$ rpki-client -vvf repo-rpki.idnic.net/repo/b3c973d5-fe94-400d-bcbf-f233e8ac5537/0/3130332e37382e3234302e302f32342d3234203d3e20313530343836.roa File: 3130332e37382e3234302e302f32342d3234203d3e20313530343836.roa (raw, json) Hash identifier: bBbNPM+LEkAq0fM/oBVcPA1WIs4XZKUuvuR7dXMnleM= Subject key identifier: 1C:8B:20:3F:F6:D0:88:61:F3:1B:90:8E:8F:A4:3A:60:A9:25:1B:9B Certificate issuer: /CN=47A9D99A8511F7CE54F9F71E1EF83EF548924274 Certificate serial: 7624A4A02A4C48DD457BED28706CF63CE27067F3 Authority key identifier: 47:A9:D9:9A:85:11:F7:CE:54:F9:F7:1E:1E:F8:3E:F5:48:92:42:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47A9D99A8511F7CE54F9F71E1EF83EF548924274.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b3c973d5-fe94-400d-bcbf-f233e8ac5537/0/3130332e37382e3234302e302f32342d3234203d3e20313530343836.roa Signing time: Wed 30 Oct 2024 11:00:00 +0000 ROA not before: Wed 30 Oct 2024 10:55:00 +0000 ROA not after: Wed 29 Oct 2025 11:00:00 +0000 asID: 150486 IP address blocks: 103.78.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b3c973d5-fe94-400d-bcbf-f233e8ac5537/0/47A9D99A8511F7CE54F9F71E1EF83EF548924274.crl rsync://repo-rpki.idnic.net/repo/b3c973d5-fe94-400d-bcbf-f233e8ac5537/0/47A9D99A8511F7CE54F9F71E1EF83EF548924274.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47A9D99A8511F7CE54F9F71E1EF83EF548924274.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:24:a4:a0:2a:4c:48:dd:45:7b:ed:28:70:6c:f6:3c:e2:70:67:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47A9D99A8511F7CE54F9F71E1EF83EF548924274 Validity Not Before: Oct 30 10:55:00 2024 GMT Not After : Oct 29 11:00:00 2025 GMT Subject: CN=1C8B203FF6D08861F31B908E8FA43A60A9251B9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:4d:87:c8:c4:95:40:fe:e2:a1:c4:9f:a6:c9: 74:6e:40:cb:9d:86:fd:d7:01:54:f9:63:83:59:65: d9:5f:be:d3:f7:90:36:a0:af:ef:df:fb:81:bb:0b: d8:02:f6:5f:0e:1e:96:3a:58:d9:63:c8:ad:b8:00: ca:95:f0:28:d0:d7:d8:8f:65:ae:22:31:e1:de:96: 17:e4:2e:b5:d2:e7:f4:c3:77:6c:10:6e:a4:1f:44: c2:1b:49:d8:e4:2f:5b:e1:ff:4a:9b:ac:88:1f:df: 18:f7:ca:2a:84:c7:fd:c1:87:c3:93:0b:52:af:6d: c8:ef:16:6b:77:28:2f:5b:66:16:fd:40:10:a3:c2: e9:81:73:22:88:79:d4:79:8c:78:1e:4f:2e:07:cc: a1:5f:e1:81:53:a2:6f:33:7c:16:8f:85:df:0e:90: 8e:e2:e0:16:0d:6f:46:f9:88:c2:56:0c:e6:a1:8c: 4b:21:ea:63:e7:54:12:bf:ea:d0:c5:81:4c:4e:d2: f4:23:61:d7:a5:f8:5b:15:e0:2a:4f:4a:c6:aa:d5: bf:66:20:a8:bf:2f:a6:6b:3b:19:82:d3:7d:87:f6: 1b:cb:2a:ca:af:23:11:d9:29:d8:38:99:15:d0:c6: 8c:bf:15:fc:6d:65:d7:e0:77:29:10:42:8e:35:22: 0c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:8B:20:3F:F6:D0:88:61:F3:1B:90:8E:8F:A4:3A:60:A9:25:1B:9B X509v3 Authority Key Identifier: keyid:47:A9:D9:9A:85:11:F7:CE:54:F9:F7:1E:1E:F8:3E:F5:48:92:42:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b3c973d5-fe94-400d-bcbf-f233e8ac5537/0/47A9D99A8511F7CE54F9F71E1EF83EF548924274.