$ rpki-client -vvf repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/3130332e3233392e32302e302f32332d3234203d3e20313531353139.roa File: 3130332e3233392e32302e302f32332d3234203d3e20313531353139.roa (raw, json) Hash identifier: F9P1ZnUuqGV0taVDJEnFJzgAXTbawikhZBmBVym2mNw= Subject key identifier: 81:1B:9D:AD:2B:79:1D:25:2E:B7:21:E7:ED:B4:5F:11:93:5C:F8:85 Certificate issuer: /CN=FE5652AD4702104DB082C396B05EE5D04542E7D7 Certificate serial: 28FD54AAFC50A56F303E2C443A1F4FA4E9FF042C Authority key identifier: FE:56:52:AD:47:02:10:4D:B0:82:C3:96:B0:5E:E5:D0:45:42:E7:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE5652AD4702104DB082C396B05EE5D04542E7D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/3130332e3233392e32302e302f32332d3234203d3e20313531353139.roa Signing time: Thu 27 Jun 2024 05:00:00 +0000 ROA not before: Thu 27 Jun 2024 04:55:00 +0000 ROA not after: Thu 26 Jun 2025 05:00:00 +0000 asID: 151519 IP address blocks: 103.239.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/FE5652AD4702104DB082C396B05EE5D04542E7D7.crl rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/FE5652AD4702104DB082C396B05EE5D04542E7D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE5652AD4702104DB082C396B05EE5D04542E7D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:fd:54:aa:fc:50:a5:6f:30:3e:2c:44:3a:1f:4f:a4:e9:ff:04:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FE5652AD4702104DB082C396B05EE5D04542E7D7 Validity Not Before: Jun 27 04:55:00 2024 GMT Not After : Jun 26 05:00:00 2025 GMT Subject: CN=811B9DAD2B791D252EB721E7EDB45F11935CF885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:cb:46:77:d3:e0:48:d4:43:c1:ae:2a:8c:26: 40:9d:a5:0e:c6:45:22:9a:2f:2e:1f:5c:8e:ee:b6: 4c:68:02:d2:09:80:4b:2f:6c:c3:90:23:2a:a5:f8: 9e:83:b2:ed:ae:2c:9f:fb:92:11:75:53:0b:4e:e9: 6d:2a:b1:1c:83:a7:cf:30:2d:ff:17:79:15:18:ec: ff:6b:1a:49:de:d0:57:78:18:14:87:0c:04:b8:3c: ff:43:a7:37:51:92:df:37:b6:50:29:1b:6e:12:2f: d7:43:e2:67:5f:2b:3d:45:cf:01:69:8e:4c:2e:65: a1:9a:d3:16:1d:ec:00:a0:26:f8:4d:d1:5c:5c:e5: 2e:2b:da:7c:ba:de:2f:7c:3a:9f:a1:44:c0:ee:d4: ea:b2:2f:11:ca:f5:78:8e:5a:4e:ae:64:91:1e:ec: 7f:9e:df:62:7c:46:f9:49:ea:1e:d0:cf:39:03:13: 53:13:f2:f4:42:bb:6a:e3:f7:ad:6f:b7:49:76:6f: 4f:36:53:18:a8:08:1f:fa:08:71:57:04:34:0a:1d: 20:74:67:ed:b6:ba:68:8e:71:a6:b4:80:af:db:3e: 0d:2b:7b:c5:9d:ab:c1:52:38:8e:52:de:3d:3d:1c: 39:73:cd:00:22:17:be:fa:2c:bc:56:dd:8e:16:7e: bd:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:1B:9D:AD:2B:79:1D:25:2E:B7:21:E7:ED:B4:5F:11:93:5C:F8:85 X509v3 Authority Key Identifier: keyid:FE:56:52:AD:47:02:10:4D:B0:82:C3:96:B0:5E:E5:D0:45:42:E7:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/FE5652AD4702104DB082C396B05EE5D04542E7D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE5652AD4702104DB082C396B05EE5D04542E7D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/3130332e3233392e32302e302f32332d3234203d3e20313531353139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.20.