$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa File: 3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa (raw, json) Hash identifier: OnBB+AVgOO2yluvkbnT8cnywdpmmnyLp0O1UDMPsJsk= Subject key identifier: C2:84:72:88:82:BC:B4:DC:9C:5A:E0:88:35:66:71:99:5B:A7:46:42 Certificate issuer: /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Certificate serial: 482E97B82B0C7C157C578559ADBB0C245C83EB93 Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa Signing time: Sun 18 Aug 2024 07:00:01 +0000 ROA not before: Sun 18 Aug 2024 06:55:01 +0000 ROA not after: Sun 17 Aug 2025 07:00:01 +0000 asID: 136119 IP address blocks: 103.94.168.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:2e:97:b8:2b:0c:7c:15:7c:57:85:59:ad:bb:0c:24:5c:83:eb:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Validity Not Before: Aug 18 06:55:01 2024 GMT Not After : Aug 17 07:00:01 2025 GMT Subject: CN=C284728882BCB4DC9C5AE088356671995BA74642 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d9:94:e7:0c:70:24:1b:93:92:df:f7:59:f4: 32:12:0d:fc:35:29:30:97:15:25:c6:69:34:38:6f: 2a:40:31:5b:a5:13:84:4a:16:0a:ba:15:80:18:95: 77:0e:33:4a:84:38:ab:ba:60:03:16:34:c5:27:d6: 6b:49:b1:54:c2:4d:17:41:7d:7a:ce:20:e8:4b:b7: 84:72:0f:48:54:d4:32:2a:ee:79:d0:74:1a:26:2f: 06:78:32:02:5f:fd:b5:38:d5:bb:4e:1d:b6:a4:66: af:e6:cc:40:fe:2b:c0:20:89:39:ff:97:7b:6a:d4: 89:76:4a:fb:b2:c4:17:40:3a:e7:64:a9:33:19:19: a9:08:fe:0b:11:96:8f:b6:15:40:c7:4c:87:c5:65: 74:63:3a:97:70:de:f5:b9:74:e5:76:37:40:00:8a: 1f:3b:2b:27:db:f4:c0:2a:1e:b5:3c:31:ae:5a:ac: 61:de:7c:bd:1d:e4:2f:dd:ae:e8:f6:ef:bc:c0:ae: 8c:97:f2:56:fd:83:a3:cb:02:03:08:0e:72:90:e4: 3c:21:73:5a:17:5f:a8:27:c4:19:10:28:c5:30:c2: d0:0a:aa:2f:a5:23:75:14:82:cc:48:b0:50:b2:98: db:81:0c:e0:60:7e:6f:3f:22:69:7c:86:06:e3:fe: 2f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:84:72:88:82:BC:B4:DC:9C:5A:E0:88:35:66:71:99:5B:A7:46:42 X509v3 Authority Key Identifier: keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.94.168.0/22 Signature Algorithm: sha256WithRSAEncryption 32:d2:fa:ce:01:62:01:b2:58:b4:bd:cf:2f:6c:fd:19:0a:e8: df:62:16:5f:55:ab:bc:4d:3f:1c:00:2e:3b:81:60:f9:2c:51: 11:ad:a5:2b:dd:fd:12:20:3e:ee:d5:3f:c9:89:69:d0:68:1f: 92:11:f3:6a:b2:74:33:a1:2d:64:bf:6a:07:47:85:32:a3:9e: ee:62:d6:dc:75:d8:bc:c4:7e:d8:dd:53:03:eb:77:46:15:2a: f7:a8:91:a4:2d:a7:42:a7:31:3a:47:43:94:79:0a:51:ea:2e: eb:8b:6e:36:58:39:4b:a1:7f:d8:87:d8:28:00:3b:8d:60:5d: 25:85:70:c1:7e:f4:0a:9a:ba:5c:70:f5:99:1d:68:ae:8e:50: 7d:2d:ee:d4:56:25:34:28:44:74:97:ff:c3:41:01:86:a7:6b: 4f:47:b9:8e:42:2a:bf:fb:67:4f:0a:ca:f9:f0:12:f5:29:3d: a5:73:8c:f6:95:81:93:15:f0:4f:7a:ad:26:32:a1:f4:8b:7e: 0f:05:7f:a0:23:bd:95:85:7c:88:99:32:20:b0:63:fa:db:05: f2:69:5b:28:e1:6d:42:41:c2:6f:0a:3d:75:6f:8b:c3:7d:45: 6c:1c:d1:22:92:b4:85:5a:25:5b:59:b5:bc:d5:1c:f5:39:ea: 9a:3e:d4:74 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSC6XuCsMfBV8V4VZrbsMJFyD65MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNE RDAwOTExQjAeFw0yNDA4MTgwNjU1MDFaFw0yNTA4MTcwNzAwMDFaMDMxMTAvBgNV BAMTKEMyODQ3Mjg4ODJCQ0I0REM5QzVBRTA4ODM1NjY3MTk5NUJBNzQ2NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu2ZTnDHAkG5OS3/dZ9DISDfw1 KTCXFSXGaTQ4bypAMVulE4RKFgq6FYAYlXcOM0qEOKu6YAMWNMUn1mtJsVTCTRdB fXrOIOhLt4RyD0hU1DIq7nnQdBomLwZ4MgJf/bU41btOHbakZq/mzED+K8AgiTn/ l3tq1Il2SvuyxBdAOudkqTMZGakI/gsRlo+2FUDHTIfFZXRjOpdw3vW5dOV2N0AA ih87Kyfb9MAqHrU8Ma5arGHefL0d5C/druj277zAroyX8lb9g6PLAgMIDnKQ5Dwh c1oXX6gnxBkQKMUwwtAKqi+lI3UUgsxIsFCymNuBDOBgfm8/Iml8hgbj/i+LAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwoRyiIK8tNycWuCINWZxmVunRkIwHwYDVR0j BBgwFoAUIawiC3enfQUWvHO0wpyDY90AkRswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGFiYzBiYS05MjIyLTRjNDUtODM0Mi1lYjg2NDNjNDk2N2QvMC8yMUFDMjIwQjc3 QTc3RDA1MTZCQzczQjRDMjlDODM2M0REMDA5MTFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNERDAw OTExQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkYWJjMGJhLTkyMjItNGM0NS04 MzQyLWViODY0M2M0OTY3ZC8wLzMxMzAzMzJlMzkzNDJlMzEzNjM4MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM2MzEzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ16oMA0GCSqG SIb3DQEBCwUAA4IBAQAy0vrOAWIBsli0vc8vbP0ZCujfYhZfVau8TT8cAC47gWD5 LFERraUr3f0SID7u1T/JiWnQaB+SEfNqsnQzoS1kv2oHR4Uyo57uYtbcddi8xH7Y 3VMD63dGFSr3qJGkLadCpzE6R0OUeQpR6i7ri242WDlLoX/Yh9goADuNYF0lhXDB fvQKmrpccPWZHWiujlB9Le7UViU0KER0l//DQQGGp2tPR7mOQiq/+2dPCsr58BL1 KT2lc4z2lYGTFfBPeq0mMqH0i34PBX+gI72VhXyImTIgsGP62wXyaVso4W1CQcJv Cj11b4vDfUVsHNEikrSFWiVbWbW81Rz1OeqaPtR0 -----END CERTIFICATE-----Generated at Fri Nov 22 23:37:26 2024 by rpki-client on console-fra.rpki-client.org