$ rpki-client -vvf repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/3130332e3235322e3130302e302f32342d3234203d3e203539313437.roa File: 3130332e3235322e3130302e302f32342d3234203d3e203539313437.roa (raw, json) Hash identifier: VJV+z/i2K3XQPZm488AniAJyfjsMAe3qzP3pvZ3RZGs= Subject key identifier: 3B:5F:24:72:D2:26:14:0B:6E:5D:34:26:03:2D:DA:F6:89:90:73:E5 Certificate issuer: /CN=0E7BF2CE27D899D8E985DBD9311DF8B250C58581 Certificate serial: 23D34B09552F68825E69584F9E63782C64C11ED1 Authority key identifier: 0E:7B:F2:CE:27:D8:99:D8:E9:85:DB:D9:31:1D:F8:B2:50:C5:85:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/3130332e3235322e3130302e302f32342d3234203d3e203539313437.roa Signing time: Thu 21 Mar 2024 07:55:11 +0000 ROA not before: Thu 21 Mar 2024 07:50:11 +0000 ROA not after: Thu 20 Mar 2025 07:55:11 +0000 asID: 59147 IP address blocks: 103.252.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.crl rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:09:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:d3:4b:09:55:2f:68:82:5e:69:58:4f:9e:63:78:2c:64:c1:1e:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E7BF2CE27D899D8E985DBD9311DF8B250C58581 Validity Not Before: Mar 21 07:50:11 2024 GMT Not After : Mar 20 07:55:11 2025 GMT Subject: CN=3B5F2472D226140B6E5D3426032DDAF6899073E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:36:3f:b1:9d:b1:fe:40:76:7b:23:34:12:ee: bd:1a:2c:a9:59:4a:ae:24:0e:53:68:ed:9c:26:fc: 06:f3:2f:5e:6b:03:84:1b:44:42:45:e0:77:7e:e5: 7b:93:c0:8d:75:68:48:38:25:61:06:fb:af:95:8b: 66:bb:ff:2f:f8:1d:f4:94:e0:e6:9c:9e:82:54:49: 0f:b6:d8:67:84:62:e1:49:22:e3:05:f1:a2:d5:19: ce:0c:3d:fe:a5:0c:54:ad:dd:41:42:19:8d:14:70: d8:0f:e4:41:d8:79:99:b9:ce:99:ff:f2:d7:3c:d5: 6b:ca:80:16:1e:b0:25:c6:d2:2a:07:c1:61:67:3a: ec:d4:0c:3a:c8:ff:3d:e7:e8:fa:f1:2a:5d:cc:8a: 42:59:06:17:26:43:24:12:c1:31:c8:bd:20:49:f8: 70:33:f1:5b:81:b8:4f:c1:70:b1:f7:da:25:45:56: 0c:74:eb:82:c9:20:34:b7:eb:48:47:e7:a5:21:50: 3a:4b:07:fd:79:e3:05:6e:03:76:d6:82:e2:f2:34: 11:57:7c:56:b4:6d:41:90:f4:76:0c:74:6d:e7:9a: ab:90:32:65:aa:09:0f:d3:1d:08:25:e5:7f:d0:a2: 43:ae:73:3e:db:58:f5:15:a9:f9:dc:6b:bf:8c:64: bc:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:5F:24:72:D2:26:14:0B:6E:5D:34:26:03:2D:DA:F6:89:90:73:E5 X509v3 Authority Key Identifier: keyid:0E:7B:F2:CE:27:D8:99:D8:E9:85:DB:D9:31:1D:F8:B2:50:C5:85:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/3130332e3235322e3130302e302f32342d3234203d3e203539313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.252.100.