$ rpki-client -vvf repo-rpki.idnic.net/repo/cc8d4ee2-549e-4160-8d6f-87730e8ae5e2/0/3130332e3132392e35362e302f32332d3234203d3e20313335343738.roa File: 3130332e3132392e35362e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: pfz/8rylD4VG1jn8Bazj6fev1KIk8r/maBV47q6x3Cw= Subject key identifier: 27:62:67:5B:D6:E5:42:71:0C:40:6B:AD:10:2D:C5:3D:66:AC:33:67 Certificate issuer: /CN=819AD043A7A2F8424ABC9E6CFD9C518670507FC3 Certificate serial: 50D5E35E3CC61215DDB8DC1524C736487124BE1A Authority key identifier: 81:9A:D0:43:A7:A2:F8:42:4A:BC:9E:6C:FD:9C:51:86:70:50:7F:C3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/819AD043A7A2F8424ABC9E6CFD9C518670507FC3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cc8d4ee2-549e-4160-8d6f-87730e8ae5e2/0/3130332e3132392e35362e302f32332d3234203d3e20313335343738.roa Signing time: Wed 03 Jan 2024 09:01:50 +0000 ROA not before: Wed 03 Jan 2024 08:56:50 +0000 ROA not after: Wed 01 Jan 2025 09:01:50 +0000 asID: 135478 IP address blocks: 103.129.56.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cc8d4ee2-549e-4160-8d6f-87730e8ae5e2/0/819AD043A7A2F8424ABC9E6CFD9C518670507FC3.crl rsync://repo-rpki.idnic.net/repo/cc8d4ee2-549e-4160-8d6f-87730e8ae5e2/0/819AD043A7A2F8424ABC9E6CFD9C518670507FC3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/819AD043A7A2F8424ABC9E6CFD9C518670507FC3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:09:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:d5:e3:5e:3c:c6:12:15:dd:b8:dc:15:24:c7:36:48:71:24:be:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=819AD043A7A2F8424ABC9E6CFD9C518670507FC3 Validity Not Before: Jan 3 08:56:50 2024 GMT Not After : Jan 1 09:01:50 2025 GMT Subject: CN=2762675BD6E542710C406BAD102DC53D66AC3367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:15:56:62:6a:12:72:bb:c1:5d:ae:f0:18:8d: f5:0e:2e:56:48:0b:63:69:78:5f:35:54:0a:95:bf: 9c:83:dc:df:45:0c:d9:5c:9d:22:c4:82:c9:09:8d: 42:0c:b6:0f:1c:43:16:1c:a5:1b:c4:26:da:1b:2a: bc:14:1b:3a:3b:dd:6a:a5:79:8e:41:51:81:44:d3: b9:37:27:d0:83:14:88:8e:80:3d:e6:64:71:db:c1: c5:3e:c8:7f:47:21:cb:cf:c9:1d:7c:80:c8:39:f9: 6e:c1:d3:63:ce:18:58:88:db:5e:68:90:43:b0:97: 37:0a:b1:5b:6f:0c:13:58:8a:f7:91:6a:04:f1:73: cc:d5:e0:cf:e3:4a:37:06:35:04:ef:13:a8:da:90: 95:5d:b0:7a:ae:d8:e4:c2:2f:3f:56:28:dd:4c:3e: 0b:45:d3:68:62:b7:be:10:2c:46:9c:89:3e:f4:7f: dc:14:62:10:ed:96:74:3d:4a:44:c0:03:a9:ee:53: c9:dc:81:82:68:86:37:0c:fd:95:b1:2e:27:d9:0b: f7:73:65:7a:d1:0a:09:d7:08:c2:d9:8f:ad:e7:42: a3:52:49:f1:a8:ac:49:41:5f:49:3d:ca:e2:79:15: 62:fb:2e:27:80:ee:2b:61:32:4e:30:67:57:7b:43: 5f:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:62:67:5B:D6:E5:42:71:0C:40:6B:AD:10:2D:C5:3D:66:AC:33:67 X509v3 Authority Key Identifier: keyid:81:9A:D0:43:A7:A2:F8:42:4A:BC:9E:6C:FD:9C:51:86:70:50:7F:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cc8d4ee2-549e-4160-8d6f-87730e8ae5e2/0/819AD043A7A2F8424ABC9E6CFD9C518670507FC3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/819AD043A7A2F8424ABC9E6CFD9C518670507FC3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cc8d4ee2-549e-4160-8d6f-87730e8ae5e2/0/3130332e3132392e35362e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.56.