$ rpki-client -vvf repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/3130332e38332e3233372e302f32342d3234203d3e20313530353430.roa File: 3130332e38332e3233372e302f32342d3234203d3e20313530353430.roa (raw, json) Hash identifier: qSzxrfqd29Pg9HOqmUjPO7crmnWP/zs2luJUdYRC76s= Subject key identifier: 49:24:4C:8E:13:E2:29:68:62:93:9B:48:13:20:24:D3:90:E4:FC:AA Certificate issuer: /CN=CA978B7ACEF55A251B74721E04A034CA3601A88B Certificate serial: 2018D9D4D32D089B05BC5C0DB88FFEAE16845579 Authority key identifier: CA:97:8B:7A:CE:F5:5A:25:1B:74:72:1E:04:A0:34:CA:36:01:A8:8B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/3130332e38332e3233372e302f32342d3234203d3e20313530353430.roa Signing time: Tue 19 Nov 2024 22:00:00 +0000 ROA not before: Tue 19 Nov 2024 21:55:00 +0000 ROA not after: Tue 18 Nov 2025 22:00:00 +0000 asID: 150540 IP address blocks: 103.83.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.crl rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:18:d9:d4:d3:2d:08:9b:05:bc:5c:0d:b8:8f:fe:ae:16:84:55:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA978B7ACEF55A251B74721E04A034CA3601A88B Validity Not Before: Nov 19 21:55:00 2024 GMT Not After : Nov 18 22:00:00 2025 GMT Subject: CN=49244C8E13E2296862939B48132024D390E4FCAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:01:94:c7:08:23:fb:65:e3:08:f5:9c:bf:e6: ae:23:d6:a7:fe:54:dc:74:dd:12:3d:74:ea:73:a4: 08:d9:4d:6c:8c:6b:77:1f:70:df:5f:19:87:db:23: bf:6b:fb:cb:a6:29:ea:2b:b1:f8:f2:41:95:a3:44: e1:ba:87:c8:4c:ff:a6:67:0b:c6:38:fb:8a:a7:9a: a4:94:6b:f9:85:0d:d7:b9:5d:44:2b:4c:d8:0e:c3: a7:a1:dc:7e:92:b4:33:61:a8:60:af:f4:76:6f:98: ec:87:cd:3c:31:39:a5:76:c5:d8:3c:10:02:ea:5c: 4d:a0:79:19:45:8b:23:5d:29:27:aa:e3:76:34:d8: 93:23:3f:8a:31:1b:1e:e8:0a:ee:b1:f7:03:07:6c: 56:d1:e3:c4:fc:d6:a9:52:34:ec:ef:b3:ab:74:e9: 89:6d:4f:69:33:ff:fc:9c:cc:fd:ad:b4:7e:6e:ac: 4b:20:90:08:5e:5f:8f:7b:be:ad:c1:12:92:6e:66: f0:bf:a0:bb:ce:60:be:71:87:cd:54:04:5d:ff:9a: ed:23:58:68:df:61:30:98:5b:fe:31:b3:f0:19:d7: c6:c1:98:d3:82:47:e6:e7:21:20:dc:c1:ee:69:fc: a4:61:58:f7:3c:57:5d:a7:d8:72:89:20:8a:0a:f2: a0:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:24:4C:8E:13:E2:29:68:62:93:9B:48:13:20:24:D3:90:E4:FC:AA X509v3 Authority Key Identifier: keyid:CA:97:8B:7A:CE:F5:5A:25:1B:74:72:1E:04:A0:34:CA:36:01:A8:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/3130332e38332e3233372e302f32342d3234203d3e20313530353430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.83.237.0/24 Signature Algorithm: sha256WithRSAEncryption 26:d1:3a:a4:57:3d:90:b2:75:84:7b:e6:31:bd:58:e0:88:1e: