$ rpki-client -vvf repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/3130332e39342e3231322e302f32342d3234203d3e20313336313131.roa File: 3130332e39342e3231322e302f32342d3234203d3e20313336313131.roa (raw, json) Hash identifier: xGtojE5xQ38ofrHeox7psZGSkp6l9QQja9HVSx7iji8= Subject key identifier: 53:8D:75:FD:24:FA:67:C8:04:27:E5:86:22:C2:32:BF:64:FA:AB:3D Certificate issuer: /CN=399315B18BA7D0DD666DCA8C3DBBE013575AF7D1 Certificate serial: 5794FA5C20C2F156DE954FB82E37D2580C8859A9 Authority key identifier: 39:93:15:B1:8B:A7:D0:DD:66:6D:CA:8C:3D:BB:E0:13:57:5A:F7:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/3130332e39342e3231322e302f32342d3234203d3e20313336313131.roa Signing time: Fri 26 Jul 2024 08:02:44 +0000 ROA not before: Fri 26 Jul 2024 07:57:44 +0000 ROA not after: Fri 25 Jul 2025 08:02:44 +0000 asID: 136111 IP address blocks: 103.94.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.crl rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:27:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:94:fa:5c:20:c2:f1:56:de:95:4f:b8:2e:37:d2:58:0c:88:59:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=399315B18BA7D0DD666DCA8C3DBBE013575AF7D1 Validity Not Before: Jul 26 07:57:44 2024 GMT Not After : Jul 25 08:02:44 2025 GMT Subject: CN=538D75FD24FA67C80427E58622C232BF64FAAB3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:7c:23:7f:5e:53:eb:b4:fb:8a:13:8a:2a:ff: cb:b8:ed:f4:4e:39:0f:59:84:3e:65:9b:e0:d2:16: 34:d7:68:2b:41:4f:8f:dd:2a:1c:9b:05:67:7b:f1: f6:03:e3:b9:37:28:d4:86:4d:35:a1:95:60:2c:71: 7b:23:dc:14:07:01:58:11:96:fe:89:87:68:8c:cd: 7b:c9:4f:7f:c4:97:ca:0d:f2:40:32:d1:ad:41:76: d6:56:14:5b:02:d0:63:84:77:75:eb:41:30:d9:73: dc:e2:50:60:ae:c2:40:12:8f:fd:b6:f6:83:39:8b: d9:38:73:a7:09:89:ff:37:ab:da:39:48:8e:3e:1a: 9f:fc:0c:db:e2:3e:a0:2d:14:d7:70:19:cd:84:dc: 55:6a:26:f4:7c:36:b6:88:c2:0c:58:f5:49:15:85: d8:d3:22:5d:6a:67:87:88:af:cc:8a:92:cf:e6:58: 2c:f4:0b:de:c1:d8:e4:b4:b4:ef:a0:8f:4e:0e:80: ff:2e:82:42:37:25:7a:d2:94:19:e5:6b:7a:37:3d: d3:8f:f4:b3:03:86:27:a7:8c:e3:ce:0c:6e:26:e4: 01:a0:38:71:dc:55:04:33:24:67:4b:1f:fd:0f:23: bc:34:e1:3d:cd:b0:1c:8e:fa:0b:e1:3e:0b:f3:d1: 05:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:8D:75:FD:24:FA:67:C8:04:27:E5:86:22:C2:32:BF:64:FA:AB:3D X509v3 Authority Key Identifier: keyid:39:93:15:B1:8B:A7:D0:DD:66:6D:CA:8C:3D:BB:E0:13:57:5A:F7:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399315B18BA7D0DD666DCA8C3DBBE013575AF7D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c2f28879-4844-42de-b2d9-a9666de282ea/0/3130332e39342e3231322e302f32342d3234203d3e20313336313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.94.212.0/24 