$ rpki-client -vvf repo-rpki.idnic.net/repo/0c1e49ab-50ca-4b3e-823c-8b3d31ba85f2/0/3130332e3136332e3130322e302f32342d3234203d3e20313431363733.roa File: 3130332e3136332e3130322e302f32342d3234203d3e20313431363733.roa (raw, json) Hash identifier: qCErvVQ8FMl3e1aiZdXK51y9U9xw9BufKDmr8NbtoAw= Subject key identifier: 6A:AA:AA:C2:56:B8:C0:31:16:9F:2F:25:4E:63:67:A9:E4:42:68:C0 Certificate issuer: /CN=6FEAE120D8CD63D6824D8261F7B098631EF412E0 Certificate serial: 2004AFB636366D35AF81409EA06D105297DC0865 Authority key identifier: 6F:EA:E1:20:D8:CD:63:D6:82:4D:82:61:F7:B0:98:63:1E:F4:12:E0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FEAE120D8CD63D6824D8261F7B098631EF412E0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c1e49ab-50ca-4b3e-823c-8b3d31ba85f2/0/3130332e3136332e3130322e302f32342d3234203d3e20313431363733.roa Signing time: Mon 01 Apr 2024 11:00:01 +0000 ROA not before: Mon 01 Apr 2024 10:55:01 +0000 ROA not after: Mon 31 Mar 2025 11:00:01 +0000 asID: 141673 IP address blocks: 103.163.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c1e49ab-50ca-4b3e-823c-8b3d31ba85f2/0/6FEAE120D8CD63D6824D8261F7B098631EF412E0.crl rsync://repo-rpki.idnic.net/repo/0c1e49ab-50ca-4b3e-823c-8b3d31ba85f2/0/6FEAE120D8CD63D6824D8261F7B098631EF412E0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FEAE120D8CD63D6824D8261F7B098631EF412E0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:04:af:b6:36:36:6d:35:af:81:40:9e:a0:6d:10:52:97:dc:08:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FEAE120D8CD63D6824D8261F7B098631EF412E0 Validity Not Before: Apr 1 10:55:01 2024 GMT Not After : Mar 31 11:00:01 2025 GMT Subject: CN=6AAAAAC256B8C031169F2F254E6367A9E44268C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:6a:be:75:0d:42:27:af:ce:a2:84:01:15:ed: 93:bc:1e:28:35:46:72:1e:a2:88:29:39:2a:8d:17: 2e:a1:9e:9e:fa:6f:66:a7:34:14:e9:a3:b3:1b:61: 2f:2d:37:3d:19:bc:10:9f:56:54:46:ac:79:ce:86: 93:6b:fd:d4:56:9b:24:af:b7:b8:72:2d:26:92:e6: 05:ac:58:54:57:60:fa:d4:f5:a0:be:c3:c7:81:02: a9:7a:4e:83:38:67:03:30:9b:23:74:b6:d5:49:5e: 40:74:54:b7:66:93:e5:7b:cf:5c:c9:b4:6d:16:7e: ab:0c:5e:09:ef:be:1f:a8:ac:ff:2f:c9:a3:4a:04: 15:b1:0b:86:50:e1:62:7a:28:15:67:0f:e4:95:9b: 9a:b8:54:df:f2:60:63:af:09:93:99:f1:9c:90:d2: fc:d9:ac:65:94:58:bb:7c:3a:5f:84:2c:f9:cd:a9: c9:e0:8c:f0:8d:26:ad:b0:53:06:6e:8d:e4:04:69: ae:f9:5c:b5:39:4b:ab:33:5f:a7:91:79:a3:ca:56: 00:4e:4a:83:e6:e1:9a:4a:a8:95:39:b4:dd:93:41: 56:e8:16:a9:e2:de:68:71:18:a4:05:d4:12:5d:3b: a1:78:8f:45:54:ea:bf:ca:a2:4e:b3:91:07:09:af: 3f:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:AA:AA:C2:56:B8:C0:31:16:9F:2F:25:4E:63:67:A9:E4:42:68:C0 X509v3 Authority Key Identifier: keyid:6F:EA:E1:20:D8:CD:63:D6:82:4D:82:61:F7:B0:98:63:1E:F4:12:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c1e49ab-50ca-4b3e-823c-8b3d31ba85f2/0/6FEAE120D8CD63D6824D8261F7B098631EF412E0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6FEAE120D8CD63D6824D8261F7B098631EF412E0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c1e49ab-50ca-4b3e-823c-8b3d31ba85f2/0/3130332e3136332e3130322e302f32342d3234203d3e20313431363733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.102.