$ rpki-client -vvf repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235322e302f32342d3234203d3e20313333373939.roa File: 3130332e34322e3235322e302f32342d3234203d3e20313333373939.roa (raw, json) Hash identifier: nEfFT0wh2/O+65J6AAun5DCt3rcacULUOhZBBgFYKyQ= Subject key identifier: 28:E8:76:BD:3E:5B:87:0E:0D:BF:30:C7:9F:79:C5:ED:6F:2C:0D:15 Certificate issuer: /CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Certificate serial: 3BA20DB6AA5429714DAD3661A26BA8E5A09D9AC4 Authority key identifier: 10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235322e302f32342d3234203d3e20313333373939.roa Signing time: Sat 04 May 2024 16:10:03 +0000 ROA not before: Sat 04 May 2024 16:05:03 +0000 ROA not after: Sat 03 May 2025 16:10:03 +0000 asID: 133799 IP address blocks: 103.42.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:25:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:a2:0d:b6:aa:54:29:71:4d:ad:36:61:a2:6b:a8:e5:a0:9d:9a:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Validity Not Before: May 4 16:05:03 2024 GMT Not After : May 3 16:10:03 2025 GMT Subject: CN=28E876BD3E5B870E0DBF30C79F79C5ED6F2C0D15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:38:fb:47:58:1f:3c:55:e5:60:cf:0d:29:0b: 4e:7f:e9:30:d4:4d:1a:70:7a:4b:a3:93:36:49:9c: b9:ba:d6:9f:55:e6:85:d7:9a:d5:f7:1e:8d:c5:7a: 11:c8:18:fd:74:db:d8:86:ad:e3:47:bb:44:11:fe: 84:68:e5:5f:db:f5:37:38:2b:39:13:26:f7:bb:32: 37:8f:52:28:46:cd:df:11:25:30:13:12:ef:ae:11: 9c:b2:43:b9:8f:2f:5a:9d:f4:fc:3c:72:82:32:62: 98:ee:f6:45:1a:74:1a:d9:10:97:9e:1b:08:22:45: 19:c6:11:8e:e7:4e:99:24:ef:0f:94:d1:02:fc:51: b7:b0:5c:1e:86:61:03:93:db:cd:05:99:0e:36:cb: cf:eb:58:47:5b:23:1e:7f:17:db:be:b3:bd:07:9c: ab:52:d6:25:21:71:dc:5c:f6:94:15:15:39:42:02: 6a:1a:9a:c6:04:5f:a7:37:82:17:22:59:8a:88:e7: df:48:f4:c7:bd:5a:3c:03:43:74:18:d0:74:00:37: 64:ca:cd:2e:a6:5b:84:aa:e9:7c:3c:b5:af:dc:cc: 4a:55:ca:c2:49:e0:30:6d:db:9c:27:70:0f:fe:18: 57:a3:cd:92:1c:55:23:d7:4d:50:20:bb:03:7c:82: b9:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:E8:76:BD:3E:5B:87:0E:0D:BF:30:C7:9F:79:C5:ED:6F:2C:0D:15 X509v3 Authority Key Identifier: keyid:10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235322e302f32342d3234203d3e20313333373939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.42.252.0/24 Signature Algorithm: sha256WithRSAEncryption ce:09:bd:0a:de:dc:f7:52:70:71:dc:9a:91:49:40:00:35:e3: 30:3d:25:bd:dd:35:63:7a:39:1a:54:e4:6d:00:46:ff:99:6e: 