$ rpki-client -vvf repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233362e302f32342d3234203d3e20313335343339.roa File: 3130332e3231342e3233362e302f32342d3234203d3e20313335343339.roa (raw, json) Hash identifier: T1K0gG2FTmWAZEgNXMa+o4xMuoxJiBiv8dEY+/ADnzg= Subject key identifier: C4:3D:56:79:A2:BE:7D:D9:6E:4E:49:01:7D:2E:8D:44:CD:98:B8:A9 Certificate issuer: /CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE Certificate serial: 3425F6B79BBA9A126988D6C027F40F1C3E257618 Authority key identifier: 97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233362e302f32342d3234203d3e20313335343339.roa Signing time: Sun 31 Dec 2023 08:13:27 +0000 ROA not before: Sun 31 Dec 2023 08:08:27 +0000 ROA not after: Sun 29 Dec 2024 08:13:27 +0000 asID: 135439 IP address blocks: 103.214.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:25:f6:b7:9b:ba:9a:12:69:88:d6:c0:27:f4:0f:1c:3e:25:76:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE Validity Not Before: Dec 31 08:08:27 2023 GMT Not After : Dec 29 08:13:27 2024 GMT Subject: CN=C43D5679A2BE7DD96E4E49017D2E8D44CD98B8A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:b4:55:1c:71:f4:4d:7c:86:4e:a4:eb:3c:c2: 7b:a4:53:2e:75:4f:2f:22:8b:c1:0d:63:6a:01:87: 5c:0a:18:78:59:72:89:f5:a8:6d:e3:89:24:09:8a: 35:32:76:cf:75:43:71:92:fe:c3:09:6f:17:53:5f: bf:cc:62:bf:10:15:3e:9c:b4:d3:da:c5:a1:6c:1f: 18:0f:01:09:da:73:24:90:1d:71:8b:ac:33:a5:c0: 55:32:5c:44:30:24:bf:90:97:27:c5:8d:9e:5f:ec: 38:fc:ce:6d:37:34:36:55:0a:fc:61:ee:36:35:64: 85:c0:c9:d0:cd:ba:1d:7a:f9:df:78:0d:d7:87:5c: 9b:a1:5f:b4:70:47:d0:2f:85:f4:d2:71:ec:00:a7: 79:3e:64:b1:6e:0c:cd:97:f3:57:2a:28:22:24:50: 4c:c2:9a:ee:12:5d:f9:c7:7a:ee:23:ef:56:a6:a0: 41:35:62:b6:f8:31:e7:58:09:f2:58:8b:24:d8:95: 99:db:c1:c4:4c:53:73:5e:4a:b4:d1:cc:77:91:8d: bb:87:0e:3b:64:5b:1a:09:ea:ab:25:df:dc:48:4e: fc:f3:29:2a:4b:85:cb:a5:70:fe:d1:f2:05:b5:12: 1d:ae:d7:7d:28:7c:c4:b1:8c:be:c2:0b:93:8f:a1: 2d:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:3D:56:79:A2:BE:7D:D9:6E:4E:49:01:7D:2E:8D:44:CD:98:B8:A9 X509v3 Authority Key Identifier: keyid:97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233362e302f32342d3234203d3e20313335343339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.214.236.0/24 Signature Algorithm: sha256WithRSAEncryption 97:22:49:94:46:aa:3a:2d:bf:e6:31:50:60:63:dc:8a:82:4d: bb:8f:2d:b5:58:aa:e0:e2:f5:e6:bb:28:b8:83:2a:47:60:69: 98:96:0b:41:15:6f:ab:3c:c1:38:a2:a2:fa:65:99:27:cf:96: 