$ rpki-client -vvf repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/3130332e33312e3234382e302f32332d3233203d3e20313339343237.roa File: 3130332e33312e3234382e302f32332d3233203d3e20313339343237.roa (raw, json) Hash identifier: 04XRabDVfE4dREWxVqPX68ogqw6CjteNT+yHxPoaMWA= Subject key identifier: 52:1D:83:7F:05:AC:91:98:02:3B:E0:37:2F:A1:B7:77:FB:3E:68:C8 Certificate issuer: /CN=A17DC55845B70106CEB3A498496454BE640F44AB Certificate serial: 06457A9B9A4DB5864EB761A0A282C1FF93CD523E Authority key identifier: A1:7D:C5:58:45:B7:01:06:CE:B3:A4:98:49:64:54:BE:64:0F:44:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A17DC55845B70106CEB3A498496454BE640F44AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/3130332e33312e3234382e302f32332d3233203d3e20313339343237.roa Signing time: Fri 05 Jul 2024 20:00:01 +0000 ROA not before: Fri 05 Jul 2024 19:55:01 +0000 ROA not after: Fri 04 Jul 2025 20:00:01 +0000 asID: 139427 IP address blocks: 103.31.248.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/A17DC55845B70106CEB3A498496454BE640F44AB.crl rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/A17DC55845B70106CEB3A498496454BE640F44AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A17DC55845B70106CEB3A498496454BE640F44AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:45:7a:9b:9a:4d:b5:86:4e:b7:61:a0:a2:82:c1:ff:93:cd:52:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A17DC55845B70106CEB3A498496454BE640F44AB Validity Not Before: Jul 5 19:55:01 2024 GMT Not After : Jul 4 20:00:01 2025 GMT Subject: CN=521D837F05AC9198023BE0372FA1B777FB3E68C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a7:95:ac:8a:d6:a0:41:15:d2:71:2f:e8:5f: cd:5d:4c:06:a8:31:42:8e:4a:41:6c:bc:2a:13:51: c4:71:ae:31:42:99:b7:ff:7b:69:27:9b:94:52:be: 0d:6f:dd:b1:a0:66:df:94:b5:18:a4:47:ae:8c:c4: bb:4e:ff:9d:ce:cc:57:48:80:e0:17:af:a6:c2:7a: 2a:32:f4:da:e1:54:31:31:a7:28:07:8c:7b:29:0f: 59:dd:4b:e8:0a:0f:fa:00:74:07:86:c9:a0:60:3c: 15:dc:a0:ce:05:0d:d4:e9:f3:1d:72:5e:85:f6:5c: c8:e4:9a:33:32:b4:1e:07:d9:b2:00:2e:ec:d3:da: b1:0a:f7:ba:2a:03:a1:29:3f:85:9c:87:ba:bc:72: 89:c1:67:9c:a0:8b:a3:5f:7e:c2:34:81:84:43:2c: 44:f0:c0:e2:ff:18:8c:60:0e:dc:55:8f:91:e2:2d: c3:c8:05:42:8f:4a:08:d9:33:c2:7f:8b:c1:44:0c: 4d:fd:6d:d1:46:00:3d:6c:18:6e:27:55:ec:ea:42: 4d:41:28:bb:b2:39:a2:23:29:b4:21:2a:90:a9:87: 0f:a8:f1:0c:76:ea:33:dd:75:54:38:9e:f8:98:4a: 4f:bb:08:27:40:7d:30:f9:52:d9:5d:11:0c:0d:34: ee:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:1D:83:7F:05:AC:91:98:02:3B:E0:37:2F:A1:B7:77:FB:3E:68:C8 X509v3 Authority Key Identifier: keyid:A1:7D:C5:58:45:B7:01:06:CE:B3:A4:98:49:64:54:BE:64:0F:44:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/A17DC55845B70106CEB3A498496454BE640F44AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A17DC55845B70106CEB3A498496454BE640F44AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/3130332e33312e3234382e302f32332d3233203d3e20313339343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.248.