$ rpki-client -vvf repo-rpki.idnic.net/repo/c3a5ffdc-151a-4aad-a2b7-432649de6dbe/0/3130332e3231372e3230382e302f32322d3234203d3e203338373630.roa File: 3130332e3231372e3230382e302f32322d3234203d3e203338373630.roa (raw, json) Hash identifier: PzTHtzzAMpwdYhCuMKMeCiQfz5tlhOXJ9JDF0wt3fuc= Subject key identifier: 84:86:70:CB:82:AB:9C:60:F7:BB:45:D3:78:31:61:F8:C1:54:0D:5F Certificate issuer: /CN=B7260D30835B9D812F7044ECE96F4FB8F698379C Certificate serial: 0DA8EBA75E8BD6224BFB3715DFFD1B67C38D8282 Authority key identifier: B7:26:0D:30:83:5B:9D:81:2F:70:44:EC:E9:6F:4F:B8:F6:98:37:9C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7260D30835B9D812F7044ECE96F4FB8F698379C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c3a5ffdc-151a-4aad-a2b7-432649de6dbe/0/3130332e3231372e3230382e302f32322d3234203d3e203338373630.roa Signing time: Wed 12 Jun 2024 08:00:00 +0000 ROA not before: Wed 12 Jun 2024 07:55:00 +0000 ROA not after: Wed 11 Jun 2025 08:00:00 +0000 asID: 38760 IP address blocks: 103.217.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c3a5ffdc-151a-4aad-a2b7-432649de6dbe/0/B7260D30835B9D812F7044ECE96F4FB8F698379C.crl rsync://repo-rpki.idnic.net/repo/c3a5ffdc-151a-4aad-a2b7-432649de6dbe/0/B7260D30835B9D812F7044ECE96F4FB8F698379C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7260D30835B9D812F7044ECE96F4FB8F698379C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:a8:eb:a7:5e:8b:d6:22:4b:fb:37:15:df:fd:1b:67:c3:8d:82:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B7260D30835B9D812F7044ECE96F4FB8F698379C Validity Not Before: Jun 12 07:55:00 2024 GMT Not After : Jun 11 08:00:00 2025 GMT Subject: CN=848670CB82AB9C60F7BB45D3783161F8C1540D5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c7:cd:e0:e4:c4:61:d9:d3:27:a4:e6:cf:f6: 7e:bc:f0:09:9a:5a:11:0c:1f:9c:42:dc:1c:1e:22: bf:07:43:40:5f:1c:9d:19:30:1f:1e:fc:d7:cd:6c: d6:9e:ac:30:db:7b:f9:3b:92:7b:b9:3a:55:c1:91: 1b:40:48:4e:32:7e:9c:8b:35:61:33:1d:ae:78:9d: 18:b2:a1:b7:59:89:62:5c:77:bd:db:17:f3:2a:bd: 52:d1:50:00:1e:18:15:ec:88:8f:de:ed:28:e8:b3: 63:aa:63:b6:3a:06:03:c4:24:a6:c4:42:49:2a:57: cb:54:4c:68:99:85:c6:3e:13:07:5c:f4:d0:c4:20: 4c:34:fa:20:6a:c0:2d:82:8a:59:db:95:dd:22:bc: 90:d2:a1:15:dd:a0:d3:41:16:60:53:12:51:80:90: f3:63:32:28:13:f9:63:ba:93:97:62:68:01:d3:2f: bf:0c:bc:e5:c7:53:cc:f7:84:58:e6:16:da:de:66: 09:be:d3:c4:1e:c4:da:a4:a2:0f:14:3b:ea:ef:6c: 2f:ee:a4:aa:96:22:49:83:ee:d8:42:53:77:9f:72: c9:a9:8a:90:06:01:6f:a3:81:76:47:95:98:aa:8d: c1:bc:3f:5e:0e:8e:bc:89:7b:b6:83:aa:57:63:e1: 05:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:86:70:CB:82:AB:9C:60:F7:BB:45:D3:78:31:61:F8:C1:54:0D:5F X509v3 Authority Key Identifier: