$ rpki-client -vvf repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/3130332e3138312e3235302e302f32342d3234203d3e2039333431.roa File: 3130332e3138312e3235302e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: s5P05BK4YbAe4m0X/9wa9VOMCLZY60DiRGDWfUUspHA= Subject key identifier: FB:5D:48:A9:B1:0E:E7:46:27:EC:7A:E2:20:EC:14:4F:13:57:E7:D2 Certificate issuer: /CN=2E2D926932C5C7E296931D881908A4BB1E98EB6D Certificate serial: 65F0F2302136A9770035C7DCD2AEFB1D14E1EF69 Authority key identifier: 2E:2D:92:69:32:C5:C7:E2:96:93:1D:88:19:08:A4:BB:1E:98:EB:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E2D926932C5C7E296931D881908A4BB1E98EB6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/3130332e3138312e3235302e302f32342d3234203d3e2039333431.roa Signing time: Wed 10 Jan 2024 18:00:00 +0000 ROA not before: Wed 10 Jan 2024 17:55:00 +0000 ROA not after: Wed 08 Jan 2025 18:00:00 +0000 asID: 9341 IP address blocks: 103.181.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/2E2D926932C5C7E296931D881908A4BB1E98EB6D.crl rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/2E2D926932C5C7E296931D881908A4BB1E98EB6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E2D926932C5C7E296931D881908A4BB1E98EB6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:f0:f2:30:21:36:a9:77:00:35:c7:dc:d2:ae:fb:1d:14:e1:ef:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2E2D926932C5C7E296931D881908A4BB1E98EB6D Validity Not Before: Jan 10 17:55:00 2024 GMT Not After : Jan 8 18:00:00 2025 GMT Subject: CN=FB5D48A9B10EE74627EC7AE220EC144F1357E7D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c5:e2:03:e4:fd:54:1e:26:73:40:08:e3:29: 89:87:de:eb:ed:14:e5:c4:4d:ce:49:c7:50:6d:c4: 3c:f0:af:28:16:6e:46:9c:d2:f6:fd:c1:9a:f8:09: 26:44:b4:c5:16:18:b5:ce:57:fe:ec:fe:78:95:d0: 79:34:28:b4:4e:9e:95:18:1d:7b:dd:9a:3c:7c:10: 05:0e:7a:0e:aa:81:32:43:72:2f:c9:6b:57:1c:6f: cc:b5:12:5f:e6:6a:0f:be:fc:0e:56:d7:7a:9c:fe: 36:f3:50:6c:d7:ef:84:d2:ae:5e:3d:50:0f:e2:0f: 30:ba:07:f0:2e:6a:04:5c:1e:63:e5:39:a4:2d:4e: 37:da:95:b9:ab:1a:4d:07:dc:87:fa:39:d0:60:ea: 70:20:9f:9c:68:fb:61:b2:83:ec:f2:75:53:21:45: 88:37:c7:a6:29:7e:11:ad:28:22:e0:ac:8d:cd:84: 00:70:ef:e5:d4:aa:7d:df:dc:fe:17:a3:bc:61:3a: 9b:af:cd:5b:18:34:e2:8b:57:ee:39:02:a6:34:6e: f9:e4:86:79:2c:db:c1:cc:eb:c7:26:1d:0f:ae:14: 20:d9:af:76:78:8b:ae:d3:56:a5:fe:f9:87:e5:51: f9:ca:ea:f2:cf:76:0d:53:6c:f3:32:56:cd:ce:e0: 40:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:5D:48:A9:B1:0E:E7:46:27:EC:7A:E2:20:EC:14:4F:13:57:E7:D2 X509v3 Authority Key Identifier: keyid:2E:2D:92:69:32:C5:C7:E2:96:93:1D:88:19:08:A4:BB:1E:98:EB:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/2E2D926932C5C7E296931D881908A4BB1E98EB6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2E2D926932C5C7E296931D881908A4BB1E98EB6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/3130332e3138312e3235302e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.181.250.