$ rpki-client -vvf repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/3130332e3131312e3231382e302f32342d3234203d3e20313337333233.roa File: 3130332e3131312e3231382e302f32342d3234203d3e20313337333233.roa (raw, json) Hash identifier: qCHg+9KrPmmCMKbN84AylMJKCiXjXQ2KVOvVNtBlvIQ= Subject key identifier: 3E:EE:9D:92:91:F5:F2:9B:12:85:A8:6F:D3:8F:C7:5E:AE:6D:7D:EC Certificate issuer: /CN=DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F Certificate serial: 3E9159E08CE151AA42B284DF1F1DFC985206422C Authority key identifier: DC:FC:FE:4E:81:97:FF:AF:B9:A5:79:20:BD:40:DC:C1:AC:F0:F3:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/3130332e3131312e3231382e302f32342d3234203d3e20313337333233.roa Signing time: Tue 09 Apr 2024 13:00:01 +0000 ROA not before: Tue 09 Apr 2024 12:55:01 +0000 ROA not after: Tue 08 Apr 2025 13:00:01 +0000 asID: 137323 IP address blocks: 103.111.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.crl rsync://repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:91:59:e0:8c:e1:51:aa:42:b2:84:df:1f:1d:fc:98:52:06:42:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F Validity Not Before: Apr 9 12:55:01 2024 GMT Not After : Apr 8 13:00:01 2025 GMT Subject: CN=3EEE9D9291F5F29B1285A86FD38FC75EAE6D7DEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f7:64:80:cf:83:16:05:17:ef:b5:f9:66:70: dc:ff:ff:78:84:c0:62:53:28:29:a4:42:4d:12:1e: 1d:b7:27:38:cb:18:9c:8c:1e:e3:0f:03:b2:47:d4: 76:25:ed:ac:d3:cb:1f:e4:3b:43:b9:72:58:95:2a: 50:6a:6c:5e:27:b6:39:26:4a:1b:a8:6a:09:37:79: 35:a8:0e:80:31:f7:d2:52:d4:56:68:b8:2d:90:f3: df:17:73:90:44:f5:df:02:30:31:b5:9f:67:01:fb: 82:b6:68:d7:3b:e2:b1:37:53:c0:e2:5c:a2:a6:d4: fd:21:5e:9a:27:4c:3b:13:dc:57:24:24:03:ed:f6: 1f:79:c5:28:58:51:b7:b3:92:3c:e3:dd:32:f9:10: 05:dc:42:34:85:56:ef:3f:32:4d:b5:ad:bf:27:0f: 2c:45:30:88:8e:7e:1e:eb:05:51:10:ad:d7:bc:dc: a6:44:a0:bc:8d:2d:ad:f5:71:81:05:74:14:4e:d6: 26:70:84:a5:03:92:a2:c3:f2:7f:bf:35:27:aa:ef: c6:fe:2b:00:28:07:a2:00:71:eb:95:59:e5:f2:a3: 2b:3f:37:d9:4c:2a:52:77:08:65:bf:4c:89:3c:66: c1:77:28:d7:12:42:5a:a6:ef:2d:db:0b:b7:5d:8e: f2:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:EE:9D:92:91:F5:F2:9B:12:85:A8:6F:D3:8F:C7:5E:AE:6D:7D:EC X509v3 Authority Key Identifier: keyid:DC:FC:FE:4E:81:97:FF:AF:B9:A5:79:20:BD:40:DC:C1:AC:F0:F3:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DCFCFE4E8197FFAFB9A57920BD40DCC1ACF0F30F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e1af144b-b92e-4fff-b641-e46fdde8c6df/0/3130332e3131312e3231382e302f32342d3234203d3e20313337333233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.111.218.0/24 