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:47:ca:23:37:70:8a:11:91:b3:2b:e6:24:45:2b:0e:ed:f4: 04:fe:a8:83:a0:6f:79:32:83:d4:a5:61:20:05:8a:2b:8a:04: 72:62:b7:25:72:6c:e0:af:10:67:ca:6d:7f:24:16:11:68:89: e4:75:9b:4c:2e:cf:bb:d5:46:ae:25:3a:b5:11:91:72:97:79: c8:b9:cf:25:9e:28:76:21:a5:07:3a:2f:67:38:7c:7e:10:68: 8a:df:9c:b2:d9:6e:85:87:f5:03:68:d2:4d:d7:c2:27:d8:1e: 2e:bd:9b:06:e8:bc:7e:1c:ac:47:0b:c1:4f:8c:10:e5:74:3b: 9f:b2:88:2f:31:78:ab:6b:b0:29:ea:ad:89:f4:02:97:c2:e4: 4b:a2:35:3b:de:18:a2:20:e3:8d:e7:de:d9:c3:4e:c7:c6:ac: 15:59:e9:dd:95:3b:db:ae:b2:c4:bf:82:90:b2:92:48:02:2b: 17:2c:9d:c4:bd:12:01:20:29:88:2c:e1:75:72:0a:cc:c5:31: b1:87:c5:c6:6e:66:da:01:c9:be:f5:6c:5c:92:fe:a6:00:06: e9:f7:be:66:09:08:be:5e:ee:83:a6:f8:5b:9c:9a:a2:40:42: f5:16:3d:8f:81:98:ad:73:70:ee:96:80:f0:01:46:8e:a9:9c: 74:ce:e2:92 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKP1UqvxQpW8wPixEOh9PpOn/BCwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkU1NjUyQUQ0NzAyMTA0REIwODJDMzk2QjA1RUU1RDA0 NTQyRTdENzAeFw0yNDA2MjcwNDU1MDBaFw0yNTA2MjYwNTAwMDBaMDMxMTAvBgNV BAMTKDgxMUI5REFEMkI3OTFEMjUyRUI3MjFFN0VEQjQ1RjExOTM1Q0Y4ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJy0Z30+BI1EPBriqMJkCdpQ7G RSKaLy4fXI7utkxoAtIJgEsvbMOQIyql+J6Dsu2uLJ/7khF1UwtO6W0qsRyDp88w Lf8XeRUY7P9rGkne0Fd4GBSHDAS4PP9DpzdRkt83tlApG24SL9dD4mdfKz1FzwFp jkwuZaGa0xYd7ACgJvhN0Vxc5S4r2ny63i98Op+hRMDu1OqyLxHK9XiOWk6uZJEe 7H+e32J8RvlJ6h7QzzkDE1MT8vRCu2rj961vt0l2b082UxioCB/6CHFXBDQKHSB0 Z+22umiOcaa0gK/bPg0re8Wdq8FSOI5S3j09HDlzzQAiF776LLxW3Y4Wfr15AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgRudrSt5HSUutyHn7bRfEZNc+IUwHwYDVR0j BBgwFoAU/lZSrUcCEE2wgsOWsF7l0EVC59cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h N2FmZDU3YS1lNmRlLTRhNWYtYjVjNi0xMDg2NWQ1YThjOTgvMC9GRTU2NTJBRDQ3 MDIxMDREQjA4MkMzOTZCMDVFRTVEMDQ1NDJFN0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkU1NjUyQUQ0NzAyMTA0REIwODJDMzk2QjA1RUU1RDA0NTQy RTdENy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3YWZkNTdhLWU2ZGUtNGE1Zi1i NWM2LTEwODY1ZDVhOGM5OC8wLzMxMzAzMzJlMzIzMzM5MmUzMjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ+8UMA0GCSqG SIb3DQEBCwUAA4IBAQCMR8ojN3CKEZGzK+YkRSsO7fQE/qiDoG95MoPUpWEgBYor igRyYrclcmzgrxBnym1/JBYRaInkdZtMLs+71UauJTq1EZFyl3nIuc8lnih2IaUH Oi9nOHx+EGiK35yy2W6Fh/UDaNJN18In2B4uvZsG6Lx+HKxHC8FPjBDldDufsogv MXira7Ap6q2J9AKXwuRLojU73hiiIOON597Zw07HxqwVWendlTvbrrLEv4KQspJI AisXLJ3EvRIBICmILOF1cgrMxTGxh8XGbmbaAcm+9Wxckv6mAAbp975mCQi+Xu6D pvhbnJqiQEL1Fj2PgZitc3DuloDwAUaOqZx0zuKS -----END CERTIFICATE-----Generated at Thu Nov 21 22:33:06 2024 by rpki-client on console-fra.rpki-client.org