45:cd:7a:ac:73:3a:5d:eb:1e:8f:65:03:7c:73:14:9e:e1:e1: e1:aa:db:1f:d7:b4:c2:7e:67:b2:5c:92:05:ca:94:e0:b4:53: 61:62:84:7b:b1:81:fb:4f:00:bd:95:5c:4b:f7:e3:ef:ac:84: 4a:b8:79:04:2e:de:b0:0d:a7:66:4d:72:70:ce:ae:7d:28:a2: 05:15:cc:f4:d4:ff:5b:d2:8d:93:de:02:5e:4f:d7:c2:37:f6: e9:a5:64:fa:18:0c:6f:51:78:81:75:c7:ab:9e:f1:af:5e:15: b5:4c:44:2e:e2:8b:f5:db:84:dc:06:15:d8:8b:10:a1:a8:f0: a0:59:26:ad:25:08:7b:4c:cc:bd:da:e1:03:ff:84:c4:4b:60: 07:ea:92:80:6f:17:63:1c:83:18:0b:e2:97:e3:b1:e5:9d:b9: 70:48:f0:87:26:9d:11:10:bb:52:e4:27:42:c8:ef:27:a9:50: 04:60:85:8b:cf:41:47:0a:54:05:b6:35:fa:37:02:22:64:08: cd:1a:b2:74 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNCX2t5u6mhJpiNbAJ/QPHD4ldhgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTc5QjMyOTM1RUJGQTJEQTZEQ0IwQTc5REIzOTdGRDdC NDlENEVGRTAeFw0yMzEyMzEwODA4MjdaFw0yNDEyMjkwODEzMjdaMDMxMTAvBgNV BAMTKEM0M0Q1Njc5QTJCRTdERDk2RTRFNDkwMTdEMkU4RDQ0Q0Q5OEI4QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDitFUccfRNfIZOpOs8wnukUy51 Ty8ii8ENY2oBh1wKGHhZcon1qG3jiSQJijUyds91Q3GS/sMJbxdTX7/MYr8QFT6c tNPaxaFsHxgPAQnacySQHXGLrDOlwFUyXEQwJL+QlyfFjZ5f7Dj8zm03NDZVCvxh 7jY1ZIXAydDNuh16+d94DdeHXJuhX7RwR9AvhfTScewAp3k+ZLFuDM2X81cqKCIk UEzCmu4SXfnHeu4j71amoEE1Yrb4MedYCfJYiyTYlZnbwcRMU3NeSrTRzHeRjbuH DjtkWxoJ6qsl39xITvzzKSpLhculcP7R8gW1Eh2u130ofMSxjL7CC5OPoS35AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUxD1WeaK+fdluTkkBfS6NRM2YuKkwHwYDVR0j BBgwFoAUl5syk16/otptywp52zl/17SdTv4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZGU3MTQzNy04NWZjLTQ3YWYtOTY4Ny05MDNiYWZiMmMxNjEvMC85NzlCMzI5MzVF QkZBMkRBNkRDQjBBNzlEQjM5N0ZEN0I0OUQ0RUZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTc5QjMyOTM1RUJGQTJEQTZEQ0IwQTc5REIzOTdGRDdCNDlE NEVGRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NkZTcxNDM3LTg1ZmMtNDdhZi05 Njg3LTkwM2JhZmIyYzE2MS8wLzMxMzAzMzJlMzIzMTM0MmUzMjMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzUzNDMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn1uwwDQYJ KoZIhvcNAQELBQADggEBAJciSZRGqjotv+YxUGBj3IqCTbuPLbVYquDi9ea7KLiD KkdgaZiWC0EVb6s8wTiiovplmSfPlkXNeqxzOl3rHo9lA3xzFJ7h4eGq2x/XtMJ+ Z7JckgXKlOC0U2FihHuxgftPAL2VXEv34++shEq4eQQu3rANp2ZNcnDOrn0oogUV zPTU/1vSjZPeAl5P18I39umlZPoYDG9ReIF1x6ue8a9eFbVMRC7ii/XbhNwGFdiL EKGo8KBZJq0lCHtMzL3a4QP/hMRLYAfqkoBvF2McgxgL4pfjseWduXBI8IcmnREQ u1LkJ0LI7yepUARghYvPQUcKVAW2Nfo3AiJkCM0asnQ= -----END CERTIFICATE-----Generated at Sun Nov 24 22:10:13 2024 by rpki-client on console-fra.rpki-client.org