$ rpki-client -vvf repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32342d3234203d3e20313439373037.roa File: 3130332e32302e3130382e302f32342d3234203d3e20313439373037.roa (raw, json) Hash identifier: l72fTVO4iPS3td7y6iJ6FZ6Iq9uNFhg1kwCppW10yoE= Subject key identifier: 63:B0:42:3A:E4:1F:E5:ED:55:74:5C:1C:80:E1:2B:3C:87:35:97:99 Certificate issuer: /CN=7A216F23D8A228FBB8F563EC15DF76FD503231B3 Certificate serial: 4CF68A00E11F9243899B89B976A61F6FBD4F8502 Authority key identifier: 7A:21:6F:23:D8:A2:28:FB:B8:F5:63:EC:15:DF:76:FD:50:32:31:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32342d3234203d3e20313439373037.roa Signing time: Tue 15 Oct 2024 11:19:20 +0000 ROA not before: Tue 15 Oct 2024 11:14:20 +0000 ROA not after: Tue 14 Oct 2025 11:19:20 +0000 asID: 149707 IP address blocks: 103.20.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.crl rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:f6:8a:00:e1:1f:92:43:89:9b:89:b9:76:a6:1f:6f:bd:4f:85:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7A216F23D8A228FBB8F563EC15DF76FD503231B3 Validity Not Before: Oct 15 11:14:20 2024 GMT Not After : Oct 14 11:19:20 2025 GMT Subject: CN=63B0423AE41FE5ED55745C1C80E12B3C87359799 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ed:d4:da:70:f1:fe:a9:f5:f9:dd:81:ad:f3: d9:be:54:97:b2:8d:df:10:c6:ac:28:6f:75:ab:0e: 56:32:bd:d8:c5:b6:f2:a5:b7:27:0a:1d:d2:f0:90: c2:bd:2a:a6:01:3c:f4:7c:59:16:a2:d5:de:1b:f4: d0:cd:75:57:02:e2:7b:7d:9c:cd:f2:5f:9e:78:ef: de:65:cf:98:d4:9d:08:cd:bb:db:f3:09:59:ac:47: 16:8b:4a:81:fe:d4:6e:7c:d6:03:b1:5c:75:1f:76: a6:be:1c:2f:0b:64:56:61:b9:13:af:23:43:42:10: 84:17:5e:91:94:ef:08:3a:ff:75:74:3c:af:6e:6b: 20:da:bc:3d:f1:0d:1a:d8:a2:00:01:3b:07:c6:db: c0:00:5e:2b:98:e1:22:ec:e7:d9:b2:90:29:df:63: f0:9e:8b:bf:72:20:bb:6d:8d:15:25:c3:79:7c:04: 3a:a1:c1:04:3e:07:e2:91:10:bb:60:78:4f:32:b3: d1:39:51:ed:81:2a:c9:36:d0:35:70:63:ff:47:9b: 8e:b4:cf:41:08:4e:57:aa:56:a1:86:98:e2:2b:31: 5d:48:d2:9f:f3:70:fe:e2:f1:2f:4b:50:ce:cd:bf: 9e:8a:02:5b:49:83:07:d5:97:11:f1:25:7c:a0:95: 05:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:B0:42:3A:E4:1F:E5:ED:55:74:5C:1C:80:E1:2B:3C:87:35:97:99 X509v3 Authority Key Identifier: keyid:7A:21:6F:23:D8:A2:28:FB:B8:F5:63:EC:15:DF:76:FD:50:32:31:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130382e302f32342d3234203d3e20313439373037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.108.0/24 Signature Algorithm: sha256WithRSAEncryption b0:86:69:bf:d5:16:90:73:1c:6d:60:21:3a:77:e6:b0:5b:9e: