$ rpki-client -vvf repo-rpki.idnic.net/repo/bf0c7a37-5d19-4c5c-9301-a14a7f185c92/0/3130332e3234322e31302e302f32332d3234203d3e20313336303532.roa File: 3130332e3234322e31302e302f32332d3234203d3e20313336303532.roa (raw, json) Hash identifier: rgZhMMMnE/8X/ajx3/StMU1scrnbaZrzmmCgG9/im6M= Subject key identifier: 3B:2D:1B:AA:CE:3D:79:AE:BA:E5:29:B0:01:6C:14:AC:FE:9F:2E:B7 Certificate issuer: /CN=A708865394D992A01D1736F0AB500E24889B7F34 Certificate serial: 52CCF555118C0D6BC3850FC68ADD4E0A6DD412C9 Authority key identifier: A7:08:86:53:94:D9:92:A0:1D:17:36:F0:AB:50:0E:24:88:9B:7F:34 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A708865394D992A01D1736F0AB500E24889B7F34.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bf0c7a37-5d19-4c5c-9301-a14a7f185c92/0/3130332e3234322e31302e302f32332d3234203d3e20313336303532.roa Signing time: Fri 28 Jun 2024 02:00:52 +0000 ROA not before: Fri 28 Jun 2024 01:55:52 +0000 ROA not after: Fri 27 Jun 2025 02:00:52 +0000 asID: 136052 IP address blocks: 103.242.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bf0c7a37-5d19-4c5c-9301-a14a7f185c92/0/A708865394D992A01D1736F0AB500E24889B7F34.crl rsync://repo-rpki.idnic.net/repo/bf0c7a37-5d19-4c5c-9301-a14a7f185c92/0/A708865394D992A01D1736F0AB500E24889B7F34.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A708865394D992A01D1736F0AB500E24889B7F34.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 06:55:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:cc:f5:55:11:8c:0d:6b:c3:85:0f:c6:8a:dd:4e:0a:6d:d4:12:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A708865394D992A01D1736F0AB500E24889B7F34 Validity Not Before: Jun 28 01:55:52 2024 GMT Not After : Jun 27 02:00:52 2025 GMT Subject: CN=3B2D1BAACE3D79AEBAE529B0016C14ACFE9F2EB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:4e:2e:f8:9c:ec:d3:de:93:9d:9a:10:dd:24: 65:fa:57:75:d9:63:e2:8c:83:53:60:28:10:92:28: 09:ed:85:6a:ad:8f:86:d5:a7:5f:cc:b6:63:b6:f5: 6f:a3:05:e7:f9:37:df:56:55:6e:45:31:ca:27:c4: ae:8a:2f:f2:4a:e2:56:15:70:a9:26:bf:6a:f5:b7: 66:fd:b0:f4:3d:0b:eb:34:9d:08:62:f3:4d:8f:02: 05:c9:4c:16:29:7e:ef:e7:74:98:c8:4b:f2:28:e9: f8:fe:a2:e9:77:02:d1:70:ca:f4:0b:72:82:48:92: b9:8d:94:46:0e:77:a9:9e:fb:96:8e:7d:25:70:f0: b6:43:2e:c3:d4:fe:0d:52:8e:42:45:72:44:2c:20: ae:64:90:79:b6:e5:96:df:8b:72:3c:ae:de:43:7b: bb:3f:c1:ee:d6:8c:f6:c6:0f:38:0f:87:1d:a0:58: 22:b8:7f:0d:46:72:40:36:fe:a9:39:8e:9e:7d:42: 5f:44:6c:56:6a:98:a1:43:91:d4:9d:f9:4f:53:fb: 03:c1:7b:cf:9c:ca:45:54:4a:36:be:48:fa:33:9e: 96:77:49:71:21:39:45:0c:ab:ff:4d:45:13:69:0d: ab:4d:8a:c6:43:6c:b0:2c:19:d1:5d:7b:2a:ae:a2: e0:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:2D:1B:AA:CE:3D:79:AE:BA:E5:29:B0:01:6C:14:AC:FE:9F:2E:B7 X509v3 Authority Key Identifier: keyid:A7:08:86:53:94:D9:92:A0:1D:17:36:F0:AB:50:0E:24:88:9B:7F:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bf0c7a37-5d19-4c5c-9301-a14a7f185c92/0/A708865394D992A01D1736F0AB500E24889B7F34.