$ rpki-client -vvf repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/3130332e32312e36352e302f32342d3234203d3e20313530393832.roa File: 3130332e32312e36352e302f32342d3234203d3e20313530393832.roa (raw, json) Hash identifier: 3WtJHTHoqx+6ru4I/tglm1b6fDx2t8EWPNp7dXVSOxk= Subject key identifier: 40:93:F0:27:9B:56:F9:04:99:21:1D:E2:4D:34:81:9A:7B:52:88:26 Certificate issuer: /CN=D456F5EAD8D734455DAEF896A9055409FF4A078F Certificate serial: 6F7A3BB3FBE2FBB55E0EFC1E2ABB4F8FD363626B Authority key identifier: D4:56:F5:EA:D8:D7:34:45:5D:AE:F8:96:A9:05:54:09:FF:4A:07:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D456F5EAD8D734455DAEF896A9055409FF4A078F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/3130332e32312e36352e302f32342d3234203d3e20313530393832.roa Signing time: Sat 20 Apr 2024 15:00:00 +0000 ROA not before: Sat 20 Apr 2024 14:55:00 +0000 ROA not after: Sat 19 Apr 2025 15:00:00 +0000 asID: 150982 IP address blocks: 103.21.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/D456F5EAD8D734455DAEF896A9055409FF4A078F.crl rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/D456F5EAD8D734455DAEF896A9055409FF4A078F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D456F5EAD8D734455DAEF896A9055409FF4A078F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:7a:3b:b3:fb:e2:fb:b5:5e:0e:fc:1e:2a:bb:4f:8f:d3:63:62:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D456F5EAD8D734455DAEF896A9055409FF4A078F Validity Not Before: Apr 20 14:55:00 2024 GMT Not After : Apr 19 15:00:00 2025 GMT Subject: CN=4093F0279B56F90499211DE24D34819A7B528826 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:c5:a4:44:f5:81:65:30:69:e1:2a:f6:54:2d: cd:d5:62:03:df:92:6a:9a:42:28:bf:c3:26:66:de: 78:88:c5:41:32:f0:b9:1e:fb:6f:34:48:45:58:d8: 66:59:c2:63:63:53:df:31:70:45:f4:aa:bf:e5:57: 24:32:4d:8c:a6:53:65:ac:61:83:ef:2f:a0:8c:d1: a1:23:bb:c5:a5:ae:06:a2:19:81:75:31:6c:fd:96: 34:bc:24:a3:e3:34:15:30:d2:41:d6:67:e8:52:7d: a9:5b:df:a1:6a:25:88:90:25:ce:2f:38:c7:d3:cb: 11:59:92:5d:41:31:92:f4:0a:e5:a3:b4:86:e3:8c: b0:68:05:c5:97:d0:2f:f5:d1:07:5d:ee:de:6d:58: 0b:81:a8:e7:8e:2e:65:db:c2:1f:20:05:2c:52:d2: d3:eb:12:48:25:20:03:67:df:c0:5f:8a:81:87:a7: 29:cf:a3:7c:04:56:7e:da:00:24:96:03:07:5d:b1: 5c:17:e3:cb:6a:b4:72:88:02:52:d3:82:20:f5:93: f3:c1:37:d8:66:9d:e6:0c:61:bb:87:cb:31:5e:a7: f7:07:ec:66:56:f8:b8:6b:73:4c:a9:94:a9:89:eb: f3:79:ef:5d:f5:24:32:b9:ff:68:b1:34:38:1d:6b: d3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:93:F0:27:9B:56:F9:04:99:21:1D:E2:4D:34:81:9A:7B:52:88:26 X509v3 Authority Key Identifier: keyid:D4:56:F5:EA:D8:D7:34:45:5D:AE:F8:96:A9:05:54:09:FF:4A:07:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/D456F5EAD8D734455DAEF896A9055409FF4A078F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D456F5EAD8D734455DAEF896A9055409FF4A078F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/3130332e32312e36352e302f32342d3234203d3e20313530393832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.65.0/24 