keyid:B7:26:0D:30:83:5B:9D:81:2F:70:44:EC:E9:6F:4F:B8:F6:98:37:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c3a5ffdc-151a-4aad-a2b7-432649de6dbe/0/B7260D30835B9D812F7044ECE96F4FB8F698379C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7260D30835B9D812F7044ECE96F4FB8F698379C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c3a5ffdc-151a-4aad-a2b7-432649de6dbe/0/3130332e3231372e3230382e302f32322d3234203d3e203338373630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.217.208.0/22 Signature Algorithm: sha256WithRSAEncryption c5:7c:24:19:7a:72:56:36:e2:62:83:85:be:a5:0f:1b:be:6e: 1e:e5:40:2f:9c:f9:4c:2a:32:07:32:b1:f5:c7:0e:01:1a:75: 75:96:dc:b7:fd:14:34:73:88:ef:80:51:76:69:10:6a:8b:fe: ef:89:63:e9:7f:e7:97:00:23:31:cb:ba:67:3c:9b:43:c1:83: dc:ae:ae:a3:d9:12:2f:c1:48:32:24:55:81:74:bb:c8:dd:0a: 01:3b:ee:14:ab:03:c8:84:0c:f7:c5:80:1f:26:91:aa:89:55: 04:a6:e3:26:fc:ec:4e:24:fe:83:27:f8:f3:d5:4d:4b:b1:45: fb:0e:dc:84:0b:83:b2:b8:ce:55:93:a6:2f:28:81:a7:ce:f1: 46:e4:84:d8:41:11:af:70:a5:76:35:7d:fd:b3:82:80:73:59: f1:dc:63:e8:62:e2:0d:d1:5c:34:76:17:b5:1d:3b:3b:0e:69: b8:d5:53:26:e9:81:46:b5:7e:47:3d:82:5b:95:1e:5a:95:44: be:d5:a1:6d:68:c7:22:d6:2e:88:71:b8:50:f2:79:39:b9:26: 30:c4:58:19:1f:34:77:a0:8b:02:d6:e1:57:18:b1:fa:25:2d: 30:24:90:2d:76:82:ad:2f:51:30:05:aa:8c:d1:a6:06:2b:de: dd:2e:68:86 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDajrp16L1iJL+zcV3/0bZ8ONgoIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjcyNjBEMzA4MzVCOUQ4MTJGNzA0NEVDRTk2RjRGQjhG Njk4Mzc5QzAeFw0yNDA2MTIwNzU1MDBaFw0yNTA2MTEwODAwMDBaMDMxMTAvBgNV BAMTKDg0ODY3MENCODJBQjlDNjBGN0JCNDVEMzc4MzE2MUY4QzE1NDBENUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9x83g5MRh2dMnpObP9n688Ama WhEMH5xC3BweIr8HQ0BfHJ0ZMB8e/NfNbNaerDDbe/k7knu5OlXBkRtASE4yfpyL NWEzHa54nRiyobdZiWJcd73bF/MqvVLRUAAeGBXsiI/e7Sjos2OqY7Y6BgPEJKbE QkkqV8tUTGiZhcY+Ewdc9NDEIEw0+iBqwC2Cilnbld0ivJDSoRXdoNNBFmBTElGA kPNjMigT+WO6k5diaAHTL78MvOXHU8z3hFjmFtreZgm+08QexNqkog8UO+rvbC/u pKqWIkmD7thCU3efcsmpipAGAW+jgXZHlZiqjcG8P14OjryJe7aDqldj4QWBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhIZwy4KrnGD3u0XTeDFh+MFUDV8wHwYDVR0j BBgwFoAUtyYNMINbnYEvcETs6W9PuPaYN5wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j M2E1ZmZkYy0xNTFhLTRhYWQtYTJiNy00MzI2NDlkZTZkYmUvMC9CNzI2MEQzMDgz NUI5RDgxMkY3MDQ0RUNFOTZGNEZCOEY2OTgzNzlDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjcyNjBEMzA4MzVCOUQ4MTJGNzA0NEVDRTk2RjRGQjhGNjk4 Mzc5Qy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzYTVmZmRjLTE1MWEtNGFhZC1h MmI3LTQzMjY0OWRlNmRiZS8wLzMxMzAzMzJlMzIzMTM3MmUzMjMwMzgyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMzM4MzczNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ9nQMA0GCSqG SIb3DQEBCwUAA4IBAQDFfCQZenJWNuJig4W+pQ8bvm4e5UAvnPlMKjIHMrH1xw4B GnV1lty3/RQ0c4jvgFF2aRBqi/7viWPpf+eXACMxy7pnPJtDwYPcrq6j2RIvwUgy JFWBdLvI3QoBO+4UqwPIhAz3xYAfJpGqiVUEpuMm/OxOJP6DJ/jz1U1LsUX7DtyE C4OyuM5Vk6YvKIGnzvFG5ITYQRGvcKV2NX39s4KAc1nx3GPoYuIN0Vw0dhe1HTs7 Dmm41VMm6YFGtX5HPYJblR5alUS+1aFtaMci1i6IcbhQ8nk5uSYwxFgZHzR3oIsC 1uFXGLH6JS0wJJAtdoKtL1EwBaqM0aYGK97dLmiG -----END CERTIFICATE-----Generated at Fri Nov 22 22:21:00 2024 by rpki-client on console-fra.rpki-client.org