$ rpki-client -vvf repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137332e302f32342d3234203d3e20313333333534.roa File: 3130332e3231372e3137332e302f32342d3234203d3e20313333333534.roa (raw, json) Hash identifier: nUQ2kayi0Rj4NqtUCpruCitWDh+npuC9WG+E5F+Bv9o= Subject key identifier: 29:93:1D:E4:C9:70:E3:17:DA:62:0C:AF:07:3A:61:B7:6A:AF:AD:23 Certificate issuer: /CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6 Certificate serial: 3AB439B0F96546A72D47E64C97B58EF02508FC4E Authority key identifier: C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137332e302f32342d3234203d3e20313333333534.roa Signing time: Tue 24 Sep 2024 17:13:38 +0000 ROA not before: Tue 24 Sep 2024 17:08:38 +0000 ROA not after: Tue 23 Sep 2025 17:13:38 +0000 asID: 133354 IP address blocks: 103.217.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.crl rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 20:48:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:b4:39:b0:f9:65:46:a7:2d:47:e6:4c:97:b5:8e:f0:25:08:fc:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6 Validity Not Before: Sep 24 17:08:38 2024 GMT Not After : Sep 23 17:13:38 2025 GMT Subject: CN=29931DE4C970E317DA620CAF073A61B76AAFAD23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:c7:00:e8:05:6b:af:e8:6e:fa:45:a1:08:50: 6a:75:74:04:00:6a:30:66:ff:13:9e:48:72:8c:5c: e4:b1:75:37:33:e1:55:24:9c:cb:df:77:c3:bd:f2: d2:7a:f7:7c:d0:83:94:91:a0:3a:a2:f8:03:bb:59: 00:4c:96:df:e5:2a:e3:5a:08:ae:39:1b:44:38:88: d9:46:46:14:ae:bd:55:d9:46:70:4d:5e:f3:ba:28: 7a:e4:3c:be:0d:55:73:9a:d9:c7:a9:e6:f6:75:9b: ac:72:96:f9:27:fc:5e:14:75:d8:aa:a3:c5:d9:c4: b9:0f:ec:bd:b2:99:67:ff:92:67:a3:66:5d:12:12: 30:d7:4c:da:c6:25:c3:de:d0:de:76:e9:28:91:67: 1d:df:65:c4:9b:e6:e4:48:41:3f:7c:fd:a9:00:6b: 8f:fc:37:c1:5f:89:44:e4:87:c7:d4:5a:47:6a:f8: 77:fc:2e:93:1d:dd:32:56:94:e0:47:45:34:43:5f: a1:c5:c3:36:24:82:d2:ed:20:d3:d6:12:16:75:27: 51:d3:0a:73:8d:b7:c4:76:68:2d:f3:5c:13:14:1b: 39:0c:57:d5:af:16:04:cc:db:d7:e1:dd:5f:bf:bb: 6e:36:11:bc:8b:d6:05:e2:29:63:15:55:c3:80:d3: 38:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:93:1D:E4:C9:70:E3:17:DA:62:0C:AF:07:3A:61:B7:6A:AF:AD:23 X509v3 Authority Key Identifier: keyid:C0:CB:50:8F:7D:1A:9E:F9:04:9C:CF:9E:BD:05:96:E7:69:3C:2F:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C0CB508F7D1A9EF9049CCF9EBD0596E7693C2FC6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3e45039-6ed0-483d-a1b9-c4f4854c5cf5/0/3130332e3231372e3137332e302f32342d3234203d3e20313333333534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.217.173.0/24 Signature Algorithm: sha256WithRSAEncryption 