$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3234372e3132302e302f32322d3234203d3e203535363636.roa File: 3130332e3234372e3132302e302f32322d3234203d3e203535363636.roa (raw, json) Hash identifier: jLKCSwUB/7+RWWMUUnjb77Vl80z1WI/m0WnLZPBMhZg= Subject key identifier: C2:6B:A4:70:B2:8B:DB:FE:EE:A8:76:3F:E7:B1:9E:5E:26:0A:9F:5C Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 54F29997384BC05BD904B40419F37072D5EEBE38 Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3234372e3132302e302f32322d3234203d3e203535363636.roa Signing time: Mon 01 Jul 2024 01:06:11 +0000 ROA not before: Mon 01 Jul 2024 01:01:11 +0000 ROA not after: Mon 30 Jun 2025 01:06:11 +0000 asID: 55666 IP address blocks: 103.247.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:10:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:f2:99:97:38:4b:c0:5b:d9:04:b4:04:19:f3:70:72:d5:ee:be:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jul 1 01:01:11 2024 GMT Not After : Jun 30 01:06:11 2025 GMT Subject: CN=C26BA470B28BDBFEEEA8763FE7B19E5E260A9F5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:16:47:99:0d:42:80:bd:10:3c:36:79:69:85: cf:30:9b:49:27:6d:3f:1a:8f:6c:c3:c7:70:65:14: e4:13:7e:23:bb:2c:70:64:b1:99:0d:e0:62:78:e2: 59:4b:30:7b:ae:ba:a7:36:d6:3b:28:ea:58:8f:e1: 86:79:5b:e7:4d:b4:35:45:67:6b:47:33:7a:85:cc: 15:22:47:62:05:0d:c0:27:06:40:4a:2f:18:19:fe: 9e:dc:98:1f:96:3e:4a:7a:0a:19:8c:89:05:1a:7b: 7f:c4:58:2d:39:98:af:13:f0:b7:c6:33:84:61:f1: 97:45:9d:0e:22:01:0d:a3:ad:27:0b:19:b6:e0:ac: 7f:e1:01:e2:04:72:9a:51:c3:a1:ee:18:2a:b5:a6: 9f:d1:fb:65:dd:be:4a:34:13:ee:eb:81:b5:a2:dd: 80:1e:33:15:c9:fa:73:c7:9f:40:63:80:d4:8c:40: a9:fa:8d:b7:61:b9:98:d0:e3:79:20:60:e8:ac:5b: a5:88:4f:31:84:51:09:31:c8:1d:f5:b2:30:25:26: 65:51:19:52:94:dd:66:03:9d:53:78:09:3f:65:8a: 14:c1:39:ea:6f:a6:3d:5d:80:da:75:d5:cc:43:97: a9:ee:4a:a1:4c:84:b2:8e:80:96:a0:3c:1d:85:d1: 6c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:6B:A4:70:B2:8B:DB:FE:EE:A8:76:3F:E7:B1:9E:5E:26:0A:9F:5C X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3234372e3132302e302f32322d3234203d3e203535363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.120.0/22 Signature Algorithm: sha256WithRSAEncryption df:2a:bd:8e:01:4a:41:6d:9e:f6:25:86:58:44:48:0b:86:8a: 7a:d5:3e:e5:16:8d:86:2c:1b:52:28:fe:19:bb:7a:7b:34:be: 79:53:32:99:50:66:3b:57:27:7f:46:01:25:95:ac:77:b6:77: 85:4f:ee:a9:bf:67:2e:f3:9f:5c:f2:79:1c:ff:1a:e5:04:27: 98:9c:6f:1c:ad:76:21:97:df:7d:51:11:29:d2:58:b8:00:46: f7:4e:64:a6:e7:40:b0:dc:7c:8a:09:a9:ab:db:7f:84:89:24: 82:9c:4e:c3:c7:61:25:d4:d9:39:b7:73:d2:f2:07:62:61:15: 54:15:f4:f4:0a:92:e8:ac:9f:58:1a:a7:51:d5:72:ca:ea:bb: cc:25:19:cc:74:0f:74:10:48:24:03:59:54:43:eb:f2:50:7d: 17:41:c5:3c:7a:02:00:8a:5d:b6:4e:51:1d:ea:8a:62:fb:23: 59:a3:57:8a:8b:8c:d2:e9:00:36:59:31:c6:80:ea:73:95:ae: ff:5e:8e:fc:17:7c:48:46:20:47:26:7f:a2:90:dc:3a:30:60: c1:5f:9d:71:bb:69:5c:6c:e4:96:03:c4:9c:b8:51:86:b1:6c: 53:b1:72:bc:e6:d0:58:60:4a:52:a4:7c:42:8b:22:aa:1b:88: af:d2:f5:71 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVPKZlzhLwFvZBLQEGfNwctXuvjgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNDA3MDEwMTAxMTFaFw0yNTA2MzAwMTA2MTFaMDMxMTAvBgNV BAMTKEMyNkJBNDcwQjI4QkRCRkVFRUE4NzYzRkU3QjE5RTVFMjYwQTlGNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkFkeZDUKAvRA8Nnlphc8wm0kn bT8aj2zDx3BlFOQTfiO7LHBksZkN4GJ44llLMHuuuqc21jso6liP4YZ5W+dNtDVF Z2tHM3qFzBUiR2IFDcAnBkBKLxgZ/p7cmB+WPkp6ChmMiQUae3/EWC05mK8T8LfG M4Rh8ZdFnQ4iAQ2jrScLGbbgrH/hAeIEcppRw6HuGCq1pp/R+2Xdvko0E+7rgbWi 3YAeMxXJ+nPHn0BjgNSMQKn6jbdhuZjQ43kgYOisW6WITzGEUQkxyB31sjAlJmVR GVKU3WYDnVN4CT9lihTBOepvpj1dgNp11cxDl6nuSqFMhLKOgJagPB2F0WwBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwmukcLKL2/7uqHY/57GeXiYKn1wwHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzAzMzJlMzIzNDM3MmUzMTMyMzAyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM1MzYzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ/d4MA0GCSqG SIb3DQEBCwUAA4IBAQDfKr2OAUpBbZ72JYZYREgLhop61T7lFo2GLBtSKP4Zu3p7 NL55UzKZUGY7Vyd/RgEllax3tneFT+6pv2cu859c8nkc/xrlBCeYnG8crXYhl999 UREp0li4AEb3TmSm50Cw3HyKCamr23+EiSSCnE7Dx2El1Nk5t3PS8gdiYRVUFfT0 CpLorJ9YGqdR1XLK6rvMJRnMdA90EEgkA1lUQ+vyUH0XQcU8egIAil22TlEd6opi +yNZo1eKi4zS6QA2WTHGgOpzla7/Xo78F3xIRiBHJn+ikNw6MGDBX51xu2lcbOSW A8ScuFGGsWxTsXK85tBYYEpSpHxCiyKqG4iv0vVx -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:40 2024 by rpki-client on console-fra.rpki-client.org