$ rpki-client -vvf repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/3130332e32312e39322e302f32342d3234203d3e20313331373338.roa File: 3130332e32312e39322e302f32342d3234203d3e20313331373338.roa (raw, json) Hash identifier: hECg6Ig5KKKzqRQzwWC/Uc7L0Wq7Wa5h8IaEUoBuJNc= Subject key identifier: 37:60:91:3C:56:27:A2:41:BC:7F:D3:EC:65:14:27:B0:89:70:91:9D Certificate issuer: /CN=821049BBD22C335A50850F16AB159C0C6BCC28E5 Certificate serial: 68FCA4F3A5198A2E39A8D7440C5D837D21A80F13 Authority key identifier: 82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/3130332e32312e39322e302f32342d3234203d3e20313331373338.roa Signing time: Fri 15 Dec 2023 07:24:34 +0000 ROA not before: Fri 15 Dec 2023 07:19:34 +0000 ROA not after: Fri 13 Dec 2024 07:24:34 +0000 asID: 131738 IP address blocks: 103.21.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:fc:a4:f3:a5:19:8a:2e:39:a8:d7:44:0c:5d:83:7d:21:a8:0f:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821049BBD22C335A50850F16AB159C0C6BCC28E5 Validity Not Before: Dec 15 07:19:34 2023 GMT Not After : Dec 13 07:24:34 2024 GMT Subject: CN=3760913C5627A241BC7FD3EC651427B08970919D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:57:ae:5e:5f:f8:57:3a:f5:4c:fa:cc:3d:5c: d1:be:df:8a:6d:19:03:de:03:22:26:68:b2:29:2d: 8a:47:80:e4:bd:0a:b7:cd:c0:75:cd:3c:ae:0d:c5: 2a:5a:45:6e:8f:7d:26:16:15:09:27:94:fc:ec:fe: 83:32:10:b3:2c:86:39:cd:e7:aa:78:d6:50:59:14: 63:36:5a:17:59:3d:9e:59:45:17:24:06:4b:a3:d0: 0c:15:4a:b6:bb:2a:d4:ef:24:3a:d1:b9:12:6a:77: 58:d9:12:8b:24:e5:88:8d:78:48:16:a2:6e:2a:b9: 1b:36:17:3a:de:e7:14:3e:9f:cc:27:1b:de:2f:05: 33:7f:4a:33:ce:f0:27:d5:ab:46:4f:28:83:72:2e: 7c:31:d8:bc:bf:61:76:a7:54:24:1d:2c:29:3a:c7: a2:d9:7d:69:e1:eb:2f:d0:f7:a9:c6:b9:97:3f:da: 93:31:d5:1a:13:35:30:19:71:63:1b:a5:77:ef:3d: 80:f5:20:c5:07:a4:27:58:54:3b:de:58:d9:37:ff: 14:ba:dd:aa:ef:c0:af:fe:86:2f:69:8d:72:6f:26: 34:b4:b7:8f:81:4f:77:ab:55:02:f1:7b:9d:bb:ba: 7f:0a:07:0c:70:e9:fe:5f:05:0a:93:b1:ec:2a:a4: 86:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:60:91:3C:56:27:A2:41:BC:7F:D3:EC:65:14:27:B0:89:70:91:9D X509v3 Authority Key Identifier: keyid:82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/3130332e32312e39322e302f32342d3234203d3e20313331373338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.92.0/24 Signature Algorithm: sha256WithRSAEncryption 81:4c:84:a4:0f:90:32:d9:3c:db:10:7f:2a:f4:88:2d:91:40: fa:7e:d1:5f:81:5d:d4:1d:2a:5a:fc:3f:ca:02:5a:8e:c1:60: