$ rpki-client -vvf repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3130332e32342e35372e302f32342d3234203d3e203436303532.roa File: 3130332e32342e35372e302f32342d3234203d3e203436303532.roa (raw, json) Hash identifier: WgrIRzdaFJ0g4e27LMgAxhh+yicucERWndK+pSX36cg= Subject key identifier: D8:57:05:78:1A:EF:C1:99:C6:02:C7:04:20:AB:2B:9F:46:F0:72:B1 Certificate issuer: /CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Certificate serial: 03B743B0E271EAEA305AAD809EC9F2916C749DDA Authority key identifier: 3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3130332e32342e35372e302f32342d3234203d3e203436303532.roa Signing time: Thu 26 Sep 2024 06:00:00 +0000 ROA not before: Thu 26 Sep 2024 05:55:00 +0000 ROA not after: Thu 25 Sep 2025 06:00:00 +0000 asID: 46052 IP address blocks: 103.24.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:b7:43:b0:e2:71:ea:ea:30:5a:ad:80:9e:c9:f2:91:6c:74:9d:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Validity Not Before: Sep 26 05:55:00 2024 GMT Not After : Sep 25 06:00:00 2025 GMT Subject: CN=D85705781AEFC199C602C70420AB2B9F46F072B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:ec:94:14:36:04:c7:b3:7d:7d:28:c6:7b:c1: 72:4e:68:d0:1c:bf:7a:40:26:d9:68:ae:41:3f:f2: e6:b4:4b:74:c9:67:e0:03:88:c6:ef:7c:08:29:48: 46:23:9b:2a:b6:7c:91:a0:d1:16:42:4f:f0:75:9a: 03:09:da:c9:eb:03:26:b8:e0:fe:af:28:34:6c:26: 67:84:de:e6:63:2e:66:2a:e1:31:b0:a2:e5:fe:15: da:1b:af:a6:37:a6:4a:c6:68:dc:8a:1d:ba:bb:99: 02:ad:1f:6b:98:08:8c:ec:41:43:6f:4f:cd:7f:5c: 19:b4:cd:db:3f:c0:9b:41:4b:78:87:64:8f:df:51: cd:94:d6:fb:72:7f:ad:38:42:59:15:c2:26:81:6f: f8:fe:ae:77:ff:b9:0d:20:88:ed:bf:f6:ba:41:46: 5a:0c:c7:19:8a:b2:80:13:82:5c:53:15:ff:8d:6c: fc:0f:d1:f3:53:fd:70:45:0a:6b:04:43:c5:4a:8b: 9b:ad:21:93:0a:44:ff:3e:b8:ab:d2:b6:a3:1b:db: f9:b6:3a:6b:45:c4:16:d8:1b:8e:4f:d3:f1:b3:d9: 18:47:1d:f0:7c:cf:29:d7:15:f3:c6:62:f2:b4:95: 8e:1a:23:1d:3a:d3:4b:c7:23:96:99:85:17:92:3d: 34:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:57:05:78:1A:EF:C1:99:C6:02:C7:04:20:AB:2B:9F:46:F0:72:B1 X509v3 Authority Key Identifier: keyid:3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3130332e32342e35372e302f32342d3234203d3e203436303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.57.