$ rpki-client -vvf repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/3130332e3132322e322e302f32342d3234203d3e20313430333839.roa File: 3130332e3132322e322e302f32342d3234203d3e20313430333839.roa (raw, json) Hash identifier: k3K6dCZYLtu+MpD1Gjak0kDNIxUc2+OyygM1PHy79pw= Subject key identifier: DA:2A:70:5A:CD:5B:2C:09:06:A7:E2:1D:4C:D4:C8:BD:62:E9:75:37 Certificate issuer: /CN=AEB84984B4021FC01344F3D02190FDED8607E7FA Certificate serial: 56296279740ADEC0A54BC61FCB5AE93FDF65C4BD Authority key identifier: AE:B8:49:84:B4:02:1F:C0:13:44:F3:D0:21:90:FD:ED:86:07:E7:FA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB84984B4021FC01344F3D02190FDED8607E7FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/3130332e3132322e322e302f32342d3234203d3e20313430333839.roa Signing time: Fri 01 Mar 2024 06:00:00 +0000 ROA not before: Fri 01 Mar 2024 05:55:00 +0000 ROA not after: Fri 28 Feb 2025 06:00:00 +0000 asID: 140389 IP address blocks: 103.122.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/AEB84984B4021FC01344F3D02190FDED8607E7FA.crl rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/AEB84984B4021FC01344F3D02190FDED8607E7FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB84984B4021FC01344F3D02190FDED8607E7FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:23:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:29:62:79:74:0a:de:c0:a5:4b:c6:1f:cb:5a:e9:3f:df:65:c4:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEB84984B4021FC01344F3D02190FDED8607E7FA Validity Not Before: Mar 1 05:55:00 2024 GMT Not After : Feb 28 06:00:00 2025 GMT Subject: CN=DA2A705ACD5B2C0906A7E21D4CD4C8BD62E97537 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:3b:cb:55:7d:c4:44:4c:ae:95:05:9d:54:cf: 73:48:9e:3d:5b:7d:6c:80:da:c3:db:b2:86:b0:47: 42:7f:fe:32:36:c5:b0:79:86:7b:af:0e:78:5b:3d: f7:f9:86:91:22:bc:48:31:36:df:8c:bb:f3:b3:3e: 7e:ae:4f:d6:d0:fd:55:2a:c7:3f:1e:37:44:32:b1: 6e:fe:da:42:44:63:e1:28:9a:dd:8a:57:ee:f0:dc: 77:f5:f4:eb:37:78:6a:6c:17:46:9b:3a:9f:8b:8c: 28:3d:71:19:15:44:50:6a:50:c2:23:63:bb:4a:b9: 4f:5d:47:99:d7:ee:f2:19:75:c8:af:d1:97:47:d5: 0c:f6:2c:21:4f:62:c3:4a:c8:5e:18:65:cb:3e:58: 13:7f:f8:5d:05:72:1a:ea:c4:5a:9e:a0:63:c7:61: eb:de:1f:28:a7:05:f4:49:7b:6f:1a:d2:1a:4b:80: 3a:c1:73:a1:b2:a3:85:d6:3e:d3:9c:0a:f7:02:12: 98:fc:ad:a2:1f:bd:a5:98:57:46:18:7e:67:da:58: e2:7c:e9:25:5d:6e:e4:1b:5d:8d:a4:e6:61:75:ff: b6:27:cc:9f:3d:a2:0c:22:21:b8:e8:e8:3d:8e:2c: 13:d3:99:ba:bb:7f:da:74:d1:03:86:27:83:22:13: ad:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:2A:70:5A:CD:5B:2C:09:06:A7:E2:1D:4C:D4:C8:BD:62:E9:75:37 X509v3 Authority Key Identifier: keyid:AE:B8:49:84:B4:02:1F:C0:13:44:F3:D0:21:90:FD:ED:86:07:E7:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/AEB84984B4021FC01344F3D02190FDED8607E7FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEB84984B4021FC01344F3D02190FDED8607E7FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b21955f0-4b40-4c3b-9fff-9f9258c3975a/0/3130332e3132322e322e302f32342d3234203d3e20313430333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.2.0/24 