$ rpki-client -vvf repo-rpki.idnic.net/repo/d835cb4a-2fb9-40d7-b155-dcce7cb00293/0/3130332e3130392e32342e302f32342d3234203d3e20313337333131.roa File: 3130332e3130392e32342e302f32342d3234203d3e20313337333131.roa (raw, json) Hash identifier: T8JVoyiBSoRD/8TMk4a3DmUon8APuxT+fmcE+BsJ2zI= Subject key identifier: FD:85:3C:A9:CD:59:3E:25:E1:04:88:11:E2:33:41:24:20:A6:7A:13 Certificate issuer: /CN=A42F07BEA859C831526717AB1D092E11E7890BDD Certificate serial: 6CE24D8FF7A5BF7165C2F5A9E9DFF9202F01EB29 Authority key identifier: A4:2F:07:BE:A8:59:C8:31:52:67:17:AB:1D:09:2E:11:E7:89:0B:DD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A42F07BEA859C831526717AB1D092E11E7890BDD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d835cb4a-2fb9-40d7-b155-dcce7cb00293/0/3130332e3130392e32342e302f32342d3234203d3e20313337333131.roa Signing time: Mon 26 Feb 2024 09:00:01 +0000 ROA not before: Mon 26 Feb 2024 08:55:01 +0000 ROA not after: Mon 24 Feb 2025 09:00:01 +0000 asID: 137311 IP address blocks: 103.109.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d835cb4a-2fb9-40d7-b155-dcce7cb00293/0/A42F07BEA859C831526717AB1D092E11E7890BDD.crl rsync://repo-rpki.idnic.net/repo/d835cb4a-2fb9-40d7-b155-dcce7cb00293/0/A42F07BEA859C831526717AB1D092E11E7890BDD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A42F07BEA859C831526717AB1D092E11E7890BDD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:52:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:e2:4d:8f:f7:a5:bf:71:65:c2:f5:a9:e9:df:f9:20:2f:01:eb:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A42F07BEA859C831526717AB1D092E11E7890BDD Validity Not Before: Feb 26 08:55:01 2024 GMT Not After : Feb 24 09:00:01 2025 GMT Subject: CN=FD853CA9CD593E25E1048811E233412420A67A13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a6:1b:3d:e7:8d:fc:5f:26:f7:b7:44:15:ce: 62:82:26:45:1c:3c:40:e9:d3:5f:e8:a3:47:5f:e8: 70:7c:39:58:5f:00:54:9c:c2:a4:79:d1:6f:15:d3: 7e:78:ff:94:a1:97:64:94:90:e1:5b:0b:13:f4:f5: e1:ef:90:56:c9:dc:6b:fb:30:db:56:08:c4:1a:f1: a0:35:fb:86:8e:32:bd:de:fb:b1:70:3b:d0:5b:cb: 46:64:15:ee:8f:8b:d7:fc:57:9b:d9:35:b6:0e:5d: da:0b:37:93:28:73:38:1f:d8:66:00:83:c9:b2:d5: 6e:9c:af:83:5b:ce:f4:ec:4c:5a:55:b6:b3:23:75: 8c:16:a2:f3:cc:a8:ef:f6:79:82:93:28:9c:38:11: e2:e8:62:8a:b9:23:11:9f:e1:41:73:bf:ce:37:ab: af:f2:61:6d:2f:52:f1:e8:be:70:3c:50:b3:36:2e: fd:2c:04:3d:a5:1d:a4:4a:5e:aa:99:0e:10:53:5d: 13:dd:84:df:2f:80:a1:05:36:cb:3d:39:70:13:6d: 08:aa:d6:17:47:57:47:3c:cf:50:02:ac:d3:9d:88: 9a:1f:29:ee:e5:73:ef:e7:dc:0b:a0:b7:9d:e1:dc: 65:4e:dd:7f:e8:4a:4d:94:9d:a4:a6:1e:c8:07:23: 79:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:85:3C:A9:CD:59:3E:25:E1:04:88:11:E2:33:41:24:20:A6:7A:13 X509v3 Authority Key Identifier: