$ rpki-client -vvf repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130392e302f32342d3234203d3e20313439373037.roa File: 3130332e32302e3130392e302f32342d3234203d3e20313439373037.roa (raw, json) Hash identifier: rOc9IS1yKanFrzj6lHEyVZN9K3Au8qIy9aCKaCdjEsw= Subject key identifier: 89:6B:CE:B3:B6:DF:51:66:93:D6:19:37:06:93:B0:66:38:6D:1B:8F Certificate issuer: /CN=7A216F23D8A228FBB8F563EC15DF76FD503231B3 Certificate serial: 211A19DED5240F589A419413EFE7B0B0CD85A0A9 Authority key identifier: 7A:21:6F:23:D8:A2:28:FB:B8:F5:63:EC:15:DF:76:FD:50:32:31:B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130392e302f32342d3234203d3e20313439373037.roa Signing time: Tue 15 Oct 2024 11:19:28 +0000 ROA not before: Tue 15 Oct 2024 11:14:28 +0000 ROA not after: Tue 14 Oct 2025 11:19:28 +0000 asID: 149707 IP address blocks: 103.20.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.crl rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:1a:19:de:d5:24:0f:58:9a:41:94:13:ef:e7:b0:b0:cd:85:a0:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7A216F23D8A228FBB8F563EC15DF76FD503231B3 Validity Not Before: Oct 15 11:14:28 2024 GMT Not After : Oct 14 11:19:28 2025 GMT Subject: CN=896BCEB3B6DF516693D619370693B066386D1B8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:61:c1:71:ed:cb:63:b8:01:d2:13:dc:20:88: e4:3d:99:8f:39:12:9b:77:61:b7:5a:b6:82:e2:c5: dd:6e:7e:42:1b:f6:c2:ac:ac:00:45:93:02:39:51: 2a:0b:00:c8:89:a7:0a:31:ac:d1:43:d2:d9:bd:d0: fc:c8:77:ca:2d:13:d1:6b:2d:49:66:3f:d0:48:2a: 1d:02:8b:96:01:fb:c3:9d:15:1e:41:3f:2b:94:81: 27:8e:ef:49:a1:56:10:b6:0d:63:06:cf:a0:6d:57: 5b:1f:bb:a1:ed:71:51:15:15:58:58:7f:ce:7a:f6: ff:3e:bc:70:c7:a3:ca:47:09:ae:f6:99:46:cb:69: a8:db:86:94:9d:41:2d:58:85:79:10:8e:09:b3:5b: 75:c1:fd:f2:fd:22:89:bd:71:9d:ca:a8:00:b4:e8: 2c:06:0f:ca:14:53:62:2d:75:58:1e:c4:e8:85:97: 5f:44:30:35:ab:b6:28:49:84:4a:99:9b:1b:97:b0: 5d:df:ab:9e:02:6e:26:84:28:85:61:ca:6f:b6:17: 96:18:10:ca:80:ef:91:42:ad:72:51:4c:34:73:d0: a5:b6:18:e1:87:f7:3b:e3:f2:1c:1c:c8:41:f2:12: e5:db:4e:b3:6c:e4:73:3e:db:02:65:4f:6f:aa:c5: 0c:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:6B:CE:B3:B6:DF:51:66:93:D6:19:37:06:93:B0:66:38:6D:1B:8F X509v3 Authority Key Identifier: keyid:7A:21:6F:23:D8:A2:28:FB:B8:F5:63:EC:15:DF:76:FD:50:32:31:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/7A216F23D8A228FBB8F563EC15DF76FD503231B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7A216F23D8A228FBB8F563EC15DF76FD503231B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/acc6bd73-f9bd-4f5a-9c59-fbea1bd83473/0/3130332e32302e3130392e302f32342d3234203d3e20313439373037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.109.0/24 