$ rpki-client -vvf repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/3130332e32312e39342e302f32342d3234203d3e20313331373338.roa File: 3130332e32312e39342e302f32342d3234203d3e20313331373338.roa (raw, json) Hash identifier: YF6vJXMVtUVK6CmNTZeLfmthP1D0nB1ofgHbuXDKxvI= Subject key identifier: 0D:F5:87:BA:CA:B6:FD:9E:C3:49:18:2A:C7:1D:94:1A:52:EA:43:00 Certificate issuer: /CN=821049BBD22C335A50850F16AB159C0C6BCC28E5 Certificate serial: 79E4ADF57584331CF027DA824AEFF0A2290B4CEE Authority key identifier: 82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/3130332e32312e39342e302f32342d3234203d3e20313331373338.roa Signing time: Fri 15 Nov 2024 08:00:01 +0000 ROA not before: Fri 15 Nov 2024 07:55:01 +0000 ROA not after: Fri 14 Nov 2025 08:00:01 +0000 asID: 131738 IP address blocks: 103.21.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:e4:ad:f5:75:84:33:1c:f0:27:da:82:4a:ef:f0:a2:29:0b:4c:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821049BBD22C335A50850F16AB159C0C6BCC28E5 Validity Not Before: Nov 15 07:55:01 2024 GMT Not After : Nov 14 08:00:01 2025 GMT Subject: CN=0DF587BACAB6FD9EC349182AC71D941A52EA4300 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:26:0c:ff:13:14:ac:b9:e7:cd:1d:92:21:70: 9e:de:6a:79:32:ff:d2:19:44:1b:28:a3:a0:bb:7c: 2b:54:40:a9:ed:4c:4a:4e:a0:dd:8f:ee:a2:7d:9c: 84:04:a1:78:51:b1:b3:7f:fd:47:15:7f:3f:ca:5d: d8:3e:94:d2:79:ad:04:22:37:d1:7b:4c:87:f3:46: 18:85:43:a9:75:41:ec:76:4a:48:76:dc:f5:b2:78: 0e:37:fb:28:cf:7e:f2:89:48:ab:de:f4:4d:cc:a9: 15:94:80:31:dd:69:63:cf:16:90:87:df:cb:63:07: 4b:7d:eb:08:81:b3:92:b4:c5:eb:7f:1a:8d:d0:ad: 21:e0:c9:17:ce:fc:fa:51:9e:69:d3:35:9b:6d:df: b8:69:11:c4:d3:07:30:51:1b:3b:b1:73:ef:15:04: 1f:a0:6f:b4:7e:86:dc:88:f7:d9:a7:22:7d:03:a3: a3:60:3a:e6:56:4f:84:85:17:3c:10:76:f7:e9:c6: b3:c6:43:e2:ef:ad:99:21:eb:ad:73:e8:76:2a:83: c2:0b:d1:8f:d5:db:35:fb:21:63:c2:da:91:31:1d: 6f:b5:c0:f5:d2:b1:3e:d4:bb:3a:0f:0c:19:23:5e: be:50:bd:bb:28:8d:43:e6:fc:25:c4:9e:8b:ae:fd: 68:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:F5:87:BA:CA:B6:FD:9E:C3:49:18:2A:C7:1D:94:1A:52:EA:43:00 X509v3 Authority Key Identifier: keyid:82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/3130332e32312e39342e302f32342d3234203d3e20313331373338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.94.0/24 Signature Algorithm: sha256WithRSAEncryption a5:f9:85:92:2f:35:46:31:69:1a:e8:07:0d:3e:67:41:3a:5d: 78:de:9b:cc:2e:06:ce:7d:85:6d:cb:0b:54:c9:bc:38:18:3e: 