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A708865394D992A01D1736F0AB500E24889B7F34.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bf0c7a37-5d19-4c5c-9301-a14a7f185c92/0/3130332e3234322e31302e302f32332d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.10.0/23 Signature Algorithm: sha256WithRSAEncryption ae:e5:9e:88:57:bb:8a:e5:c8:a2:19:c1:e0:a6:09:0a:bf:03: 6d:52:49:41:e0:26:2f:9a:49:b2:af:c8:0c:2d:b5:c7:88:8e: b6:08:24:13:63:f1:99:1d:58:da:53:78:a0:53:e6:80:ad:8f: 75:20:d5:ec:db:4d:1a:71:91:59:2e:17:4d:04:b1:f6:92:5e: eb:19:bd:4f:80:51:ba:1a:cf:d4:ac:6c:42:46:af:51:6b:9a: 2a:cf:7a:3c:93:e6:55:82:03:ea:39:00:40:61:b8:b5:8e:5d: 56:68:dc:c4:f5:cf:fe:59:c9:76:35:03:8c:6f:2d:62:74:f8: 18:cb:b8:60:44:2e:00:26:97:5a:01:df:4f:cd:63:82:fc:44: c1:d6:8a:01:54:3d:f0:e4:3e:7a:72:e1:9a:c1:a4:c7:a4:d2: 35:9c:ab:22:6b:f0:ee:36:c8:2e:81:47:d8:9e:9c:c0:2b:b8: ea:9b:b0:2f:bb:a9:14:3e:e9:23:a2:fc:a1:43:4c:69:75:2c: 5e:6e:61:9f:a4:ba:4c:86:b7:89:50:fa:e4:da:28:8d:01:b4: 66:95:9c:56:02:6c:9c:7a:79:6e:b2:b6:ce:f5:98:a1:8e:3f: 5a:2c:db:7c:10:f8:56:b5:5c:70:2f:d1:92:f6:05:f9:df:1b: ee:e2:2a:18 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUsz1VRGMDWvDhQ/Git1OCm3UEskwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTcwODg2NTM5NEQ5OTJBMDFEMTczNkYwQUI1MDBFMjQ4 ODlCN0YzNDAeFw0yNDA2MjgwMTU1NTJaFw0yNTA2MjcwMjAwNTJaMDMxMTAvBgNV BAMTKDNCMkQxQkFBQ0UzRDc5QUVCQUU1MjlCMDAxNkMxNEFDRkU5RjJFQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaTi74nOzT3pOdmhDdJGX6V3XZ Y+KMg1NgKBCSKAnthWqtj4bVp1/MtmO29W+jBef5N99WVW5FMconxK6KL/JK4lYV cKkmv2r1t2b9sPQ9C+s0nQhi802PAgXJTBYpfu/ndJjIS/Io6fj+oul3AtFwyvQL coJIkrmNlEYOd6me+5aOfSVw8LZDLsPU/g1SjkJFckQsIK5kkHm25Zbfi3I8rt5D e7s/we7WjPbGDzgPhx2gWCK4fw1GckA2/qk5jp59Ql9EbFZqmKFDkdSd+U9T+wPB e8+cykVUSja+SPoznpZ3SXEhOUUMq/9NRRNpDatNisZDbLAsGdFdeyquouCBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOy0bqs49ea665SmwAWwUrP6fLrcwHwYDVR0j BBgwFoAUpwiGU5TZkqAdFzbwq1AOJIibfzQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZjBjN2EzNy01ZDE5LTRjNWMtOTMwMS1hMTRhN2YxODVjOTIvMC9BNzA4ODY1Mzk0 RDk5MkEwMUQxNzM2RjBBQjUwMEUyNDg4OUI3RjM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTcwODg2NTM5NEQ5OTJBMDFEMTczNkYwQUI1MDBFMjQ4ODlC N0YzNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmMGM3YTM3LTVkMTktNGM1Yy05 MzAxLWExNGE3ZjE4NWM5Mi8wLzMxMzAzMzJlMzIzNDMyMmUzMTMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/IKMA0GCSqG SIb3DQEBCwUAA4IBAQCu5Z6IV7uK5ciiGcHgpgkKvwNtUklB4CYvmkmyr8gMLbXH iI62CCQTY/GZHVjaU3igU+aArY91INXs200acZFZLhdNBLH2kl7rGb1PgFG6Gs/U rGxCRq9Ra5oqz3o8k+ZVggPqOQBAYbi1jl1WaNzE9c/+Wcl2NQOMby1idPgYy7hg RC4AJpdaAd9PzWOC/ETB1ooBVD3w5D56cuGawaTHpNI1nKsia/DuNsgugUfYnpzA K7jqm7Avu6kUPukjovyhQ0xpdSxebmGfpLpMhreJUPrk2iiNAbRmlZxWAmycenlu srbO9Zihjj9aLNt8EPhWtVxwL9GS9gX53xvu4ioY -----END CERTIFICATE-----Generated at Mon Nov 25 07:13:31 2024 by rpki-client on console-fra.rpki-client.org