$ rpki-client -vvf repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230372e302f32342d3234203d3e20313336383639.roa File: 3130332e3130342e3230372e302f32342d3234203d3e20313336383639.roa (raw, json) Hash identifier: D3QpbLwBuqBnzghQzR94brnrZBQs5SslJENq3gZzkrM= Subject key identifier: A5:87:67:BB:CF:B9:62:B1:69:01:BE:74:B0:B4:37:97:23:0B:9F:FD Certificate issuer: /CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Certificate serial: 79CBBB573A206E8EDA9A27D070A5274394129F91 Authority key identifier: D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230372e302f32342d3234203d3e20313336383639.roa Signing time: Mon 01 Jul 2024 01:04:50 +0000 ROA not before: Mon 01 Jul 2024 00:59:50 +0000 ROA not after: Mon 30 Jun 2025 01:04:50 +0000 asID: 136869 IP address blocks: 103.104.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 04:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:cb:bb:57:3a:20:6e:8e:da:9a:27:d0:70:a5:27:43:94:12:9f:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Validity Not Before: Jul 1 00:59:50 2024 GMT Not After : Jun 30 01:04:50 2025 GMT Subject: CN=A58767BBCFB962B16901BE74B0B43797230B9FFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0c:8a:a8:6e:47:32:10:fc:57:65:f2:9c:d4: 50:da:f9:ac:cd:26:25:47:f7:c4:6b:b7:40:e5:b7: 88:b9:08:3a:00:1d:86:03:0d:de:22:bc:66:40:06: 34:2d:4d:6b:67:e1:1a:85:d9:70:e9:be:4e:80:44: 8b:3a:d6:f6:29:a9:ce:66:8d:0d:ab:2d:17:e2:54: 78:6f:f8:33:6f:d4:54:ee:3d:c9:90:e2:9a:3b:d8: 90:b7:51:64:67:5d:dc:e6:3f:01:8a:f4:fb:1c:18: 72:87:d7:c7:4f:be:81:20:23:76:3d:8c:e5:67:b5: 87:01:8a:02:74:b8:05:23:c6:43:70:96:9c:ea:d2: 9c:16:bc:cd:67:6a:ce:ef:7e:0b:24:d9:3c:41:2c: 39:00:1b:b4:f8:b3:d7:cb:7b:06:1d:20:f2:e9:7d: f6:39:6b:31:4b:1b:04:1f:4e:0b:d3:4a:b6:91:f5: f3:91:98:16:95:92:ea:7b:ff:87:f0:d9:bf:e4:0f: a7:e6:ee:c8:c2:30:70:43:5f:b7:55:55:7b:08:94: 94:29:03:37:2d:ff:54:45:da:e4:58:1a:47:04:b7: 95:bd:4e:78:59:27:6e:e0:86:5f:4c:a8:b6:85:81: 15:c1:1b:be:ed:b9:01:17:e9:9a:f5:5a:25:85:33: c5:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:87:67:BB:CF:B9:62:B1:69:01:BE:74:B0:B4:37:97:23:0B:9F:FD X509v3 Authority Key Identifier: keyid:D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230372e302f32342d3234203d3e20313336383639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.104.207.0/24 Signature Algorithm: sha256WithRSAEncryption 54:8d:fa:f6:75:f3:e0:54:db:e0:85:ed:11:6a:c0:23:4e:33: 