$ rpki-client -vvf repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/3130332e38322e362e302f32342d3234203d3e20313335343733.roa File: 3130332e38322e362e302f32342d3234203d3e20313335343733.roa (raw, json) Hash identifier: L655Pa2AKy6YZM0th27qWmB7TfJ9SN35VJAKKFbO9qA= Subject key identifier: B4:E5:F1:3D:09:64:E1:4A:A6:E6:0D:D8:3F:F6:90:0D:99:A8:DE:0C Certificate issuer: /CN=210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9 Certificate serial: 5AB630B2E4A16C7B77A4E59107F5BB60929A4E9E Authority key identifier: 21:0F:D9:8E:B4:D9:A4:D8:D0:FC:B9:B2:F3:BB:BC:7F:B8:8A:32:A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/3130332e38322e362e302f32342d3234203d3e20313335343733.roa Signing time: Mon 01 Jul 2024 01:03:56 +0000 ROA not before: Mon 01 Jul 2024 00:58:56 +0000 ROA not after: Mon 30 Jun 2025 01:03:56 +0000 asID: 135473 IP address blocks: 103.82.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.crl rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 06:23:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:b6:30:b2:e4:a1:6c:7b:77:a4:e5:91:07:f5:bb:60:92:9a:4e:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9 Validity Not Before: Jul 1 00:58:56 2024 GMT Not After : Jun 30 01:03:56 2025 GMT Subject: CN=B4E5F13D0964E14AA6E60DD83FF6900D99A8DE0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5f:fe:d5:5b:c9:8e:09:27:93:e3:b5:e8:11: ae:ba:98:38:b9:90:15:83:91:65:c5:bb:97:b0:10: 83:35:ca:4b:ee:ab:df:bf:bc:b8:e3:70:a1:c0:d4: 41:4b:71:d4:32:99:c5:41:52:1e:03:9b:db:3e:10: 18:0d:ef:ef:74:0e:d5:d8:39:72:83:f7:f4:c7:41: 09:e5:ba:22:6b:c1:18:77:6d:4a:d9:11:82:9d:44: 1f:25:1b:d1:77:12:75:88:83:8c:d4:e5:29:cc:55: c1:77:21:f0:9c:38:d2:30:ab:f6:af:99:e7:7a:ee: 0a:32:b2:0c:8f:a3:f5:bc:c0:8a:0a:0a:f2:d4:f3: 48:3a:b5:3a:c9:08:d2:cf:a8:af:f5:c6:21:5c:00: 98:3b:b3:dc:5b:40:57:33:2a:20:04:f0:d5:55:18: 64:5b:7e:97:84:5f:29:96:d8:58:4d:9f:f7:da:9b: 15:5d:71:71:59:cd:73:0d:03:ec:29:3a:c0:56:e1: a8:45:ca:bf:a7:92:23:43:1c:67:d0:e8:c5:1e:85: dd:70:b1:0f:76:b6:38:20:75:a3:5b:cd:9b:83:58: 4b:cb:ff:8a:20:2f:c3:6c:4f:7e:fb:12:bf:3b:21: 01:5a:bf:92:8e:70:13:11:63:c9:10:26:1a:c8:40: 48:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:E5:F1:3D:09:64:E1:4A:A6:E6:0D:D8:3F:F6:90:0D:99:A8:DE:0C X509v3 Authority Key Identifier: keyid:21:0F:D9:8E:B4:D9:A4:D8:D0:FC:B9:B2:F3:BB:BC:7F:B8:8A:32:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210FD98EB4D9A4D8D0FCB9B2F3BBBC7FB88A32A9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f2788c88-ca2c-4fa0-a35f-3e7a10887228/0/3130332e38322e362e302f32342d3234203d3e20313335343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.82.6.