f7:3d:af:ff:12:45:14:f4:0e:fa:f6:f7:7c:0d:1e:41:24:7c: bf:b6:5b:7c:ef:db:bd:1b:af:eb:11:a6:35:bc:ff:f4:fd:f2: 87:db:25:47:5b:9e:86:2c:b8:ec:e6:69:76:cf:ee:59:83:5d: bd:a7:4e:3f:87:80:25:e3:3f:76:66:4a:e3:60:cb:35:ab:6d: 69:4b:90:ae:cd:cf:46:63:ae:8d:58:14:60:ee:82:94:04:0a: 8e:c4:4b:54:60:b3:af:39:2b:10:1a:f5:45:08:81:b4:dc:a2: 5b:ad:a0:28:90:61:44:a7:9b:eb:68:29:39:b9:8f:fa:65:c3: 9c:6a:c1:98:64:00:5c:08:92:8a:a9:7d:b0:3a:c0:96:d3:b3: cb:ac:56:cf:b6:6a:63:6b:90:9a:3d:be:9f:bb:bc:e1:99:0b: b2:7c:6c:9d:12:d9:08:73:47:d0:a9:32:4a:9d:5a:45:bb:98: 3c:4e:ec:3f:f8:51:49:80:74:84:0e:c9:10:e3:3a:3b:53:a8: bc:1f:e1:cb:8a:28:bc:ed:3a:09:93:f0:6e:32:31:dd:b6:23: 5d:e7:0d:b7:62:53:65:94:c7:db:d1:dd:de:36:6d:39:a0:01: 60:bb:18:44 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTPaKAOEfkkOJm4m5dqYfb71PhQIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0EyMTZGMjNEOEEyMjhGQkI4RjU2M0VDMTVERjc2RkQ1 MDMyMzFCMzAeFw0yNDEwMTUxMTE0MjBaFw0yNTEwMTQxMTE5MjBaMDMxMTAvBgNV BAMTKDYzQjA0MjNBRTQxRkU1RUQ1NTc0NUMxQzgwRTEyQjNDODczNTk3OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl7dTacPH+qfX53YGt89m+VJey jd8Qxqwob3WrDlYyvdjFtvKltycKHdLwkMK9KqYBPPR8WRai1d4b9NDNdVcC4nt9 nM3yX554795lz5jUnQjNu9vzCVmsRxaLSoH+1G581gOxXHUfdqa+HC8LZFZhuROv I0NCEIQXXpGU7wg6/3V0PK9uayDavD3xDRrYogABOwfG28AAXiuY4SLs59mykCnf Y/Cei79yILttjRUlw3l8BDqhwQQ+B+KRELtgeE8ys9E5Ue2BKsk20DVwY/9Hm460 z0EITleqVqGGmOIrMV1I0p/zcP7i8S9LUM7Nv56KAltJgwfVlxHxJXyglQVtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUY7BCOuQf5e1VdFwcgOErPIc1l5kwHwYDVR0j BBgwFoAUeiFvI9iiKPu49WPsFd92/VAyMbMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2M2YmQ3My1mOWJkLTRmNWEtOWM1OS1mYmVhMWJkODM0NzMvMC83QTIxNkYyM0Q4 QTIyOEZCQjhGNTYzRUMxNURGNzZGRDUwMzIzMUIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0EyMTZGMjNEOEEyMjhGQkI4RjU2M0VDMTVERjc2RkQ1MDMy MzFCMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYzZiZDczLWY5YmQtNGY1YS05 YzU5LWZiZWExYmQ4MzQ3My8wLzMxMzAzMzJlMzIzMDJlMzEzMDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxRsMA0GCSqG SIb3DQEBCwUAA4IBAQCwhmm/1RaQcxxtYCE6d+awW573Pa//EkUU9A769vd8DR5B JHy/tlt879u9G6/rEaY1vP/0/fKH2yVHW56GLLjs5ml2z+5Zg129p04/h4Al4z92 ZkrjYMs1q21pS5Cuzc9GY66NWBRg7oKUBAqOxEtUYLOvOSsQGvVFCIG03KJbraAo kGFEp5vraCk5uY/6ZcOcasGYZABcCJKKqX2wOsCW07PLrFbPtmpja5CaPb6fu7zh mQuyfGydEtkIc0fQqTJKnVpFu5g8Tuw/+FFJgHSEDskQ4zo7U6i8H+HLiii87ToJ k/BuMjHdtiNd5w23YlNllMfb0d3eNm05oAFguxhE -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:55 2024 by rpki-client on console-fra.rpki-client.org