$ rpki-client -vvf repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137322e302f32332d3233203d3e20313333333534.roa File: 3130332e3231372e3137322e302f32332d3233203d3e20313333333534.roa (raw, json) Hash identifier: bcKNAldjHqBfsv/Q+Ly6D1o3ohbtzg70IudkGUDipiI= Subject key identifier: FE:AD:18:AA:95:28:12:37:7B:7B:3D:FB:C1:CA:87:3B:69:8A:BE:5D Certificate issuer: /CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6 Certificate serial: 0F21CC9E56CAFED8ED90A4056A2CE4F21ECE2CD7 Authority key identifier: C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137322e302f32332d3233203d3e20313333333534.roa Signing time: Tue 24 Sep 2024 17:12:53 +0000 ROA not before: Tue 24 Sep 2024 17:07:53 +0000 ROA not after: Tue 23 Sep 2025 17:12:53 +0000 asID: 133354 IP address blocks: 103.217.172.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.crl rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 20:48:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:21:cc:9e:56:ca:fe:d8:ed:90:a4:05:6a:2c:e4:f2:1e:ce:2c:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6 Validity Not Before: Sep 24 17:07:53 2024 GMT Not After : Sep 23 17:12:53 2025 GMT Subject: CN=FEAD18AA952812377B7B3DFBC1CA873B698ABE5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a6:c2:f6:98:3e:e8:33:28:a7:4a:f6:2a:07: 44:a9:4a:c0:db:95:4b:a9:5c:db:80:1b:94:e7:75: 1b:28:77:02:2c:51:c5:42:a9:06:b5:f4:e7:d5:c5: 29:10:3c:ec:c4:0d:2b:c2:05:23:3f:80:9c:30:60: 2c:7f:e0:41:f1:a7:a3:27:c8:52:11:18:a5:d7:c5: c6:e4:48:5f:e1:d2:02:9c:53:5c:6f:99:67:2f:a9: cc:01:f2:25:e8:86:7f:43:db:95:ff:d4:43:de:eb: 6d:ac:20:cf:83:06:48:61:52:b2:39:11:79:9c:9e: 1f:8e:06:1e:ce:96:6b:a7:ff:c0:db:73:98:ba:32: fa:9d:88:d4:a8:a4:8d:1b:34:14:24:80:47:39:8b: 5f:60:ca:61:5f:53:75:78:05:75:0f:89:2e:fb:e7: 37:6a:08:eb:e3:77:ec:1f:e6:dc:3f:b1:63:5a:e5: 4c:91:b0:0b:64:b4:dd:e7:a6:d9:21:48:74:b7:bb: 9a:cd:ae:88:3c:f9:65:fb:d3:6e:75:fa:50:6d:89: 8a:2f:51:aa:b2:ef:e7:de:44:6f:65:ad:40:f8:21: b9:57:78:c7:d5:47:97:81:8f:b5:11:ce:ed:0a:2d: 4b:7b:02:44:b9:cc:ae:ad:c1:3e:e8:6b:c5:40:d1: 1d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:AD:18:AA:95:28:12:37:7B:7B:3D:FB:C1:CA:87:3B:69:8A:BE:5D X509v3 Authority Key Identifier: keyid:C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137322e302f32332d3233203d3e20313333333534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.217.172.0/23 Signature Algorithm: sha256WithRSAEncryption d5:10:d5:78:65:7d:e0:b9:bb:1e:45:29:9e:ed:d5:50:ad:38: f7:c2:79:c1:08:ea:b7:f0:90:7b:48:ca:47:cf:1c:ab:b0:df: aa:98:44:cd:be:b2:b4:04:7c:14:cd:e3:e1:37:11:bb:44:89: be:f2:ee:a9:61:ba:fc:7b:35:81:f3:f8:03:03:6d:50:12:d5: cd:d9:35:94:d2:1a:66:05:61:0e:67:fd:64:1f:9d:7e:d3:71: bd:2c:98:88:3d:e8:7a:1f:b1:3c:2e:45:b9:f7:fe:7a:81:52: 64:13:51:db:01:75:5b:be:2b:48:a0:0a:b4:a2:3f:3b:5e:34: 8c:5f:cf:fc:2f:0e:66:1c:a4:1a:26:f9:49:86:9d:08:4c:5c: c8:2d:63:2b:b1:4d:6b:29:1c:00:70:f6:68:99:21:c7:b3:1b: c8:7b:a9:f3:38:e1:8b:ae:3e:59:a8:13:f2:dc:bc:8b:e8:d4: 4e:5f:40:ef:2f:a5:3d:88:c0:a0:d9:4b:4c:50:2a:0c:07:5c: e4:c0:04:e1:be:ef:f8:db:92:fe:90:1a:aa:d3:fa:60:05:a3: 85:ef:67:05:ee:a7:00:f4:b9:57:8d:0e:1f:7d:1f:78:cf:51: 3e:fc:4b:dc:ef:d5:fd:a2:13:15:47:50:59:3b:3a:d9:e4:24: 9b:69:fb:88 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDyHMnlbK/tjtkKQFaizk8h7OLNcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBDQjUwOEY3RDFBOUVGOTA0OUNDRjlFQkQwNTk2RTc2 OTNDMkZDNjAeFw0yNDA5MjQxNzA3NTNaFw0yNTA5MjMxNzEyNTNaMDMxMTAvBgNV BAMTKEZFQUQxOEFBOTUyODEyMzc3QjdCM0RGQkMxQ0E4NzNCNjk4QUJFNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCopsL2mD7oMyinSvYqB0SpSsDb lUupXNuAG5TndRsodwIsUcVCqQa19OfVxSkQPOzEDSvCBSM/gJwwYCx/4EHxp6Mn yFIRGKXXxcbkSF/h0gKcU1xvmWcvqcwB8iXohn9D25X/1EPe622sIM+DBkhhUrI5 EXmcnh+OBh7Olmun/8Dbc5i6MvqdiNSopI0bNBQkgEc5i19gymFfU3V4BXUPiS77 5zdqCOvjd+wf5tw/sWNa5UyRsAtktN3nptkhSHS3u5rNrog8+WX70251+lBtiYov Uaqy7+feRG9lrUD4IblXeMfVR5eBj7URzu0KLUt7AkS5zK6twT7oa8VA0R2LAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/q0YqpUoEjd7ez37wcqHO2mKvl0wHwYDVR0j BBgwFoAUwMtQj30anvkEnM+evQWW52k8L8YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2U0NTAzOS02ZWQwLTQ4M2QtYTFiOS1jNGY0ODU0YzVjZjUvMC9DMENCNTA4RjdE MUE5RUY5MDQ5Q0NGOUVCRDA1OTZFNzY5M0MyRkM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzBDQjUwOEY3RDFBOUVGOTA0OUNDRjlFQkQwNTk2RTc2OTND MkZDNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzZTQ1MDM5LTZlZDAtNDgzZC1h MWI5LWM0ZjQ4NTRjNWNmNS8wLzMxMzAzMzJlMzIzMTM3MmUzMTM3MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzMzMzM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn2awwDQYJ KoZIhvcNAQELBQADggEBANUQ1XhlfeC5ux5FKZ7t1VCtOPfCecEI6rfwkHtIykfP HKuw36qYRM2+srQEfBTN4+E3EbtEib7y7qlhuvx7NYHz+AMDbVAS1c3ZNZTSGmYF YQ5n/WQfnX7Tcb0smIg96HofsTwuRbn3/nqBUmQTUdsBdVu+K0igCrSiPzteNIxf z/wvDmYcpBom+UmGnQhMXMgtYyuxTWspHABw9miZIcezG8h7qfM44YuuPlmoE/Lc vIvo1E5fQO8vpT2IwKDZS0xQKgwHXOTABOG+7/jbkv6QGqrT+mAFo4XvZwXupwD0 uVeNDh99H3jPUT78S9zv1f2iExVHUFk7OtnkJJtp+4g= -----END CERTIFICATE-----Generated at Mon Nov 25 15:26:45 2024 by rpki-client on console-fra.rpki-client.org