Signature Algorithm: sha256WithRSAEncryption 40:b1:1e:4d:d8:73:a0:21:c0:02:25:c4:1b:80:b1:1e:f3:ed: d8:3e:06:ea:76:f1:3e:3d:4d:05:23:63:ec:8b:2b:16:df:98: 63:39:b8:52:7a:8f:c5:6c:9a:a5:5d:81:19:bb:fa:2d:39:c7: 22:30:24:c3:8b:b5:5d:8b:f2:f9:c0:1d:a9:75:eb:c7:00:24: 9e:00:4b:5e:04:5d:88:88:16:94:36:65:95:8b:57:ec:3a:7a: 61:f2:ad:7f:65:0c:33:ee:61:96:61:ca:b9:12:90:8c:05:2b: 43:fd:60:6e:2b:7c:91:64:cf:cf:21:ce:2a:6f:01:b1:80:41: d4:24:75:b3:69:d9:e5:7b:aa:ec:07:70:15:cf:c2:4c:ab:5f: 1c:30:9e:e1:bd:51:48:cf:da:e3:b6:bd:a1:55:23:6f:d8:fb: b5:6b:da:ec:85:92:65:30:ac:ce:55:09:7f:97:f0:a0:1d:e2: b1:a5:05:8e:5f:f9:9c:fa:fe:46:5c:bf:ae:9c:7a:72:76:df: ed:fd:c0:43:6b:ed:11:3f:82:c6:a6:60:9e:bd:95:89:b3:f0: 31:9a:68:13:39:b8:32:5b:e2:ba:09:a1:f8:6c:dd:be:07:11: 19:b8:02:47:4a:16:32:80:c7:a9:27:0a:bc:4d:64:a8:dc:cb: f1:ed:41:6d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVilieXQK3sClS8Yfy1rpP99lxL0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVCODQ5ODRCNDAyMUZDMDEzNDRGM0QwMjE5MEZERUQ4 NjA3RTdGQTAeFw0yNDAzMDEwNTU1MDBaFw0yNTAyMjgwNjAwMDBaMDMxMTAvBgNV BAMTKERBMkE3MDVBQ0Q1QjJDMDkwNkE3RTIxRDRDRDRDOEJENjJFOTc1MzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdO8tVfcRETK6VBZ1Uz3NInj1b fWyA2sPbsoawR0J//jI2xbB5hnuvDnhbPff5hpEivEgxNt+Mu/OzPn6uT9bQ/VUq xz8eN0QysW7+2kJEY+Eomt2KV+7w3Hf19Os3eGpsF0abOp+LjCg9cRkVRFBqUMIj Y7tKuU9dR5nX7vIZdciv0ZdH1Qz2LCFPYsNKyF4YZcs+WBN/+F0FchrqxFqeoGPH YeveHyinBfRJe28a0hpLgDrBc6Gyo4XWPtOcCvcCEpj8raIfvaWYV0YYfmfaWOJ8 6SVdbuQbXY2k5mF1/7YnzJ89ogwiIbjo6D2OLBPTmbq7f9p00QOGJ4MiE607AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2ipwWs1bLAkGp+IdTNTIvWLpdTcwHwYDVR0j BBgwFoAUrrhJhLQCH8ATRPPQIZD97YYH5/owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjE5NTVmMC00YjQwLTRjM2ItOWZmZi05ZjkyNThjMzk3NWEvMC9BRUI4NDk4NEI0 MDIxRkMwMTM0NEYzRDAyMTkwRkRFRDg2MDdFN0ZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUVCODQ5ODRCNDAyMUZDMDEzNDRGM0QwMjE5MEZERUQ4NjA3 RTdGQS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyMTk1NWYwLTRiNDAtNGMzYi05 ZmZmLTlmOTI1OGMzOTc1YS8wLzMxMzAzMzJlMzEzMjMyMmUzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMDMzMzgzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGd6AjANBgkqhkiG 9w0BAQsFAAOCAQEAQLEeTdhzoCHAAiXEG4CxHvPt2D4G6nbxPj1NBSNj7IsrFt+Y Yzm4UnqPxWyapV2BGbv6LTnHIjAkw4u1XYvy+cAdqXXrxwAkngBLXgRdiIgWlDZl lYtX7Dp6YfKtf2UMM+5hlmHKuRKQjAUrQ/1gbit8kWTPzyHOKm8BsYBB1CR1s2nZ 5Xuq7AdwFc/CTKtfHDCe4b1RSM/a47a9oVUjb9j7tWva7IWSZTCszlUJf5fwoB3i saUFjl/5nPr+Rly/rpx6cnbf7f3AQ2vtET+CxqZgnr2VibPwMZpoEzm4Mlviugmh +GzdvgcRGbgCR0oWMoDHqScKvE1kqNzL8e1BbQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:33 2024 by rpki-client on console-fra.rpki-client.org