$ rpki-client -vvf repo-rpki.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/3130332e3232392e3136322e302f32342d3234203d3e203539323838.roa File: 3130332e3232392e3136322e302f32342d3234203d3e203539323838.roa (raw, json) Hash identifier: GfzfBdTg8EGjgrPPzHMFf7asLdMNg5rVgiw2FS33DYc= Subject key identifier: F2:82:68:7D:C4:8A:BD:51:62:66:83:CE:2C:C8:13:52:41:D4:45:14 Certificate issuer: /CN=B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D Certificate serial: 746222AF442E0E95F1C2AC9E9EEDE9C39589C528 Authority key identifier: B1:1A:6E:BA:7C:0F:02:09:30:47:3F:B7:FA:FC:2D:9C:97:E4:98:2D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/3130332e3232392e3136322e302f32342d3234203d3e203539323838.roa Signing time: Wed 31 Jul 2024 10:00:38 +0000 ROA not before: Wed 31 Jul 2024 09:55:38 +0000 ROA not after: Wed 30 Jul 2025 10:00:38 +0000 asID: 59288 IP address blocks: 103.229.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D.crl rsync://repo-rpki.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:43:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:62:22:af:44:2e:0e:95:f1:c2:ac:9e:9e:ed:e9:c3:95:89:c5:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D Validity Not Before: Jul 31 09:55:38 2024 GMT Not After : Jul 30 10:00:38 2025 GMT Subject: CN=F282687DC48ABD51626683CE2CC8135241D44514 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e7:ff:cf:21:39:3d:bf:5e:4e:29:31:e1:c2: b1:1d:dc:bd:8b:29:f0:22:02:8b:cd:4c:5f:a4:ac: b3:b9:3b:8e:62:6e:22:f2:46:b3:81:ec:09:75:07: 66:95:46:ed:90:e3:c4:bd:30:56:80:e0:86:25:57: 83:b1:e8:89:27:b2:b1:28:5a:8d:a4:64:24:a1:c9: 73:1f:51:c4:2e:fb:3d:40:9f:83:1d:da:63:4a:cc: 1e:98:50:2e:71:f8:c5:ee:1b:2a:5c:ec:54:e3:0b: e9:18:dc:01:62:cb:78:93:91:f8:c1:ec:4c:6a:8d: 5e:7e:45:da:b8:57:6c:f9:11:ed:80:29:2c:b7:5a: ef:2f:9b:55:b5:c6:7d:28:6f:d6:39:e2:36:f5:67: fa:90:b7:34:4f:6f:4e:8b:ca:b2:54:64:d7:61:8b: 0d:c8:59:65:d4:9f:87:4b:c9:d5:7a:24:22:c4:8d: 39:45:6b:dd:bb:be:58:7a:6e:fd:f9:59:d8:ce:9c: 3a:ea:10:6f:0b:f1:8e:9c:45:df:93:9b:3d:47:ee: 6d:cb:20:59:05:4f:fa:d7:5f:48:22:56:08:a7:cd: ab:ba:40:29:6e:a8:33:7b:4b:42:b1:ba:97:b3:f3: c0:14:52:f3:1d:38:3a:02:62:36:0b:86:cc:cd:d4: de:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:82:68:7D:C4:8A:BD:51:62:66:83:CE:2C:C8:13:52:41:D4:45:14 X509v3 Authority Key Identifier: keyid:B1:1A:6E:BA:7C:0F:02:09:30:47:3F:B7:FA:FC:2D:9C:97:E4:98:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/3130332e3232392e3136322e302f32342d3234203d3e203539323838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.229.162.0/24 Signature Algorithm: sha256WithRSAEncryption 