$ rpki-client -vvf repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/3130332e38342e3230382e302f32342d3234203d3e20313336303735.roa File: 3130332e38342e3230382e302f32342d3234203d3e20313336303735.roa (raw, json) Hash identifier: BJ2aY0LbswsacLKabgAGEft2mjxk7WoNhBc4Llw2ciI= Subject key identifier: 8A:E6:0B:46:40:BC:95:B2:C1:10:9A:FB:A3:9D:AC:50:86:B1:F5:52 Certificate issuer: /CN=0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96 Certificate serial: 3F6B3ABFA600CFB80795A0F06E146D7E943A652F Authority key identifier: 0E:42:26:A5:F1:76:6A:EA:E7:68:A2:A6:76:C3:E8:B2:CA:EA:DC:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/3130332e38342e3230382e302f32342d3234203d3e20313336303735.roa Signing time: Mon 20 May 2024 13:00:00 +0000 ROA not before: Mon 20 May 2024 12:55:00 +0000 ROA not after: Mon 19 May 2025 13:00:00 +0000 asID: 136075 IP address blocks: 103.84.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.crl rsync://repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:6b:3a:bf:a6:00:cf:b8:07:95:a0:f0:6e:14:6d:7e:94:3a:65:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96 Validity Not Before: May 20 12:55:00 2024 GMT Not After : May 19 13:00:00 2025 GMT Subject: CN=8AE60B4640BC95B2C1109AFBA39DAC5086B1F552 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:73:46:4a:00:a2:1d:7e:86:1a:1f:46:1f:eb: 8a:cb:05:0a:74:68:7f:8f:ba:e1:e6:3f:63:ea:3d: 36:67:af:84:c7:5f:8d:4e:db:19:db:52:3e:1e:1d: 18:41:1d:71:98:54:d6:ed:03:e1:47:6e:0b:bf:e5: d3:d6:4e:53:a0:d3:74:c3:fa:e6:5b:0e:8b:bd:65: e3:f6:99:45:13:d2:7b:ce:b6:b7:77:5b:11:f8:fa: 12:28:7a:bc:ec:d3:e4:13:1c:d5:4c:e3:f3:8f:be: a5:a5:24:78:28:00:0b:64:f5:00:b1:eb:b2:d4:65: ef:86:65:a6:26:a9:84:9d:43:f4:03:10:8f:5a:03: e6:36:dd:2e:ca:2d:2c:f4:83:94:ec:b7:42:87:61: 31:be:e5:e4:6b:01:09:df:19:5d:22:e5:90:92:bf: 21:4b:ad:7d:80:f3:8e:e3:10:b9:69:3e:30:66:35: 1c:0a:63:ed:a1:d3:9c:b2:90:53:c4:b1:56:6e:f0: 55:7f:ff:df:a2:fa:01:96:16:5e:77:c8:e0:20:bf: 8d:03:e2:2c:50:64:d8:8a:4a:35:78:e1:bd:a4:64: 26:20:ee:ad:eb:2c:5b:c4:69:35:c6:bb:27:f2:a4: ce:aa:73:c2:24:d0:10:26:ca:ed:4d:b9:80:50:c2: c2:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:E6:0B:46:40:BC:95:B2:C1:10:9A:FB:A3:9D:AC:50:86:B1:F5:52 X509v3 Authority Key Identifier: keyid:0E:42:26:A5:F1:76:6A:EA:E7:68:A2:A6:76:C3:E8:B2:CA:EA:DC:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/3130332e38342e3230382e302f32342d3234203d3e20313336303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.84.208.