$ rpki-client -vvf repo-rpki.idnic.net/repo/c8e8ff49-f70a-4b6f-aae6-8c77769c5dee/0/3130332e3134362e3230322e302f32332d3234203d3e20313336303532.roa File: 3130332e3134362e3230322e302f32332d3234203d3e20313336303532.roa (raw, json) Hash identifier: XecTj5rW5vjVGioZGbTrF2RL8Bz7nq18kBIEMdfx7K8= Subject key identifier: 9D:D1:67:44:54:84:3D:3F:FC:40:57:B1:74:9F:9E:08:50:42:C5:8A Certificate issuer: /CN=BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981 Certificate serial: 272752A2D6FFA058C6CD577D256FA008359B5341 Authority key identifier: BB:69:F1:3D:2C:ED:C5:F3:48:CE:A1:C1:BB:F6:E1:DC:24:B1:D9:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8e8ff49-f70a-4b6f-aae6-8c77769c5dee/0/3130332e3134362e3230322e302f32332d3234203d3e20313336303532.roa Signing time: Thu 14 Nov 2024 11:02:11 +0000 ROA not before: Thu 14 Nov 2024 10:57:11 +0000 ROA not after: Thu 13 Nov 2025 11:02:11 +0000 asID: 136052 IP address blocks: 103.146.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8e8ff49-f70a-4b6f-aae6-8c77769c5dee/0/BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981.crl rsync://repo-rpki.idnic.net/repo/c8e8ff49-f70a-4b6f-aae6-8c77769c5dee/0/BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:27:52:a2:d6:ff:a0:58:c6:cd:57:7d:25:6f:a0:08:35:9b:53:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981 Validity Not Before: Nov 14 10:57:11 2024 GMT Not After : Nov 13 11:02:11 2025 GMT Subject: CN=9DD1674454843D3FFC4057B1749F9E085042C58A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:7a:3f:00:ab:76:91:60:b0:f2:65:5f:bd:65: 38:a8:2f:b0:5f:dc:08:87:eb:a4:b1:35:9b:51:38: c2:6c:eb:81:83:55:25:58:37:8b:46:f4:99:81:8a: c8:dc:91:d8:28:8c:84:df:82:ee:d4:11:93:da:44: aa:e9:ad:27:15:13:9b:ae:61:8f:82:91:4f:5f:24: 08:a3:6c:a7:58:d8:74:49:9e:8c:cc:db:c8:25:77: 5f:b5:5e:d5:2e:3f:e0:c1:3f:54:20:ff:9d:d9:3b: 1a:f4:3a:e0:f3:b9:69:6d:d8:45:e1:7c:ea:98:c1: 02:be:32:bd:0d:cc:05:cd:e7:45:f1:59:c2:f5:dd: 95:19:06:8f:a1:76:50:8a:22:92:2b:1b:64:87:13: 33:41:84:7e:7b:7b:76:85:bc:c2:97:45:f7:cd:90: de:ef:58:a8:b5:7e:9a:c3:f2:70:02:0d:f8:da:cc: 92:ab:a0:8d:7d:48:fd:1a:db:13:3c:3c:5d:97:ac: 6c:56:24:d0:7b:b2:99:46:ec:aa:2f:89:b5:42:0a: cd:e4:6e:06:8a:90:ac:cd:34:50:42:5f:4f:53:5a: 57:9f:82:15:86:39:bf:3d:17:40:b7:15:ca:4a:52: 73:e4:a9:ff:25:61:1c:82:59:56:e8:12:e5:72:b5: 58:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:D1:67:44:54:84:3D:3F:FC:40:57:B1:74:9F:9E:08:50:42:C5:8A X509v3 Authority Key Identifier: keyid:BB:69:F1:3D:2C:ED:C5:F3:48:CE:A1:C1:BB:F6:E1:DC:24:B1:D9:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8e8ff49-f70a-4b6f-aae6-8c77769c5dee/0/BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB69F13D2CEDC5F348CEA1C1BBF6E1DC24B1D981.