$ rpki-client -vvf repo-rpki.idnic.net/repo/37668541-d6c6-409e-8ad1-5e89a4b2850e/0/3130332e35302e32352e302f32342d3234203d3e203633383639.roa File: 3130332e35302e32352e302f32342d3234203d3e203633383639.roa (raw, json) Hash identifier: l9Fv9gpvC0TGB/doSgo7J+lKvFWwkaNAZsE+Mpn/O50= Subject key identifier: D9:BF:F5:FC:E7:D6:E1:1E:D2:45:35:40:11:CD:CE:C6:36:11:71:96 Certificate issuer: /CN=6C1597607A0C3EAC3E30CF48FF31BAFD71D2D121 Certificate serial: 0684413A953DB5D26496B5D9F35494889BA0FD79 Authority key identifier: 6C:15:97:60:7A:0C:3E:AC:3E:30:CF:48:FF:31:BA:FD:71:D2:D1:21 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6C1597607A0C3EAC3E30CF48FF31BAFD71D2D121.cer Subject info access: rsync://repo-rpki.idnic.net/repo/37668541-d6c6-409e-8ad1-5e89a4b2850e/0/3130332e35302e32352e302f32342d3234203d3e203633383639.roa Signing time: Mon 31 Jul 2023 00:03:11 +0000 ROA not before: Sun 30 Jul 2023 23:58:11 +0000 ROA not after: Mon 29 Jul 2024 00:03:11 +0000 asID: 63869 IP address blocks: 103.50.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/37668541-d6c6-409e-8ad1-5e89a4b2850e/0/6C1597607A0C3EAC3E30CF48FF31BAFD71D2D121.crl rsync://repo-rpki.idnic.net/repo/37668541-d6c6-409e-8ad1-5e89a4b2850e/0/6C1597607A0C3EAC3E30CF48FF31BAFD71D2D121.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6C1597607A0C3EAC3E30CF48FF31BAFD71D2D121.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:84:41:3a:95:3d:b5:d2:64:96:b5:d9:f3:54:94:88:9b:a0:fd:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6C1597607A0C3EAC3E30CF48FF31BAFD71D2D121 Validity Not Before: Jul 30 23:58:11 2023 GMT Not After : Jul 29 00:03:11 2024 GMT Subject: CN=D9BFF5FCE7D6E11ED245354011CDCEC636117196 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:27:b6:f5:e5:72:39:69:67:32:6e:4d:3d:a1: b1:fc:ac:dd:47:26:75:50:a4:75:a8:ad:54:ca:df: f3:81:72:db:71:2d:c3:29:f5:06:2d:00:a8:bd:6e: 57:0a:78:9a:6b:d6:41:71:d0:03:49:8f:f3:52:24: ca:00:9a:83:98:1d:96:4c:90:45:13:6a:86:ba:fc: f2:cb:88:d5:86:7d:be:17:13:ef:84:c6:b0:f2:c9: c5:65:71:b0:e5:18:2d:b4:43:7d:6e:b6:c5:19:23: 6e:2f:0e:01:48:42:e2:dd:14:7a:16:4c:48:f6:c8: f7:86:50:2c:a3:69:9a:59:5d:82:92:d1:b9:8f:29: bc:58:24:d8:50:71:3b:4f:ed:08:2d:7d:36:6f:2b: 93:0b:29:a6:bf:b7:12:e9:ca:05:f1:bf:9f:57:f8: d8:a2:f1:a5:d8:70:75:51:43:53:84:0e:bf:4b:2f: 50:da:56:2a:62:56:b8:40:a1:32:0a:ae:0e:01:46: 6e:cd:a4:bb:e6:f0:7d:0a:d9:2f:85:f5:dc:01:85: 02:4e:67:85:a6:d8:25:46:42:69:4d:89:cc:b9:cf: ff:2c:fb:9d:d5:52:55:e9:2a:bb:83:e4:4b:56:30: 20:99:ab:aa:fa:01:4d:77:6a:07:d7:18:e1:b3:07: db:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:BF:F5:FC:E7:D6:E1:1E:D2:45:35:40:11:CD:CE:C6:36:11:71:96 X509v3 Authority Key Identifier: keyid:6C:15:97:60:7A:0C:3E:AC:3E:30:CF:48:FF:31:BA:FD:71:D2:D1:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/37668541-d6c6-409e-8ad1-5e89a4b2850e/0/6C1597607A0C3EAC3E30CF48FF31BAFD71D2D121.