$ rpki-client -vvf repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233382e302f32342d3234203d3e20313335343339.roa File: 3130332e3231342e3233382e302f32342d3234203d3e20313335343339.roa (raw, json) Hash identifier: ynM7K4ddaQaN3PL6ac3/eCXAK1x3BeUzjtBXslKgCQw= Subject key identifier: 79:B1:A4:B7:69:D2:CE:02:E6:A9:D0:DC:A5:AA:1B:11:7B:10:24:35 Certificate issuer: /CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE Certificate serial: 557148221680B3A10C9452B068EF9CED0046430D Authority key identifier: 97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233382e302f32342d3234203d3e20313335343339.roa Signing time: Sun 31 Dec 2023 08:14:16 +0000 ROA not before: Sun 31 Dec 2023 08:09:16 +0000 ROA not after: Sun 29 Dec 2024 08:14:16 +0000 asID: 135439 IP address blocks: 103.214.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:71:48:22:16:80:b3:a1:0c:94:52:b0:68:ef:9c:ed:00:46:43:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE Validity Not Before: Dec 31 08:09:16 2023 GMT Not After : Dec 29 08:14:16 2024 GMT Subject: CN=79B1A4B769D2CE02E6A9D0DCA5AA1B117B102435 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:1a:14:7c:34:5e:2e:ac:11:9a:44:87:eb:16: 41:d0:e6:20:f6:ab:2d:0b:85:a6:c3:13:2c:4f:f1: 85:97:42:0b:c9:7a:b8:e3:92:26:cc:a9:64:8a:bf: a8:8c:a8:56:0c:3a:58:42:7b:fc:c8:4b:ad:fb:00: 56:e1:9f:27:71:5a:89:bd:fc:65:a5:02:ac:58:67: e4:e9:d5:3d:c6:c7:f5:34:37:e4:4b:85:0e:67:30: 36:f8:ed:7f:71:dd:68:59:dd:d4:60:e3:9f:f8:4f: 38:fa:a1:3e:00:7c:df:d1:44:95:41:c3:30:ea:1a: 7f:b5:bb:22:68:09:e9:02:e3:c7:d9:46:c5:ea:ff: de:ff:3d:f5:01:2c:cf:1a:6e:b1:7b:43:ab:19:28: 4f:73:6d:11:61:cc:eb:46:49:36:10:17:59:0c:06: 39:b7:56:ca:90:1c:1a:ca:b8:3d:34:dd:5e:3f:93: e3:aa:53:fc:f3:ef:f2:af:a8:f0:52:81:1e:47:28: 0b:ef:10:e7:6d:90:ef:9b:f5:aa:1d:56:cb:f8:3e: 74:62:9c:54:89:b7:13:08:ec:b1:28:e9:82:2b:47: 9a:3d:c3:84:70:5e:b5:d1:8a:cc:b8:bc:0d:bf:f1: 5e:65:13:09:aa:33:f1:ce:27:c4:7e:3d:d3:f7:cf: 42:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:B1:A4:B7:69:D2:CE:02:E6:A9:D0:DC:A5:AA:1B:11:7B:10:24:35 X509v3 Authority Key Identifier: keyid:97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233382e302f32342d3234203d3e20313335343339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.214.238.0/24 Signature Algorithm: sha256WithRSAEncryption 29:e4:d2:58:23:5b:82:5f:47:51:e8:5b:92:cc:35:3b:6f:5f: e7:86:ea:96:dd:0e:e9:b1:19:50:fb:b9:fd:4d:71:f9:f2:ff: de:79:04:93:de:ca:7a:83:b8:87:89:8a:63:60:6c:c3:c6:e6: 