$ rpki-client -vvf repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/3130332e35362e3230362e302f32342d3234203d3e203538343737.roa File: 3130332e35362e3230362e302f32342d3234203d3e203538343737.roa (raw, json) Hash identifier: LdZ0wReVG6fyDqpQLlNK2Oo+/7MuE/4nsyS76Cje1Vg= Subject key identifier: A9:EA:4D:A6:B5:25:7E:DA:A0:27:19:98:60:D5:EA:30:35:7D:38:CE Certificate issuer: /CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Certificate serial: 7FA6404077C3FADBDE6A57CE8C49EC601028CF92 Authority key identifier: BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/3130332e35362e3230362e302f32342d3234203d3e203538343737.roa Signing time: Mon 31 Jul 2023 00:14:33 +0000 ROA not before: Mon 31 Jul 2023 00:09:33 +0000 ROA not after: Mon 29 Jul 2024 00:14:33 +0000 asID: 58477 IP address blocks: 103.56.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:a6:40:40:77:c3:fa:db:de:6a:57:ce:8c:49:ec:60:10:28:cf:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Validity Not Before: Jul 31 00:09:33 2023 GMT Not After : Jul 29 00:14:33 2024 GMT Subject: CN=A9EA4DA6B5257EDAA027199860D5EA30357D38CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d8:80:c3:da:00:10:79:1f:f6:c9:92:0a:72: 69:f6:32:a2:7e:2b:72:7c:a3:f4:db:89:ba:2b:53: e4:05:f3:10:5a:eb:a9:f4:ce:03:dc:c0:07:de:eb: 34:09:2a:4b:a2:78:56:7f:c8:8c:68:28:a7:a2:1e: fe:6f:d1:73:36:a8:d6:40:ae:1c:f5:c2:f9:5b:53: 18:d4:51:d3:52:6f:7f:0a:61:44:f7:e0:0c:93:8f: 4a:a3:d9:b7:ad:82:12:c5:da:05:22:db:d3:d8:e2: d6:ef:57:2b:aa:a8:d2:73:e0:e5:9b:4f:21:75:c8: 2e:98:73:10:b5:77:72:92:ca:8a:cb:84:54:be:b0: 84:b1:73:22:cf:66:1b:b4:1f:6a:60:d2:f6:ea:16: 8a:9f:3e:04:f4:e7:2d:a1:3e:72:54:e1:49:2d:f1: 6a:18:f3:64:8d:2d:27:bf:54:df:11:3f:b3:dc:40: aa:8d:a0:3e:27:15:4d:20:84:7d:5b:3d:80:ae:1f: 66:54:22:b7:57:27:8a:22:76:89:a9:af:86:97:d1: c2:fe:61:bb:e3:1b:8e:51:c5:30:6c:d5:46:e4:0e: c8:89:27:9d:fd:e3:3b:d0:6f:68:f4:72:44:3e:aa: 2e:1d:c3:2a:7f:19:ef:23:1e:17:d8:3c:86:7e:50: 71:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:EA:4D:A6:B5:25:7E:DA:A0:27:19:98:60:D5:EA:30:35:7D:38:CE X509v3 Authority Key Identifier: keyid:BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/3130332e35362e3230362e302f32342d3234203d3e203538343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.56.206.0/24 Signature Algorithm: sha256WithRSAEncryption b5:05:50:27:aa:b2:33:35:9c:7b:38:fb:ec:91:f1:2f:c3:7d: e0:c6:a9:f0:b3:bb:a9:99:38:71:a1:22:31:78:7c:fc:36:c8: d0:c0:96:b6:b2:ec:b7:f0:a2:49:3e:28:e6:79:bb:00:b5:2e: c9:67:6f:ca:4f:d0:0a:0f:e8:2c:27:cd:a0:84:bd:27:5f:d2: 16:ea:c9:d2:36:c4:10:aa:77:62:ff:d8:1a:78:72:c9:a3:a2: ca:5f:58:67:cf:6e:5f:20:02:bb:c8:b2:7e:1f:6d:bc:f7:48: 6e:a1:0f:f8:63:cf:c8:1c:d9:8c:5d:d6:a8:b7:b4:4b:75:9e: 25:f5:82:97:f7:6a:95:a5:0c:9d:68:02:69:e0:73:ee:88:0c: 97:83:bd:91:79:a3:d3:21:75:7c:61:6b:50:89:74:02:fd:1d: 56:78:38:77:6e:53:ee:b0:39:6a:92:d7:89:22:29:62:cf:00: c6:3a:7d:da:81:31:39:ff:c1:a3:56:40:37:d9:b1:57:5c:a1: 45:57:3f:0a:91:ba:e9:bb:01:09:f3:9b:db:b1:83:a0:b8:ed: 51:86:f1:49:29:94:e3:73:02:59:76:c6:26:04:c3:be:e5:7e: 2e:fa:2a:e8:07:f6:43:af:d8:0f:b7:8d:14:4f:9a:3b:4a:7d: c1:c3:17:aa -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUf6ZAQHfD+tvealfOjEnsYBAoz5IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0 QTk2QjI2NzAeFw0yMzA3MzEwMDA5MzNaFw0yNDA3MjkwMDE0MzNaMDMxMTAvBgNV BAMTKEE5RUE0REE2QjUyNTdFREFBMDI3MTk5ODYwRDVFQTMwMzU3RDM4Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC82IDD2gAQeR/2yZIKcmn2MqJ+ K3J8o/TbiborU+QF8xBa66n0zgPcwAfe6zQJKkuieFZ/yIxoKKeiHv5v0XM2qNZA rhz1wvlbUxjUUdNSb38KYUT34AyTj0qj2betghLF2gUi29PY4tbvVyuqqNJz4OWb TyF1yC6YcxC1d3KSyorLhFS+sISxcyLPZhu0H2pg0vbqFoqfPgT05y2hPnJU4Ukt 8WoY82SNLSe/VN8RP7PcQKqNoD4nFU0ghH1bPYCuH2ZUIrdXJ4oidompr4aX0cL+ YbvjG45RxTBs1UbkDsiJJ5394zvQb2j0ckQ+qi4dwyp/Ge8jHhfYPIZ+UHEfAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUqepNprUlftqgJxmYYNXqMDV9OM4wHwYDVR0j BBgwFoAUvYCdigZdtZXcBpODc2oanEqWsmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2Y4ZjU1Yy05ZTM1LTRjZTItODkwZi0wZGUzZTI0MDQ2MTEvMC9CRDgwOUQ4QTA2 NURCNTk1REMwNjkzODM3MzZBMUE5QzRBOTZCMjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0QTk2 QjI2Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzZjhmNTVjLTllMzUtNGNlMi04 OTBmLTBkZTNlMjQwNDYxMS8wLzMxMzAzMzJlMzUzNjJlMzIzMDM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc4zjANBgkqhkiG 9w0BAQsFAAOCAQEAtQVQJ6qyMzWcezj77JHxL8N94Map8LO7qZk4caEiMXh8/DbI 0MCWtrLst/CiST4o5nm7ALUuyWdvyk/QCg/oLCfNoIS9J1/SFurJ0jbEEKp3Yv/Y GnhyyaOiyl9YZ89uXyACu8iyfh9tvPdIbqEP+GPPyBzZjF3WqLe0S3WeJfWCl/dq laUMnWgCaeBz7ogMl4O9kXmj0yF1fGFrUIl0Av0dVng4d25T7rA5apLXiSIpYs8A xjp92oExOf/Bo1ZAN9mxV1yhRVc/CpG66bsBCfOb27GDoLjtUYbxSSmU43MCWXbG JgTDvuV+Lvoq6Af2Q6/YD7eNFE+aO0p9wcMXqg== -----END CERTIFICATE-----Generated at Mon May 6 15:04:05 2024 by rpki-client on console-ams.rpki-client.org