$ rpki-client -vvf repo-rpki.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/3130332e3135382e3130322e302f32342d3234203d3e20313431313239.roa File: 3130332e3135382e3130322e302f32342d3234203d3e20313431313239.roa (raw, json) Hash identifier: cbP7WHAXyG0TWfAW6rQSYBQEqYCmWK7UJ25vzFsky7g= Subject key identifier: BF:78:06:C1:CD:95:A0:D4:A9:4C:BB:C9:39:2F:60:C4:00:29:AC:45 Certificate issuer: /CN=2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9 Certificate serial: 0F25E3AF518E6E7D079F110D4BA3256BBE1121D1 Authority key identifier: 2E:EF:78:44:53:62:AF:4F:7C:AE:B2:41:FA:E6:B9:74:7E:C2:D2:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/3130332e3135382e3130322e302f32342d3234203d3e20313431313239.roa Signing time: Thu 11 Apr 2024 06:00:01 +0000 ROA not before: Thu 11 Apr 2024 05:55:01 +0000 ROA not after: Thu 10 Apr 2025 06:00:01 +0000 asID: 141129 IP address blocks: 103.158.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9.crl rsync://repo-rpki.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:25:e3:af:51:8e:6e:7d:07:9f:11:0d:4b:a3:25:6b:be:11:21:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9 Validity Not Before: Apr 11 05:55:01 2024 GMT Not After : Apr 10 06:00:01 2025 GMT Subject: CN=BF7806C1CD95A0D4A94CBBC9392F60C40029AC45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:34:47:44:ee:2c:3d:2c:f7:13:b9:b0:b0:e9: 5e:74:5e:b6:4a:e9:43:0c:aa:97:3b:b4:d8:7e:1d: 67:e6:65:ce:7b:e0:f8:26:da:c9:93:0f:f2:76:8c: 41:49:a2:5a:56:66:2c:09:b3:1a:72:ff:b6:6c:da: 61:a8:0b:d7:1b:98:78:db:b3:03:ec:ef:0f:c8:21: 30:b6:36:ec:26:82:af:c6:1e:a7:6f:41:67:c8:30: 9e:22:69:65:de:39:d7:b3:37:c4:a6:cc:4b:1d:3c: f2:92:06:c9:90:1d:ec:e4:75:16:e8:15:fe:9c:84: ca:fd:00:8c:94:df:43:38:89:e5:82:5c:84:8c:8d: a6:17:bc:64:97:7e:b4:c4:0e:13:79:db:e9:28:bd: ac:be:cc:b2:e6:33:df:b1:4a:ce:04:c8:59:21:fa: b6:9e:5c:0e:51:5d:40:66:6f:3b:60:dd:ff:54:2e: ea:a7:dd:79:10:fb:5b:41:2b:35:84:ea:d5:21:0d: 43:6f:48:bc:3d:1a:1f:95:00:af:30:eb:4c:7a:16: 1c:e5:42:11:03:db:c4:65:95:83:b9:37:57:97:46: 3b:8f:c9:ee:28:20:b3:d8:da:a4:bd:6b:05:ee:0d: 9d:07:55:f3:f2:f1:6b:7b:d9:0d:69:c3:1a:8b:5d: c4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:78:06:C1:CD:95:A0:D4:A9:4C:BB:C9:39:2F:60:C4:00:29:AC:45 X509v3 Authority Key Identifier: keyid:2E:EF:78:44:53:62:AF:4F:7C:AE:B2:41:FA:E6:B9:74:7E:C2:D2:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/3130332e3135382e3130322e302f32342d3234203d3e20313431313239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.102.0/24 Signature Algorithm: sha256WithRSAEncryption 