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8e8ff49-f70a-4b6f-aae6-8c77769c5dee/0/3130332e3134362e3230322e302f32332d3234203d3e20313336303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.202.0/23 Signature Algorithm: sha256WithRSAEncryption a0:25:c4:8d:23:75:76:a6:a1:5e:f9:1c:36:9f:be:75:1d:00: ae:46:dc:15:73:6f:3a:70:d6:a9:bd:2a:44:bb:23:4c:66:bc: 3e:2d:9b:a3:4b:86:73:e2:e2:88:14:96:d3:20:a2:0a:84:33: 46:a3:cc:93:12:61:54:83:b2:62:dc:92:be:67:52:f8:5c:6e: 7a:f6:00:56:9e:78:82:6c:38:86:cf:8d:0c:7d:14:8a:60:7b: ca:e7:8f:ec:08:36:d4:37:34:7e:00:9b:1a:66:32:b9:20:da: 5c:c5:86:d3:97:b6:61:b6:a4:5f:1d:f5:fb:de:2a:c4:d0:f2: 98:33:db:ab:42:a5:89:73:4a:27:57:81:57:ae:76:1a:82:85: 30:15:ce:48:13:12:15:1b:a1:3c:d6:a0:b2:d3:03:d1:24:1f: d1:0e:6b:07:e1:fb:f7:9a:62:43:4d:68:6a:a5:bd:d0:54:2f: 47:2a:3a:76:01:9d:1a:e5:b4:73:79:6b:0d:9c:0e:63:1a:04: 68:c1:5c:7c:01:c1:c0:96:05:70:b1:91:2e:90:63:66:ce:b5: ca:b1:4f:ca:9d:28:15:11:60:43:07:c9:9d:9d:cb:43:c0:f7: bf:5e:3d:47:3f:40:9b:50:9a:40:26:ee:31:df:58:0e:90:8e: ba:36:0a:20 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJydSotb/oFjGzVd9JW+gCDWbU0EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2OUYxM0QyQ0VEQzVGMzQ4Q0VBMUMxQkJGNkUxREMy NEIxRDk4MTAeFw0yNDExMTQxMDU3MTFaFw0yNTExMTMxMTAyMTFaMDMxMTAvBgNV BAMTKDlERDE2NzQ0NTQ4NDNEM0ZGQzQwNTdCMTc0OUY5RTA4NTA0MkM1OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlej8Aq3aRYLDyZV+9ZTioL7Bf 3AiH66SxNZtROMJs64GDVSVYN4tG9JmBisjckdgojITfgu7UEZPaRKrprScVE5uu YY+CkU9fJAijbKdY2HRJnozM28gld1+1XtUuP+DBP1Qg/53ZOxr0OuDzuWlt2EXh fOqYwQK+Mr0NzAXN50XxWcL13ZUZBo+hdlCKIpIrG2SHEzNBhH57e3aFvMKXRffN kN7vWKi1fprD8nACDfjazJKroI19SP0a2xM8PF2XrGxWJNB7splG7KovibVCCs3k bgaKkKzNNFBCX09TWlefghWGOb89F0C3FcpKUnPkqf8lYRyCWVboEuVytVh7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUndFnRFSEPT/8QFexdJ+eCFBCxYowHwYDVR0j BBgwFoAUu2nxPSztxfNIzqHBu/bh3CSx2YEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGU4ZmY0OS1mNzBhLTRiNmYtYWFlNi04Yzc3NzY5YzVkZWUvMC9CQjY5RjEzRDJD RURDNUYzNDhDRUExQzFCQkY2RTFEQzI0QjFEOTgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkI2OUYxM0QyQ0VEQzVGMzQ4Q0VBMUMxQkJGNkUxREMyNEIx RDk4MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4ZThmZjQ5LWY3MGEtNGI2Zi1h YWU2LThjNzc3NjljNWRlZS8wLzMxMzAzMzJlMzEzNDM2MmUzMjMwMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzYzMDM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnksowDQYJ KoZIhvcNAQELBQADggEBAKAlxI0jdXamoV75HDafvnUdAK5G3BVzbzpw1qm9KkS7 I0xmvD4tm6NLhnPi4ogUltMgogqEM0ajzJMSYVSDsmLckr5nUvhcbnr2AFaeeIJs OIbPjQx9FIpge8rnj+wINtQ3NH4AmxpmMrkg2lzFhtOXtmG2pF8d9fveKsTQ8pgz 26tCpYlzSidXgVeudhqChTAVzkgTEhUboTzWoLLTA9EkH9EOawfh+/eaYkNNaGql vdBUL0cqOnYBnRrltHN5aw2cDmMaBGjBXHwBwcCWBXCxkS6QY2bOtcqxT8qdKBUR YEMHyZ2dy0PA979ePUc/QJtQmkAm7jHfWA6Qjro2CiA= -----END CERTIFICATE-----Generated at Mon Nov 25 15:26:45 2024 by rpki-client on console-fra.rpki-client.org