$ rpki-client -vvf repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/3130332e3233392e32302e302f32342d3234203d3e20313531353139.roa File: 3130332e3233392e32302e302f32342d3234203d3e20313531353139.roa (raw, json) Hash identifier: qQiMuOKfrH8PAPkv5BzDpLFaZ1Dhp8Gu3GpyZWN3n5w= Subject key identifier: 41:C0:D8:B9:F3:E6:16:E2:C0:CE:0C:F8:EF:92:ED:36:65:BE:16:E5 Certificate issuer: /CN=FE5652AD4702104DB082C396B05EE5D04542E7D7 Certificate serial: 336121EFE28F3B170BC1F7A779D2DE037017DC3A Authority key identifier: FE:56:52:AD:47:02:10:4D:B0:82:C3:96:B0:5E:E5:D0:45:42:E7:D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE5652AD4702104DB082C396B05EE5D04542E7D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/3130332e3233392e32302e302f32342d3234203d3e20313531353139.roa Signing time: Thu 03 Oct 2024 09:36:17 +0000 ROA not before: Thu 03 Oct 2024 09:31:17 +0000 ROA not after: Thu 02 Oct 2025 09:36:17 +0000 asID: 151519 IP address blocks: 103.239.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/FE5652AD4702104DB082C396B05EE5D04542E7D7.crl rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/FE5652AD4702104DB082C396B05EE5D04542E7D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE5652AD4702104DB082C396B05EE5D04542E7D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:61:21:ef:e2:8f:3b:17:0b:c1:f7:a7:79:d2:de:03:70:17:dc:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FE5652AD4702104DB082C396B05EE5D04542E7D7 Validity Not Before: Oct 3 09:31:17 2024 GMT Not After : Oct 2 09:36:17 2025 GMT Subject: CN=41C0D8B9F3E616E2C0CE0CF8EF92ED3665BE16E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a3:e2:e9:4a:de:67:d7:32:f4:30:f3:ab:58: 30:fb:c6:90:db:24:f4:7b:dc:9f:c5:0a:fa:58:32: 08:03:aa:5a:26:9e:de:0e:fe:35:54:9a:c3:dd:5b: 6e:8b:9a:2b:83:38:19:f2:a6:3c:87:63:68:d5:78: 62:1b:a0:32:6e:c3:36:9e:d4:b8:9b:63:b4:70:1f: e8:c0:ef:4b:33:fb:39:06:b8:60:58:f7:9d:b3:ed: 66:c3:dd:26:83:ef:09:f9:85:19:a4:54:68:88:c9: d3:8d:81:ba:52:0c:c7:68:48:e5:4c:c1:d2:d2:74: 31:4d:34:df:2b:85:f2:0e:33:73:a6:f9:d7:d5:10: 70:05:8c:57:29:46:b0:b4:15:e5:12:c4:62:9b:65: 22:8d:53:64:96:e2:3a:f3:04:97:99:0f:e1:ed:ee: fa:c8:c5:9d:98:b5:78:b8:db:0a:d6:67:92:8f:28: 88:d7:17:d9:6c:21:e6:3f:88:cd:72:5b:a7:84:51: 63:ed:d7:07:2d:01:9a:6c:7b:2e:6b:aa:2d:d2:1e: 88:1c:fd:c5:ef:78:f0:dd:f0:fc:40:5e:56:d3:4f: dd:5f:d6:bb:f5:6d:c9:af:e8:1f:24:04:22:20:32: 5d:91:f0:55:b5:24:2a:cf:a5:a4:a6:6a:95:38:55: 1c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:C0:D8:B9:F3:E6:16:E2:C0:CE:0C:F8:EF:92:ED:36:65:BE:16:E5 X509v3 Authority Key Identifier: keyid:FE:56:52:AD:47:02:10:4D:B0:82:C3:96:B0:5E:E5:D0:45:42:E7:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/FE5652AD4702104DB082C396B05EE5D04542E7D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE5652AD4702104DB082C396B05EE5D04542E7D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/3130332e3233392e32302e302f32342d3234203d3e20313531353139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.20.0/24 