37:d1:ec:ee:cd:e2:a9:16:3e:13:b3:49:14:2f:ea:fe:85:ee: 69:e5:9d:c9:59:cd:13:ea:16:af:67:56:16:52:1c:b1:09:a8: 55:2c:a5:25:3f:18:07:73:f4:07:4a:9c:1f:a4:da:cf:b5:ba: dc:0d:a9:a5:ac:d6:24:02:7d:00:f7:7d:e1:74:3b:85:09:de: 87:50:28:71:47:e7:5f:0e:c4:a5:16:a6:60:65:7b:35:4f:a7: 55:66:74:b3:96:67:38:9e:e4:33:3e:bd:eb:17:d0:7f:25:3d: 7f:64:9f:ff:d8:b5:3e:27:e1:62:70:b1:cb:5c:17:fd:d1:fd: 44:b0:ca:ee:4c:42:0a:6c:19:51:69:81:77:e9:0b:d7:90:a4: 01:9e:8a:f1:58:34:45:96:02:0d:ea:6e:61:ee:94:09:1d:76: c3:91:95:6d:37:34:06:53:d0:96:04:b9:30:88:2b:03:61:63: 31:4a:38:91:3d:31:bf:5c:a4:b0:f1:b0:fb:66:88:71:66:01: d7:2c:f8:92:84:a3:20:f2:d2:71:5b:13:df:51:55:bd:14:94: 22:a7:b9:8f:ae:22:9c:af:0c:35:46:2b:fe:d3:25:c9:4a:1f: 95:ce:78:82:67:5b:cf:dd:f8:83:27:34:80:b1:7a:4d:d2:ba: 8a:15:10:ae -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOrQ5sPllRqctR+ZMl7WO8CUI/E4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzBDQjUwOEY3RDFBOUVGOTA0OUNDRjlFQkQwNTk2RTc2 OTNDMkZDNjAeFw0yNDA5MjQxNzA4MzhaFw0yNTA5MjMxNzEzMzhaMDMxMTAvBgNV BAMTKDI5OTMxREU0Qzk3MEUzMTdEQTYyMENBRjA3M0E2MUI3NkFBRkFEMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3xwDoBWuv6G76RaEIUGp1dAQA ajBm/xOeSHKMXOSxdTcz4VUknMvfd8O98tJ693zQg5SRoDqi+AO7WQBMlt/lKuNa CK45G0Q4iNlGRhSuvVXZRnBNXvO6KHrkPL4NVXOa2cep5vZ1m6xylvkn/F4Uddiq o8XZxLkP7L2ymWf/kmejZl0SEjDXTNrGJcPe0N526SiRZx3fZcSb5uRIQT98/akA a4/8N8FfiUTkh8fUWkdq+Hf8LpMd3TJWlOBHRTRDX6HFwzYkgtLtINPWEhZ1J1HT CnONt8R2aC3zXBMUGzkMV9WvFgTM29fh3V+/u242EbyL1gXiKWMVVcOA0zgLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUKZMd5Mlw4xfaYgyvBzpht2qvrSMwHwYDVR0j BBgwFoAUwMtQj30anvkEnM+evQWW52k8L8YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2U0NTAzOS02ZWQwLTQ4M2QtYTFiOS1jNGY0ODU0YzVjZjUvMC9DMENCNTA4RjdE MUE5RUY5MDQ5Q0NGOUVCRDA1OTZFNzY5M0MyRkM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzBDQjUwOEY3RDFBOUVGOTA0OUNDRjlFQkQwNTk2RTc2OTND MkZDNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzZTQ1MDM5LTZlZDAtNDgzZC1h MWI5LWM0ZjQ4NTRjNWNmNS8wLzMxMzAzMzJlMzIzMTM3MmUzMTM3MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzMzM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn2a0wDQYJ KoZIhvcNAQELBQADggEBADfR7O7N4qkWPhOzSRQv6v6F7mnlnclZzRPqFq9nVhZS HLEJqFUspSU/GAdz9AdKnB+k2s+1utwNqaWs1iQCfQD3feF0O4UJ3odQKHFH518O xKUWpmBlezVPp1VmdLOWZzie5DM+vesX0H8lPX9kn//YtT4n4WJwsctcF/3R/USw yu5MQgpsGVFpgXfpC9eQpAGeivFYNEWWAg3qbmHulAkddsORlW03NAZT0JYEuTCI KwNhYzFKOJE9Mb9cpLDxsPtmiHFmAdcs+JKEoyDy0nFbE99RVb0UlCKnuY+uIpyv DDVGK/7TJclKH5XOeIJnW8/d+IMnNICxek3SuooVEK4= -----END CERTIFICATE-----Generated at Mon Nov 25 15:26:45 2024 by rpki-client on console-fra.rpki-client.org