$ rpki-client -vvf repo-rpki.idnic.net/repo/f668854a-3f24-40b1-80cd-e636aa7e8b1c/0/3130332e3137322e31372e302f32342d3234203d3e20313432333831.roa File: 3130332e3137322e31372e302f32342d3234203d3e20313432333831.roa (raw, json) Hash identifier: DVIrghrEW7VwPIX0cx9PZe/9iJL/OmwC/t6EzXjRAD8= Subject key identifier: 82:33:9C:98:64:74:CE:5E:6E:1B:03:64:C9:0D:9B:C5:4D:51:D0:2D Certificate issuer: /CN=2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC Certificate serial: 3CEC90A5091326CFF33F43F8ADE439BDA8AE874C Authority key identifier: 2B:15:30:AD:20:AC:1F:2F:7F:2E:A2:EB:AA:E7:07:D0:E1:28:A1:DC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f668854a-3f24-40b1-80cd-e636aa7e8b1c/0/3130332e3137322e31372e302f32342d3234203d3e20313432333831.roa Signing time: Sun 27 Oct 2024 04:00:01 +0000 ROA not before: Sun 27 Oct 2024 03:55:01 +0000 ROA not after: Sun 26 Oct 2025 04:00:01 +0000 asID: 142381 IP address blocks: 103.172.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f668854a-3f24-40b1-80cd-e636aa7e8b1c/0/2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC.crl rsync://repo-rpki.idnic.net/repo/f668854a-3f24-40b1-80cd-e636aa7e8b1c/0/2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:ec:90:a5:09:13:26:cf:f3:3f:43:f8:ad:e4:39:bd:a8:ae:87:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC Validity Not Before: Oct 27 03:55:01 2024 GMT Not After : Oct 26 04:00:01 2025 GMT Subject: CN=82339C986474CE5E6E1B0364C90D9BC54D51D02D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5c:2f:1d:00:45:79:96:25:79:65:5c:c2:4b: 36:60:75:6d:28:49:63:00:8c:77:db:20:dc:9b:c7: 3e:93:05:1c:49:cf:32:c2:c9:e7:87:df:6d:0b:42: 9d:87:42:0a:4a:ae:c9:87:b5:f1:0b:b9:55:1c:7b: 81:d8:a1:a9:7c:65:2f:f1:66:09:09:66:8f:de:ec: 79:f6:28:3a:49:a2:32:9c:4f:6b:8f:84:5a:08:74: ad:4e:46:ed:32:78:a0:59:f2:85:8a:fa:36:50:fb: d6:1a:5d:9d:4c:8b:94:5d:a0:d4:f5:cb:4a:9b:d2: 71:14:82:f4:a1:0f:8b:d0:01:31:ac:3c:b0:1a:97: c4:a5:cf:71:d8:62:2a:49:52:95:4c:a2:9e:00:b0: ea:d4:38:aa:27:1c:b1:ea:7d:91:bb:ad:6f:4c:f8: f3:31:62:0e:ba:0d:d5:56:34:6b:a9:d3:e4:4b:21: 97:3e:f2:12:f4:f7:05:c5:fc:c3:d0:e6:e0:4f:f1: 2d:18:30:f9:55:91:74:22:ca:06:4d:7d:21:07:31: c4:24:0b:c1:05:2f:d5:7e:06:dd:dd:4f:8b:b1:e8: a1:12:a3:00:88:52:ea:00:34:95:ad:54:93:5e:c0: 29:3c:8b:81:38:68:ed:25:6f:20:3a:be:57:ed:4d: 73:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:33:9C:98:64:74:CE:5E:6E:1B:03:64:C9:0D:9B:C5:4D:51:D0:2D X509v3 Authority Key Identifier: keyid:2B:15:30:AD:20:AC:1F:2F:7F:2E:A2:EB:AA:E7:07:D0:E1:28:A1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f668854a-3f24-40b1-80cd-e636aa7e8b1c/0/2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B1530AD20AC1F2F7F2EA2EBAAE707D0E128A1DC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f668854a-3f24-40b1-80cd-e636aa7e8b1c/0/3130332e3137322e31372e302f32342d3234203d3e20313432333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.17.