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:3c:45:4c:63:83:04:a4:b3:45:aa:6c:a9:db:4e:83:ad:21: d2:85:8b:25:fd:96:25:50:3f:be:95:c0:a1:29:15:a6:fa:a4: a1:67:ca:83:00:c7:2c:b3:52:9c:a4:56:4f:56:28:a2:cd:d7: f9:53:c5:a2:b6:15:f5:f1:3e:84:35:af:69:02:7d:1f:13:1b: 67:8c:19:ce:58:52:48:98:03:74:ab:57:ad:6e:06:dd:ef:99: ce:ef:81:95:7c:96:b1:49:0c:b9:47:38:bd:21:97:a6:37:59: dd:72:78:11:3a:90:df:42:9b:8c:6b:76:c3:d5:04:71:a4:d3: f3:1d:8a:2b:ad:96:24:1b:43:d5:91:4c:19:71:93:2e:ef:7d: 4b:cd:f6:d7:7e:d4:d5:f0:4f:bb:19:46:1e:3f:58:92:66:4b: c8:95:29:b3:fa:79:40:05:1b:bd:7d:83:d4:07:e4:27:eb:f5: 09:aa:9f:03:b0:a0:ee:8b:8c:07:bd:c8:3e:16:5d:5f:1d:b2: 74:82:4f:e7:52:7f:00:9c:29:42:cd:b9:33:76:6a:e3:3d:db: 64:ad:c7:4a:2f:c6:35:ea:da:87:dd:03:f2:be:f3:9c:6c:37: 07:b5:06:4f:2f:22:f7:d1:14:59:7a:c4:ef:e8:ff:db:91:cc: 26:c5:8f:09 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIASvtjY2bTWvgUCeoG0QUpfcCGUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZFQUUxMjBEOENENjNENjgyNEQ4MjYxRjdCMDk4NjMx RUY0MTJFMDAeFw0yNDA0MDExMDU1MDFaFw0yNTAzMzExMTAwMDFaMDMxMTAvBgNV BAMTKDZBQUFBQUMyNTZCOEMwMzExNjlGMkYyNTRFNjM2N0E5RTQ0MjY4QzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPar51DUInr86ihAEV7ZO8Hig1 RnIeoogpOSqNFy6hnp76b2anNBTpo7MbYS8tNz0ZvBCfVlRGrHnOhpNr/dRWmySv t7hyLSaS5gWsWFRXYPrU9aC+w8eBAql6ToM4ZwMwmyN0ttVJXkB0VLdmk+V7z1zJ tG0WfqsMXgnvvh+orP8vyaNKBBWxC4ZQ4WJ6KBVnD+SVm5q4VN/yYGOvCZOZ8ZyQ 0vzZrGWUWLt8Ol+ELPnNqcngjPCNJq2wUwZujeQEaa75XLU5S6szX6eReaPKVgBO SoPm4ZpKqJU5tN2TQVboFqni3mhxGKQF1BJdO6F4j0VU6r/Kok6zkQcJrz8lAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUaqqqwla4wDEWny8lTmNnqeRCaMAwHwYDVR0j BBgwFoAUb+rhINjNY9aCTYJh97CYYx70EuAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzFlNDlhYi01MGNhLTRiM2UtODIzYy04YjNkMzFiYTg1ZjIvMC82RkVBRTEyMEQ4 Q0Q2M0Q2ODI0RDgyNjFGN0IwOTg2MzFFRjQxMkUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkZFQUUxMjBEOENENjNENjgyNEQ4MjYxRjdCMDk4NjMxRUY0 MTJFMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMWU0OWFiLTUwY2EtNGIzZS04 MjNjLThiM2QzMWJhODVmMi8wLzMxMzAzMzJlMzEzNjMzMmUzMTMwMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjM3MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABno2YwDQYJ KoZIhvcNAQELBQADggEBACw8RUxjgwSks0WqbKnbToOtIdKFiyX9liVQP76VwKEp Fab6pKFnyoMAxyyzUpykVk9WKKLN1/lTxaK2FfXxPoQ1r2kCfR8TG2eMGc5YUkiY A3SrV61uBt3vmc7vgZV8lrFJDLlHOL0hl6Y3Wd1yeBE6kN9Cm4xrdsPVBHGk0/Md iiutliQbQ9WRTBlxky7vfUvN9td+1NXwT7sZRh4/WJJmS8iVKbP6eUAFG719g9QH 5Cfr9QmqnwOwoO6LjAe9yD4WXV8dsnSCT+dSfwCcKULNuTN2auM922Stx0ovxjXq 2ofdA/K+85xsNwe1Bk8vIvfRFFl6xO/o/9uRzCbFjwk= -----END CERTIFICATE-----Generated at Fri May 3 23:06:16 2024 by rpki-client on console-ams.rpki-client.org