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:9b:99:9e:e5:d1:f6:67:bd:7d:b7:f7:33:63:39:bb:7f:59: 7d:73:1b:13:95:a5:12:39:f1:96:2a:96:2a:52:ce:39:25:94: 10:b4:c4:1b:ab:c1:f9:ad:11:e7:0e:9c:b0:ac:f9:ce:9f:5c: d3:33:2e:18:3b:e5:b3:a8:bf:2a:54:31:e5:7f:85:db:c4:b8: 98:08:97:d8:01:db:1d:84:01:8e:2f:3f:27:41:ad:6b:69:82: 7c:92:c3:2c:6a:bd:09:eb:02:f8:da:d9:46:84:96:ea:78:f1: d7:c3:97:c4:22:cf:9e:1a:d9:98:e9:d8:a9:5f:37:c8:2d:10: 25:e7:98:00:c3:99:ba:0d:66:64:4b:f1:aa:7e:5e:4d:7e:3b: f8:75:68:5f:c7:16:9e:a0:e0:d2:1f:3d:cd:fb:94:d7:1b:28: 6d:15:0e:86:da:8f:26:0d:44:d5:6f:c9:dc:15:99:8e:a9:3f: 29:19:e7:92:8d:a2:d6:45:48:9e:80:75:6a:f3:7c:22:92:03: 06:29:01:93:cb:61:fa:03:7a:88:15:05:61:f1:c7:46:a7:a0: 52:14:86:4f:61:32:29:48:76:c5:5c:5a:83:37:e3:10:17:92: 21:b5:39:d8:63:f9:73:08:db:9b:41:f3:71:4f:9f:74:89:6e: bb:ab:4d:24 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUNXjXjzGEhXduNwVJMc2SHEkvhowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODE5QUQwNDNBN0EyRjg0MjRBQkM5RTZDRkQ5QzUxODY3 MDUwN0ZDMzAeFw0yNDAxMDMwODU2NTBaFw0yNTAxMDEwOTAxNTBaMDMxMTAvBgNV BAMTKDI3NjI2NzVCRDZFNTQyNzEwQzQwNkJBRDEwMkRDNTNENjZBQzMzNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSFVZiahJyu8FdrvAYjfUOLlZI C2NpeF81VAqVv5yD3N9FDNlcnSLEgskJjUIMtg8cQxYcpRvEJtobKrwUGzo73Wql eY5BUYFE07k3J9CDFIiOgD3mZHHbwcU+yH9HIcvPyR18gMg5+W7B02POGFiI215o kEOwlzcKsVtvDBNYiveRagTxc8zV4M/jSjcGNQTvE6jakJVdsHqu2OTCLz9WKN1M PgtF02hit74QLEaciT70f9wUYhDtlnQ9SkTAA6nuU8ncgYJohjcM/ZWxLifZC/dz ZXrRCgnXCMLZj63nQqNSSfGorElBX0k9yuJ5FWL7LieA7ithMk4wZ1d7Q1/RAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJ2JnW9blQnEMQGutEC3FPWasM2cwHwYDVR0j BBgwFoAUgZrQQ6ei+EJKvJ5s/ZxRhnBQf8MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YzhkNGVlMi01NDllLTQxNjAtOGQ2Zi04NzczMGU4YWU1ZTIvMC84MTlBRDA0M0E3 QTJGODQyNEFCQzlFNkNGRDlDNTE4NjcwNTA3RkMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODE5QUQwNDNBN0EyRjg0MjRBQkM5RTZDRkQ5QzUxODY3MDUw N0ZDMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjOGQ0ZWUyLTU0OWUtNDE2MC04 ZDZmLTg3NzMwZThhZTVlMi8wLzMxMzAzMzJlMzEzMjM5MmUzNTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM1MzQzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4E4MA0GCSqG SIb3DQEBCwUAA4IBAQCPm5me5dH2Z719t/czYzm7f1l9cxsTlaUSOfGWKpYqUs45 JZQQtMQbq8H5rRHnDpywrPnOn1zTMy4YO+WzqL8qVDHlf4XbxLiYCJfYAdsdhAGO Lz8nQa1raYJ8ksMsar0J6wL42tlGhJbqePHXw5fEIs+eGtmY6dipXzfILRAl55gA w5m6DWZkS/Gqfl5Nfjv4dWhfxxaeoODSHz3N+5TXGyhtFQ6G2o8mDUTVb8ncFZmO qT8pGeeSjaLWRUiegHVq83wikgMGKQGTy2H6A3qIFQVh8cdGp6BSFIZPYTIpSHbF XFqDN+MQF5IhtTnYY/lzCNubQfNxT590iW67q00k -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:33 2024 by rpki-client on console-fra.rpki-client.org