$ rpki-client -vvf repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233352e302f32342d3234203d3e20313531303033.roa File: 3130332e3231332e3233352e302f32342d3234203d3e20313531303033.roa (raw, json) Hash identifier: dmZ3vbv4CTw1sNyie5hOUyqVpFwSiLEwTn7yV4yF4dM= Subject key identifier: 60:4F:BB:45:E1:88:09:7A:E7:23:24:6B:92:1B:66:35:44:7B:60:17 Certificate issuer: /CN=846D8A4B978C6F595D44EACDB8259295CD43C499 Certificate serial: 5DFB2784DC00626C05F09189FABEED8AB52983F1 Authority key identifier: 84:6D:8A:4B:97:8C:6F:59:5D:44:EA:CD:B8:25:92:95:CD:43:C4:99 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233352e302f32342d3234203d3e20313531303033.roa Signing time: Mon 29 Jan 2024 14:28:28 +0000 ROA not before: Mon 29 Jan 2024 14:23:28 +0000 ROA not after: Mon 27 Jan 2025 14:28:28 +0000 asID: 151003 IP address blocks: 103.213.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.crl rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:fb:27:84:dc:00:62:6c:05:f0:91:89:fa:be:ed:8a:b5:29:83:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=846D8A4B978C6F595D44EACDB8259295CD43C499 Validity Not Before: Jan 29 14:23:28 2024 GMT Not After : Jan 27 14:28:28 2025 GMT Subject: CN=604FBB45E188097AE723246B921B6635447B6017 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:b0:01:08:a6:99:a5:e1:c0:72:b3:40:99:b7: 6b:d4:0c:6e:84:76:89:83:31:06:f3:9a:f8:50:29: 25:4b:b7:be:f3:01:1e:88:21:c6:e5:10:4b:2d:fa: 09:eb:5e:17:5b:a0:0c:2b:ba:94:3d:21:89:7c:45: 8c:5d:04:fb:4f:95:d3:7a:d6:f4:85:7a:8e:fd:78: 1c:fb:71:0e:3d:6a:49:0d:d4:e0:5c:6d:d0:8a:1b: a3:d0:7c:4f:36:fc:be:60:3a:70:1b:71:22:2b:ce: 26:46:da:a7:49:21:b0:24:bf:3e:21:22:3e:29:e4: 39:fd:d8:f4:14:53:27:7e:80:24:05:05:77:2c:1b: de:01:84:15:11:e6:9f:90:66:bd:66:a5:74:2f:34: 46:08:78:55:2c:0a:09:f9:42:d8:fc:b3:31:f0:6e: 1c:33:88:dd:5c:56:a5:b8:12:7b:2d:45:49:89:fd: f8:d1:2e:dc:36:4e:d2:fa:cc:02:09:68:f1:ad:cd: 5d:b1:8a:dd:fb:be:aa:99:03:73:96:94:00:10:77: bb:cc:53:af:81:a8:4e:e5:52:b3:5b:3b:1d:2f:a6: 45:8f:c3:82:22:96:c4:80:c5:b3:6f:f6:a4:43:78: 71:bc:e8:3c:ef:f0:21:1b:4a:0e:0b:38:6f:5f:78: cf:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:4F:BB:45:E1:88:09:7A:E7:23:24:6B:92:1B:66:35:44:7B:60:17 X509v3 Authority Key Identifier: keyid:84:6D:8A:4B:97:8C:6F:59:5D:44:EA:CD:B8:25:92:95:CD:43:C4:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/3130332e3231332e3233352e302f32342d3234203d3e20313531303033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.213.235.0/24 Signature Algorithm: sha256WithRSAEncryption 30:86:b6:88:bb:0e:d0:69:62:03:ab:9f:cf:91:1c:4f:1e:08: 