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:2b:80:8f:97:35:bf:1c:2e:57:19:84:04:db:23:ea:01:56: f0:8e:d2:4c:c0:cc:65:e5:46:22:ff:c9:f2:32:d5:34:04:7e: a0:1e:1f:73:3c:af:5e:8a:09:56:15:5d:5f:c4:cb:94:3e:26: 26:06:78:bd:ba:cc:a0:28:1e:79:d7:8e:e9:1f:9e:e9:86:75: 1a:f5:94:cc:f0:fd:20:92:70:3c:64:be:1e:74:81:3d:64:1e: 6d:e6:90:44:a1:db:17:7a:66:02:07:38:b4:84:e7:15:ea:0f: 63:f5:fa:03:6e:f6:e4:0f:28:af:ba:39:ad:ce:b2:00:4b:32: bc:a8:fa:91:4e:eb:eb:43:11:44:19:36:2e:f2:b1:54:65:ff: 86:b6:2c:ab:44:d5:9f:d0:ab:0b:92:52:e9:cf:f1:d5:5b:22: e6:b4:03:c1:0d:e6:be:43:d8:95:f8:2d:01:89:15:ca:d8:37: 7d:15:c8:bf:6c:66:c8:ef:f0:e2:c1:6f:da:aa:89:c7:1b:c1: 77:32:0a:a3:03:5b:6a:55:71:fd:09:a0:a3:bf:15:2e:fc:07: 5f:27:c2:2e:24:c4:9a:71:78:32:ab:5e:6b:80:1c:f2:36:c5: 68:a9:68:33:4f:d2:b5:4b:0e:2b:e6:04:fd:c5:c9:69:5c:39: dd:09:8c:37 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUP2s6v6YAz7gHlaDwbhRtfpQ6ZS8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEU0MjI2QTVGMTc2NkFFQUU3NjhBMkE2NzZDM0U4QjJD QUVBREM5NjAeFw0yNDA1MjAxMjU1MDBaFw0yNTA1MTkxMzAwMDBaMDMxMTAvBgNV BAMTKDhBRTYwQjQ2NDBCQzk1QjJDMTEwOUFGQkEzOURBQzUwODZCMUY1NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtc0ZKAKIdfoYaH0Yf64rLBQp0 aH+PuuHmP2PqPTZnr4THX41O2xnbUj4eHRhBHXGYVNbtA+FHbgu/5dPWTlOg03TD +uZbDou9ZeP2mUUT0nvOtrd3WxH4+hIoerzs0+QTHNVM4/OPvqWlJHgoAAtk9QCx 67LUZe+GZaYmqYSdQ/QDEI9aA+Y23S7KLSz0g5Tst0KHYTG+5eRrAQnfGV0i5ZCS vyFLrX2A847jELlpPjBmNRwKY+2h05yykFPEsVZu8FV//9+i+gGWFl53yOAgv40D 4ixQZNiKSjV44b2kZCYg7q3rLFvEaTXGuyfypM6qc8Ik0BAmyu1NuYBQwsKXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUiuYLRkC8lbLBEJr7o52sUIax9VIwHwYDVR0j BBgwFoAUDkImpfF2aurnaKKmdsPossrq3JYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTBlNWFjMi1iNmJiLTRiZWMtOWRjOS1lNDMwYTY3MzMyMTYvMC8wRTQyMjZBNUYx NzY2QUVBRTc2OEEyQTY3NkMzRThCMkNBRUFEQzk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEU0MjI2QTVGMTc2NkFFQUU3NjhBMkE2NzZDM0U4QjJDQUVB REM5Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlMGU1YWMyLWI2YmItNGJlYy05 ZGM5LWU0MzBhNjczMzIxNi8wLzMxMzAzMzJlMzgzNDJlMzIzMDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1TQMA0GCSqG SIb3DQEBCwUAA4IBAQBKK4CPlzW/HC5XGYQE2yPqAVbwjtJMwMxl5UYi/8nyMtU0 BH6gHh9zPK9eiglWFV1fxMuUPiYmBni9usygKB55147pH57phnUa9ZTM8P0gknA8 ZL4edIE9ZB5t5pBEodsXemYCBzi0hOcV6g9j9foDbvbkDyivujmtzrIASzK8qPqR TuvrQxFEGTYu8rFUZf+GtiyrRNWf0KsLklLpz/HVWyLmtAPBDea+Q9iV+C0BiRXK 2Dd9Fci/bGbI7/DiwW/aqonHG8F3MgqjA1tqVXH9CaCjvxUu/AdfJ8IuJMSacXgy q15rgBzyNsVoqWgzT9K1Sw4r5gT9xclpXDndCYw3 -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org