af:4d:7f:27:7c:ba:46:43:e4:29:f6:a7:84:6d:d5:53:6b:56: 47:c1:63:f6:e6:32:77:4b:e2:88:c0:77:2e:9c:48:91:f2:ab: e9:fd:82:b1:87:db:69:57:71:0b:ea:1c:69:18:59:22:a7:e8: 4b:f5:a2:51:9f:37:3e:f5:6a:8e:d5:9b:09:da:27:66:51:07: 61:be:f1:73:bc:05:47:84:a9:db:0c:4b:b7:0c:69:a4:97:34: e1:c6:18:e0:a2:25:74:ca:a4:70:ae:13:43:6e:ee:85:aa:30: fc:5f:dc:c9:e8:8f:b7:f2:c0:17:6e:8d:3e:22:8d:e0:25:3f: da:5e:86:48:f2:56:f3:e7:88:c8:f1:42:db:5b:02:c5:0a:58: 1b:17:4b:de:34:f4:1d:88:5e:da:4d:4c:e3:c5:5e:a5:8e:84: 5b:f3:05:79:a8:63:25:18:58:62:8e:d9:04:a3:89:86:7d:d2: cc:e3:e8:53:93:36:97:0f:e1:9c:bb:a0:40:9a:1e:68:33:1f: 2d:87:53:0c:ae:a2:e1:67:21:1b:a9:73:25:eb:59:2e:ed:32: 55:69:1e:02:3a:cf:3e:9e:c4:7f:75:b0:1a:fe:45:6c:03:99: 21:dd:8a:71 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIBjZ1NMtCJsFvFwNuI/+rhaEVXkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E5NzhCN0FDRUY1NUEyNTFCNzQ3MjFFMDRBMDM0Q0Ez NjAxQTg4QjAeFw0yNDExMTkyMTU1MDBaFw0yNTExMTgyMjAwMDBaMDMxMTAvBgNV BAMTKDQ5MjQ0QzhFMTNFMjI5Njg2MjkzOUI0ODEzMjAyNEQzOTBFNEZDQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRAZTHCCP7ZeMI9Zy/5q4j1qf+ VNx03RI9dOpzpAjZTWyMa3cfcN9fGYfbI79r+8umKeorsfjyQZWjROG6h8hM/6Zn C8Y4+4qnmqSUa/mFDde5XUQrTNgOw6eh3H6StDNhqGCv9HZvmOyHzTwxOaV2xdg8 EALqXE2geRlFiyNdKSeq43Y02JMjP4oxGx7oCu6x9wMHbFbR48T81qlSNOzvs6t0 6YltT2kz//yczP2ttH5urEsgkAheX497vq3BEpJuZvC/oLvOYL5xh81UBF3/mu0j WGjfYTCYW/4xs/AZ18bBmNOCR+bnISDcwe5p/KRhWPc8V12n2HKJIIoK8qBPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSSRMjhPiKWhik5tIEyAk05Dk/KowHwYDVR0j BBgwFoAUypeLes71WiUbdHIeBKA0yjYBqIswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZmEzY2ZmNy0yYWExLTQ0ZGYtOTE0Yy1mMTkxODRmNmYzYjEvMC9DQTk3OEI3QUNF RjU1QTI1MUI3NDcyMUUwNEEwMzRDQTM2MDFBODhCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E5NzhCN0FDRUY1NUEyNTFCNzQ3MjFFMDRBMDM0Q0EzNjAx QTg4Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmYTNjZmY3LTJhYTEtNDRkZi05 MTRjLWYxOTE4NGY2ZjNiMS8wLzMxMzAzMzJlMzgzMzJlMzIzMzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzUzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1PtMA0GCSqG SIb3DQEBCwUAA4IBAQAm0TqkVz2QsnWEe+YxvVjgiB6vTX8nfLpGQ+Qp9qeEbdVT a1ZHwWP25jJ3S+KIwHcunEiR8qvp/YKxh9tpV3EL6hxpGFkip+hL9aJRnzc+9WqO 1ZsJ2idmUQdhvvFzvAVHhKnbDEu3DGmklzThxhjgoiV0yqRwrhNDbu6FqjD8X9zJ 6I+38sAXbo0+Io3gJT/aXoZI8lbz54jI8ULbWwLFClgbF0veNPQdiF7aTUzjxV6l joRb8wV5qGMlGFhijtkEo4mGfdLM4+hTkzaXD+Gcu6BAmh5oMx8th1MMrqLhZyEb qXMl61ku7TJVaR4COs8+nsR/dbAa/kVsA5kh3Ypx -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:21 2024 by rpki-client on console-fra.rpki-client.org