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:8e:ff:dd:31:d6:46:7a:42:bc:73:98:57:99:ee:04:a0:61: 8a:39:42:0f:bc:71:43:48:b4:ba:70:fb:58:eb:d1:97:ec:cd: 6f:3b:03:f1:07:ec:01:72:e1:cd:eb:21:48:80:2b:87:5b:a6: 8d:88:2b:96:c4:9d:ca:bb:57:0f:49:f7:62:42:84:67:57:22: 50:44:23:15:68:d3:9d:e3:96:c4:2a:6b:8a:30:6e:1e:c5:e8: 69:57:f2:28:49:c9:38:13:07:3c:03:da:4c:85:8d:2b:86:6a: f5:06:4d:53:e7:5f:14:51:95:22:40:44:7f:df:28:1e:83:d8: 89:e5:89:6d:f5:47:79:73:ff:e7:dd:ca:da:bc:06:ef:8e:56: 92:c7:a9:93:21:6e:df:07:b5:8e:e5:e2:7a:e1:15:fc:60:6e: f5:4e:40:0b:e0:c2:17:6b:73:39:f1:b2:2d:5f:3d:be:bc:fc: 77:9d:93:e0:85:7d:06:64:c2:00:a3:07:b8:b1:87:ff:d6:47: 92:d0:4e:9c:7f:45:6e:e4:84:79:2a:c0:e9:55:ba:a0:6c:b7: a6:6d:2b:70:7d:38:63:40:89:66:cc:0d:1b:b4:97:45:e6:ff: 33:0e:18:08:7c:9e:05:97:b3:52:4a:35:f2:82:a7:60:03:8f: 5d:7a:ee:8b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUI9NLCVUvaIJeaVhPnmN4LGTBHtEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEU3QkYyQ0UyN0Q4OTlEOEU5ODVEQkQ5MzExREY4QjI1 MEM1ODU4MTAeFw0yNDAzMjEwNzUwMTFaFw0yNTAzMjAwNzU1MTFaMDMxMTAvBgNV BAMTKDNCNUYyNDcyRDIyNjE0MEI2RTVEMzQyNjAzMkREQUY2ODk5MDczRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgNj+xnbH+QHZ7IzQS7r0aLKlZ Sq4kDlNo7Zwm/AbzL15rA4QbREJF4Hd+5XuTwI11aEg4JWEG+6+Vi2a7/y/4HfSU 4OacnoJUSQ+22GeEYuFJIuMF8aLVGc4MPf6lDFSt3UFCGY0UcNgP5EHYeZm5zpn/ 8tc81WvKgBYesCXG0ioHwWFnOuzUDDrI/z3n6PrxKl3MikJZBhcmQyQSwTHIvSBJ +HAz8VuBuE/BcLH32iVFVgx064LJIDS360hH56UhUDpLB/154wVuA3bWguLyNBFX fFa0bUGQ9HYMdG3nmquQMmWqCQ/THQgl5X/QokOucz7bWPUVqfnca7+MZLzNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUO18kctImFAtuXTQmAy3a9omQc+UwHwYDVR0j BBgwFoAUDnvyzifYmdjphdvZMR34slDFhYEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MGM1NTAzNC01ZjM2LTQxNzMtYjY0Yy1hOTc1ZTMyMzEzOGEvMC8wRTdCRjJDRTI3 RDg5OUQ4RTk4NURCRDkzMTFERjhCMjUwQzU4NTgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEU3QkYyQ0UyN0Q4OTlEOEU5ODVEQkQ5MzExREY4QjI1MEM1 ODU4MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwYzU1MDM0LTVmMzYtNDE3My1i NjRjLWE5NzVlMzIzMTM4YS8wLzMxMzAzMzJlMzIzNTMyMmUzMTMwMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/xkMA0GCSqG SIb3DQEBCwUAA4IBAQCajv/dMdZGekK8c5hXme4EoGGKOUIPvHFDSLS6cPtY69GX 7M1vOwPxB+wBcuHN6yFIgCuHW6aNiCuWxJ3Ku1cPSfdiQoRnVyJQRCMVaNOd45bE KmuKMG4exehpV/IoSck4Ewc8A9pMhY0rhmr1Bk1T518UUZUiQER/3ygeg9iJ5Ylt 9Ud5c//n3cravAbvjlaSx6mTIW7fB7WO5eJ64RX8YG71TkAL4MIXa3M58bItXz2+ vPx3nZPghX0GZMIAowe4sYf/1keS0E6cf0Vu5IR5KsDpVbqgbLembStwfThjQIlm zA0btJdF5v8zDhgIfJ4Fl7NSSjXygqdgA49deu6L -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org