Signature Algorithm: sha256WithRSAEncryption 16:c4:9d:93:44:6e:c3:0b:1c:18:e3:ea:bc:af:d0:61:9a:09: 91:90:44:6f:4e:9e:49:b4:43:64:f8:0c:23:2f:70:9c:8c:60: 44:4e:67:99:cf:a1:60:5c:05:a4:28:a1:c7:63:41:1a:fb:43: 49:e9:f7:5a:19:67:dd:a9:a9:e8:1d:56:57:30:dd:6f:e1:a4: d7:c8:f8:35:cf:81:c4:89:7a:b3:fe:00:13:44:ae:6d:a7:84: a5:f9:5a:fd:c7:9c:e4:85:11:79:60:34:4a:d6:1a:f1:aa:f6: 11:e8:12:e9:24:8e:5e:32:04:54:b7:3b:55:89:a0:fb:d1:58: b3:f1:2f:d6:96:29:99:a6:8e:ae:4a:f7:9c:90:3d:65:53:3f: 71:14:3f:4f:96:a2:15:e0:d2:73:3f:08:be:07:ea:0d:7c:70: f9:23:5f:a5:02:bf:cf:af:59:87:45:62:ed:a1:74:31:e9:a8: f4:d1:7d:d2:71:2b:44:f9:61:d8:c4:db:16:08:f5:6d:17:46: cf:d0:c4:32:7b:2f:91:00:14:d3:2d:d0:aa:c6:17:4f:31:66: 07:4f:93:84:f1:61:c8:26:31:ed:33:71:d8:eb:91:04:f6:04: ff:64:8b:f6:15:18:07:10:48:1b:50:9a:22:32:80:9b:be:a4: 35:15:93:bf -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPpFZ4IzhUapCsoTfHx38mFIGQiwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRENGQ0ZFNEU4MTk3RkZBRkI5QTU3OTIwQkQ0MERDQzFB Q0YwRjMwRjAeFw0yNDA0MDkxMjU1MDFaFw0yNTA0MDgxMzAwMDFaMDMxMTAvBgNV BAMTKDNFRUU5RDkyOTFGNUYyOUIxMjg1QTg2RkQzOEZDNzVFQUU2RDdERUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG92SAz4MWBRfvtflmcNz//3iE wGJTKCmkQk0SHh23JzjLGJyMHuMPA7JH1HYl7azTyx/kO0O5cliVKlBqbF4ntjkm Shuoagk3eTWoDoAx99JS1FZouC2Q898Xc5BE9d8CMDG1n2cB+4K2aNc74rE3U8Di XKKm1P0hXponTDsT3FckJAPt9h95xShYUbezkjzj3TL5EAXcQjSFVu8/Mk21rb8n DyxFMIiOfh7rBVEQrde83KZEoLyNLa31cYEFdBRO1iZwhKUDkqLD8n+/NSeq78b+ KwAoB6IAceuVWeXyoys/N9lMKlJ3CGW/TIk8ZsF3KNcSQlqm7y3bC7ddjvJhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUPu6dkpH18psShahv04/HXq5tfewwHwYDVR0j BBgwFoAU3Pz+ToGX/6+5pXkgvUDcwazw8w8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MWFmMTQ0Yi1iOTJlLTRmZmYtYjY0MS1lNDZmZGRlOGM2ZGYvMC9EQ0ZDRkU0RTgx OTdGRkFGQjlBNTc5MjBCRDQwRENDMUFDRjBGMzBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRENGQ0ZFNEU4MTk3RkZBRkI5QTU3OTIwQkQ0MERDQzFBQ0Yw RjMwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxYWYxNDRiLWI5MmUtNGZmZi1i NjQxLWU0NmZkZGU4YzZkZi8wLzMxMzAzMzJlMzEzMTMxMmUzMjMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnb9owDQYJ KoZIhvcNAQELBQADggEBABbEnZNEbsMLHBjj6ryv0GGaCZGQRG9Onkm0Q2T4DCMv cJyMYEROZ5nPoWBcBaQoocdjQRr7Q0np91oZZ92pqegdVlcw3W/hpNfI+DXPgcSJ erP+ABNErm2nhKX5Wv3HnOSFEXlgNErWGvGq9hHoEukkjl4yBFS3O1WJoPvRWLPx L9aWKZmmjq5K95yQPWVTP3EUP0+WohXg0nM/CL4H6g18cPkjX6UCv8+vWYdFYu2h dDHpqPTRfdJxK0T5YdjE2xYI9W0XRs/QxDJ7L5EAFNMt0KrGF08xZgdPk4TxYcgm Me0zcdjrkQT2BP9ki/YVGAcQSBtQmiIygJu+pDUVk78= -----END CERTIFICATE-----Generated at Sun Nov 24 15:29:10 2024 by rpki-client on console-ams.rpki-client.org