$ rpki-client -vvf repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/3130332e3235322e3130312e302f32342d3234203d3e203539313437.roa File: 3130332e3235322e3130312e302f32342d3234203d3e203539313437.roa (raw, json) Hash identifier: nrbfLeJenZ/m1oibBR2PYmgW8ZXfNeZc2/7UZtn/Dag= Subject key identifier: BB:0A:6F:30:3F:35:4D:33:12:88:32:27:9D:18:29:AD:16:2D:D4:64 Certificate issuer: /CN=0E7BF2CE27D899D8E985DBD9311DF8B250C58581 Certificate serial: 34526DC99282199B865A3F660B9624C3831F9889 Authority key identifier: 0E:7B:F2:CE:27:D8:99:D8:E9:85:DB:D9:31:1D:F8:B2:50:C5:85:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/3130332e3235322e3130312e302f32342d3234203d3e203539313437.roa Signing time: Thu 21 Mar 2024 07:55:25 +0000 ROA not before: Thu 21 Mar 2024 07:50:25 +0000 ROA not after: Thu 20 Mar 2025 07:55:25 +0000 asID: 59147 IP address blocks: 103.252.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.crl rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:09:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:52:6d:c9:92:82:19:9b:86:5a:3f:66:0b:96:24:c3:83:1f:98:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E7BF2CE27D899D8E985DBD9311DF8B250C58581 Validity Not Before: Mar 21 07:50:25 2024 GMT Not After : Mar 20 07:55:25 2025 GMT Subject: CN=BB0A6F303F354D33128832279D1829AD162DD464 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f5:64:84:e2:10:78:aa:87:31:1a:35:eb:a5: b9:94:59:66:2d:f9:f2:bb:8f:cf:88:b8:46:3a:f9: 16:c2:2d:b4:ed:eb:b8:84:91:6c:7f:e5:0a:18:9a: 3b:5d:0c:e0:35:32:39:d7:9d:ae:6a:36:97:b5:55: 2d:c3:cb:a9:52:eb:1b:e5:2b:ee:bd:1c:e2:3f:fe: 4e:7d:fa:61:dd:2c:1c:2e:04:b0:99:25:4d:f9:4f: a0:7b:0f:e5:6d:6a:64:80:94:5f:76:39:fd:bd:44: dd:60:b2:d2:15:9a:26:57:68:5b:1c:e2:bf:98:de: 99:e5:5b:c8:22:4e:dc:5e:ae:a3:96:4f:b5:99:c0: 51:c0:94:bc:db:14:b9:cf:51:5b:7b:a8:b0:7a:cf: 33:d8:da:c1:2f:d7:54:d4:b7:7d:83:2d:14:61:f9: 93:0a:b0:e2:6f:72:df:d0:40:06:d2:7e:25:ab:c2: e4:4a:5e:95:24:7d:04:bb:68:83:03:01:f3:aa:8b: d3:1f:ab:89:bc:ef:71:b6:6b:4b:59:bc:8b:be:6a: 9b:5e:d5:06:97:c9:76:90:90:8b:a3:84:4f:2a:41: bf:65:66:6d:be:d2:44:cd:aa:3b:04:77:7b:af:d9: ff:3c:74:a1:07:fc:f9:78:f8:65:e9:1d:ee:fe:57: fd:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:0A:6F:30:3F:35:4D:33:12:88:32:27:9D:18:29:AD:16:2D:D4:64 X509v3 Authority Key Identifier: keyid:0E:7B:F2:CE:27:D8:99:D8:E9:85:DB:D9:31:1D:F8:B2:50:C5:85:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0E7BF2CE27D899D8E985DBD9311DF8B250C58581.