$ rpki-client -vvf repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/3130332e34312e3234372e302f32342d3234203d3e20313333383032.roa File: 3130332e34312e3234372e302f32342d3234203d3e20313333383032.roa (raw, json) Hash identifier: SE91KCthotRrX/AsP1qesUPqNUCPFEcuGMcgZjQqeBU= Subject key identifier: 93:3C:89:FE:EA:6C:6A:11:8C:11:10:2A:F9:EF:9A:61:75:9C:F7:F4 Certificate issuer: /CN=BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D Certificate serial: 1DAB357D123C926AF760277B6A82D110F09B7F86 Authority key identifier: BD:8C:DE:6F:E3:DF:9F:A1:ED:A6:CE:A4:62:F7:7E:F6:04:78:99:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/3130332e34312e3234372e302f32342d3234203d3e20313333383032.roa Signing time: Mon 01 Jul 2024 01:04:56 +0000 ROA not before: Mon 01 Jul 2024 00:59:56 +0000 ROA not after: Mon 30 Jun 2025 01:04:56 +0000 asID: 133802 IP address blocks: 103.41.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.crl rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:ab:35:7d:12:3c:92:6a:f7:60:27:7b:6a:82:d1:10:f0:9b:7f:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D Validity Not Before: Jul 1 00:59:56 2024 GMT Not After : Jun 30 01:04:56 2025 GMT Subject: CN=933C89FEEA6C6A118C11102AF9EF9A61759CF7F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:0b:72:5d:3a:31:77:24:1c:4c:92:69:23:8b: 79:87:2a:57:25:e0:00:e2:4f:d1:c4:4b:2d:25:5e: 4e:d1:37:b9:f4:77:e3:82:cb:a8:d3:11:17:0e:7b: d6:5c:50:47:a5:50:0e:1e:2c:cd:f7:9a:ab:99:3d: 70:61:bd:01:73:06:62:46:14:c8:b6:66:30:f5:3c: 5a:22:33:3a:21:de:43:fa:39:75:71:08:95:23:10: 02:2f:26:c8:55:45:63:58:14:42:01:ee:db:79:cb: ab:13:6d:40:95:66:58:57:be:cc:31:91:18:cd:06: a1:f6:9d:05:2a:82:94:01:43:23:b2:ca:02:b8:ce: 36:ed:62:1d:4d:c9:bf:31:c1:ef:f9:a2:eb:47:ad: ee:c8:61:c5:01:72:9f:ac:d8:b1:9b:ab:8e:93:e2: 9a:f8:6d:ad:05:3c:3d:3e:67:61:f3:d6:f4:6a:24: d9:20:05:e0:35:b2:27:aa:20:4c:07:b0:36:a1:f0: c6:a6:aa:56:1c:d8:e3:79:b2:89:13:60:bf:ed:b7: 60:8a:10:bb:c3:40:98:cc:19:72:e3:06:e1:5d:9e: 4b:2a:2e:6a:e0:b9:d6:bb:b9:18:eb:34:87:62:c5: 5b:42:16:87:52:ff:27:4a:af:cb:54:95:75:6f:84: 61:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:3C:89:FE:EA:6C:6A:11:8C:11:10:2A:F9:EF:9A:61:75:9C:F7:F4 X509v3 Authority Key Identifier: keyid:BD:8C:DE:6F:E3:DF:9F:A1:ED:A6:CE:A4:62:F7:7E:F6:04:78:99:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/3130332e34312e3234372e302f32342d3234203d3e20313333383032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.41.247.0/24 Signature Algorithm: sha256WithRSAEncryption 08:d5:93:13:fb:a0:f7:de:45:2c:6d:6c:01:ab:97:6b:da:d5: 