$ rpki-client -vvf repo-rpki.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/3130332e3135382e3130332e302f32342d3234203d3e203435333137.roa File: 3130332e3135382e3130332e302f32342d3234203d3e203435333137.roa (raw, json) Hash identifier: 3JdVRKPzu9yTBFIl95w9qsQ9IgBVgcqYpN67jfM6hwA= Subject key identifier: C8:CC:6A:46:63:FE:0C:09:A6:FF:7D:90:FF:2A:EF:09:08:4C:BA:3F Certificate issuer: /CN=2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9 Certificate serial: 54AC33AC513D8F78BCDDFEDFFC0DE9B2D30A1411 Authority key identifier: 2E:EF:78:44:53:62:AF:4F:7C:AE:B2:41:FA:E6:B9:74:7E:C2:D2:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/3130332e3135382e3130332e302f32342d3234203d3e203435333137.roa Signing time: Thu 04 Jul 2024 04:03:04 +0000 ROA not before: Thu 04 Jul 2024 03:58:04 +0000 ROA not after: Thu 03 Jul 2025 04:03:04 +0000 asID: 45317 IP address blocks: 103.158.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9.crl rsync://repo-rpki.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:ac:33:ac:51:3d:8f:78:bc:dd:fe:df:fc:0d:e9:b2:d3:0a:14:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9 Validity Not Before: Jul 4 03:58:04 2024 GMT Not After : Jul 3 04:03:04 2025 GMT Subject: CN=C8CC6A4663FE0C09A6FF7D90FF2AEF09084CBA3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:55:a3:35:d0:57:74:47:d2:e8:92:f4:9c:94: 5c:99:12:37:72:ff:a1:27:07:70:6f:19:6d:4b:01: e3:a4:9e:c1:fa:94:ff:f0:d5:d6:8c:de:59:25:3a: 25:cf:8b:a5:c6:31:a9:ad:25:73:8d:5b:21:19:5e: 0f:ab:d6:9c:ef:c1:12:42:af:20:c8:b2:97:41:ed: 1b:fc:98:71:03:f8:c3:b1:ba:10:ad:0f:5e:1a:c2: 01:60:ac:b9:0b:b9:e6:90:29:4b:01:cb:26:c8:ca: 8c:47:66:5d:05:65:34:37:18:55:41:82:49:2e:66: 20:63:b0:bf:6f:39:0c:8d:1d:21:b5:0e:91:6e:64: 3f:39:25:15:f8:18:47:27:df:f9:af:96:0b:42:7f: 92:f5:c7:b7:d1:69:dd:51:6e:66:70:b2:6d:6a:7c: fc:09:f8:29:9b:f2:38:be:40:9e:6d:59:ea:26:c5: 00:52:6b:42:e6:22:ac:c9:02:ab:cd:e2:e1:46:ef: 07:a4:99:b7:41:4e:59:bd:7c:e3:6a:a4:e6:0e:55: 40:15:68:09:ca:2a:9e:a1:bf:83:67:a5:57:05:da: 9f:cf:54:2b:34:89:99:86:c1:43:c2:e3:50:e7:18: 69:70:5c:e5:94:8c:a2:3f:9e:90:46:fd:ea:f8:06: 40:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:CC:6A:46:63:FE:0C:09:A6:FF:7D:90:FF:2A:EF:09:08:4C:BA:3F X509v3 Authority Key Identifier: keyid:2E:EF:78:44:53:62:AF:4F:7C:AE:B2:41:FA:E6:B9:74:7E:C2:D2:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2EEF78445362AF4F7CAEB241FAE6B9747EC2D2F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/3130332e3135382e3130332e302f32342d3234203d3e203435333137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.103.