$ rpki-client -vvf repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/3130332e3235322e3130302e302f32332d3233203d3e203539313437.roa File: 3130332e3235322e3130302e302f32332d3233203d3e203539313437.roa (raw, json) Hash identifier: QzMFX6YKu29X9ISK/hxFWRMTKuO13hpkhNyLSxr4DcY= Subject key identifier: 94:06:50:1C:6F:D9:0C:1D:8A:E9:55:97:ED:AF:48:6B:C0:97:6A:06 Certificate issuer: /CN=0E7BF2CE27D899D8E985DBD9311DF8B250C58581 Certificate serial: 12DC15E2D443E7446F8665BA71A396200E598CDA Authority key identifier: 0E:7B:F2:CE:27:D8:99:D8:E9:85:DB:D9:31:1D:F8:B2:50:C5:85:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/3130332e3235322e3130302e302f32332d3233203d3e203539313437.roa Signing time: Thu 21 Mar 2024 08:07:46 +0000 ROA not before: Thu 21 Mar 2024 08:02:46 +0000 ROA not after: Thu 20 Mar 2025 08:07:46 +0000 asID: 59147 IP address blocks: 103.252.100.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.crl rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:09:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:dc:15:e2:d4:43:e7:44:6f:86:65:ba:71:a3:96:20:0e:59:8c:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E7BF2CE27D899D8E985DBD9311DF8B250C58581 Validity Not Before: Mar 21 08:02:46 2024 GMT Not After : Mar 20 08:07:46 2025 GMT Subject: CN=9406501C6FD90C1D8AE95597EDAF486BC0976A06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:43:00:2e:ea:e2:25:ff:2b:26:2d:e0:4c:92: ce:6a:63:52:c3:97:d3:b9:a2:6b:32:d3:88:04:fd: 36:a2:7b:0c:16:e9:7d:a0:82:38:d9:b8:3d:88:7a: 94:a3:e0:85:67:2a:43:d2:e4:28:28:ec:20:e5:05: 26:f3:2b:b7:5d:9d:36:1e:34:64:f9:0b:52:12:83: 3e:ed:88:bf:df:b1:e4:2c:06:ce:55:fe:2b:c6:4d: 00:15:27:de:65:b3:67:a0:e9:04:5f:fd:b2:9f:4d: 91:a6:fa:e0:99:00:ff:ef:47:e2:85:66:6d:f1:a1: a0:b0:7c:fc:bb:00:45:cb:bb:d8:76:cd:bb:24:a4: 4e:eb:9f:29:90:8e:c3:a3:7b:6e:c0:fd:7e:06:19: df:30:56:62:99:5e:bc:f3:f2:bd:b1:e7:00:63:d1: 73:32:de:3e:bb:9a:dd:51:a5:e6:06:fc:55:70:b7: 7d:99:4c:61:56:2b:b0:c5:24:36:88:ec:87:1c:3d: 4a:c5:9e:e4:c4:af:02:b1:df:87:05:30:92:00:ab: c8:32:d7:08:24:ad:1f:be:6a:ac:56:45:b6:16:6e: 89:10:6d:6b:1d:c9:e3:16:87:2c:de:cd:7e:1b:e2: d8:1d:e1:82:ca:6c:c0:8e:6b:e2:7b:db:76:1c:97: 0c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:06:50:1C:6F:D9:0C:1D:8A:E9:55:97:ED:AF:48:6B:C0:97:6A:06 X509v3 Authority Key Identifier: keyid:0E:7B:F2:CE:27:D8:99:D8:E9:85:DB:D9:31:1D:F8:B2:50:C5:85:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/3130332e3235322e3130302e302f32332d3233203d3e203539313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.252.100.0/23 Signature Algorithm: