$ rpki-client -vvf repo-rpki.idnic.net/repo/b1f87f5a-f6f9-468d-895e-314487f5e25e/0/3130332e3230392e3133312e302f32342d3234203d3e20313333333535.roa File: 3130332e3230392e3133312e302f32342d3234203d3e20313333333535.roa (raw, json) Hash identifier: L1nP2+pxchPIkSU0l3/nlJDDpNPW8AazHmyGzOWryzQ= Subject key identifier: D1:0F:D1:01:7B:B1:08:0F:21:DC:78:19:AA:10:AE:5B:BE:41:64:6F Certificate issuer: /CN=B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7 Certificate serial: 23E5EF791C86E0F094B0A11281321AD129822322 Authority key identifier: B9:BE:B6:0C:D6:22:4D:41:F3:33:A0:7E:18:20:F0:AF:3A:81:FF:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b1f87f5a-f6f9-468d-895e-314487f5e25e/0/3130332e3230392e3133312e302f32342d3234203d3e20313333333535.roa Signing time: Mon 26 Feb 2024 10:00:01 +0000 ROA not before: Mon 26 Feb 2024 09:55:01 +0000 ROA not after: Mon 24 Feb 2025 10:00:01 +0000 asID: 133355 IP address blocks: 103.209.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b1f87f5a-f6f9-468d-895e-314487f5e25e/0/B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7.crl rsync://repo-rpki.idnic.net/repo/b1f87f5a-f6f9-468d-895e-314487f5e25e/0/B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:33:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:e5:ef:79:1c:86:e0:f0:94:b0:a1:12:81:32:1a:d1:29:82:23:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7 Validity Not Before: Feb 26 09:55:01 2024 GMT Not After : Feb 24 10:00:01 2025 GMT Subject: CN=D10FD1017BB1080F21DC7819AA10AE5BBE41646F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5e:63:33:67:50:5d:11:db:c5:32:4d:7c:b6: 87:54:23:0d:a3:2a:3d:67:35:7c:a3:cf:72:b4:43: 86:08:1a:6c:63:37:cf:7f:dd:2e:aa:0c:42:48:53: f6:65:f4:9c:47:c5:fe:88:ff:c8:cc:c5:cf:a2:00: 6a:3b:54:c2:38:a0:8e:89:a1:bc:cb:ff:3f:3a:e3: 83:0a:6f:63:39:5e:da:6c:15:10:79:b1:a4:7a:9d: 85:8d:f0:cc:c9:96:45:9c:22:9e:3b:dc:d3:f2:65: 93:50:19:ae:c2:47:e7:de:c1:dd:88:e0:48:95:f1: 94:8f:70:79:95:87:b6:3a:d4:f2:44:91:df:7b:7d: 1e:b6:9a:a0:19:6e:00:17:49:ef:36:a9:40:da:a2: 6c:39:62:4e:a9:f1:03:a8:23:ea:35:a2:ef:ac:a4: 41:e2:cd:b1:32:5c:82:1a:16:1a:0d:66:e5:fc:a6: 9a:56:73:f0:ed:81:de:cd:db:f4:de:4b:38:05:76: 89:e1:76:84:45:7e:a0:cb:a7:8f:ef:5f:69:27:47: 7b:91:a3:3c:de:05:eb:3c:60:9e:98:ea:db:bb:30: a0:cd:c3:d6:2b:12:6b:f4:07:a0:cc:d5:8e:9a:4e: 22:48:e2:b5:f5:1a:53:51:a9:99:eb:19:c9:1c:2b: 4b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:0F:D1:01:7B:B1:08:0F:21:DC:78:19:AA:10:AE:5B:BE:41:64:6F X509v3 Authority Key Identifier: keyid:B9:BE:B6:0C:D6:22:4D:41:F3:33:A0:7E:18:20:F0:AF:3A:81:FF:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b1f87f5a-f6f9-468d-895e-314487f5e25e/0/B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B9BEB60CD6224D41F333A07E1820F0AF3A81FFF7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b1f87f5a-f6f9-468d-895e-314487f5e25e/0/3130332e3230392e3133312e302f32342d3234203d3e20313333333535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.209.131.