6f:31:3d:48:c6:8d:7b:a1:aa:41:13:cc:97:66:e9:3f:8a:6c: c0:d3:60:02:68:5b:0d:1a:ee:ab:d7:58:c4:f2:37:e4:15:8f: 70:57:26:6d:7d:c8:0a:db:c4:3a:13:40:18:12:20:94:3f:85: 77:da:7c:fc:49:54:2d:eb:00:76:2e:96:b0:8c:e3:73:80:4f: a6:21:de:fb:5a:e3:b1:98:15:d9:32:3b:39:f7:a2:70:fd:47: 5f:d7:35:66:50:41:ce:3b:51:67:79:e2:bf:e2:fc:05:db:99: 5d:bf:1f:a6:7a:37:66:65:16:ab:f1:4d:b8:a4:8d:4b:5a:3e: fb:fa:e4:94:5c:38:82:fd:05:32:3b:3d:3d:ff:63:5e:87:a3: 81:d0:bc:91:18:7b:58:06:5f:23:bb:f2:a4:60:11:5a:83:8c: 59:5b:36:3e:e7:3e:b6:e3:7d:ed:5a:8e:bc:47:f4:24:69:12: 4e:60:b8:05:c5:63:b2:9d:bd:41:75:4d:39:2b:ec:d4:02:38: 6d:15:3a:24:a2:e0:88:cd:ab:1b:f3:9a:46:0a:6a:50:71:2c: 09:e3:ca:2b:39:ba:58:37:cb:cc:23:b2:3b:bd:2a:ae:9c:e7: 3f:2e:f7:58 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXfsnhNwAYmwF8JGJ+r7tirUpg/EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ2RDhBNEI5NzhDNkY1OTVENDRFQUNEQjgyNTkyOTVD RDQzQzQ5OTAeFw0yNDAxMjkxNDIzMjhaFw0yNTAxMjcxNDI4MjhaMDMxMTAvBgNV BAMTKDYwNEZCQjQ1RTE4ODA5N0FFNzIzMjQ2QjkyMUI2NjM1NDQ3QjYwMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZsAEIppml4cBys0CZt2vUDG6E domDMQbzmvhQKSVLt77zAR6IIcblEEst+gnrXhdboAwrupQ9IYl8RYxdBPtPldN6 1vSFeo79eBz7cQ49akkN1OBcbdCKG6PQfE82/L5gOnAbcSIrziZG2qdJIbAkvz4h Ij4p5Dn92PQUUyd+gCQFBXcsG94BhBUR5p+QZr1mpXQvNEYIeFUsCgn5Qtj8szHw bhwziN1cVqW4EnstRUmJ/fjRLtw2TtL6zAIJaPGtzV2xit37vqqZA3OWlAAQd7vM U6+BqE7lUrNbOx0vpkWPw4IilsSAxbNv9qRDeHG86Dzv8CEbSg4LOG9feM/tAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUYE+7ReGICXrnIyRrkhtmNUR7YBcwHwYDVR0j BBgwFoAUhG2KS5eMb1ldROrNuCWSlc1DxJkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDdmYTIxMC01ZjI1LTRmMGItODlhNS03ZDAwYTM1NGE5MDcvMC84NDZEOEE0Qjk3 OEM2RjU5NUQ0NEVBQ0RCODI1OTI5NUNENDNDNDk5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ2RDhBNEI5NzhDNkY1OTVENDRFQUNEQjgyNTkyOTVDRDQz QzQ5OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkN2ZhMjEwLTVmMjUtNGYwYi04 OWE1LTdkMDBhMzU0YTkwNy8wLzMxMzAzMzJlMzIzMTMzMmUzMjMzMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzMDMwMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn1eswDQYJ KoZIhvcNAQELBQADggEBADCGtoi7DtBpYgOrn8+RHE8eCG8xPUjGjXuhqkETzJdm 6T+KbMDTYAJoWw0a7qvXWMTyN+QVj3BXJm19yArbxDoTQBgSIJQ/hXfafPxJVC3r AHYulrCM43OAT6Yh3vta47GYFdkyOzn3onD9R1/XNWZQQc47UWd54r/i/AXbmV2/ H6Z6N2ZlFqvxTbikjUtaPvv65JRcOIL9BTI7PT3/Y16Ho4HQvJEYe1gGXyO78qRg EVqDjFlbNj7nPrbjfe1ajrxH9CRpEk5guAXFY7KdvUF1TTkr7NQCOG0VOiSi4IjN qxvzmkYKalBxLAnjyis5ulg3y8wjsju9Kq6c5z8u91g= -----END CERTIFICATE-----Generated at Mon Nov 25 09:00:39 2024 by rpki-client on console-fra.rpki-client.org