sha256WithRSAEncryption bd:15:21:1c:63:3b:81:cd:a0:ca:63:e7:af:20:31:c7:3b:18: 44:c3:68:ba:de:40:ef:4d:01:12:83:07:f4:eb:01:96:44:13: f4:e3:2b:d8:46:cf:a4:af:05:0e:ad:11:48:e0:21:90:1c:b4: 7c:9a:fe:22:20:72:0a:0a:4f:bc:ee:22:87:09:b1:62:d4:c6: 41:ca:8b:6e:23:9a:fb:5b:4e:de:b0:3a:35:1f:e8:07:35:02: 30:76:27:54:8b:07:a4:30:ef:64:05:eb:2c:1d:9c:8d:48:d5: 85:8e:0d:73:9c:ba:be:dc:99:2e:c7:28:64:65:ee:70:32:31: d7:6a:a7:fa:e0:bf:5c:9e:56:de:bb:61:02:ff:c5:9f:53:64: 09:17:53:a7:d5:86:78:85:5d:97:46:f3:04:11:43:e6:66:11: f6:0b:46:5c:e5:21:90:69:7d:6f:15:f3:39:36:f3:eb:2d:a6: 91:a8:5b:45:6f:99:cf:11:93:9b:e4:cb:1a:4d:6d:00:aa:30: c6:1f:72:aa:08:87:bb:5e:28:cd:0a:5c:20:a8:c7:cd:59:72: eb:9d:c9:93:82:72:e9:67:b1:a3:de:4b:6f:12:11:42:79:f5: 70:b3:fa:91:57:d5:d3:b9:02:3a:b1:6e:c9:e8:f7:e6:a5:85: 05:5e:5f:02 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEtwV4tRD50RvhmW6caOWIA5ZjNowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEU3QkYyQ0UyN0Q4OTlEOEU5ODVEQkQ5MzExREY4QjI1 MEM1ODU4MTAeFw0yNDAzMjEwODAyNDZaFw0yNTAzMjAwODA3NDZaMDMxMTAvBgNV BAMTKDk0MDY1MDFDNkZEOTBDMUQ4QUU5NTU5N0VEQUY0ODZCQzA5NzZBMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaQwAu6uIl/ysmLeBMks5qY1LD l9O5omsy04gE/TaiewwW6X2ggjjZuD2IepSj4IVnKkPS5Cgo7CDlBSbzK7ddnTYe NGT5C1ISgz7tiL/fseQsBs5V/ivGTQAVJ95ls2eg6QRf/bKfTZGm+uCZAP/vR+KF Zm3xoaCwfPy7AEXLu9h2zbskpE7rnymQjsOje27A/X4GGd8wVmKZXrzz8r2x5wBj 0XMy3j67mt1RpeYG/FVwt32ZTGFWK7DFJDaI7IccPUrFnuTErwKx34cFMJIAq8gy 1wgkrR++aqxWRbYWbokQbWsdyeMWhyzezX4b4tgd4YLKbMCOa+J723Yclwy1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlAZQHG/ZDB2K6VWX7a9Ia8CXagYwHwYDVR0j BBgwFoAUDnvyzifYmdjphdvZMR34slDFhYEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MGM1NTAzNC01ZjM2LTQxNzMtYjY0Yy1hOTc1ZTMyMzEzOGEvMC8wRTdCRjJDRTI3 RDg5OUQ4RTk4NURCRDkzMTFERjhCMjUwQzU4NTgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEU3QkYyQ0UyN0Q4OTlEOEU5ODVEQkQ5MzExREY4QjI1MEM1 ODU4MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwYzU1MDM0LTVmMzYtNDE3My1i NjRjLWE5NzVlMzIzMTM4YS8wLzMxMzAzMzJlMzIzNTMyMmUzMTMwMzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM5MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/xkMA0GCSqG SIb3DQEBCwUAA4IBAQC9FSEcYzuBzaDKY+evIDHHOxhEw2i63kDvTQESgwf06wGW RBP04yvYRs+krwUOrRFI4CGQHLR8mv4iIHIKCk+87iKHCbFi1MZByotuI5r7W07e sDo1H+gHNQIwdidUiwekMO9kBessHZyNSNWFjg1znLq+3JkuxyhkZe5wMjHXaqf6 4L9cnlbeu2EC/8WfU2QJF1On1YZ4hV2XRvMEEUPmZhH2C0Zc5SGQaX1vFfM5NvPr LaaRqFtFb5nPEZOb5MsaTW0AqjDGH3KqCIe7XijNClwgqMfNWXLrncmTgnLpZ7Gj 3ktvEhFCefVws/qRV9XTuQI6sW7J6PfmpYUFXl8C -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org