Signature Algorithm: sha256WithRSAEncryption 21:74:f1:d9:c2:99:56:52:eb:10:ee:31:1b:9f:ee:a0:f5:2b: df:b2:77:c6:7b:ca:d9:76:c9:f1:95:07:fb:e1:20:50:30:b8: c0:bc:70:40:58:ae:ca:c1:e4:1f:77:4a:92:7b:4b:c9:51:a8: ea:7c:a4:df:3f:0b:05:56:eb:23:bc:8e:7c:f6:e7:f8:a7:2f: af:49:52:90:08:7e:ed:e2:e8:4b:28:24:5e:3b:45:b4:c9:3c: 0e:bc:21:54:a8:12:6d:35:6b:50:5b:86:f7:4f:d0:ea:03:fe: d5:9f:1a:2b:24:3d:9f:5d:d2:8c:8f:59:51:46:52:95:00:dd: 8f:df:15:46:1e:71:92:9c:76:5f:5b:e8:b4:3a:25:f6:2f:82: cb:bb:02:89:73:ce:a2:70:2e:dd:aa:36:3b:6d:64:a5:f2:8e: 4f:f9:77:c4:69:93:f2:eb:82:da:94:36:df:ae:e5:96:45:6c: 83:ea:34:23:67:07:41:2e:40:b5:12:0f:57:19:fe:93:51:2d: 77:fc:4c:5d:3e:b3:78:57:b3:46:c5:14:e6:a1:2e:9e:16:be: 50:6f:3a:20:c2:e2:95:18:e5:a3:99:63:56:e5:6f:03:8a:36: b3:f9:f7:d8:fb:aa:2a:06:d6:30:7d:8c:89:ee:94:ba:ce:90: ac:d4:89:6a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUM2Eh7+KPOxcLwfenedLeA3AX3DowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkU1NjUyQUQ0NzAyMTA0REIwODJDMzk2QjA1RUU1RDA0 NTQyRTdENzAeFw0yNDEwMDMwOTMxMTdaFw0yNTEwMDIwOTM2MTdaMDMxMTAvBgNV BAMTKDQxQzBEOEI5RjNFNjE2RTJDMENFMENGOEVGOTJFRDM2NjVCRTE2RTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9o+LpSt5n1zL0MPOrWDD7xpDb JPR73J/FCvpYMggDqlomnt4O/jVUmsPdW26LmiuDOBnypjyHY2jVeGIboDJuwzae 1LibY7RwH+jA70sz+zkGuGBY952z7WbD3SaD7wn5hRmkVGiIydONgbpSDMdoSOVM wdLSdDFNNN8rhfIOM3Om+dfVEHAFjFcpRrC0FeUSxGKbZSKNU2SW4jrzBJeZD+Ht 7vrIxZ2YtXi42wrWZ5KPKIjXF9lsIeY/iM1yW6eEUWPt1wctAZpsey5rqi3SHogc /cXvePDd8PxAXlbTT91f1rv1bcmv6B8kBCIgMl2R8FW1JCrPpaSmapU4VRxxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUQcDYufPmFuLAzgz475LtNmW+FuUwHwYDVR0j BBgwFoAU/lZSrUcCEE2wgsOWsF7l0EVC59cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h N2FmZDU3YS1lNmRlLTRhNWYtYjVjNi0xMDg2NWQ1YThjOTgvMC9GRTU2NTJBRDQ3 MDIxMDREQjA4MkMzOTZCMDVFRTVEMDQ1NDJFN0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkU1NjUyQUQ0NzAyMTA0REIwODJDMzk2QjA1RUU1RDA0NTQy RTdENy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3YWZkNTdhLWU2ZGUtNGE1Zi1i NWM2LTEwODY1ZDVhOGM5OC8wLzMxMzAzMzJlMzIzMzM5MmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+8UMA0GCSqG SIb3DQEBCwUAA4IBAQAhdPHZwplWUusQ7jEbn+6g9SvfsnfGe8rZdsnxlQf74SBQ MLjAvHBAWK7KweQfd0qSe0vJUajqfKTfPwsFVusjvI589uf4py+vSVKQCH7t4uhL KCReO0W0yTwOvCFUqBJtNWtQW4b3T9DqA/7VnxorJD2fXdKMj1lRRlKVAN2P3xVG HnGSnHZfW+i0OiX2L4LLuwKJc86icC7dqjY7bWSl8o5P+XfEaZPy64LalDbfruWW RWyD6jQjZwdBLkC1Eg9XGf6TUS13/ExdPrN4V7NGxRTmoS6eFr5QbzogwuKVGOWj mWNW5W8Dijaz+ffY+6oqBtYwfYyJ7pS6zpCs1Ilq -----END CERTIFICATE-----Generated at Thu Nov 21 22:33:06 2024 by rpki-client on console-fra.rpki-client.org