Signature Algorithm: sha256WithRSAEncryption 81:e5:d7:be:99:f2:f9:e7:96:d2:92:99:2a:8c:6a:65:ca:14: bd:0e:f6:90:95:ed:71:b8:07:95:c7:fc:2a:0f:c1:32:03:77: 5d:e2:bf:4c:3d:ed:80:a6:d6:90:fe:47:29:74:bd:c3:94:b8: 96:33:eb:b7:69:1a:8a:0b:06:e2:db:06:34:5e:6c:45:98:fb: 7b:3a:e6:59:6e:5f:bd:fc:62:48:66:56:e2:ff:7f:0e:bb:d8: dc:a6:d0:e4:44:d2:fc:25:2e:b1:32:de:4b:24:16:6e:e8:ad: 14:bf:20:cc:36:dc:b4:da:a5:e4:f9:8b:40:e2:7b:fb:9c:81: 60:0a:d2:01:08:0c:63:70:4b:d5:cc:05:79:1a:91:32:21:69: 3e:82:07:74:7b:b6:2c:b9:da:f2:5b:b9:b5:e5:1f:a5:ce:98: ae:46:ae:9a:4f:61:e7:4c:2b:59:68:e4:32:e8:d6:81:c4:7d: eb:71:e5:c9:bc:c1:2c:88:74:f4:bb:2e:2d:8d:f2:b2:f7:73: 49:1d:48:d0:a9:41:81:2e:17:43:32:ea:61:87:4a:b7:55:ea: de:68:51:b9:26:7b:f1:81:17:7c:8d:66:bf:df:5c:ed:52:4f: 43:b1:53:97:52:1b:58:69:59:79:6f:cb:b9:b2:68:a5:97:9a: f8:aa:c7:ec -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIRoZ3tUkD1iaQZQT7+ewsM2FoKkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0EyMTZGMjNEOEEyMjhGQkI4RjU2M0VDMTVERjc2RkQ1 MDMyMzFCMzAeFw0yNDEwMTUxMTE0MjhaFw0yNTEwMTQxMTE5MjhaMDMxMTAvBgNV BAMTKDg5NkJDRUIzQjZERjUxNjY5M0Q2MTkzNzA2OTNCMDY2Mzg2RDFCOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuYcFx7ctjuAHSE9wgiOQ9mY85 Ept3YbdatoLixd1ufkIb9sKsrABFkwI5USoLAMiJpwoxrNFD0tm90PzId8otE9Fr LUlmP9BIKh0Ci5YB+8OdFR5BPyuUgSeO70mhVhC2DWMGz6BtV1sfu6HtcVEVFVhY f8569v8+vHDHo8pHCa72mUbLaajbhpSdQS1YhXkQjgmzW3XB/fL9Iom9cZ3KqAC0 6CwGD8oUU2ItdVgexOiFl19EMDWrtihJhEqZmxuXsF3fq54CbiaEKIVhym+2F5YY EMqA75FCrXJRTDRz0KW2GOGH9zvj8hwcyEHyEuXbTrNs5HM+2wJlT2+qxQyDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUiWvOs7bfUWaT1hk3BpOwZjhtG48wHwYDVR0j BBgwFoAUeiFvI9iiKPu49WPsFd92/VAyMbMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h Y2M2YmQ3My1mOWJkLTRmNWEtOWM1OS1mYmVhMWJkODM0NzMvMC83QTIxNkYyM0Q4 QTIyOEZCQjhGNTYzRUMxNURGNzZGRDUwMzIzMUIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0EyMTZGMjNEOEEyMjhGQkI4RjU2M0VDMTVERjc2RkQ1MDMy MzFCMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjYzZiZDczLWY5YmQtNGY1YS05 YzU5LWZiZWExYmQ4MzQ3My8wLzMxMzAzMzJlMzIzMDJlMzEzMDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxRtMA0GCSqG SIb3DQEBCwUAA4IBAQCB5de+mfL555bSkpkqjGplyhS9DvaQle1xuAeVx/wqD8Ey A3dd4r9MPe2AptaQ/kcpdL3DlLiWM+u3aRqKCwbi2wY0XmxFmPt7OuZZbl+9/GJI Zlbi/38Ou9jcptDkRNL8JS6xMt5LJBZu6K0UvyDMNty02qXk+YtA4nv7nIFgCtIB CAxjcEvVzAV5GpEyIWk+ggd0e7YsudryW7m15R+lzpiuRq6aT2HnTCtZaOQy6NaB xH3rceXJvMEsiHT0uy4tjfKy93NJHUjQqUGBLhdDMuphh0q3VereaFG5JnvxgRd8 jWa/31ztUk9DsVOXUhtYaVl5b8u5smill5r4qsfs -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:55 2024 by rpki-client on console-fra.rpki-client.org