$ rpki-client -vvf repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233392e302f32342d3234203d3e20313335343339.roa File: 3130332e3231342e3233392e302f32342d3234203d3e20313335343339.roa (raw, json) Hash identifier: ENKnsSy/OWhj3Ow/BbJl4x+btLnfuCRGtF/upNONx9Y= Subject key identifier: 3C:B3:15:6A:88:4D:2A:68:21:46:90:3F:C6:91:D4:85:50:91:56:8E Certificate issuer: /CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE Certificate serial: 62D9DFD3576077F6F5556A3C07868BB4CA1EEB6E Authority key identifier: 97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233392e302f32342d3234203d3e20313335343339.roa Signing time: Sun 31 Dec 2023 08:15:39 +0000 ROA not before: Sun 31 Dec 2023 08:10:39 +0000 ROA not after: Sun 29 Dec 2024 08:15:39 +0000 asID: 135439 IP address blocks: 103.214.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:d9:df:d3:57:60:77:f6:f5:55:6a:3c:07:86:8b:b4:ca:1e:eb:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE Validity Not Before: Dec 31 08:10:39 2023 GMT Not After : Dec 29 08:15:39 2024 GMT Subject: CN=3CB3156A884D2A682146903FC691D4855091568E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:d9:e6:ec:d2:92:07:e3:01:86:2b:29:74:74: 36:f6:98:10:72:84:13:03:00:31:b0:27:48:16:d5: fa:3a:e1:86:c8:26:5c:58:dc:6e:57:c8:fa:01:83: 4c:73:a9:fa:5b:33:71:64:84:13:4a:ce:1b:e7:ab: 9b:a1:cd:e5:1d:cf:ef:ad:1e:cd:f0:04:ce:77:54: 81:9e:0c:76:d6:7b:87:8f:da:75:91:8b:18:4a:e8: 0b:4a:1c:4b:85:97:ea:f3:74:38:e1:67:1a:9d:17: 38:be:d2:8d:ce:01:0d:70:14:e9:75:d6:48:1e:db: 7d:0d:10:cc:f1:71:fd:fe:d6:fa:87:ed:1a:0f:ea: 0f:0b:b4:2a:30:48:f4:18:d1:03:96:31:0f:48:ad: 6b:65:34:97:1f:bf:5f:a7:5e:8a:15:2e:a4:9d:7f: d1:d9:56:b5:6f:bd:f8:33:22:32:a9:16:51:79:97: a2:ae:c3:c2:5b:83:1b:01:8d:3f:83:cb:aa:2a:2c: d9:61:80:dc:41:06:8f:3f:b6:3c:69:96:49:f3:6f: 80:d8:40:cd:2b:f2:00:1e:d3:ab:75:87:12:0e:a7: e0:5f:2d:45:15:bf:7a:8f:55:0d:a9:b8:e5:69:c3: be:7c:2b:23:4f:f9:3d:36:04:e3:2f:fc:4f:65:5a: d7:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:B3:15:6A:88:4D:2A:68:21:46:90:3F:C6:91:D4:85:50:91:56:8E X509v3 Authority Key Identifier: keyid:97:9B:32:93:5E:BF:A2:DA:6D:CB:0A:79:DB:39:7F:D7:B4:9D:4E:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/979B32935EBFA2DA6DCB0A79DB397FD7B49D4EFE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cde71437-85fc-47af-9687-903bafb2c161/0/3130332e3231342e3233392e302f32342d3234203d3e20313335343339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.214.239.0/24 Signature Algorithm: sha256WithRSAEncryption 32:cb:1a:08:4e:78:d9:0a:30:c2:60:a1:07:e7:d5:a2:10:68: 