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:f8:ae:b9:b7:01:67:96:51:8e:a0:b7:14:ae:9c:7d:d4:25: f1:ba:07:be:03:89:92:97:14:2b:b0:be:8b:e1:1c:c9:ca:f2: 2a:97:86:96:ac:8b:95:99:de:93:86:81:45:13:8f:9c:cd:a8: 1d:19:a9:c1:4b:03:df:6e:19:fb:41:b4:cc:55:f5:eb:ed:a2: 8e:9e:22:04:df:a0:5e:d9:c4:9a:54:95:87:28:b7:a4:e5:21: 14:26:66:b8:db:93:65:8b:02:c4:71:a1:fd:87:17:84:09:21: 0f:b7:da:53:64:61:43:d5:fe:15:5d:68:bc:fb:b1:d4:4a:39: 41:b4:89:a9:1c:57:b0:e5:30:ee:ae:e3:fc:13:e8:fa:c0:fc: 2f:e9:2b:bc:d6:7a:21:ce:5a:14:0b:78:6b:d1:74:83:00:da: 0e:6a:d1:89:6f:d0:f1:bc:46:7c:24:22:5a:6c:b7:3f:d3:c9: a5:37:18:65:c7:cc:0c:9d:8f:ac:78:92:35:51:29:5d:ea:a0: a3:ce:c6:bf:a2:0b:ad:29:fe:ae:23:60:50:47:f1:d9:41:46: e1:c5:fc:f5:8b:dc:b9:e1:74:e0:ac:16:51:f2:61:4f:0c:41: 9a:38:2d:c9:e4:90:eb:05:a8:23:8d:a9:91:94:ec:f7:97:9e: c0:29:e2:46 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVKwzrFE9j3i83f7f/A3pstMKFBEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkVFRjc4NDQ1MzYyQUY0RjdDQUVCMjQxRkFFNkI5NzQ3 RUMyRDJGOTAeFw0yNDA3MDQwMzU4MDRaFw0yNTA3MDMwNDAzMDRaMDMxMTAvBgNV BAMTKEM4Q0M2QTQ2NjNGRTBDMDlBNkZGN0Q5MEZGMkFFRjA5MDg0Q0JBM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1VaM10Fd0R9LokvSclFyZEjdy /6EnB3BvGW1LAeOknsH6lP/w1daM3lklOiXPi6XGMamtJXONWyEZXg+r1pzvwRJC ryDIspdB7Rv8mHED+MOxuhCtD14awgFgrLkLueaQKUsByybIyoxHZl0FZTQ3GFVB gkkuZiBjsL9vOQyNHSG1DpFuZD85JRX4GEcn3/mvlgtCf5L1x7fRad1RbmZwsm1q fPwJ+Cmb8ji+QJ5tWeomxQBSa0LmIqzJAqvN4uFG7wekmbdBTlm9fONqpOYOVUAV aAnKKp6hv4NnpVcF2p/PVCs0iZmGwUPC41DnGGlwXOWUjKI/npBG/er4BkApAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUyMxqRmP+DAmm/32Q/yrvCQhMuj8wHwYDVR0j BBgwFoAULu94RFNir098rrJB+ua5dH7C0vkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NzI0ZTQ1Yi0yNTRiLTRmZWItYmY4ZS03YmYxMjA5MTJhZjcvMC8yRUVGNzg0NDUz NjJBRjRGN0NBRUIyNDFGQUU2Qjk3NDdFQzJEMkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkVFRjc4NDQ1MzYyQUY0RjdDQUVCMjQxRkFFNkI5NzQ3RUMy RDJGOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3MjRlNDViLTI1NGItNGZlYi1i ZjhlLTdiZjEyMDkxMmFmNy8wLzMxMzAzMzJlMzEzNTM4MmUzMTMwMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzMzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ55nMA0GCSqG SIb3DQEBCwUAA4IBAQBt+K65twFnllGOoLcUrpx91CXxuge+A4mSlxQrsL6L4RzJ yvIql4aWrIuVmd6ThoFFE4+czagdGanBSwPfbhn7QbTMVfXr7aKOniIE36Be2cSa VJWHKLek5SEUJma425NliwLEcaH9hxeECSEPt9pTZGFD1f4VXWi8+7HUSjlBtImp HFew5TDuruP8E+j6wPwv6Su81nohzloUC3hr0XSDANoOatGJb9DxvEZ8JCJabLc/ 08mlNxhlx8wMnY+seJI1USld6qCjzsa/ogutKf6uI2BQR/HZQUbhxfz1i9y54XTg rBZR8mFPDEGaOC3J5JDrBagjjamRlOz3l57AKeJG -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org