$ rpki-client -vvf repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/3130332e3130362e37362e302f32322d3232203d3e203436303233.roa File: 3130332e3130362e37362e302f32322d3232203d3e203436303233.roa (raw, json) Hash identifier: 2GYoGVGasxR8uDpvI7BrmDmU9LmzA4rGOfrvv4FSPFU= Subject key identifier: B5:74:E2:1A:57:38:97:8D:E1:4B:3F:3D:C0:64:B5:DB:23:8B:7B:D2 Certificate issuer: /CN=21F5E152BA3E25561EA4D2E2986546412F44F15B Certificate serial: 32E3E08B5F59A2991E167BBF05A93CCF8835E048 Authority key identifier: 21:F5:E1:52:BA:3E:25:56:1E:A4:D2:E2:98:65:46:41:2F:44:F1:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/3130332e3130362e37362e302f32322d3232203d3e203436303233.roa Signing time: Tue 05 Nov 2024 08:31:17 +0000 ROA not before: Tue 05 Nov 2024 08:26:17 +0000 ROA not after: Tue 04 Nov 2025 08:31:17 +0000 asID: 46023 IP address blocks: 103.106.76.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.crl rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 04:18:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:e3:e0:8b:5f:59:a2:99:1e:16:7b:bf:05:a9:3c:cf:88:35:e0:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21F5E152BA3E25561EA4D2E2986546412F44F15B Validity Not Before: Nov 5 08:26:17 2024 GMT Not After : Nov 4 08:31:17 2025 GMT Subject: CN=B574E21A5738978DE14B3F3DC064B5DB238B7BD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fd:e7:39:d7:29:2d:e0:9a:39:a4:59:1a:99: 31:1d:cb:90:c1:10:45:c9:ca:7e:8c:15:ba:6a:86: ab:4c:2a:60:71:6c:29:58:42:53:4b:f5:f8:dd:ec: 1e:62:66:c8:8a:40:4e:9a:98:ff:5d:37:a6:7d:87: 6c:d1:fa:c0:e7:42:3a:bf:a3:38:ef:11:be:26:c4: 1c:a3:61:04:2f:62:bd:38:70:9e:d7:c6:7e:61:74: 39:dc:5d:e1:bb:0b:c9:df:86:a5:0d:2e:f5:aa:31: 6b:d7:2c:08:89:b0:9c:87:ee:71:78:0c:7f:3b:14: 19:f7:61:df:8d:be:8c:25:04:e8:13:53:28:79:66: ea:8c:44:52:22:31:cf:5a:8a:1c:25:81:fb:14:a0: c8:96:76:e1:82:6c:90:62:9d:47:a0:24:d5:83:11: 68:bf:8e:33:e7:2f:72:fe:fc:e4:2a:65:4e:79:1a: a5:81:05:c1:b1:4c:b7:8b:aa:ec:8a:f5:f4:09:0f: 36:85:b0:66:03:17:da:5b:bc:74:eb:f8:f2:d9:74: 40:27:bb:b0:2c:03:0e:47:b9:e2:44:f9:18:77:5c: fd:e2:d0:65:6b:5c:90:a2:24:0a:02:8a:f3:ad:78: 36:6f:7f:7a:cf:5b:31:d1:9d:a2:b1:fd:03:9a:29: c3:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:74:E2:1A:57:38:97:8D:E1:4B:3F:3D:C0:64:B5:DB:23:8B:7B:D2 X509v3 Authority Key Identifier: keyid:21:F5:E1:52:BA:3E:25:56:1E:A4:D2:E2:98:65:46:41:2F:44:F1:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/3130332e3130362e37362e302f32322d3232203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.106.76.0/22 Signature Algorithm: sha256WithRSAEncryption