20:ef:0a:6e:1c:4f:f1:4d:ba:77:45:ea:1b:02:e4:ec:d3:f8: 5f:32:df:cb:db:e6:2a:a8:fb:d1:d6:c4:45:35:5a:39:44:4f: 9b:ae:97:25:60:f4:36:a3:dc:10:c9:b0:63:3b:f8:79:03:0d: 9d:ab:f3:b9:08:31:f4:3b:9f:bf:bd:77:6e:cc:d4:a5:5a:45: 8d:b9:d3:01:d5:6c:8f:fe:eb:c1:6d:83:f8:fa:9f:d3:1a:de: c8:e8:70:b1:a4:6a:6c:d8:e2:ed:fb:12:bf:59:ca:d9:13:8f: a4:31:04:bb:c4:fe:23:07:80:56:8b:cd:a0:0c:fb:79:e5:ce: 9f:5e:0d:25:04:90:b0:09:1f:2e:b1:5d:e9:76:8d:7e:32:a4: 18:70:4c:1e:f9:72:86:fc:be:5c:e1:80:6c:16:9a:fb:8c:79: e7:c7:3b:e3:26:b8:e6:61:e4:e3:b6:dd:8f:af:fd:7b:0a:13: d4:20:5b:fa:58:1b:22:11:cc:a8:e3:e1:35:cc:bc:5f:81:e2: 5d:1f:34:3e:c8:a0:31:d0:22:f8:fe:68:f4:11:4d:61:42:80: bc:8b:bc:77:8a:dd:af:cd:cd:6a:6a:d5:6a:e3:28:5d:6a:7b: 63:f7:f2:ec:16:ce:4b:3a:91:16:44:31:0f:a2:b0:4a:04:89: 31:9b:3a:28 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdGIir0QuDpXxwqyenu3pw5WJxSgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjExQTZFQkE3QzBGMDIwOTMwNDczRkI3RkFGQzJEOUM5 N0U0OTgyRDAeFw0yNDA3MzEwOTU1MzhaFw0yNTA3MzAxMDAwMzhaMDMxMTAvBgNV BAMTKEYyODI2ODdEQzQ4QUJENTE2MjY2ODNDRTJDQzgxMzUyNDFENDQ1MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ5//PITk9v15OKTHhwrEd3L2L KfAiAovNTF+krLO5O45ibiLyRrOB7Al1B2aVRu2Q48S9MFaA4IYlV4Ox6IknsrEo Wo2kZCShyXMfUcQu+z1An4Md2mNKzB6YUC5x+MXuGypc7FTjC+kY3AFiy3iTkfjB 7ExqjV5+Rdq4V2z5Ee2AKSy3Wu8vm1W1xn0ob9Y54jb1Z/qQtzRPb06LyrJUZNdh iw3IWWXUn4dLydV6JCLEjTlFa927vlh6bv35WdjOnDrqEG8L8Y6cRd+Tmz1H7m3L IFkFT/rXX0giVginzau6QCluqDN7S0Kxupez88AUUvMdODoCYjYLhszN1N69AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8oJofcSKvVFiZoPOLMgTUkHURRQwHwYDVR0j BBgwFoAUsRpuunwPAgkwRz+3+vwtnJfkmC0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OTNlYjhmNi1iYjZjLTRlYTctODZkZi1iMjQzYzUxNjRkMjIvMC9CMTFBNkVCQTdD MEYwMjA5MzA0NzNGQjdGQUZDMkQ5Qzk3RTQ5ODJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjExQTZFQkE3QzBGMDIwOTMwNDczRkI3RkFGQzJEOUM5N0U0 OTgyRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5M2ViOGY2LWJiNmMtNGVhNy04 NmRmLWIyNDNjNTE2NGQyMi8wLzMxMzAzMzJlMzIzMjM5MmUzMTM2MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzIzODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+WiMA0GCSqG SIb3DQEBCwUAA4IBAQAg7wpuHE/xTbp3ReobAuTs0/hfMt/L2+YqqPvR1sRFNVo5 RE+brpclYPQ2o9wQybBjO/h5Aw2dq/O5CDH0O5+/vXduzNSlWkWNudMB1WyP/uvB bYP4+p/TGt7I6HCxpGps2OLt+xK/WcrZE4+kMQS7xP4jB4BWi82gDPt55c6fXg0l BJCwCR8usV3pdo1+MqQYcEwe+XKG/L5c4YBsFpr7jHnnxzvjJrjmYeTjtt2Pr/17 ChPUIFv6WBsiEcyo4+E1zLxfgeJdHzQ+yKAx0CL4/mj0EU1hQoC8i7x3it2vzc1q atVq4yhdantj9/LsFs5LOpEWRDEPorBKBIkxmzoo -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:33 2024 by rpki-client on console-fra.rpki-client.org