47:91:22:56:43:84:74:72:1b:f0:e1:f7:d6:6c:56:42:b5:00: 3a:1a:04:a2:cf:63:57:54:e6:a8:d2:d7:a6:94:2e:b3:7c:e9: cd:b1:1b:72:27:da:cc:63:aa:b4:7f:70:aa:a4:67:13:4f:43: b5:d1:ec:db:86:be:d8:95:c4:91:da:a4:6e:63:c9:d9:21:19: 29:4d:4c:69:2f:95:4b:a6:27:35:fb:c2:43:08:45:54:61:1c: 82:a5:48:39:0d:c4:42:1d:be:38:a7:49:97:99:a0:7c:da:52: d9:b4:1a:71:76:65:6f:58:c0:d5:ba:00:c7:69:a4:52:ca:e8: e4:d3:df:58:0f:09:3d:2d:61:6e:ef:da:4b:5f:02:95:e8:d1: df:67:63:0b:f8:58:b1:c0:d0:22:b9:2d:1c:34:07:e2:4b:e9: 3e:de:af:d2:95:fe:a3:e5:72:94:03:cf:64:b1:35:83:99:81: 8d:fa:54:60:39:da:fc:dd:73:61:fe:ac:b8:d0:90:fd:64:6b: 74:ec:b2:2a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVXFIIhaAs6EMlFKwaO+c7QBGQw0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTc5QjMyOTM1RUJGQTJEQTZEQ0IwQTc5REIzOTdGRDdC NDlENEVGRTAeFw0yMzEyMzEwODA5MTZaFw0yNDEyMjkwODE0MTZaMDMxMTAvBgNV BAMTKDc5QjFBNEI3NjlEMkNFMDJFNkE5RDBEQ0E1QUExQjExN0IxMDI0MzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdGhR8NF4urBGaRIfrFkHQ5iD2 qy0LhabDEyxP8YWXQgvJerjjkibMqWSKv6iMqFYMOlhCe/zIS637AFbhnydxWom9 /GWlAqxYZ+Tp1T3Gx/U0N+RLhQ5nMDb47X9x3WhZ3dRg45/4Tzj6oT4AfN/RRJVB wzDqGn+1uyJoCekC48fZRsXq/97/PfUBLM8abrF7Q6sZKE9zbRFhzOtGSTYQF1kM Bjm3VsqQHBrKuD003V4/k+OqU/zz7/KvqPBSgR5HKAvvEOdtkO+b9aodVsv4PnRi nFSJtxMI7LEo6YIrR5o9w4RwXrXRisy4vA2/8V5lEwmqM/HOJ8R+PdP3z0KxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUebGkt2nSzgLmqdDcpaobEXsQJDUwHwYDVR0j BBgwFoAUl5syk16/otptywp52zl/17SdTv4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZGU3MTQzNy04NWZjLTQ3YWYtOTY4Ny05MDNiYWZiMmMxNjEvMC85NzlCMzI5MzVF QkZBMkRBNkRDQjBBNzlEQjM5N0ZEN0I0OUQ0RUZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTc5QjMyOTM1RUJGQTJEQTZEQ0IwQTc5REIzOTdGRDdCNDlE NEVGRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NkZTcxNDM3LTg1ZmMtNDdhZi05 Njg3LTkwM2JhZmIyYzE2MS8wLzMxMzAzMzJlMzIzMTM0MmUzMjMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzUzNDMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn1u4wDQYJ KoZIhvcNAQELBQADggEBACnk0lgjW4JfR1HoW5LMNTtvX+eG6pbdDumxGVD7uf1N cfny/955BJPeynqDuIeJimNgbMPG5keRIlZDhHRyG/Dh99ZsVkK1ADoaBKLPY1dU 5qjS16aULrN86c2xG3In2sxjqrR/cKqkZxNPQ7XR7NuGvtiVxJHapG5jydkhGSlN TGkvlUumJzX7wkMIRVRhHIKlSDkNxEIdvjinSZeZoHzaUtm0GnF2ZW9YwNW6AMdp pFLK6OTT31gPCT0tYW7v2ktfApXo0d9nYwv4WLHA0CK5LRw0B+JL6T7er9KV/qPl cpQDz2SxNYOZgY36VGA52vzdc2H+rLjQkP1ka3Tssio= -----END CERTIFICATE-----Generated at Sun Nov 24 21:43:11 2024 by rpki-client on console-ams.rpki-client.org