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:16:b1:89:c3:68:46:26:7e:3f:46:5f:da:a7:1b:c8:c0:f1: 09:ce:54:2d:29:86:a0:66:02:06:be:76:ec:79:48:a2:96:86: 12:48:3a:e9:b2:c0:8a:cc:ab:53:d8:48:a4:f8:18:dc:07:3e: c9:dd:f9:7d:59:ea:d7:85:27:39:b4:f4:7c:d2:33:4d:a6:44: f1:88:55:33:9f:de:b3:5a:a2:0b:df:e8:58:76:dd:df:cd:f8: 82:60:01:bd:ee:b7:d0:88:89:e6:94:99:07:cd:1d:12:f5:51: e6:4c:b7:4c:2f:cc:07:ee:ed:20:81:5b:c1:e6:b4:29:f8:cd: 0f:f2:8a:78:37:e7:e2:13:59:2b:9e:d5:23:f5:0a:b8:99:84: 36:31:c7:d6:b2:b4:d1:5f:e3:84:d0:02:ab:72:e4:d3:91:5e: 8c:a7:2d:a2:c7:d5:b0:e7:74:c1:ec:07:6d:76:b9:3e:55:2e: e0:52:87:e7:59:06:98:5e:ad:11:c3:81:82:de:a7:52:8b:97: d1:e0:63:01:fa:38:f0:62:3e:58:b5:11:6f:30:4d:3f:da:ab: 67:ac:91:d5:29:7b:40:bc:00:b8:e0:97:77:66:b2:bd:5f:7c: c8:f5:66:ba:50:ab:ee:4d:ab:ff:8c:71:e2:69:27:85:e3:01: 27:1b:b1:94 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZfDyMCE2qXcANcfc0q77HRTh72kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkUyRDkyNjkzMkM1QzdFMjk2OTMxRDg4MTkwOEE0QkIx RTk4RUI2RDAeFw0yNDAxMTAxNzU1MDBaFw0yNTAxMDgxODAwMDBaMDMxMTAvBgNV BAMTKEZCNUQ0OEE5QjEwRUU3NDYyN0VDN0FFMjIwRUMxNDRGMTM1N0U3RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWxeID5P1UHiZzQAjjKYmH3uvt FOXETc5Jx1BtxDzwrygWbkac0vb9wZr4CSZEtMUWGLXOV/7s/niV0Hk0KLROnpUY HXvdmjx8EAUOeg6qgTJDci/Ja1ccb8y1El/mag++/A5W13qc/jbzUGzX74TSrl49 UA/iDzC6B/AuagRcHmPlOaQtTjfalbmrGk0H3If6OdBg6nAgn5xo+2Gyg+zydVMh RYg3x6YpfhGtKCLgrI3NhABw7+XUqn3f3P4Xo7xhOpuvzVsYNOKLV+45AqY0bvnk hnks28HM68cmHQ+uFCDZr3Z4i67TVqX++YflUfnK6vLPdg1TbPMyVs3O4ED3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU+11IqbEO50Yn7HriIOwUTxNX59IwHwYDVR0j BBgwFoAULi2SaTLFx+KWkx2IGQikux6Y620wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmE1ODllZi05ZjNkLTQzYmMtYmEzMC1mYTMyNmI3MWY3ODcvMC8yRTJEOTI2OTMy QzVDN0UyOTY5MzFEODgxOTA4QTRCQjFFOThFQjZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkUyRDkyNjkzMkM1QzdFMjk2OTMxRDg4MTkwOEE0QkIxRTk4 RUI2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmYTU4OWVmLTlmM2QtNDNiYy1i YTMwLWZhMzI2YjcxZjc4Ny8wLzMxMzAzMzJlMzEzODMxMmUzMjM1MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGe1+jANBgkqhkiG 9w0BAQsFAAOCAQEATxaxicNoRiZ+P0Zf2qcbyMDxCc5ULSmGoGYCBr527HlIopaG Ekg66bLAisyrU9hIpPgY3Ac+yd35fVnq14UnObT0fNIzTaZE8YhVM5/es1qiC9/o WHbd3834gmABve630IiJ5pSZB80dEvVR5ky3TC/MB+7tIIFbwea0KfjND/KKeDfn 4hNZK57VI/UKuJmENjHH1rK00V/jhNACq3Lk05FejKctosfVsOd0wewHbXa5PlUu 4FKH51kGmF6tEcOBgt6nUouX0eBjAfo48GI+WLURbzBNP9qrZ6yR1Sl7QLwAuOCX d2ayvV98yPVmulCr7k2r/4xx4mknheMBJxuxlA== -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:55 2024 by rpki-client on console-fra.rpki-client.org