83:00:7e:45:ea:85:40:8c:fd:be:54:b5:d9:50:52:3f:0c:5d: 55:87:39:96:fe:42:42:f2:2e:5b:dd:de:a8:74:30:18:82:0d: 7c:ae:90:39:cf:bb:ba:56:29:88:bd:4e:3e:37:d7:1c:ee:40: 69:07:df:7d:a2:af:df:fa:fb:75:cc:13:21:62:4d:50:8a:4c: 4d:0e:16:ca:5a:a8:77:fb:83:ec:c4:74:d1:f2:d7:88:d6:1f: ac:d5:83:74:bb:62:7c:a5:d3:ae:2d:c2:cf:70:d3:a6:31:89: 24:8a:de:6b:e5:49:8c:84:11:4a:21:ec:75:d6:13:1e:0a:6b: 40:6d:af:20:44:fb:64:13:27:57:83:32:a1:59:0a:05:0d:6e: 4c:10:86:00:bb:9d:52:1e:49:35:13:72:cf:d3:21:c5:ac:00: 13:6e:ac:2a:cd:f8:0e:95:a1:71:de:60:1f:b5:93:ef:2c:30: 2c:3b:a2:83:4d:37:60:57:c4:42:87:8c:f3:50:4b:d1:b8:5c: c1:00:22:05:c8:40:f7:36:43:98:bf:9e:07:4e:5e:69:9c:9f: 70:c8:69:7d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUeeSt9XWEMxzwJ9qCSu/woikLTO4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlDMEM2 QkNDMjhFNTAeFw0yNDExMTUwNzU1MDFaFw0yNTExMTQwODAwMDFaMDMxMTAvBgNV BAMTKDBERjU4N0JBQ0FCNkZEOUVDMzQ5MTgyQUM3MUQ5NDFBNTJFQTQzMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsJgz/ExSsuefNHZIhcJ7eanky /9IZRBsoo6C7fCtUQKntTEpOoN2P7qJ9nIQEoXhRsbN//UcVfz/KXdg+lNJ5rQQi N9F7TIfzRhiFQ6l1Qex2Skh23PWyeA43+yjPfvKJSKve9E3MqRWUgDHdaWPPFpCH 38tjB0t96wiBs5K0xet/Go3QrSHgyRfO/PpRnmnTNZtt37hpEcTTBzBRGzuxc+8V BB+gb7R+htyI99mnIn0Do6NgOuZWT4SFFzwQdvfpxrPGQ+LvrZkh661z6HYqg8IL 0Y/V2zX7IWPC2pExHW+1wPXSsT7UuzoPDBkjXr5QvbsojUPm/CXEnouu/WjtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUDfWHusq2/Z7DSRgqxx2UGlLqQwAwHwYDVR0j BBgwFoAUghBJu9IsM1pQhQ8WqxWcDGvMKOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZGU4ZTE4ZC1hMDQ3LTQ1OTAtOWU1Ni00NjRhNzNlMjNjNmMvMC84MjEwNDlCQkQy MkMzMzVBNTA4NTBGMTZBQjE1OUMwQzZCQ0MyOEU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlDMEM2QkND MjhFNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkZThlMThkLWEwNDctNDU5MC05 ZTU2LTQ2NGE3M2UyM2M2Yy8wLzMxMzAzMzJlMzIzMTJlMzkzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMTM3MzMzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcVXjANBgkqhkiG 9w0BAQsFAAOCAQEApfmFki81RjFpGugHDT5nQTpdeN6bzC4Gzn2FbcsLVMm8OBg+ gwB+ReqFQIz9vlS12VBSPwxdVYc5lv5CQvIuW93eqHQwGIINfK6QOc+7ulYpiL1O PjfXHO5AaQfffaKv3/r7dcwTIWJNUIpMTQ4Wylqod/uD7MR00fLXiNYfrNWDdLti fKXTri3Cz3DTpjGJJIrea+VJjIQRSiHsddYTHgprQG2vIET7ZBMnV4MyoVkKBQ1u TBCGALudUh5JNRNyz9MhxawAE26sKs34DpWhcd5gH7WT7ywwLDuig003YFfEQoeM 81BL0bhcwQAiBchA9zZDmL+eB05eaZyfcMhpfQ== -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:04 2024 by rpki-client on console-fra.rpki-client.org