$ rpki-client -vvf repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0/3130332e3231362e3130362e302f32332d3234203d3e20313531353834.roa File: 3130332e3231362e3130362e302f32332d3234203d3e20313531353834.roa (raw, json) Hash identifier: zyxKS/cy9zSAl8klOoc1HN2ppA8UffDsTV/dfq2i2pM= Subject key identifier: DC:3B:64:0F:2D:9F:5B:48:0F:93:4B:3E:E9:41:4F:99:1F:C4:AB:63 Certificate issuer: /CN=1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5 Certificate serial: 4EAB75A089E2FEF28AD335C75D3914C8A4886D68 Authority key identifier: 1C:EE:2E:2E:FC:E3:07:A6:8E:4B:F3:59:C6:EA:FF:9E:91:93:03:A5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0/3130332e3231362e3130362e302f32332d3234203d3e20313531353834.roa Signing time: Thu 04 Apr 2024 15:35:14 +0000 ROA not before: Thu 04 Apr 2024 15:30:14 +0000 ROA not after: Thu 03 Apr 2025 15:35:14 +0000 asID: 151584 IP address blocks: 103.216.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0/1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5.crl rsync://repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0/1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:07:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:ab:75:a0:89:e2:fe:f2:8a:d3:35:c7:5d:39:14:c8:a4:88:6d:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5 Validity Not Before: Apr 4 15:30:14 2024 GMT Not After : Apr 3 15:35:14 2025 GMT Subject: CN=DC3B640F2D9F5B480F934B3EE9414F991FC4AB63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6f:aa:cb:07:ba:59:73:4a:0e:72:11:e5:6e: f8:49:6e:e0:de:3a:4d:b4:c3:d3:81:d7:43:30:2f: 81:66:68:8d:cf:54:8d:b6:2d:18:71:83:15:23:08: 37:30:44:fb:48:ff:51:9c:57:05:9f:ce:1e:26:db: 79:ea:41:f1:d4:1f:f5:35:10:cd:b6:96:c7:20:19: 54:21:e2:77:f1:b9:fe:61:e9:73:45:03:14:bc:05: f7:10:d2:17:19:2d:a3:f7:c3:5d:90:f3:94:64:ed: fb:98:25:eb:27:77:77:80:6c:b8:af:67:68:36:e7: 2d:0a:d4:6c:46:a3:35:df:e4:3e:99:12:2b:eb:9a: fb:a1:3e:bc:39:6d:94:f1:88:93:cd:dd:52:9e:66: 47:73:06:b2:20:f7:4b:86:74:7d:98:58:60:b5:c6: f9:e5:5b:8e:9d:88:b2:a2:0d:6c:ee:ee:68:7d:3b: dd:08:d0:04:e0:91:14:55:f3:fa:96:41:bd:3e:21: 4e:31:50:7f:ca:57:12:03:68:3c:7e:85:8e:9b:90: 3e:1c:8a:ce:df:5d:a6:71:08:d0:28:77:89:fb:4f: 38:35:3d:a6:ed:fe:f0:73:22:a1:17:7c:fa:15:4b: d9:b5:97:d8:a6:26:fa:7b:a9:4f:76:1f:cd:f0:2c: c9:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:3B:64:0F:2D:9F:5B:48:0F:93:4B:3E:E9:41:4F:99:1F:C4:AB:63 X509v3 Authority Key Identifier: keyid:1C:EE:2E:2E:FC:E3:07:A6:8E:4B:F3:59:C6:EA:FF:9E:91:93:03:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0/1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0/3130332e3231362e3130362e302f32332d3234203d3e20313531353834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.216.106.