$ rpki-client -vvf repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e37322e3131312e302f32342d3234203d3e203538343736.roa File: 3130332e37322e3131312e302f32342d3234203d3e203538343736.roa (raw, json) Hash identifier: v/wNC11/mGa67gP20vk9bZW53k2FAuEzkngEjF9WCOs= Subject key identifier: CF:BD:5F:4D:DE:DE:76:5E:48:67:89:8C:90:51:83:84:71:DF:4B:06 Certificate issuer: /CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Certificate serial: 28336C5F29428F969A3630373B054B22B1FE6AB8 Authority key identifier: B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e37322e3131312e302f32342d3234203d3e203538343736.roa Signing time: Mon 01 Jul 2024 01:05:20 +0000 ROA not before: Mon 01 Jul 2024 01:00:20 +0000 ROA not after: Mon 30 Jun 2025 01:05:20 +0000 asID: 58476 IP address blocks: 103.72.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:33:6c:5f:29:42:8f:96:9a:36:30:37:3b:05:4b:22:b1:fe:6a:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Validity Not Before: Jul 1 01:00:20 2024 GMT Not After : Jun 30 01:05:20 2025 GMT Subject: CN=CFBD5F4DDEDE765E4867898C9051838471DF4B06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:56:fb:e8:18:1b:be:2f:ef:2e:92:cf:c7:72: 77:fc:71:c4:85:7e:51:fb:08:5d:d0:cc:20:61:9b: 73:3c:ec:01:f7:b7:71:26:5a:83:dc:5e:61:71:7a: f4:c6:4e:b1:f4:d9:ba:0b:ad:3b:a8:f9:8c:36:82: f8:e8:6e:e8:64:af:fd:4c:68:63:ce:9f:5e:c6:40: 47:b7:31:7b:4e:b9:f0:a6:64:94:aa:09:64:9b:a6: d0:bf:e1:e4:72:ce:1c:83:e1:12:0f:d8:df:25:f9: e9:a2:b5:17:3c:40:6b:76:8b:2a:a9:b1:e5:ce:89: 47:3e:e2:f4:2a:cb:f6:94:4f:4c:70:30:ce:50:11: 37:55:f0:a9:bb:b9:50:c4:b7:54:30:aa:af:9a:eb: 15:fa:8c:f1:9b:b8:35:b5:7e:77:9a:e2:f8:a8:f5: fe:3e:1a:26:fe:92:19:bc:6e:63:21:f0:d4:24:d0: aa:76:28:1e:f5:80:02:1a:4f:39:41:e5:6c:e7:9d: 31:fc:3e:82:af:ae:dc:95:67:5b:8d:d7:38:68:98: 0d:ba:cc:04:6c:bf:43:98:39:f5:06:31:94:4c:d2: 95:1a:2d:ff:da:45:db:a7:99:bb:be:ca:44:0d:21: 07:1b:06:75:a6:16:33:b8:11:23:24:62:0e:e3:da: ec:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:BD:5F:4D:DE:DE:76:5E:48:67:89:8C:90:51:83:84:71:DF:4B:06 X509v3 Authority Key Identifier: keyid:B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e37322e3131312e302f32342d3234203d3e203538343736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.72.111.0/24 Signature Algorithm: sha256WithRSAEncryption 70:27:66:92:8c:24:e3:50:72:4d:6a:6d:ac:b1:87:8c:e9:68: c8:62:cf:ca:e5:ac:43:3c:56:de:bd:fd:fc:d4:cd:3a:f2:f0: de:d4:44:77:8b:ac:c6:e9:b8:8a:e7:1b:e7:d6:e8:20:2a:f2: 0a:c8:4a:24:b5:8d:31:dc:e5:88:21:97:73:25:18:d6:26:14: d8:0f:11:bf:69:44:24:84:85:fa:21:dc:fe:68:e2:32:87:fd: 6a:de:2e:fa:88:21:fb:5b:9a:c3:36:31:e6:75:f5:a6:42:d8: aa:2d:54:6d:d3:bf:04:bc:62:8e:14:c9:a8:95:9d:6c:de:ff: 8e:00:f0:6c:6a:32:32:0e:06:b0:00:cf:74:29:16:40:05:c7: 41:f4:df:11:02:3e:f6:ff:69:7b:f4:4c:02:df:05:ff:bf:59: 20:0f:11:95:db:e3:86:14:9a:5d:8d:72:0a:bb:05:cb:21:bb: 61:1e:c7:64:11:d4:c5:86:5b:4a:34:73:55:72:38:63:8b:22: 39:c7:f3:83:c9:ec:f4:5d:db:97:7a:ce:fb:5a:ef:75:b5:63: f6:f1:ed:69:e7:e0:a5:8f:fb:9c:5b:39:b8:50:65:df:fc:13: fa:c0:95:cd:7d:21:d2:cb:c1:68:65:8b:90:43:cd:77:d7:b7: e8:90:d1:22 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKDNsXylCj5aaNjA3OwVLIrH+argwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VD NTAzRUYzRTAeFw0yNDA3MDEwMTAwMjBaFw0yNTA2MzAwMTA1MjBaMDMxMTAvBgNV BAMTKENGQkQ1RjREREVERTc2NUU0ODY3ODk4QzkwNTE4Mzg0NzFERjRCMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjVvvoGBu+L+8uks/Hcnf8ccSF flH7CF3QzCBhm3M87AH3t3EmWoPcXmFxevTGTrH02boLrTuo+Yw2gvjobuhkr/1M aGPOn17GQEe3MXtOufCmZJSqCWSbptC/4eRyzhyD4RIP2N8l+emitRc8QGt2iyqp seXOiUc+4vQqy/aUT0xwMM5QETdV8Km7uVDEt1Qwqq+a6xX6jPGbuDW1fnea4vio 9f4+Gib+khm8bmMh8NQk0Kp2KB71gAIaTzlB5WznnTH8PoKvrtyVZ1uN1zhomA26 zARsv0OYOfUGMZRM0pUaLf/aRdunmbu+ykQNIQcbBnWmFjO4ESMkYg7j2uyDAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUz71fTd7edl5IZ4mMkFGDhHHfSwYwHwYDVR0j BBgwFoAUsUTk6yj2nZt2wMJJm/17PsUD7z4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m N2Y0OTA2OC1jMGNhLTRhMjEtOWE4YS1lZWQyNmZjZGQxYWEvMC9CMTQ0RTRFQjI4 RjY5RDlCNzZDMEMyNDk5QkZEN0IzRUM1MDNFRjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VDNTAz RUYzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3ZjQ5MDY4LWMwY2EtNGEyMS05 YThhLWVlZDI2ZmNkZDFhYS8wLzMxMzAzMzJlMzczMjJlMzEzMTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdIbzANBgkqhkiG 9w0BAQsFAAOCAQEAcCdmkowk41ByTWptrLGHjOloyGLPyuWsQzxW3r39/NTNOvLw 3tREd4usxum4iucb59boICryCshKJLWNMdzliCGXcyUY1iYU2A8Rv2lEJISF+iHc /mjiMof9at4u+ogh+1uawzYx5nX1pkLYqi1UbdO/BLxijhTJqJWdbN7/jgDwbGoy Mg4GsADPdCkWQAXHQfTfEQI+9v9pe/RMAt8F/79ZIA8RldvjhhSaXY1yCrsFyyG7 YR7HZBHUxYZbSjRzVXI4Y4siOcfzg8ns9F3bl3rO+1rvdbVj9vHtaefgpY/7nFs5 uFBl3/wT+sCVzX0h0svBaGWLkEPNd9e36JDRIg== -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:44 2024 by rpki-client on console-fra.rpki-client.org