f4:76:92:15:6f:ec:ef:b2:80:07:24:c3:99:10:05:2e:fe:0b: 55:14:8c:1c:33:13:b8:70:ac:f2:0b:4f:9d:2f:d8:90:89:c2: 8e:05:28:f8:85:e3:18:bc:87:5b:38:25:d2:79:f9:16:7d:4c: ad:0b:25:fc:eb:c9:29:4a:fb:02:66:7a:87:6e:74:eb:30:44: af:45:fa:6b:25:fe:20:af:45:bf:6c:ad:95:5d:cc:2a:f9:bd: d9:cb:c2:38:b0:92:2f:2b:d0:85:68:17:26:80:2e:3f:6e:24: a2:bf:52:88:27:76:ba:34:19:d1:d3:ab:91:fb:6c:14:13:45: 2a:34:10:d1:8a:4c:f3:e3:bb:49:fc:55:41:66:ea:52:58:40: 79:06:c6:0c:92:b7:8a:df:82:5b:34:2c:08:c1:af:87:fb:67: 4d:07:c7:c6:6c:54:e8:06:ff:0f:4d:1d:70:e1:64:30:78:16: 78:87:2f:f4:1a:6f:e8:5d:d9:f4:9a:cb:d2:11:88:96:3d:af: 40:49:e6:9a:fd:ad:59:87:b2:8a:70:ea:21:46:b3:e8:86:14: e1:b0:c1:b9 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaPyk86UZii45qNdEDF2DfSGoDxMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlDMEM2 QkNDMjhFNTAeFw0yMzEyMTUwNzE5MzRaFw0yNDEyMTMwNzI0MzRaMDMxMTAvBgNV BAMTKDM3NjA5MTNDNTYyN0EyNDFCQzdGRDNFQzY1MTQyN0IwODk3MDkxOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAV65eX/hXOvVM+sw9XNG+34pt GQPeAyImaLIpLYpHgOS9CrfNwHXNPK4NxSpaRW6PfSYWFQknlPzs/oMyELMshjnN 56p41lBZFGM2WhdZPZ5ZRRckBkuj0AwVSra7KtTvJDrRuRJqd1jZEosk5YiNeEgW om4quRs2Fzre5xQ+n8wnG94vBTN/SjPO8CfVq0ZPKINyLnwx2Ly/YXanVCQdLCk6 x6LZfWnh6y/Q96nGuZc/2pMx1RoTNTAZcWMbpXfvPYD1IMUHpCdYVDveWNk3/xS6 3arvwK/+hi9pjXJvJjS0t4+BT3erVQLxe527un8KBwxw6f5fBQqTsewqpIabAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUN2CRPFYnokG8f9PsZRQnsIlwkZ0wHwYDVR0j BBgwFoAUghBJu9IsM1pQhQ8WqxWcDGvMKOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZGU4ZTE4ZC1hMDQ3LTQ1OTAtOWU1Ni00NjRhNzNlMjNjNmMvMC84MjEwNDlCQkQy MkMzMzVBNTA4NTBGMTZBQjE1OUMwQzZCQ0MyOEU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlDMEM2QkND MjhFNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkZThlMThkLWEwNDctNDU5MC05 ZTU2LTQ2NGE3M2UyM2M2Yy8wLzMxMzAzMzJlMzIzMTJlMzkzMjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMTM3MzMzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcVXDANBgkqhkiG 9w0BAQsFAAOCAQEAgUyEpA+QMtk82xB/KvSILZFA+n7RX4Fd1B0qWvw/ygJajsFg 9HaSFW/s77KAByTDmRAFLv4LVRSMHDMTuHCs8gtPnS/YkInCjgUo+IXjGLyHWzgl 0nn5Fn1MrQsl/OvJKUr7AmZ6h2506zBEr0X6ayX+IK9Fv2ytlV3MKvm92cvCOLCS LyvQhWgXJoAuP24kor9SiCd2ujQZ0dOrkftsFBNFKjQQ0YpM8+O7SfxVQWbqUlhA eQbGDJK3it+CWzQsCMGvh/tnTQfHxmxU6Ab/D00dcOFkMHgWeIcv9Bpv6F3Z9JrL 0hGIlj2vQEnmmv2tWYeyinDqIUaz6IYU4bDBuQ== -----END CERTIFICATE-----Generated at Sun Jun 2 08:36:55 2024 by rpki-client on console-fra.rpki-client.org