a2:d7:dc:46:eb:9c:b5:60:f8:a3:df:a2:b3:c1:6a:75:fe:b4: 65:ce:82:12:fe:18:b7:45:95:36:6d:b3:dd:51:7d:4a:ce:ce: 4d:6b:93:c5:82:96:66:1f:90:4e:bb:96:eb:1c:52:62:c7:48: 45:21:9a:14:f5:d3:30:93:16:a7:7b:8d:c4:59:5e:59:f0:55: 7b:ae:79:d0:87:b2:9d:f9:19:81:e0:9e:20:a4:ec:99:80:44: a3:c1:87:7d:10:86:6f:0d:a0:4c:b6:44:cf:e3:4b:6f:84:29: 20:27:6b:13:f0:5e:6d:5f:a0:11:59:11:08:bc:46:89:45:06: 9d:e7:b1:e9:11:6b:9e:75:dc:f1:81:7b:0d:93:71:e1:0a:b7: 2a:4b:50:87:43:dd:83:98:c3:45:13:c3:78:20:6e:a9:6b:81: 13:75:d9:da:52:23:91:5c:14:aa:f3:33:ff:92:e4:63:bc:47: 44:ff:ad:22:f1:58:b2:16:f2:9a:f1:b6:18:57:37:31:09:be: ad:7e:ba:1b:3f:cd:83:ee:bc:46:65:ec:95:57:c9:d6:21:30: 83:89:f9:55:3e:66:ca:27:04:67:a0:14:6a:bf:f6:43:8c:39: b4:da:30:00:06:f6:f2:25:73:fd:2f:33:8f:9a:21:5f:17:68: a7:9a:0a:d8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMuPgi19ZopkeFnu/Bak8z4g14EgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFGNUUxNTJCQTNFMjU1NjFFQTREMkUyOTg2NTQ2NDEy RjQ0RjE1QjAeFw0yNDExMDUwODI2MTdaFw0yNTExMDQwODMxMTdaMDMxMTAvBgNV BAMTKEI1NzRFMjFBNTczODk3OERFMTRCM0YzREMwNjRCNURCMjM4QjdCRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn/ec51ykt4Jo5pFkamTEdy5DB EEXJyn6MFbpqhqtMKmBxbClYQlNL9fjd7B5iZsiKQE6amP9dN6Z9h2zR+sDnQjq/ ozjvEb4mxByjYQQvYr04cJ7Xxn5hdDncXeG7C8nfhqUNLvWqMWvXLAiJsJyH7nF4 DH87FBn3Yd+NvowlBOgTUyh5ZuqMRFIiMc9aihwlgfsUoMiWduGCbJBinUegJNWD EWi/jjPnL3L+/OQqZU55GqWBBcGxTLeLquyK9fQJDzaFsGYDF9pbvHTr+PLZdEAn u7AsAw5HueJE+Rh3XP3i0GVrXJCiJAoCivOteDZvf3rPWzHRnaKx/QOaKcMpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUtXTiGlc4l43hSz89wGS12yOLe9IwHwYDVR0j BBgwFoAUIfXhUro+JVYepNLimGVGQS9E8VswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j M2RkNjEzNS01NDhjLTQ4ODEtYWY3OC05M2FmOWYyYTI1MTYvMC8yMUY1RTE1MkJB M0UyNTU2MUVBNEQyRTI5ODY1NDY0MTJGNDRGMTVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFGNUUxNTJCQTNFMjU1NjFFQTREMkUyOTg2NTQ2NDEyRjQ0 RjE1Qi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzZGQ2MTM1LTU0OGMtNDg4MS1h Zjc4LTkzYWY5ZjJhMjUxNi8wLzMxMzAzMzJlMzEzMDM2MmUzNzM2MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzQzNjMwMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmdqTDANBgkqhkiG 9w0BAQsFAAOCAQEAotfcRuuctWD4o9+is8Fqdf60Zc6CEv4Yt0WVNm2z3VF9Ss7O TWuTxYKWZh+QTruW6xxSYsdIRSGaFPXTMJMWp3uNxFleWfBVe6550IeynfkZgeCe IKTsmYBEo8GHfRCGbw2gTLZEz+NLb4QpICdrE/BebV+gEVkRCLxGiUUGneex6RFr nnXc8YF7DZNx4Qq3KktQh0Pdg5jDRRPDeCBuqWuBE3XZ2lIjkVwUqvMz/5LkY7xH RP+tIvFYshbymvG2GFc3MQm+rX66Gz/Ng+68RmXslVfJ1iEwg4n5VT5myicEZ6AU ar/2Q4w5tNowAAb28iVz/S8zj5ohXxdop5oK2A== -----END CERTIFICATE-----Generated at Sat Nov 23 00:48:00 2024 by rpki-client on console-fra.rpki-client.org