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:75:16:87:26:d7:0f:97:6f:fe:8b:db:b0:f4:10:f2:a2:93: 8e:be:c2:4d:39:f0:37:09:f7:f8:31:56:06:9c:07:ac:e8:c2: d1:52:61:6c:b1:86:23:0c:7b:0b:ca:0e:a9:1c:8f:9e:ed:56: fd:d8:f6:2f:a6:36:c6:73:0c:fb:44:c5:de:e6:ef:f6:bd:2b: 8c:85:d5:c8:7c:4e:6c:c2:c6:06:29:39:c9:29:51:c5:78:9e: 2d:0b:a6:07:71:b2:cd:80:43:db:29:b5:c6:f2:62:44:76:2c: 3b:06:95:c8:ee:1b:0a:df:73:a9:09:b8:33:3b:ba:b2:93:fd: 60:81:73:d6:39:94:70:1f:d3:52:a9:c1:d7:ad:11:76:c2:ee: 39:1b:4e:92:4b:3c:95:6b:fb:41:94:7c:1c:62:fd:5a:fe:04: 6f:dd:b5:58:1b:e0:fb:a3:a6:eb:f9:81:31:fa:54:78:34:a1: 56:90:c4:6b:fb:95:d6:b4:7c:12:18:20:ef:a5:f1:f0:16:15: b2:64:46:35:52:06:9f:c7:e4:b5:28:7b:76:ef:a3:93:0d:7c: 38:f5:06:4f:8e:a2:1b:19:9d:bd:66:1e:26:c7:99:7b:0d:75: 90:a2:05:83:41:12:54:62:40:24:a9:3c:a0:ff:ad:53:b8:72: 89:83:a7:35 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUI+XveRyG4PCUsKESgTIa0SmCIyIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjlCRUI2MENENjIyNEQ0MUYzMzNBMDdFMTgyMEYwQUYz QTgxRkZGNzAeFw0yNDAyMjYwOTU1MDFaFw0yNTAyMjQxMDAwMDFaMDMxMTAvBgNV BAMTKEQxMEZEMTAxN0JCMTA4MEYyMURDNzgxOUFBMTBBRTVCQkU0MTY0NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5XmMzZ1BdEdvFMk18todUIw2j Kj1nNXyjz3K0Q4YIGmxjN89/3S6qDEJIU/Zl9JxHxf6I/8jMxc+iAGo7VMI4oI6J obzL/z8644MKb2M5XtpsFRB5saR6nYWN8MzJlkWcIp473NPyZZNQGa7CR+fewd2I 4EiV8ZSPcHmVh7Y61PJEkd97fR62mqAZbgAXSe82qUDaomw5Yk6p8QOoI+o1ou+s pEHizbEyXIIaFhoNZuX8pppWc/Dtgd7N2/TeSzgFdonhdoRFfqDLp4/vX2knR3uR ozzeBes8YJ6Y6tu7MKDNw9YrEmv0B6DM1Y6aTiJI4rX1GlNRqZnrGckcK0uRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU0Q/RAXuxCA8h3HgZqhCuW75BZG8wHwYDVR0j BBgwFoAUub62DNYiTUHzM6B+GCDwrzqB//cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MWY4N2Y1YS1mNmY5LTQ2OGQtODk1ZS0zMTQ0ODdmNWUyNWUvMC9COUJFQjYwQ0Q2 MjI0RDQxRjMzM0EwN0UxODIwRjBBRjNBODFGRkY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjlCRUI2MENENjIyNEQ0MUYzMzNBMDdFMTgyMEYwQUYzQTgx RkZGNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxZjg3ZjVhLWY2ZjktNDY4ZC04 OTVlLTMxNDQ4N2Y1ZTI1ZS8wLzMxMzAzMzJlMzIzMDM5MmUzMTMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzMzM1MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn0YMwDQYJ KoZIhvcNAQELBQADggEBAIt1Focm1w+Xb/6L27D0EPKik46+wk058DcJ9/gxVgac B6zowtFSYWyxhiMMewvKDqkcj57tVv3Y9i+mNsZzDPtExd7m7/a9K4yF1ch8TmzC xgYpOckpUcV4ni0Lpgdxss2AQ9sptcbyYkR2LDsGlcjuGwrfc6kJuDM7urKT/WCB c9Y5lHAf01KpwdetEXbC7jkbTpJLPJVr+0GUfBxi/Vr+BG/dtVgb4Pujpuv5gTH6 VHg0oVaQxGv7lda0fBIYIO+l8fAWFbJkRjVSBp/H5LUoe3bvo5MNfDj1Bk+OohsZ nb1mHibHmXsNdZCiBYNBElRiQCSpPKD/rVO4comDpzU= -----END CERTIFICATE-----Generated at Fri Nov 22 17:50:10 2024 by rpki-client on console-fra.rpki-client.org