Signature Algorithm: sha256WithRSAEncryption ad:6c:6f:b1:23:05:c8:01:73:6f:65:b4:70:92:af:e3:89:9d: 79:44:0f:cf:ae:d3:d4:b2:9f:0a:d4:15:41:46:0d:93:2f:dd: 53:5b:4c:5e:1f:ab:b9:d2:04:9b:aa:28:0f:67:13:5e:ed:77: 2d:29:63:31:9c:ea:7e:7f:a9:04:30:65:40:22:4e:a1:4f:d9: 7b:eb:ef:a5:a8:81:d8:ad:0b:1d:e4:1a:3e:ef:b7:66:92:1e: af:63:7f:88:5d:28:f1:91:b6:60:05:ce:11:2a:d5:7d:c1:de: c6:56:68:b3:6a:25:30:a6:73:ea:6d:15:4b:2b:67:a9:1d:dc: 78:9d:ab:08:50:50:ab:c5:77:fa:c8:c2:14:58:3d:79:6d:15: 30:4e:72:e5:2c:ab:0c:bf:10:7c:6b:8e:f6:5e:53:b2:6d:40: a7:67:d8:e7:b5:99:43:44:a5:71:21:8c:d7:f2:1f:ba:09:cf: 9b:a4:64:43:34:07:2b:63:b0:de:07:76:84:86:a6:26:a1:f8: d6:03:a7:9c:de:77:6c:74:92:9e:69:9d:b8:04:45:0d:3e:39: 76:b8:29:7e:74:45:fa:bc:e2:45:38:39:39:cc:2d:11:4e:65: cc:b7:ea:3a:13:af:6c:70:b9:2b:10:04:f3:2e:01:ca:ea:73: 7f:d5:ed:1a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUV5T6XCDC8VbelU+4LjfSWAyIWakwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzk5MzE1QjE4QkE3RDBERDY2NkRDQThDM0RCQkUwMTM1 NzVBRjdEMTAeFw0yNDA3MjYwNzU3NDRaFw0yNTA3MjUwODAyNDRaMDMxMTAvBgNV BAMTKDUzOEQ3NUZEMjRGQTY3QzgwNDI3RTU4NjIyQzIzMkJGNjRGQUFCM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCifCN/XlPrtPuKE4oq/8u47fRO OQ9ZhD5lm+DSFjTXaCtBT4/dKhybBWd78fYD47k3KNSGTTWhlWAscXsj3BQHAVgR lv6Jh2iMzXvJT3/El8oN8kAy0a1BdtZWFFsC0GOEd3XrQTDZc9ziUGCuwkASj/22 9oM5i9k4c6cJif83q9o5SI4+Gp/8DNviPqAtFNdwGc2E3FVqJvR8NraIwgxY9UkV hdjTIl1qZ4eIr8yKks/mWCz0C97B2OS0tO+gj04OgP8ugkI3JXrSlBnla3o3PdOP 9LMDhienjOPODG4m5AGgOHHcVQQzJGdLH/0PI7w04T3NsByO+gvhPgvz0QX7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUU411/ST6Z8gEJ+WGIsIyv2T6qz0wHwYDVR0j BBgwFoAUOZMVsYun0N1mbcqMPbvgE1da99EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MmYyODg3OS00ODQ0LTQyZGUtYjJkOS1hOTY2NmRlMjgyZWEvMC8zOTkzMTVCMThC QTdEMERENjY2RENBOEMzREJCRTAxMzU3NUFGN0QxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzk5MzE1QjE4QkE3RDBERDY2NkRDQThDM0RCQkUwMTM1NzVB RjdEMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MyZjI4ODc5LTQ4NDQtNDJkZS1i MmQ5LWE5NjY2ZGUyODJlYS8wLzMxMzAzMzJlMzkzNDJlMzIzMTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ17UMA0GCSqG SIb3DQEBCwUAA4IBAQCtbG+xIwXIAXNvZbRwkq/jiZ15RA/PrtPUsp8K1BVBRg2T L91TW0xeH6u50gSbqigPZxNe7XctKWMxnOp+f6kEMGVAIk6hT9l76++lqIHYrQsd 5Bo+77dmkh6vY3+IXSjxkbZgBc4RKtV9wd7GVmizaiUwpnPqbRVLK2epHdx4nasI UFCrxXf6yMIUWD15bRUwTnLlLKsMvxB8a472XlOybUCnZ9jntZlDRKVxIYzX8h+6 Cc+bpGRDNAcrY7DeB3aEhqYmofjWA6ec3ndsdJKeaZ24BEUNPjl2uCl+dEX6vOJF ODk5zC0RTmXMt+o6E69scLkrEATzLgHK6nN/1e0a -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:20 2024 by rpki-client on console-fra.rpki-client.org