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:39:86:3f:99:78:25:c4:28:c4:2f:70:c6:a8:54:94:50:bd: e3:cd:0e:59:4d:fe:f4:c4:36:58:70:df:5e:9d:4d:71:51:47: 4e:6e:53:c2:30:c9:0d:0e:71:95:f7:d1:a0:5e:87:c4:0d:2d: d6:5c:6e:3b:02:41:76:10:17:5e:9f:c0:ea:ac:92:81:ff:e2: 78:51:ce:c7:db:e2:ec:ce:e3:80:e3:4b:88:8b:32:a0:e5:c5: 6b:be:99:75:65:c7:36:66:96:47:1d:9a:76:f3:32:a1:29:fb: c8:18:5f:b5:c0:dc:f1:f0:86:31:7e:c9:a5:42:35:44:cb:79: d0:fa:98:60:68:55:45:21:ac:83:06:49:b5:1d:33:90:3e:87: 69:f2:87:9d:ec:da:d6:9e:74:fd:e2:d4:42:b0:2f:d6:0c:87: ff:40:2b:ef:b5:08:25:4e:31:4a:d9:da:51:37:52:8b:df:85: ed:af:72:5e:13:32:f1:19:fb:cb:88:63:d3:95:d7:44:34:1b: 6e:d4:b5:27:d6:b1:c7:a5:41:5e:c8:eb:a7:07:60:ef:3f:9f: ba:2d:3c:4e:e7:ec:9f:dd:aa:20:4e:53:2f:0c:c2:56:18:a8: 27:1f:f4:7b:e2:32:2a:fb:94:07:d7:c1:06:da:3b:0d:ab:b6: 2e:d0:fd:49 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPOyQpQkTJs/zP0P4reQ5vaiuh0wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkIxNTMwQUQyMEFDMUYyRjdGMkVBMkVCQUFFNzA3RDBF MTI4QTFEQzAeFw0yNDEwMjcwMzU1MDFaFw0yNTEwMjYwNDAwMDFaMDMxMTAvBgNV BAMTKDgyMzM5Qzk4NjQ3NENFNUU2RTFCMDM2NEM5MEQ5QkM1NEQ1MUQwMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmXC8dAEV5liV5ZVzCSzZgdW0o SWMAjHfbINybxz6TBRxJzzLCyeeH320LQp2HQgpKrsmHtfELuVUce4HYoal8ZS/x ZgkJZo/e7Hn2KDpJojKcT2uPhFoIdK1ORu0yeKBZ8oWK+jZQ+9YaXZ1Mi5RdoNT1 y0qb0nEUgvShD4vQATGsPLAal8Slz3HYYipJUpVMop4AsOrUOKonHLHqfZG7rW9M +PMxYg66DdVWNGup0+RLIZc+8hL09wXF/MPQ5uBP8S0YMPlVkXQiygZNfSEHMcQk C8EFL9V+Bt3dT4ux6KESowCIUuoANJWtVJNewCk8i4E4aO0lbyA6vlftTXOXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgjOcmGR0zl5uGwNkyQ2bxU1R0C0wHwYDVR0j BBgwFoAUKxUwrSCsHy9/LqLrqucH0OEoodwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NjY4ODU0YS0zZjI0LTQwYjEtODBjZC1lNjM2YWE3ZThiMWMvMC8yQjE1MzBBRDIw QUMxRjJGN0YyRUEyRUJBQUU3MDdEMEUxMjhBMURDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkIxNTMwQUQyMEFDMUYyRjdGMkVBMkVCQUFFNzA3RDBFMTI4 QTFEQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y2Njg4NTRhLTNmMjQtNDBiMS04 MGNkLWU2MzZhYTdlOGIxYy8wLzMxMzAzMzJlMzEzNzMyMmUzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6wRMA0GCSqG SIb3DQEBCwUAA4IBAQCNOYY/mXglxCjEL3DGqFSUUL3jzQ5ZTf70xDZYcN9enU1x UUdOblPCMMkNDnGV99GgXofEDS3WXG47AkF2EBden8DqrJKB/+J4Uc7H2+LszuOA 40uIizKg5cVrvpl1Zcc2ZpZHHZp28zKhKfvIGF+1wNzx8IYxfsmlQjVEy3nQ+phg aFVFIayDBkm1HTOQPodp8oed7NrWnnT94tRCsC/WDIf/QCvvtQglTjFK2dpRN1KL 34Xtr3JeEzLxGfvLiGPTlddENBtu1LUn1rHHpUFeyOunB2DvP5+6LTxO5+yf3aog TlMvDMJWGKgnH/R74jIq+5QH18EG2jsNq7Yu0P1J -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:53 2024 by rpki-client on console-fra.rpki-client.org