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:4f:bd:e5:47:63:c3:dc:6a:80:cf:e2:9e:77:24:30:1d:2e: b7:41:04:2d:c7:07:5a:e0:42:8a:b1:90:01:d4:3f:1a:7f:e2: 27:64:f5:fe:40:9d:c6:e3:24:21:1a:e4:c2:e5:5b:f0:55:3d: b2:70:f4:e7:29:7e:df:5f:8e:7b:88:4e:a0:37:6f:64:79:3e: 06:d9:d4:2a:3e:e8:7c:fb:6b:fe:8c:4e:37:c7:24:d3:d6:84: 80:35:5b:33:74:51:06:a4:b0:a1:fa:ac:c1:4d:80:b2:ec:ea: 3e:9b:3b:a4:42:e1:a9:71:81:f3:1e:60:00:20:b2:59:1e:27: ad:e1:72:2a:b3:1e:ae:93:1e:b6:74:3a:c5:8b:d8:a1:ee:9e: 0a:29:f4:16:36:10:58:da:da:47:da:3e:9e:9d:98:a3:44:cf: d3:d6:68:f2:18:d7:22:8d:5d:09:ff:57:e0:17:4e:cb:e8:72: ec:05:26:30:db:e5:77:15:d2:32:43:72:ef:ce:77:89:a5:44: ea:eb:60:4d:fb:c2:03:04:61:36:69:53:b5:2e:89:01:ba:a6: a5:46:1b:03:39:44:13:9a:ab:61:d5:67:cd:a5:c1:3c:be:c1: df:4f:10:d4:91:9e:90:2a:81:cf:14:80:94:c4:fb:87:d3:eb: 82:9a:2a:58 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUA7dDsOJx6uowWq2AnsnykWx0ndowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFE QzlBMTI2OTAeFw0yNDA5MjYwNTU1MDBaFw0yNTA5MjUwNjAwMDBaMDMxMTAvBgNV BAMTKEQ4NTcwNTc4MUFFRkMxOTlDNjAyQzcwNDIwQUIyQjlGNDZGMDcyQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDt7JQUNgTHs319KMZ7wXJOaNAc v3pAJtlorkE/8ua0S3TJZ+ADiMbvfAgpSEYjmyq2fJGg0RZCT/B1mgMJ2snrAya4 4P6vKDRsJmeE3uZjLmYq4TGwouX+Fdobr6Y3pkrGaNyKHbq7mQKtH2uYCIzsQUNv T81/XBm0zds/wJtBS3iHZI/fUc2U1vtyf604QlkVwiaBb/j+rnf/uQ0giO2/9rpB RloMxxmKsoATglxTFf+NbPwP0fNT/XBFCmsEQ8VKi5utIZMKRP8+uKvStqMb2/m2 OmtFxBbYG45P0/Gz2RhHHfB8zynXFfPGYvK0lY4aIx0600vHI5aZhReSPTRRAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU2FcFeBrvwZnGAscEIKsrn0bwcrEwHwYDVR0j BBgwFoAUPRPG+52yLOE0cGMlNXwg4dyaEmkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDFlZTVlMi0zMzhjLTRkMjAtODA3ZS1lNTBiNzU1ODNkYjgvMC8zRDEzQzZGQjlE QjIyQ0UxMzQ3MDYzMjUzNTdDMjBFMURDOUExMjY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFEQzlB MTI2OS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkMWVlNWUyLTMzOGMtNGQyMC04 MDdlLWU1MGI3NTU4M2RiOC8wLzMxMzAzMzJlMzIzNDJlMzUzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM0MzYzMDM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnGDkwDQYJKoZIhvcN AQELBQADggEBAJpPveVHY8PcaoDP4p53JDAdLrdBBC3HB1rgQoqxkAHUPxp/4idk 9f5AncbjJCEa5MLlW/BVPbJw9Ocpft9fjnuITqA3b2R5PgbZ1Co+6Hz7a/6MTjfH JNPWhIA1WzN0UQaksKH6rMFNgLLs6j6bO6RC4alxgfMeYAAgslkeJ63hciqzHq6T HrZ0OsWL2KHungop9BY2EFja2kfaPp6dmKNEz9PWaPIY1yKNXQn/V+AXTsvocuwF JjDb5XcV0jJDcu/Od4mlROrrYE37wgMEYTZpU7UuiQG6pqVGGwM5RBOaq2HVZ82l wTy+wd9PENSRnpAqgc8UgJTE+4fT64KaKlg= -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:51 2024 by rpki-client on console-fra.rpki-client.org