$ rpki-client -vvf repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233362e302f32322d3232203d3e20313335343339.roa File: 3130332e3231342e3233362e302f32322d3232203d3e20313335343339.roa (raw, json) Hash identifier: 98eiZnNbdefC7schrSfuFwV8+kslNo7j92Mp0vdFM0o= Subject key identifier: A3:E2:FC:63:F9:66:3C:3D:87:31:73:6D:4E:5E:B2:D3:8E:F7:9F:27 Certificate issuer: /CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE Certificate serial: 70D7E1BCFA37BE5761A03ACB413F110E944DD549 Authority key identifier: 97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233362e302f32322d3232203d3e20313335343339.roa Signing time: Sun 31 Dec 2023 08:09:14 +0000 ROA not before: Sun 31 Dec 2023 08:04:14 +0000 ROA not after: Sun 29 Dec 2024 08:09:14 +0000 asID: 135439 IP address blocks: 103.214.236.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:d7:e1:bc:fa:37:be:57:61:a0:3a:cb:41:3f:11:0e:94:4d:d5:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE Validity Not Before: Dec 31 08:04:14 2023 GMT Not After : Dec 29 08:09:14 2024 GMT Subject: CN=A3E2FC63F9663C3D8731736D4E5EB2D38EF79F27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a5:7e:16:72:cd:dc:9e:de:bf:6a:f6:d4:dd: 51:7c:37:80:86:d5:1c:05:0b:a0:98:9c:5f:5a:b0: bd:32:17:16:85:b0:a1:98:83:2b:2c:31:06:6e:08: c2:07:0b:34:18:86:8b:e6:cd:69:9e:5a:d1:5f:61: fa:b9:04:a6:68:80:97:cc:bb:2a:7e:ef:e6:ff:20: ca:62:8c:10:4f:e6:57:47:f9:56:ba:35:bf:d2:cf: 4d:64:7f:35:fb:62:d6:02:02:46:59:6e:e1:5a:03: d2:ce:a6:a8:58:7c:d8:71:78:85:2b:9e:df:d7:50: cc:57:27:43:ba:59:35:3d:bb:49:03:a0:b2:65:72: 88:e4:8c:cd:5d:2d:89:78:9a:38:a5:8d:ab:ad:4b: be:83:47:de:6f:46:85:8d:e6:17:d2:3a:2f:4c:68: 4b:ac:d4:cb:b6:25:ed:ce:5a:a7:f0:87:93:26:6f: 9b:b7:9e:b3:2f:88:79:55:a2:95:26:91:52:8e:af: ea:7d:6f:d6:10:4f:09:67:27:47:5d:29:f0:0e:dd: bc:c3:4d:b9:bf:fd:b3:7b:c0:9d:e8:21:ee:d3:52: 4c:ae:d6:96:98:e8:88:c2:b8:56:f2:be:d4:87:99: 05:4d:27:96:88:dc:59:45:84:5f:7f:4d:3f:73:f3: 80:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:E2:FC:63:F9:66:3C:3D:87:31:73:6D:4E:5E:B2:D3:8E:F7:9F:27 X509v3 Authority Key Identifier: keyid:97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233362e302f32322d3232203d3e20313335343339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.214.236.0/22 Signature Algorithm: sha256WithRSAEncryption 69:8a:14:14:7f:9c:4f:bb:5d:90:dd:ed:4b:74:bc:69:ec:58: c7:0b:c2:43:e4:2e:9c:b7:e9:18:63:97:57:18:19:81:e4:b0: cc:99:3f:c8:21:89:f6:a2:18:de:a7:a8:ba:0a:df:38:0f:c5: f0:82:db:b4:62:e9:ae:51:c6:d3:f7:0a:91:8d:ff:89:c5:f3: 6e:a9:cb:89:dc:75:49:5c:be:0e:ed:51:41:36:d4:a6:a1:1d: fa:95:a0:42:62:59:a6:f6:ff:c7:08:d8:c3:8e:1a:97:fd:d1: 06:b8:8e:0c:a2:00:d2:4b:d4:74:82:83:5e:73:6e:6b:a0:f5: 0a:e4:8c:99:03:79:1d:52:d6:98:97:e7:26:9b:e8:5b:5c:d4: be:25:83:db:76:fc:2b:80:a0:e5:7e:58:cb:9b:94:e7:f1:d6: b4:ee:a5:1c:cf:a8:29:5a:d6:d0:53:57:f4:f7:cf:ee:16:3c: a6:68:05:6e:6e:fb:10:27:f4:c8:72:96:2d:68:3a:d6:8b:f2: 24:93:c4:fa:9a:44:e3:a5:47:04:ec:14:42:b3:bf:d9:3a:99: c8:56:9c:9f:1e:61:24:b1:6d:8b:9d:11:be:ad:33:89:d9:d6: 20:c9:29:06:94:e4:df:43:ee:f4:68:00:4a:b7:35:81:83:56: 37:07:90:ab -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcNfhvPo3vldhoDrLQT8RDpRN1UkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTc5QjMyOTM1RUJGQTJEQTZEQ0IwQTc5REIzOTdGRDdC NDlENEVGRTAeFw0yMzEyMzEwODA0MTRaFw0yNDEyMjkwODA5MTRaMDMxMTAvBgNV BAMTKEEzRTJGQzYzRjk2NjNDM0Q4NzMxNzM2RDRFNUVCMkQzOEVGNzlGMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOpX4Wcs3cnt6/avbU3VF8N4CG 1RwFC6CYnF9asL0yFxaFsKGYgyssMQZuCMIHCzQYhovmzWmeWtFfYfq5BKZogJfM uyp+7+b/IMpijBBP5ldH+Va6Nb/Sz01kfzX7YtYCAkZZbuFaA9LOpqhYfNhxeIUr nt/XUMxXJ0O6WTU9u0kDoLJlcojkjM1dLYl4mjiljautS76DR95vRoWN5hfSOi9M aEus1Mu2Je3OWqfwh5Mmb5u3nrMviHlVopUmkVKOr+p9b9YQTwlnJ0ddKfAO3bzD Tbm//bN7wJ3oIe7TUkyu1paY6IjCuFbyvtSHmQVNJ5aI3FlFhF9/TT9z84CnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUo+L8Y/lmPD2HMXNtTl6y0473nycwHwYDVR0j BBgwFoAUl5syk16/otptywp52zl/17SdTv4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZGU3MTQzNy04NWZjLTQ3YWYtOTY4Ny05MDNiYWZiMmMxNjEvMC85NzlCMzI5MzVF QkZBMkRBNkRDQjBBNzlEQjM5N0ZEN0I0OUQ0RUZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTc5QjMyOTM1RUJGQTJEQTZEQ0IwQTc5REIzOTdGRDdCNDlE NEVGRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NkZTcxNDM3LTg1ZmMtNDdhZi05 Njg3LTkwM2JhZmIyYzE2MS8wLzMxMzAzMzJlMzIzMTM0MmUzMjMzMzYyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMTMzMzUzNDMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn1uwwDQYJ KoZIhvcNAQELBQADggEBAGmKFBR/nE+7XZDd7Ut0vGnsWMcLwkPkLpy36Rhjl1cY GYHksMyZP8ghifaiGN6nqLoK3zgPxfCC27Ri6a5RxtP3CpGN/4nF826py4ncdUlc vg7tUUE21KahHfqVoEJiWab2/8cI2MOOGpf90Qa4jgyiANJL1HSCg15zbmug9Qrk jJkDeR1S1piX5yab6Ftc1L4lg9t2/CuAoOV+WMublOfx1rTupRzPqCla1tBTV/T3 z+4WPKZoBW5u+xAn9Mhyli1oOtaL8iSTxPqaROOlRwTsFEKzv9k6mchWnJ8eYSSx bYudEb6tM4nZ1iDJKQaU5N9D7vRoAEq3NYGDVjcHkKs= -----END CERTIFICATE-----Generated at Sun Nov 24 22:10:13 2024 by rpki-client on console-fra.rpki-client.org