49:5b:60:20:3d:78:a0:01:e9:7d:98:1b:a6:52:ab:76:22:d4: 19:92:74:ca:e4:51:1b:ef:6e:7e:06:db:cb:8e:2e:24:47:51: b0:8f:b9:63:73:23:af:be:88:ee:ec:35:f9:f8:06:65:11:b9: d2:3a:70:db:55:55:c3:e5:79:71:3a:dd:d5:3f:b2:c4:41:76: e9:ac:b6:bb:e2:84:b0:77:e2:08:1c:30:4c:3f:bd:90:d0:9f: 22:1a:b4:e4:ee:13:03:06:67:fc:3d:09:52:a7:d9:65:be:47: 25:13:03:52:1d:89:f5:43:96:2e:0d:97:01:07:60:4c:17:6e: fb:61:ea:b8:ba:88:f2:58:fe:77:b7:96:20:fa:b9:26:53:07: 67:0a:a9:e5:b2:06:aa:9b:3e:cc:32:e2:26:be:db:8e:a6:8c: bb:14:e8:d1:5c:b9:ee:2b:e5:cd:a5:d0:96:df:68:d3:6a:0a: f0:43:cf:b2:2e:a4:57:c5:61:1c:5d:76:85:81:09:57:bb:c0: 6e:86:c6:d4:b1:31:d5:41:27:77:6d:73:34:db:ab:b7:72:d4: 90:3b:ed:93 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUO6INtqpUKXFNrTZhomuo5aCdmsQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZD MTIwMjg1MzAeFw0yNDA1MDQxNjA1MDNaFw0yNTA1MDMxNjEwMDNaMDMxMTAvBgNV BAMTKDI4RTg3NkJEM0U1Qjg3MEUwREJGMzBDNzlGNzlDNUVENkYyQzBEMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrOPtHWB88VeVgzw0pC05/6TDU TRpwekujkzZJnLm61p9V5oXXmtX3Ho3FehHIGP1029iGreNHu0QR/oRo5V/b9Tc4 KzkTJve7MjePUihGzd8RJTATEu+uEZyyQ7mPL1qd9Pw8coIyYpju9kUadBrZEJee GwgiRRnGEY7nTpkk7w+U0QL8UbewXB6GYQOT280FmQ42y8/rWEdbIx5/F9u+s70H nKtS1iUhcdxc9pQVFTlCAmoamsYEX6c3ghciWYqI599I9Me9WjwDQ3QY0HQAN2TK zS6mW4Sq6Xw8ta/czEpVysJJ4DBt25wncA/+GFejzZIcVSPXTVAguwN8grkjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKOh2vT5bhw4NvzDHn3nF7W8sDRUwHwYDVR0j BBgwFoAUEIJhsrWh88yCjvKlMu2U38EgKFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YjYzZjc3MS1hOTVmLTRiNTMtODdiYy04YmZmNTA0ZGExZjQvMC8xMDgyNjFCMkI1 QTFGM0NDODI4RUYyQTUzMkVEOTRERkMxMjAyODUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZDMTIw Mjg1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NiNjNmNzcxLWE5NWYtNGI1My04 N2JjLThiZmY1MDRkYTFmNC8wLzMxMzAzMzJlMzQzMjJlMzIzNTMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzczOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZyr8MA0GCSqG SIb3DQEBCwUAA4IBAQDOCb0K3tz3UnBx3JqRSUAANeMwPSW93TVjejkaVORtAEb/ mW5JW2AgPXigAel9mBumUqt2ItQZknTK5FEb725+BtvLji4kR1Gwj7ljcyOvvoju 7DX5+AZlEbnSOnDbVVXD5XlxOt3VP7LEQXbprLa74oSwd+IIHDBMP72Q0J8iGrTk 7hMDBmf8PQlSp9llvkclEwNSHYn1Q5YuDZcBB2BMF277Yeq4uojyWP53t5Yg+rkm UwdnCqnlsgaqmz7MMuImvtuOpoy7FOjRXLnuK+XNpdCW32jTagrwQ8+yLqRXxWEc XXaFgQlXu8BuhsbUsTHVQSd3bXM026u3ctSQO+2T -----END CERTIFICATE-----Generated at Fri Nov 22 17:50:11 2024 by rpki-client on console-fra.rpki-client.org