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:e4:5a:1c:31:87:e6:81:48:0b:ea:31:45:a5:fa:bc:9a:e0: 90:42:d7:1e:b3:39:6f:2b:7d:60:59:d7:a0:f3:d9:f7:20:cf: 7b:ab:8a:f7:7c:a8:b8:1a:a8:8c:ca:60:ee:87:04:3b:cb:ce: cd:24:27:56:32:18:cb:8f:83:d3:02:39:a5:82:b2:1a:e0:60: fe:c5:63:39:c5:59:43:72:3e:73:e9:67:68:28:26:a0:48:fa: ca:60:80:6b:94:c7:23:8f:ad:81:f6:5b:f5:13:db:a0:b4:ce: ec:9b:98:5e:53:ac:79:63:65:53:dd:43:74:fa:db:4b:ed:c6: b6:0c:9a:5a:2f:87:b7:ce:28:65:7e:d1:12:d9:c1:ac:92:e0: 9c:da:74:44:d2:12:20:9f:7d:98:d9:52:15:24:16:c4:e8:8a: d7:0f:e0:44:4c:45:ac:59:0b:36:fe:b8:99:7a:a6:59:58:23: 2a:fc:02:23:79:cb:63:d6:a6:f7:e1:2d:9e:1a:b8:b2:68:48: 79:5d:22:2f:a2:15:c5:c2:e3:e1:b5:55:73:62:6f:a4:db:05: e6:8c:a2:c8:6d:ec:0d:61:d7:67:13:9a:fb:c0:58:02:64:60: 1e:10:3e:3d:07:53:b1:4b:7d:57:32:60:9f:2a:f3:76:50:c3: b4:67:59:19 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBkV6m5pNtYZOt2GgooLB/5PNUj4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTE3REM1NTg0NUI3MDEwNkNFQjNBNDk4NDk2NDU0QkU2 NDBGNDRBQjAeFw0yNDA3MDUxOTU1MDFaFw0yNTA3MDQyMDAwMDFaMDMxMTAvBgNV BAMTKDUyMUQ4MzdGMDVBQzkxOTgwMjNCRTAzNzJGQTFCNzc3RkIzRTY4QzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRp5WsitagQRXScS/oX81dTAao MUKOSkFsvCoTUcRxrjFCmbf/e2knm5RSvg1v3bGgZt+UtRikR66MxLtO/53OzFdI gOAXr6bCeioy9NrhVDExpygHjHspD1ndS+gKD/oAdAeGyaBgPBXcoM4FDdTp8x1y XoX2XMjkmjMytB4H2bIALuzT2rEK97oqA6EpP4Wch7q8conBZ5ygi6NffsI0gYRD LETwwOL/GIxgDtxVj5HiLcPIBUKPSgjZM8J/i8FEDE39bdFGAD1sGG4nVezqQk1B KLuyOaIjKbQhKpCphw+o8Qx26jPddVQ4nviYSk+7CCdAfTD5UtldEQwNNO7hAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUh2DfwWskZgCO+A3L6G3d/s+aMgwHwYDVR0j BBgwFoAUoX3FWEW3AQbOs6SYSWRUvmQPRKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NjFiOGNjYy02YzIyLTQyNGUtOTYxNC04YWI4YWQyODg0OWMvMC9BMTdEQzU1ODQ1 QjcwMTA2Q0VCM0E0OTg0OTY0NTRCRTY0MEY0NEFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTE3REM1NTg0NUI3MDEwNkNFQjNBNDk4NDk2NDU0QkU2NDBG NDRBQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2MWI4Y2NjLTZjMjItNDI0ZS05 NjE0LThhYjhhZDI4ODQ5Yy8wLzMxMzAzMzJlMzMzMTJlMzIzNDM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM5MzQzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZx/4MA0GCSqG SIb3DQEBCwUAA4IBAQB95FocMYfmgUgL6jFFpfq8muCQQtceszlvK31gWdeg89n3 IM97q4r3fKi4GqiMymDuhwQ7y87NJCdWMhjLj4PTAjmlgrIa4GD+xWM5xVlDcj5z 6WdoKCagSPrKYIBrlMcjj62B9lv1E9ugtM7sm5heU6x5Y2VT3UN0+ttL7ca2DJpa L4e3zihlftES2cGskuCc2nRE0hIgn32Y2VIVJBbE6IrXD+BETEWsWQs2/riZeqZZ WCMq/AIjectj1qb34S2eGriyaEh5XSIvohXFwuPhtVVzYm+k2wXmjKLIbewNYddn E5r7wFgCZGAeED49B1OxS31XMmCfKvN2UMO0Z1kZ -----END CERTIFICATE-----Generated at Fri Nov 22 17:50:11 2024 by rpki-client on console-fra.rpki-client.org