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:f7:4a:98:d9:f1:a6:55:f3:4b:67:3e:7b:35:14:e0:e3:41: 11:bd:ef:b6:a9:98:08:36:2a:7d:c7:e0:99:4a:d2:f9:a9:26: 55:81:cf:73:f5:06:46:28:a4:cf:19:50:ae:a8:f8:90:25:43: 98:0b:2b:ff:f2:8f:fe:a1:fd:4d:dc:be:3c:5d:40:71:08:74: 94:f6:f9:0b:07:1a:d0:35:af:3e:e9:d8:66:ab:e7:bd:51:bd: 2c:1f:22:97:ff:b7:4d:af:b4:79:7c:a5:7b:89:3e:55:d9:fb: cf:21:51:3f:71:53:ef:de:ae:78:72:68:5e:c5:5a:da:1c:2a: 14:d9:cb:04:9f:b9:e2:50:f8:49:0a:d9:94:55:1a:c0:94:10: ce:a9:30:76:e8:4a:f9:84:7d:52:f5:68:03:dd:d7:16:5d:ca: 6b:0e:23:1e:55:ac:77:b7:6b:2a:0a:fb:ff:b7:d9:f4:86:28: 3a:37:e8:ab:b9:71:4e:9f:d8:ca:1c:3a:ea:4b:62:50:64:10: 91:fb:91:95:9d:fe:b9:76:68:38:0b:8c:bb:ac:c9:dd:0d:38: 03:3e:24:27:df:e0:60:b3:bb:ab:a9:2f:a1:19:68:96:f8:28: 04:d6:f1:c3:7d:d2:ed:94:4f:7b:87:12:86:9a:11:e1:51:01: b5:65:6e:cf -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUWrYwsuShbHt3pOWRB/W7YJKaTp4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjEwRkQ5OEVCNEQ5QTREOEQwRkNCOUIyRjNCQkJDN0ZC ODhBMzJBOTAeFw0yNDA3MDEwMDU4NTZaFw0yNTA2MzAwMTAzNTZaMDMxMTAvBgNV BAMTKEI0RTVGMTNEMDk2NEUxNEFBNkU2MEREODNGRjY5MDBEOTlBOERFMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxX/7VW8mOCSeT47XoEa66mDi5 kBWDkWXFu5ewEIM1ykvuq9+/vLjjcKHA1EFLcdQymcVBUh4Dm9s+EBgN7+90DtXY OXKD9/THQQnluiJrwRh3bUrZEYKdRB8lG9F3EnWIg4zU5SnMVcF3IfCcONIwq/av med67goysgyPo/W8wIoKCvLU80g6tTrJCNLPqK/1xiFcAJg7s9xbQFczKiAE8NVV GGRbfpeEXymW2FhNn/famxVdcXFZzXMNA+wpOsBW4ahFyr+nkiNDHGfQ6MUehd1w sQ92tjggdaNbzZuDWEvL/4ogL8NsT377Er87IQFav5KOcBMRY8kQJhrIQEiVAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUtOXxPQlk4Uqm5g3YP/aQDZmo3gwwHwYDVR0j BBgwFoAUIQ/ZjrTZpNjQ/Lmy87u8f7iKMqkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m Mjc4OGM4OC1jYTJjLTRmYTAtYTM1Zi0zZTdhMTA4ODcyMjgvMC8yMTBGRDk4RUI0 RDlBNEQ4RDBGQ0I5QjJGM0JCQkM3RkI4OEEzMkE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjEwRkQ5OEVCNEQ5QTREOEQwRkNCOUIyRjNCQkJDN0ZCODhB MzJBOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YyNzg4Yzg4LWNhMmMtNGZhMC1h MzVmLTNlN2ExMDg4NzIyOC8wLzMxMzAzMzJlMzgzMjJlMzYyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTMzMzUzNDM3MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnUgYwDQYJKoZIhvcN AQELBQADggEBACr3SpjZ8aZV80tnPns1FODjQRG977apmAg2Kn3H4JlK0vmpJlWB z3P1BkYopM8ZUK6o+JAlQ5gLK//yj/6h/U3cvjxdQHEIdJT2+QsHGtA1rz7p2Gar 571RvSwfIpf/t02vtHl8pXuJPlXZ+88hUT9xU+/ernhyaF7FWtocKhTZywSfueJQ +EkK2ZRVGsCUEM6pMHboSvmEfVL1aAPd1xZdymsOIx5VrHe3ayoK+/+32fSGKDo3 6Ku5cU6f2MocOupLYlBkEJH7kZWd/rl2aDgLjLusyd0NOAM+JCff4GCzu6upL6EZ aJb4KATW8cN90u2UT3uHEoaaEeFRAbVlbs8= -----END CERTIFICATE-----Generated at Fri Nov 22 03:51:03 2024 by rpki-client on console-fra.rpki-client.org