1d:e4:fa:4f:7c:0d:93:4e:33:bd:14:66:a0:7a:0c:e6:21:48: 3d:58:d1:07:9b:16:97:40:43:32:e9:b6:1c:7b:84:8c:99:b8: b2:50:1b:13:da:51:f1:5f:f6:17:ee:8b:3f:53:03:e1:9a:41: e4:37:fe:fb:dc:de:df:df:cb:d4:c5:90:c2:37:08:af:de:69: e9:db:e6:9c:4f:e9:cf:de:7d:52:d2:15:ef:64:d1:ba:47:8e: 8d:82:32:29:1c:a3:95:49:d4:5e:71:e1:d9:bf:d2:fd:a4:71: 50:a1:c9:de:62:7b:ed:76:5a:84:d9:de:e4:03:af:76:91:46: 5f:2a:a5:57:ed:78:3b:e5:9b:87:94:10:80:99:34:82:1d:02: f7:6e:42:9a:02:f5:37:bc:fe:43:88:4e:6e:18:cc:d9:20:d2: d4:13:9d:3f:8a:eb:11:a8:10:9f:76:c1:6f:f8:01:0e:11:f0: 01:a4:cb:4c:2d:02:56:8d:c6:67:73:5d:0f:83:01:ae:92:6b: 33:6e:a5:56:2d:ef:71:e3:9c:cd:66:df:48:ca:9d:e6:1c:13: 0d:34:35:37:14:8a:da:44:71:61:c8:6a:a8:e0:10:b9:0c:40: 98:58:12:c0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYtnf01dgd/b1VWo8B4aLtMoe624wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTc5QjMyOTM1RUJGQTJEQTZEQ0IwQTc5REIzOTdGRDdC NDlENEVGRTAeFw0yMzEyMzEwODEwMzlaFw0yNDEyMjkwODE1MzlaMDMxMTAvBgNV BAMTKDNDQjMxNTZBODg0RDJBNjgyMTQ2OTAzRkM2OTFENDg1NTA5MTU2OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd2ebs0pIH4wGGKyl0dDb2mBBy hBMDADGwJ0gW1fo64YbIJlxY3G5XyPoBg0xzqfpbM3FkhBNKzhvnq5uhzeUdz++t Hs3wBM53VIGeDHbWe4eP2nWRixhK6AtKHEuFl+rzdDjhZxqdFzi+0o3OAQ1wFOl1 1kge230NEMzxcf3+1vqH7RoP6g8LtCowSPQY0QOWMQ9IrWtlNJcfv1+nXooVLqSd f9HZVrVvvfgzIjKpFlF5l6Kuw8JbgxsBjT+Dy6oqLNlhgNxBBo8/tjxplknzb4DY QM0r8gAe06t1hxIOp+BfLUUVv3qPVQ2puOVpw758KyNP+T02BOMv/E9lWtchAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUPLMVaohNKmghRpA/xpHUhVCRVo4wHwYDVR0j BBgwFoAUl5syk16/otptywp52zl/17SdTv4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZGU3MTQzNy04NWZjLTQ3YWYtOTY4Ny05MDNiYWZiMmMxNjEvMC85NzlCMzI5MzVF QkZBMkRBNkRDQjBBNzlEQjM5N0ZEN0I0OUQ0RUZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTc5QjMyOTM1RUJGQTJEQTZEQ0IwQTc5REIzOTdGRDdCNDlE NEVGRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NkZTcxNDM3LTg1ZmMtNDdhZi05 Njg3LTkwM2JhZmIyYzE2MS8wLzMxMzAzMzJlMzIzMTM0MmUzMjMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzUzNDMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn1u8wDQYJ KoZIhvcNAQELBQADggEBADLLGghOeNkKMMJgoQfn1aIQaB3k+k98DZNOM70UZqB6 DOYhSD1Y0QebFpdAQzLpthx7hIyZuLJQGxPaUfFf9hfuiz9TA+GaQeQ3/vvc3t/f y9TFkMI3CK/eaenb5pxP6c/efVLSFe9k0bpHjo2CMikco5VJ1F5x4dm/0v2kcVCh yd5ie+12WoTZ3uQDr3aRRl8qpVfteDvlm4eUEICZNIIdAvduQpoC9Te8/kOITm4Y zNkg0tQTnT+K6xGoEJ92wW/4AQ4R8AGky0wtAlaNxmdzXQ+DAa6SazNupVYt73Hj nM1m30jKneYcEw00NTcUitpEcWHIaqjgELkMQJhYEsA= -----END CERTIFICATE-----Generated at Sun Nov 24 22:10:13 2024 by rpki-client on console-fra.rpki-client.org