Signature Algorithm: sha256WithRSAEncryption 48:45:aa:ce:9b:6e:63:2f:b1:a1:e9:ae:75:5e:05:f8:95:a2: 85:b5:df:c0:65:ea:c7:fe:68:3b:28:da:92:97:15:89:dd:51: 54:09:0c:26:63:96:5a:12:02:ae:e6:ca:ed:be:b7:13:79:97: 7b:15:ce:0a:0e:79:45:16:24:15:37:70:c0:20:a1:72:5c:11: 15:9d:fd:97:9d:44:70:19:ee:35:9f:bc:4e:6b:b7:c9:f7:6e: 97:38:6f:01:c8:cd:32:55:5d:eb:02:92:79:d7:3e:f1:1f:af: b7:20:33:76:b1:09:51:82:22:d7:ce:e0:ae:45:7a:65:aa:79: c6:11:6f:e2:9e:e6:ab:bf:20:1e:8f:1b:62:8a:8b:5a:fa:a5: b2:bc:61:2f:5d:b5:f7:6d:df:83:96:be:d2:b0:2d:7e:8f:d2: 54:d2:d1:e8:4e:45:5e:38:b0:fd:20:0e:55:4c:96:0f:13:da: 81:8e:44:e3:12:d1:67:04:8b:60:ff:32:4c:da:38:42:a4:27: 70:8f:99:62:9d:c9:08:3f:8b:84:38:a2:b1:c5:37:73:fd:87: dc:b8:51:f9:43:79:fa:b2:05:f5:92:52:0c:cd:34:91:56:1b: b4:3c:96:bd:c0:25:5e:75:78:91:74:a1:ff:01:28:59:7a:28: 1e:e9:ca:2d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUb3o7s/vi+7VeDvweKrtPj9NjYmswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQ1NkY1RUFEOEQ3MzQ0NTVEQUVGODk2QTkwNTU0MDlG RjRBMDc4RjAeFw0yNDA0MjAxNDU1MDBaFw0yNTA0MTkxNTAwMDBaMDMxMTAvBgNV BAMTKDQwOTNGMDI3OUI1NkY5MDQ5OTIxMURFMjREMzQ4MTlBN0I1Mjg4MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwxaRE9YFlMGnhKvZULc3VYgPf kmqaQii/wyZm3niIxUEy8Lke+280SEVY2GZZwmNjU98xcEX0qr/lVyQyTYymU2Ws YYPvL6CM0aEju8WlrgaiGYF1MWz9ljS8JKPjNBUw0kHWZ+hSfalb36FqJYiQJc4v OMfTyxFZkl1BMZL0CuWjtIbjjLBoBcWX0C/10Qdd7t5tWAuBqOeOLmXbwh8gBSxS 0tPrEkglIANn38BfioGHpynPo3wEVn7aACSWAwddsVwX48tqtHKIAlLTgiD1k/PB N9hmneYMYbuHyzFep/cH7GZW+Lhrc0yplKmJ6/N57131JDK5/2ixNDgda9M3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUQJPwJ5tW+QSZIR3iTTSBmntSiCYwHwYDVR0j BBgwFoAU1Fb16tjXNEVdrviWqQVUCf9KB48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NmJlYzhlOS02NTY4LTQ3OGQtYmQyNi1mNmU3Nzc4NzU1MTEvMC9ENDU2RjVFQUQ4 RDczNDQ1NURBRUY4OTZBOTA1NTQwOUZGNEEwNzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDQ1NkY1RUFEOEQ3MzQ0NTVEQUVGODk2QTkwNTU0MDlGRjRB MDc4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2YmVjOGU5LTY1NjgtNDc4ZC1i ZDI2LWY2ZTc3Nzg3NTUxMS8wLzMxMzAzMzJlMzIzMTJlMzYzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM5MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcVQTANBgkqhkiG 9w0BAQsFAAOCAQEASEWqzptuYy+xoemudV4F+JWihbXfwGXqx/5oOyjakpcVid1R VAkMJmOWWhICrubK7b63E3mXexXOCg55RRYkFTdwwCChclwRFZ39l51EcBnuNZ+8 Tmu3yfdulzhvAcjNMlVd6wKSedc+8R+vtyAzdrEJUYIi187grkV6Zap5xhFv4p7m q78gHo8bYoqLWvqlsrxhL121923fg5a+0rAtfo/SVNLR6E5FXjiw/SAOVUyWDxPa gY5E4xLRZwSLYP8yTNo4QqQncI+ZYp3JCD+LhDiiscU3c/2H3LhR+UN5+rIF9ZJS DM00kVYbtDyWvcAlXnV4kXSh/wEoWXooHunKLQ== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org