMNXXpfGdrgA4ow29NDnu3Ea/CKW5PjN25AVDPTVJ+1PreO Ce+aBZ/1oOiqihzykH3nCYuEz49lwOf6WUcSu7do0cWaJjkXcIXubVdHHv4WEcu4 J49WxpobEhMRqcpeQ9PwkeNgKWeDdnqS75U4Yr/H -----END CERTIFICATE-----Generated at Fri Nov 22 17:50:10 2024 by rpki-client on console-fra.rpki-client.org