79:ac:b9:5f:97:7e:ad:36:ab:c4:7e:70:ae:dd:74:0a:f7:82: be:2c:ce:e7:57:c4:55:63:5e:7b:82:a3:29:ee:b3:2c:a2:ea: 06:08:dd:45:70:61:4a:56:fc:7d:01:f7:6b:75:11:0f:60:94: f4:7d:bf:80:60:2c:5d:d1:e3:0f:ce:65:5c:72:92:9d:2c:1e: 1e:e6:65:f5:24:64:76:a4:80:77:c6:ba:2b:ef:32:af:bd:3a: bc:bb:8a:6c:08:dc:17:1e:53:95:31:04:44:27:06:f0:7a:df: 96:f3:1b:a8:3f:f5:65:d8:f3:bd:59:d1:8c:67:3d:30:d3:66: 26:86:0c:9d:46:06:3e:13:20:dc:4c:23:19:39:52:fb:c4:2a: 81:ff:8a:dd:78:4d:40:5f:fb:4f:7e:77:2b:dc:9c:42:34:4a: 85:d7:8f:97:b0:69:56:93:c1:2e:df:af:93:a7:7c:e2:55:24: 00:d1:f9:fe:d6:19:ed:5a:ad:06:52:c8:65:12:e0:ff:2f:ce: ea:4a:0f:b6:7f:21:23:af:79:49:18:4f:70:12:e2:55:2d:62: 7e:a7:b7:22:17:af:9e:81:1f:bb:5e:a7:94:f0:d3:25:80:35: 60:a1:7c:65:56:11:16:ed:92:54:2f:74:64:d7:0e:9e:bb:71: d0:aa:eb:0a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDyXjr1GObn0HnxENS6Mla74RIdEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkVFRjc4NDQ1MzYyQUY0RjdDQUVCMjQxRkFFNkI5NzQ3 RUMyRDJGOTAeFw0yNDA0MTEwNTU1MDFaFw0yNTA0MTAwNjAwMDFaMDMxMTAvBgNV BAMTKEJGNzgwNkMxQ0Q5NUEwRDRBOTRDQkJDOTM5MkY2MEM0MDAyOUFDNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrNEdE7iw9LPcTubCw6V50XrZK 6UMMqpc7tNh+HWfmZc574Pgm2smTD/J2jEFJolpWZiwJsxpy/7Zs2mGoC9cbmHjb swPs7w/IITC2Nuwmgq/GHqdvQWfIMJ4iaWXeOdezN8SmzEsdPPKSBsmQHezkdRbo Ff6chMr9AIyU30M4ieWCXISMjaYXvGSXfrTEDhN52+kovay+zLLmM9+xSs4EyFkh +raeXA5RXUBmbztg3f9ULuqn3XkQ+1tBKzWE6tUhDUNvSLw9Gh+VAK8w60x6Fhzl QhED28RllYO5N1eXRjuPye4oILPY2qS9awXuDZ0HVfPy8Wt72Q1pwxqLXcRzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUv3gGwc2VoNSpTLvJOS9gxAAprEUwHwYDVR0j BBgwFoAULu94RFNir098rrJB+ua5dH7C0vkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NzI0ZTQ1Yi0yNTRiLTRmZWItYmY4ZS03YmYxMjA5MTJhZjcvMC8yRUVGNzg0NDUz NjJBRjRGN0NBRUIyNDFGQUU2Qjk3NDdFQzJEMkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkVFRjc4NDQ1MzYyQUY0RjdDQUVCMjQxRkFFNkI5NzQ3RUMy RDJGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3MjRlNDViLTI1NGItNGZlYi1i ZjhlLTdiZjEyMDkxMmFmNy8wLzMxMzAzMzJlMzEzNTM4MmUzMTMwMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMyMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnmYwDQYJ KoZIhvcNAQELBQADggEBAHmsuV+Xfq02q8R+cK7ddAr3gr4szudXxFVjXnuCoynu syyi6gYI3UVwYUpW/H0B92t1EQ9glPR9v4BgLF3R4w/OZVxykp0sHh7mZfUkZHak gHfGuivvMq+9Ory7imwI3BceU5UxBEQnBvB635bzG6g/9WXY871Z0YxnPTDTZiaG DJ1GBj4TINxMIxk5UvvEKoH/it14TUBf+09+dyvcnEI0SoXXj5ewaVaTwS7fr5On fOJVJADR+f7WGe1arQZSyGUS4P8vzupKD7Z/ISOveUkYT3AS4lUtYn6ntyIXr56B H7tep5Tw0yWANWChfGVWERbtklQvdGTXDp67cdCq6wo= -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org