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0c55034-5f36-4173-b64c-a975e323138a/0/3130332e3235322e3130312e302f32342d3234203d3e203539313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.252.101.0/24 Signature Algorithm: sha256WithRSAEncryption 07:a6:85:33:96:72:4d:e0:4c:79:1f:b9:bd:d7:58:fb:0b:ab: 76:fc:71:aa:76:22:02:5e:65:b7:40:a5:9e:a4:8a:f3:f6:b4: fd:34:87:70:b4:ca:cc:2b:ca:da:e2:13:5d:c0:b6:6b:30:24: c9:7e:cb:c4:9f:99:af:fa:8b:e9:c2:87:f1:36:57:0a:20:23: 09:af:88:65:50:0b:25:83:1f:01:fc:ca:99:02:71:a9:d4:78: 1e:3f:fc:1e:47:b3:e0:92:73:b2:b9:7e:8b:53:de:a6:35:f5: 11:05:ad:06:11:40:8a:aa:1c:4e:5a:b0:54:e2:28:62:fe:67: c6:3f:19:90:ef:fa:e0:16:37:00:d8:f3:ce:01:cf:8a:51:8c: 08:84:66:90:0c:61:0a:9f:4f:b5:33:22:12:8d:37:27:a6:47: 11:9e:b5:fa:aa:0c:aa:4e:e1:69:12:d6:6e:f9:c7:9e:5d:ae: 11:85:16:a1:bc:9a:fb:f2:b9:2c:5c:d0:20:f2:c0:42:f0:8c: ae:a6:7f:16:48:68:69:25:89:62:98:35:db:09:22:47:28:b2: ea:8a:d5:27:07:2c:58:4c:3f:5f:f0:9d:3d:59:5b:51:02:e0: 01:31:c4:18:50:53:7d:65:3e:2c:6b:46:45:b4:a4:1d:5a:10: de:51:22:de -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNFJtyZKCGZuGWj9mC5Ykw4MfmIkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEU3QkYyQ0UyN0Q4OTlEOEU5ODVEQkQ5MzExREY4QjI1 MEM1ODU4MTAeFw0yNDAzMjEwNzUwMjVaFw0yNTAzMjAwNzU1MjVaMDMxMTAvBgNV BAMTKEJCMEE2RjMwM0YzNTREMzMxMjg4MzIyNzlEMTgyOUFEMTYyREQ0NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe9WSE4hB4qocxGjXrpbmUWWYt +fK7j8+IuEY6+RbCLbTt67iEkWx/5QoYmjtdDOA1MjnXna5qNpe1VS3Dy6lS6xvl K+69HOI//k59+mHdLBwuBLCZJU35T6B7D+VtamSAlF92Of29RN1gstIVmiZXaFsc 4r+Y3pnlW8giTtxerqOWT7WZwFHAlLzbFLnPUVt7qLB6zzPY2sEv11TUt32DLRRh +ZMKsOJvct/QQAbSfiWrwuRKXpUkfQS7aIMDAfOqi9Mfq4m873G2a0tZvIu+apte 1QaXyXaQkIujhE8qQb9lZm2+0kTNqjsEd3uv2f88dKEH/Pl4+GXpHe7+V/2xAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuwpvMD81TTMSiDInnRgprRYt1GQwHwYDVR0j BBgwFoAUDnvyzifYmdjphdvZMR34slDFhYEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MGM1NTAzNC01ZjM2LTQxNzMtYjY0Yy1hOTc1ZTMyMzEzOGEvMC8wRTdCRjJDRTI3 RDg5OUQ4RTk4NURCRDkzMTFERjhCMjUwQzU4NTgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEU3QkYyQ0UyN0Q4OTlEOEU5ODVEQkQ5MzExREY4QjI1MEM1 ODU4MS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwYzU1MDM0LTVmMzYtNDE3My1i NjRjLWE5NzVlMzIzMTM4YS8wLzMxMzAzMzJlMzIzNTMyMmUzMTMwMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/xlMA0GCSqG SIb3DQEBCwUAA4IBAQAHpoUzlnJN4Ex5H7m911j7C6t2/HGqdiICXmW3QKWepIrz 9rT9NIdwtMrMK8ra4hNdwLZrMCTJfsvEn5mv+ovpwofxNlcKICMJr4hlUAslgx8B /MqZAnGp1HgeP/weR7PgknOyuX6LU96mNfURBa0GEUCKqhxOWrBU4ihi/mfGPxmQ 7/rgFjcA2PPOAc+KUYwIhGaQDGEKn0+1MyISjTcnpkcRnrX6qgyqTuFpEtZu+cee Xa4RhRahvJr78rksXNAg8sBC8Iyupn8WSGhpJYlimDXbCSJHKLLqitUnByxYTD9f 8J09WVtRAuABMcQYUFN9ZT4sa0ZFtKQdWhDeUSLe -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:43 2024 by rpki-client on console-fra.rpki-client.org