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:4d:a4:d5:53:fa:fc:3c:73:71:a0:6b:8c:2c:98:a7:5e:80: 2d:93:83:23:3f:31:1b:28:39:ef:4d:6d:63:99:31:41:f0:89: 64:d9:5b:3e:20:ad:59:ca:fe:9f:fd:b7:7c:e6:ff:cc:39:06: 02:2b:1a:f2:9d:44:ee:10:dd:b9:b3:de:3b:1d:cc:8c:8b:06: e2:e6:3a:35:9b:bf:8a:3e:1e:44:c7:23:e2:43:a0:69:31:23: 1a:b0:d7:6a:4c:03:e8:76:80:e5:97:f8:06:cb:4b:4d:4a:01: 71:b6:f8:d3:33:e7:ff:ca:ac:b0:d6:1a:91:1c:d3:4b:a0:b5: 40:ba:25:ca:8f:45:a8:b7:7f:ce:06:27:5c:4a:a8:2a:70:d0: 3f:9b:16:52:b2:bd:f9:3e:5d:62:26:ef:ab:0a:ea:5b:fe:67: da:5f:54:7b:ec:dc:a2:92:66:08:a0:de:bb:2f:8f:ee:57:83: 04:09:93:62:52:77:19:56:97:91:ad:00:91:a3:22:26:4c:f7: 6a:8c:a8:a3:5d:95:d1:0e:53:8e:d4:6e:b8:73:7d:c2:fc:55: 2f:65:58:d6:9a:a0:10:f3:43:bd:99:16:a3:c8:7b:5a:a9:93: 0c:28:86:6e:a2:2e:27:cc:b7:7c:50:37:7b:96:ea:7f:0b:b3: 92:11:02:bd -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTqt1oIni/vKK0zXHXTkUyKSIbWgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUNFRTJFMkVGQ0UzMDdBNjhFNEJGMzU5QzZFQUZGOUU5 MTkzMDNBNTAeFw0yNDA0MDQxNTMwMTRaFw0yNTA0MDMxNTM1MTRaMDMxMTAvBgNV BAMTKERDM0I2NDBGMkQ5RjVCNDgwRjkzNEIzRUU5NDE0Rjk5MUZDNEFCNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2b6rLB7pZc0oOchHlbvhJbuDe Ok20w9OB10MwL4FmaI3PVI22LRhxgxUjCDcwRPtI/1GcVwWfzh4m23nqQfHUH/U1 EM22lscgGVQh4nfxuf5h6XNFAxS8BfcQ0hcZLaP3w12Q85Rk7fuYJesnd3eAbLiv Z2g25y0K1GxGozXf5D6ZEivrmvuhPrw5bZTxiJPN3VKeZkdzBrIg90uGdH2YWGC1 xvnlW46diLKiDWzu7mh9O90I0ATgkRRV8/qWQb0+IU4xUH/KVxIDaDx+hY6bkD4c is7fXaZxCNAod4n7Tzg1Pabt/vBzIqEXfPoVS9m1l9imJvp7qU92H83wLMldAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU3DtkDy2fW0gPk0s+6UFPmR/Eq2MwHwYDVR0j BBgwFoAUHO4uLvzjB6aOS/NZxur/npGTA6UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmVmMzg5MC00NDVkLTRiMjMtOGZiMy1iMzAxOGE3OTllY2UvMC8xQ0VFMkUyRUZD RTMwN0E2OEU0QkYzNTlDNkVBRkY5RTkxOTMwM0E1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUNFRTJFMkVGQ0UzMDdBNjhFNEJGMzU5QzZFQUZGOUU5MTkz MDNBNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmZWYzODkwLTQ0NWQtNGIyMy04 ZmIzLWIzMDE4YTc5OWVjZS8wLzMxMzAzMzJlMzIzMTM2MmUzMTMwMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM1MzEzNTM4MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn2GowDQYJ KoZIhvcNAQELBQADggEBAH5NpNVT+vw8c3Gga4wsmKdegC2TgyM/MRsoOe9NbWOZ MUHwiWTZWz4grVnK/p/9t3zm/8w5BgIrGvKdRO4Q3bmz3jsdzIyLBuLmOjWbv4o+ HkTHI+JDoGkxIxqw12pMA+h2gOWX+AbLS01KAXG2+NMz5//KrLDWGpEc00ugtUC6 JcqPRai3f84GJ1xKqCpw0D+bFlKyvfk+XWIm76sK6lv+Z9pfVHvs3KKSZgig3rsv j+5XgwQJk2JSdxlWl5GtAJGjIiZM92qMqKNdldEOU47UbrhzfcL8VS9lWNaaoBDz Q72ZFqPIe1qpkwwohm6iLifMt3xQN3uW6n8Ls5IRAr0= -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:44 2024 by rpki-client on console-fra.rpki-client.org