keyid:A4:2F:07:BE:A8:59:C8:31:52:67:17:AB:1D:09:2E:11:E7:89:0B:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d835cb4a-2fb9-40d7-b155-dcce7cb00293/0/A42F07BEA859C831526717AB1D092E11E7890BDD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A42F07BEA859C831526717AB1D092E11E7890BDD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d835cb4a-2fb9-40d7-b155-dcce7cb00293/0/3130332e3130392e32342e302f32342d3234203d3e20313337333131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.109.24.0/24 Signature Algorithm: sha256WithRSAEncryption 63:77:4d:57:71:1d:98:aa:01:05:82:03:b6:9c:57:ab:3c:b5: fa:f5:9c:87:17:c4:5a:88:f9:00:8e:e7:d5:2f:75:07:a9:15: 68:80:40:69:8e:17:f0:89:36:b2:18:e3:8d:11:da:77:0d:25: 30:4b:a9:fa:09:6c:68:0a:76:f1:38:0a:3f:85:b0:1a:cc:60: 9b:10:11:20:6e:5d:da:c1:2d:1a:96:51:f4:21:9f:2e:d1:62: 64:2e:26:62:ba:1a:05:94:e0:03:90:cc:5f:51:e4:90:21:94: 64:a5:f8:d8:29:d5:90:5d:62:75:ec:05:66:68:b3:6d:31:ac: 2e:49:cf:80:49:c0:d0:05:cf:5f:74:3b:3a:9b:5c:a9:c5:ff: a4:84:82:e4:5f:ca:f9:85:c1:49:3d:8c:3a:22:69:9c:5b:ac: 88:1b:6a:c7:7c:59:0b:ef:d1:ce:e6:98:70:27:b4:24:d7:10: 94:1f:45:5e:c0:b5:93:cb:b3:f9:49:20:51:7b:e5:ef:22:bf: a5:a7:01:35:35:d1:07:ab:8d:a7:89:65:5b:74:b2:cd:77:01: bf:15:df:6a:97:bd:9d:f8:a3:c8:f5:3b:3b:6b:99:a0:cf:d7: 55:25:87:d0:35:58:ae:fc:1e:13:ed:c4:66:b6:da:0e:32:8e: 87:6c:a2:96 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbOJNj/elv3FlwvWp6d/5IC8B6ykwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTQyRjA3QkVBODU5QzgzMTUyNjcxN0FCMUQwOTJFMTFF Nzg5MEJERDAeFw0yNDAyMjYwODU1MDFaFw0yNTAyMjQwOTAwMDFaMDMxMTAvBgNV BAMTKEZEODUzQ0E5Q0Q1OTNFMjVFMTA0ODgxMUUyMzM0MTI0MjBBNjdBMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkphs95438Xyb3t0QVzmKCJkUc PEDp01/oo0df6HB8OVhfAFScwqR50W8V0354/5Shl2SUkOFbCxP09eHvkFbJ3Gv7 MNtWCMQa8aA1+4aOMr3e+7FwO9Bby0ZkFe6Pi9f8V5vZNbYOXdoLN5Moczgf2GYA g8my1W6cr4NbzvTsTFpVtrMjdYwWovPMqO/2eYKTKJw4EeLoYoq5IxGf4UFzv843 q6/yYW0vUvHovnA8ULM2Lv0sBD2lHaRKXqqZDhBTXRPdhN8vgKEFNss9OXATbQiq 1hdHV0c8z1ACrNOdiJofKe7lc+/n3Augt53h3GVO3X/oSk2UnaSmHsgHI3kxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/YU8qc1ZPiXhBIgR4jNBJCCmehMwHwYDVR0j BBgwFoAUpC8HvqhZyDFSZxerHQkuEeeJC90wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ODM1Y2I0YS0yZmI5LTQwZDctYjE1NS1kY2NlN2NiMDAyOTMvMC9BNDJGMDdCRUE4 NTlDODMxNTI2NzE3QUIxRDA5MkUxMUU3ODkwQkRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTQyRjA3QkVBODU5QzgzMTUyNjcxN0FCMUQwOTJFMTFFNzg5 MEJERC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q4MzVjYjRhLTJmYjktNDBkNy1i MTU1LWRjY2U3Y2IwMDI5My8wLzMxMzAzMzJlMzEzMDM5MmUzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM3MzMzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ20YMA0GCSqG SIb3DQEBCwUAA4IBAQBjd01XcR2YqgEFggO2nFerPLX69ZyHF8RaiPkAjufVL3UH qRVogEBpjhfwiTayGOONEdp3DSUwS6n6CWxoCnbxOAo/hbAazGCbEBEgbl3awS0a llH0IZ8u0WJkLiZiuhoFlOADkMxfUeSQIZRkpfjYKdWQXWJ17AVmaLNtMawuSc+A ScDQBc9fdDs6m1ypxf+khILkX8r5hcFJPYw6ImmcW6yIG2rHfFkL79HO5phwJ7Qk 1xCUH0VewLWTy7P5SSBRe+XvIr+lpwE1NdEHq42niWVbdLLNdwG/Fd9ql72d+KPI 9Ts7a5mgz9dVJYfQNViu/B4T7cRmttoOMo6HbKKW -----END CERTIFICATE-----Generated at Fri Nov 22 17:50:11 2024 by rpki-client on console-fra.rpki-client.org