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47A9D99A8511F7CE54F9F71E1EF83EF548924274.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b3c973d5-fe94-400d-bcbf-f233e8ac5537/0/3130332e37382e3234302e302f32342d3234203d3e20313530343836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.78.240.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:5e:79:4c:14:d0:f6:ea:11:da:c3:9b:1e:45:9c:f2:a3:34: a8:6c:57:4d:56:1e:a1:44:e2:a7:de:2c:5e:f9:af:df:ca:f4: fc:d5:83:b9:08:fc:bf:31:44:4d:69:07:0f:c9:f9:2e:8b:14: 93:f3:12:ac:68:3e:89:9e:7b:19:5c:43:3d:31:22:ef:bf:59: 04:1a:c2:a0:ef:12:78:e0:c4:6d:35:da:0a:fc:c4:e0:74:c9: ea:67:1c:4e:04:7a:93:3e:6b:3f:23:f7:79:45:2a:7c:83:ac: 5a:d3:59:99:3e:03:f7:3d:29:a5:13:69:8f:5f:61:96:7c:34: ee:9c:15:75:21:c5:ac:99:f7:01:85:d1:43:d3:f2:e0:b8:3c: f9:4d:02:9b:93:5d:c5:87:4e:a1:e8:71:69:23:95:e8:3f:9a: 00:26:bb:68:d5:07:8c:47:6c:b4:d1:e5:40:42:f6:ff:b9:83: a5:bb:72:de:99:a0:5d:c0:cc:14:41:d2:b9:ac:62:70:6d:57: 79:75:17:eb:68:a0:16:8b:85:60:be:84:df:d2:f9:b4:7b:a6: 26:16:a9:50:45:6e:d4:92:1f:87:6f:73:22:06:b4:c8:62:2f: ad:90:8d:ca:cd:b8:01:e2:1d:b2:58:eb:90:b5:64:43:6a:db: 5f:b5:75:1f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdiSkoCpMSN1Fe+0ocGz2POJwZ/MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDdBOUQ5OUE4NTExRjdDRTU0RjlGNzFFMUVGODNFRjU0 ODkyNDI3NDAeFw0yNDEwMzAxMDU1MDBaFw0yNTEwMjkxMTAwMDBaMDMxMTAvBgNV BAMTKDFDOEIyMDNGRjZEMDg4NjFGMzFCOTA4RThGQTQzQTYwQTkyNTFCOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjTYfIxJVA/uKhxJ+myXRuQMud hv3XAVT5Y4NZZdlfvtP3kDagr+/f+4G7C9gC9l8OHpY6WNljyK24AMqV8CjQ19iP Za4iMeHelhfkLrXS5/TDd2wQbqQfRMIbSdjkL1vh/0qbrIgf3xj3yiqEx/3Bh8OT C1KvbcjvFmt3KC9bZhb9QBCjwumBcyKIedR5jHgeTy4HzKFf4YFTom8zfBaPhd8O kI7i4BYNb0b5iMJWDOahjEsh6mPnVBK/6tDFgUxO0vQjYdel+FsV4CpPSsaq1b9m IKi/L6ZrOxmC032H9hvLKsqvIxHZKdg4mRXQxoy/FfxtZdfgdykQQo41Igy3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUHIsgP/bQiGHzG5COj6Q6YKklG5swHwYDVR0j BBgwFoAUR6nZmoUR985U+fceHvg+9UiSQnQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i M2M5NzNkNS1mZTk0LTQwMGQtYmNiZi1mMjMzZThhYzU1MzcvMC80N0E5RDk5QTg1 MTFGN0NFNTRGOUY3MUUxRUY4M0VGNTQ4OTI0Mjc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDdBOUQ5OUE4NTExRjdDRTU0RjlGNzFFMUVGODNFRjU0ODky NDI3NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzYzk3M2Q1LWZlOTQtNDAwZC1i Y2JmLWYyMzNlOGFjNTUzNy8wLzMxMzAzMzJlMzczODJlMzIzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzQzODM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ07wMA0GCSqG SIb3DQEBCwUAA4IBAQAKXnlMFND26hHaw5seRZzyozSobFdNVh6hROKn3ixe+a/f yvT81YO5CPy/MURNaQcPyfkuixST8xKsaD6JnnsZXEM9MSLvv1kEGsKg7xJ44MRt NdoK/MTgdMnqZxxOBHqTPms/I/d5RSp8g6xa01mZPgP3PSmlE2mPX2GWfDTunBV1 IcWsmfcBhdFD0/LguDz5TQKbk13Fh06h6HFpI5XoP5oAJrto1QeMR2y00eVAQvb/ uYOlu3LemaBdwMwUQdK5rGJwbVd5dRfraKAWi4VgvoTf0vm0e6YmFqlQRW7Ukh+H b3MiBrTIYi+tkI3KzbgB4h2yWOuQtWRDattftXUf -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org