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6C1597607A0C3EAC3E30CF48FF31BAFD71D2D121.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/37668541-d6c6-409e-8ad1-5e89a4b2850e/0/3130332e35302e32352e302f32342d3234203d3e203633383639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.50.25.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:42:b5:8b:96:6c:e4:ef:8c:c9:ba:15:0c:3e:5e:06:05:99: 8d:c7:07:b3:76:a5:c3:93:d0:84:b9:a9:d4:7d:a3:ca:98:79: e7:6e:f8:f3:e5:b5:e4:ed:05:b9:76:0a:3c:c2:7c:fe:cd:5c: 59:f4:d0:5d:96:55:53:db:02:ed:94:33:5a:29:04:a4:ca:2a: ce:38:5a:7f:d9:76:fe:91:c0:98:ad:39:be:fe:ca:a2:19:92: fe:c5:65:e3:9e:17:17:92:e6:22:63:9f:dd:f2:87:e6:59:a3: 4a:4c:5e:55:f4:dd:5d:04:9d:b7:64:7a:fb:3a:db:c7:ef:53: fa:31:59:f7:18:04:e5:ca:83:99:56:ea:c8:5e:c1:ee:1c:d4: 47:67:8c:d5:bb:38:51:15:a7:36:8c:6e:f3:e0:c3:16:4b:d0: ac:97:d1:5a:ee:1b:27:b1:0d:cd:56:77:31:6f:c2:e3:54:3f: fb:68:7a:e2:34:32:26:50:24:4c:0b:af:97:6c:4c:1b:3f:d2: a5:05:a1:5e:73:8c:21:42:c9:5d:ce:df:d8:0d:9f:bf:2c:a9: fe:14:32:20:bd:2b:16:fe:60:a5:fc:c4:68:89:dc:df:6c:a0: 5b:a7:a8:3c:86:5d:ed:51:d0:f1:66:29:d7:e2:99:c3:df:e2: 7b:ba:64:2b -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUBoRBOpU9tdJklrXZ81SUiJug/XkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkMxNTk3NjA3QTBDM0VBQzNFMzBDRjQ4RkYzMUJBRkQ3 MUQyRDEyMTAeFw0yMzA3MzAyMzU4MTFaFw0yNDA3MjkwMDAzMTFaMDMxMTAvBgNV BAMTKEQ5QkZGNUZDRTdENkUxMUVEMjQ1MzU0MDExQ0RDRUM2MzYxMTcxOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEJ7b15XI5aWcybk09obH8rN1H JnVQpHWorVTK3/OBcttxLcMp9QYtAKi9blcKeJpr1kFx0ANJj/NSJMoAmoOYHZZM kEUTaoa6/PLLiNWGfb4XE++ExrDyycVlcbDlGC20Q31utsUZI24vDgFIQuLdFHoW TEj2yPeGUCyjaZpZXYKS0bmPKbxYJNhQcTtP7QgtfTZvK5MLKaa/txLpygXxv59X +Nii8aXYcHVRQ1OEDr9LL1DaVipiVrhAoTIKrg4BRm7NpLvm8H0K2S+F9dwBhQJO Z4Wm2CVGQmlNicy5z/8s+53VUlXpKruD5EtWMCCZq6r6AU13agfXGOGzB9tXAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQU2b/1/OfW4R7SRTVAEc3OxjYRcZYwHwYDVR0j BBgwFoAUbBWXYHoMPqw+MM9I/zG6/XHS0SEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NzY2ODU0MS1kNmM2LTQwOWUtOGFkMS01ZTg5YTRiMjg1MGUvMC82QzE1OTc2MDdB MEMzRUFDM0UzMENGNDhGRjMxQkFGRDcxRDJEMTIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkMxNTk3NjA3QTBDM0VBQzNFMzBDRjQ4RkYzMUJBRkQ3MUQy RDEyMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM3NjY4NTQxLWQ2YzYtNDA5ZS04 YWQxLTVlODlhNGIyODUwZS8wLzMxMzAzMzJlMzUzMDJlMzIzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM2Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnMhkwDQYJKoZIhvcN AQELBQADggEBADpCtYuWbOTvjMm6FQw+XgYFmY3HB7N2pcOT0IS5qdR9o8qYeedu +PPlteTtBbl2CjzCfP7NXFn00F2WVVPbAu2UM1opBKTKKs44Wn/Zdv6RwJitOb7+ yqIZkv7FZeOeFxeS5iJjn93yh+ZZo0pMXlX03V0Enbdkevs628fvU/oxWfcYBOXK g5lW6shewe4c1EdnjNW7OFEVpzaMbvPgwxZL0KyX0VruGyexDc1WdzFvwuNUP/to euI0MiZQJEwLr5dsTBs/0qUFoV5zjCFCyV3O39gNn78sqf4UMiC9Kxb+YKX8xGiJ 3N9soFunqDyGXe1R0PFmKdfimcPf4nu6ZCs= -----END CERTIFICATE-----Generated at Thu Apr 25 22:30:51 2024 by rpki-client on console-fra.rpki-client.org