15:e6:1e:da:07:50:3d:83:db:2d:07:74:08:06:89:45:b1:a7: ee:64:bb:f7:00:c8:a6:94:55:b8:04:0a:8f:6c:db:bb:26:76: f6:a7:80:58:0e:9c:76:d4:f8:3a:26:66:61:9f:e2:cf:cf:bd: 95:9b:4d:bf:b9:0b:26:14:0d:a4:ab:33:b2:ec:89:c5:e6:8e: 8e:f6:23:94:a0:66:3a:e2:cc:40:c8:79:80:45:a6:99:5f:9c: 6f:aa:95:98:89:7f:1f:ad:94:30:dd:8a:d0:ba:02:71:2e:97: 11:82:4d:c3:73:50:bc:99:c0:88:35:15:de:38:7a:fd:1d:aa: 67:7d:31:b5:97:c3:2c:0f:eb:13:65:ce:ab:be:93:e4:60:3f: 18:10:b9:a0:23:c4:5b:44:f6:45:29:90:1d:b3:97:82:76:11: 72:cf:41:ef:0a:d9:65:82:a9:33:b5:2e:c3:02:46:5c:5d:2a: 2a:98:23:7f:fc:be:44:5d:c2:a2:25:46:bc:89:ec:0b:17:09: 68:bd:25:98:55:e5:ae:e8:e2:2e:9b:62:1a:82:e7:15:4d:c8: 3b:11:4c:be:82:55:cf:82:3c:41:6a:89:83:c8:17:eb:71:27: 20:5c:4f:71 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHas1fRI8kmr3YCd7aoLREPCbf4YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4Q0RFNkZFM0RGOUZBMUVEQTZDRUE0NjJGNzdFRjYw NDc4OTkwRDAeFw0yNDA3MDEwMDU5NTZaFw0yNTA2MzAwMTA0NTZaMDMxMTAvBgNV BAMTKDkzM0M4OUZFRUE2QzZBMTE4QzExMTAyQUY5RUY5QTYxNzU5Q0Y3RjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfC3JdOjF3JBxMkmkji3mHKlcl 4ADiT9HESy0lXk7RN7n0d+OCy6jTERcOe9ZcUEelUA4eLM33mquZPXBhvQFzBmJG FMi2ZjD1PFoiMzoh3kP6OXVxCJUjEAIvJshVRWNYFEIB7tt5y6sTbUCVZlhXvswx kRjNBqH2nQUqgpQBQyOyygK4zjbtYh1Nyb8xwe/5outHre7IYcUBcp+s2LGbq46T 4pr4ba0FPD0+Z2Hz1vRqJNkgBeA1sieqIEwHsDah8MamqlYc2ON5sokTYL/tt2CK ELvDQJjMGXLjBuFdnksqLmrguda7uRjrNIdixVtCFodS/ydKr8tUlXVvhGHRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkzyJ/upsahGMERAq+e+aYXWc9/QwHwYDVR0j BBgwFoAUvYzeb+Pfn6Htps6kYvd+9gR4mQ0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTljZmQwNC02OWQwLTRkNGMtOGQwOS0yZDIyMTM4NDJjMmMvMC9CRDhDREU2RkUz REY5RkExRURBNkNFQTQ2MkY3N0VGNjA0Nzg5OTBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4Q0RFNkZFM0RGOUZBMUVEQTZDRUE0NjJGNzdFRjYwNDc4 OTkwRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1OWNmZDA0LTY5ZDAtNGQ0Yy04 ZDA5LTJkMjIxMzg0MmMyYy8wLzMxMzAzMzJlMzQzMTJlMzIzNDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzgzMDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZyn3MA0GCSqG SIb3DQEBCwUAA4IBAQAI1ZMT+6D33kUsbWwBq5dr2tUV5h7aB1A9g9stB3QIBolF safuZLv3AMimlFW4BAqPbNu7Jnb2p4BYDpx21Pg6JmZhn+LPz72Vm02/uQsmFA2k qzOy7InF5o6O9iOUoGY64sxAyHmARaaZX5xvqpWYiX8frZQw3YrQugJxLpcRgk3D c1C8mcCINRXeOHr9HapnfTG1l8MsD+sTZc6rvpPkYD8YELmgI8RbRPZFKZAds5eC dhFyz0HvCtllgqkztS7DAkZcXSoqmCN//L5EXcKiJUa8iewLFwlovSWYVeWu6OIu m2IagucVTcg7EUy+glXPgjxBaomDyBfrcScgXE9x -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:48 2024 by rpki-client on console-fra.rpki-client.org