8c:f0:ca:d0:08:d3:cf:9e:c7:14:ee:ae:97:1f:fb:3e:6a:22: 1c:b8:94:1e:2d:19:3c:74:27:1d:c2:9c:99:3d:4b:49:16:0d: 4b:09:66:af:5a:9e:f8:fb:ad:5e:d8:b3:5c:ca:81:50:01:1a: 0d:90:98:ba:c5:0d:17:4a:d1:44:47:91:1b:a9:27:e6:11:1c: 0f:5f:d6:0e:fd:20:5d:8d:c6:34:f9:d2:5b:3f:52:e9:5e:b8: cc:89:ab:91:ec:e6:8e:14:f6:a9:1f:13:fd:34:6c:96:10:37: 0b:d1:ea:43:e2:2c:49:23:61:29:a8:7d:7d:5c:22:97:d1:2e: cd:66:c7:fc:45:4d:34:2c:5f:79:aa:f6:e2:a3:39:98:7f:dc: 42:20:c0:3e:09:c7:e7:1a:21:ff:ee:e9:16:5d:ee:b8:9f:f4: d2:09:40:c8:54:21:eb:8f:86:d8:37:3b:a4:c6:84:0e:34:a6: 1d:13:14:dc:8d:63:e6:2e:0f:6e:04:31:6f:bc:37:40:35:ac: 90:8e:3a:e1:1f:e6:ed:57:5d:0f:75:fb:24:74:17:9c:a1:e3: 92:8e:23:64:c5:4e:85:44:35:17:32:39:8d:11:77:b3:19:2d: 58:a9:99:16 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUecu7Vzogbo7amifQcKUnQ5QSn5EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRB M0UxMkQyMzAeFw0yNDA3MDEwMDU5NTBaFw0yNTA2MzAwMTA0NTBaMDMxMTAvBgNV BAMTKEE1ODc2N0JCQ0ZCOTYyQjE2OTAxQkU3NEIwQjQzNzk3MjMwQjlGRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4DIqobkcyEPxXZfKc1FDa+azN JiVH98Rrt0Dlt4i5CDoAHYYDDd4ivGZABjQtTWtn4RqF2XDpvk6ARIs61vYpqc5m jQ2rLRfiVHhv+DNv1FTuPcmQ4po72JC3UWRnXdzmPwGK9PscGHKH18dPvoEgI3Y9 jOVntYcBigJ0uAUjxkNwlpzq0pwWvM1nas7vfgsk2TxBLDkAG7T4s9fLewYdIPLp ffY5azFLGwQfTgvTSraR9fORmBaVkup7/4fw2b/kD6fm7sjCMHBDX7dVVXsIlJQp Azct/1RF2uRYGkcEt5W9TnhZJ27ghl9MqLaFgRXBG77tuQEX6Zr1WiWFM8UVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUpYdnu8+5YrFpAb50sLQ3lyMLn/0wHwYDVR0j BBgwFoAU0u8h29VFJVvtMO7DRiPyBKPhLSMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjMxZTZiMS0xODQxLTQ3NmQtYjQ2Yi1iNDRiOWNiOTY4YjAvMC9EMkVGMjFEQkQ1 NDUyNTVCRUQzMEVFQzM0NjIzRjIwNEEzRTEyRDIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRBM0Ux MkQyMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyMzFlNmIxLTE4NDEtNDc2ZC1i NDZiLWI0NGI5Y2I5NjhiMC8wLzMxMzAzMzJlMzEzMDM0MmUzMjMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnaM8wDQYJ KoZIhvcNAQELBQADggEBAFSN+vZ18+BU2+CF7RFqwCNOM4zwytAI08+exxTurpcf +z5qIhy4lB4tGTx0Jx3CnJk9S0kWDUsJZq9anvj7rV7Ys1zKgVABGg2QmLrFDRdK 0URHkRupJ+YRHA9f1g79IF2NxjT50ls/UuleuMyJq5Hs5o4U9qkfE/00bJYQNwvR 6kPiLEkjYSmofX1cIpfRLs1mx/xFTTQsX3mq9uKjOZh/3EIgwD4Jx+caIf/u6RZd 7rif9NIJQMhUIeuPhtg3O6TGhA40ph0TFNyNY+YuD24EMW+8N0A1rJCOOuEf5u1X XQ91+yR0F5yh45KOI2TFToVENRcyOY0Rd7MZLVipmRY= -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:40 2024 by rpki-client on console-fra.rpki-client.org