$ rpki-client -vvf repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230362e302f32342d3234203d3e203633393330.roa File: 3130332e3132302e3230362e302f32342d3234203d3e203633393330.roa (raw, json) Hash identifier: Ab8CnzslbwlkXNujhfNosDv709J9CyUBxdRpZd7eP2M= Subject key identifier: AB:98:5B:6F:71:18:9E:EE:C1:14:D3:6B:E1:7A:88:70:E9:D7:62:3E Certificate issuer: /CN=60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE Certificate serial: 3B23016470683885B7E29A154FD7C6574DDB91F7 Authority key identifier: 60:EB:C7:6B:67:AB:68:E5:A9:85:28:7D:E1:EB:DB:DB:28:96:E6:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230362e302f32342d3234203d3e203633393330.roa Signing time: Sat 02 Nov 2024 07:00:01 +0000 ROA not before: Sat 02 Nov 2024 06:55:01 +0000 ROA not after: Sat 01 Nov 2025 07:00:01 +0000 asID: 63930 IP address blocks: 103.120.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.crl rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:23:01:64:70:68:38:85:b7:e2:9a:15:4f:d7:c6:57:4d:db:91:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE Validity Not Before: Nov 2 06:55:01 2024 GMT Not After : Nov 1 07:00:01 2025 GMT Subject: CN=AB985B6F71189EEEC114D36BE17A8870E9D7623E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:99:34:b9:fe:61:77:47:22:35:a0:62:bc:fd: c8:b3:df:de:cb:6c:41:ff:9a:5f:19:7b:05:96:f6: 71:18:a4:42:3e:cc:6e:9a:d1:a0:c1:2f:8a:b1:64: 7f:50:02:28:4c:42:9e:d9:46:6c:fa:da:59:f4:64: 56:36:a1:7f:6c:9b:75:3a:e1:47:cf:01:a1:e0:83: 04:03:81:bd:42:92:a7:86:4e:ed:fa:03:48:eb:01: 8e:63:c6:4c:7f:6c:57:30:ce:61:3a:d3:47:c4:ad: 07:50:0c:1d:d6:c8:1b:df:cd:56:05:a0:49:f5:7b: f3:28:73:64:0f:b0:84:30:87:4c:54:f2:c2:c4:8f: 06:bf:52:7c:57:94:3f:65:a0:47:49:2e:fb:46:46: d6:c1:e9:e9:e2:84:ff:59:6d:12:29:60:db:8a:f6: 68:e0:53:7e:24:8e:d0:a4:3e:27:00:37:74:ec:34: 71:41:63:a5:d2:40:06:74:0e:04:3a:7f:0c:cc:18: 83:b8:9c:3f:1a:7e:0f:54:a9:d8:4c:ca:6e:57:d0: 5e:4a:0f:e4:3b:1b:56:d6:68:b0:b9:5b:5e:c6:df: 71:34:6b:db:9a:bb:16:d3:24:cd:bc:60:37:f5:15: b0:80:8e:3c:3e:19:38:02:1c:c1:80:2f:12:58:dc: 8a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:98:5B:6F:71:18:9E:EE:C1:14:D3:6B:E1:7A:88:70:E9:D7:62:3E X509v3 Authority Key Identifier: keyid:60:EB:C7:6B:67:AB:68:E5:A9:85:28:7D:E1:EB:DB:DB:28:96:E6:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230362e302f32342d3234203d3e203633393330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.206.0/24 Signature Algorithm: sha256WithRSAEncryption 76:2b:e8:3a:61:0c:a3:32:da:62:22:e4:52:4f:2c:12:db:81: ba:7b:c5:ec:19:e0:b9:07:59:2c:4f:1a:20:e3:7b:c9:0e:71: 64:78:3a:65:6b:e8:a9:ce:bf:02:7b:5f:0f:d7:bf:0b:d4:78: 7b:48:4e:fc:ad:9d:27:60:61:3a:18:2b:2f:1e:65:3e:df:fe: 38:de:ec:74:b6:71:e8:65:9a:94:9b:c0:fe:b3:e2:07:e8:c9: 39:f3:a6:57:27:05:e7:56:92:32:7b:fd:11:c7:ce:c7:ad:ba: 85:d0:b2:7b:6d:63:d2:6b:d1:1e:03:fc:f5:fa:1e:29:fc:18: f1:8e:b3:8a:c7:ed:56:e0:36:35:f2:11:84:99:28:fb:99:86: b5:3f:c7:15:b9:8a:55:1c:5d:b4:51:ec:23:70:f8:55:e4:32: d9:02:b3:38:9a:35:70:0f:da:d9:9d:26:1f:d8:bd:e1:bf:ad: bd:ca:cb:77:7e:8b:58:13:9d:df:c0:84:16:40:4e:c6:ca:4f: d7:a9:b9:d4:eb:ac:71:6b:d7:28:0d:35:96:15:98:5c:fb:c8: e6:87:85:9b:96:5a:da:38:9b:38:e7:cf:b2:1e:9b:0f:2b:8f: 80:ff:46:cb:6e:bd:39:78:21:15:c2:cd:66:cb:c4:b7:15:05: 87:c9:bf:d1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOyMBZHBoOIW34poVT9fGV03bkfcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjBFQkM3NkI2N0FCNjhFNUE5ODUyODdERTFFQkRCREIy ODk2RTZERTAeFw0yNDExMDIwNjU1MDFaFw0yNTExMDEwNzAwMDFaMDMxMTAvBgNV BAMTKEFCOTg1QjZGNzExODlFRUVDMTE0RDM2QkUxN0E4ODcwRTlENzYyM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6mTS5/mF3RyI1oGK8/ciz397L bEH/ml8ZewWW9nEYpEI+zG6a0aDBL4qxZH9QAihMQp7ZRmz62ln0ZFY2oX9sm3U6 4UfPAaHggwQDgb1CkqeGTu36A0jrAY5jxkx/bFcwzmE600fErQdQDB3WyBvfzVYF oEn1e/Moc2QPsIQwh0xU8sLEjwa/UnxXlD9loEdJLvtGRtbB6enihP9ZbRIpYNuK 9mjgU34kjtCkPicAN3TsNHFBY6XSQAZ0DgQ6fwzMGIO4nD8afg9UqdhMym5X0F5K D+Q7G1bWaLC5W17G33E0a9uauxbTJM28YDf1FbCAjjw+GTgCHMGALxJY3IpxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUq5hbb3EYnu7BFNNr4XqIcOnXYj4wHwYDVR0j BBgwFoAUYOvHa2eraOWphSh94evb2yiW5t4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDBmMzdjMC0zODBjLTQwNTMtYjNiYS1iMzJlZjAzNWMyOGYvMC82MEVCQzc2QjY3 QUI2OEU1QTk4NTI4N0RFMUVCREJEQjI4OTZFNkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjBFQkM3NkI2N0FCNjhFNUE5ODUyODdERTFFQkRCREIyODk2 RTZERS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0MGYzN2MwLTM4MGMtNDA1My1i M2JhLWIzMmVmMDM1YzI4Zi8wLzMxMzAzMzJlMzEzMjMwMmUzMjMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjMzMzkzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3jOMA0GCSqG SIb3DQEBCwUAA4IBAQB2K+g6YQyjMtpiIuRSTywS24G6e8XsGeC5B1ksTxog43vJ DnFkeDpla+ipzr8Ce18P178L1Hh7SE78rZ0nYGE6GCsvHmU+3/443ux0tnHoZZqU m8D+s+IH6Mk586ZXJwXnVpIye/0Rx87HrbqF0LJ7bWPSa9EeA/z1+h4p/BjxjrOK x+1W4DY18hGEmSj7mYa1P8cVuYpVHF20UewjcPhV5DLZArM4mjVwD9rZnSYf2L3h v629yst3fotYE53fwIQWQE7Gyk/XqbnU66xxa9coDTWWFZhc+8jmh4WbllraOJs4 58+yHpsPK4+A/0bLbr05eCEVws1my8S3FQWHyb/R -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:01 2024 by rpki-client on console-ams.rpki-client.org