$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32332d3233203d3e203538353030.roa File: 3130332e3130312e3133362e302f32332d3233203d3e203538353030.roa (raw, json) Hash identifier: hplPEY83KbXLKF8mvbTVWHeph6nkNRI9I2QkUrjdTPg= Subject key identifier: 06:66:4B:A2:3A:CA:C6:AD:F4:70:A0:A3:D5:98:AF:5F:B0:F6:3A:DE Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 797F28B6DBD7921AFAC43C7EE06EE9B3761E06DF Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32332d3233203d3e203538353030.roa Signing time: Tue 20 Aug 2024 05:00:01 +0000 ROA not before: Tue 20 Aug 2024 04:55:01 +0000 ROA not after: Tue 19 Aug 2025 05:00:01 +0000 asID: 58500 IP address blocks: 103.101.136.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:7f:28:b6:db:d7:92:1a:fa:c4:3c:7e:e0:6e:e9:b3:76:1e:06:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Aug 20 04:55:01 2024 GMT Not After : Aug 19 05:00:01 2025 GMT Subject: CN=06664BA23ACAC6ADF470A0A3D598AF5FB0F63ADE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c0:1f:49:48:d2:dc:5d:16:78:4f:c6:88:9f: 69:40:d9:a1:b7:3e:49:da:1c:ab:4d:5b:36:5c:3f: 20:7c:be:a2:b1:50:d8:7d:4a:23:2f:8c:9d:02:82: af:4d:55:4c:ee:be:ad:02:de:b7:04:55:76:dc:8a: ce:91:28:c1:d9:93:13:e5:be:04:d4:33:6d:c6:c9: 74:06:23:af:0b:84:cb:e2:9f:0b:27:d6:db:30:35: 03:ea:69:1e:5a:95:9a:f8:e3:bb:83:9b:0c:41:28: 51:81:89:57:0c:80:3d:ff:35:50:45:dc:40:e3:c6: 6d:0c:35:23:cf:fc:c2:33:49:d0:30:07:95:ab:4d: d8:81:6c:f3:ca:ec:5b:9a:16:d1:05:90:eb:04:b9: 09:fd:7f:4a:86:65:2d:2e:bb:57:6c:58:14:88:0b: 25:aa:6c:9c:9b:87:a3:b6:59:6d:00:c2:c5:f1:4f: b8:20:d0:6b:40:5f:39:66:e9:8a:18:52:1f:e5:92: 18:c2:7f:5c:10:5e:84:5c:d5:f9:9d:84:8a:9b:42: 24:98:f4:94:a7:91:1a:06:b4:42:8e:3e:33:e8:58: 0c:d0:04:e0:64:67:9f:75:91:64:ee:d6:cb:9e:a6: d4:3f:c4:48:d6:a6:14:f3:b7:ef:b8:b7:14:0c:be: 8b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:66:4B:A2:3A:CA:C6:AD:F4:70:A0:A3:D5:98:AF:5F:B0:F6:3A:DE X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32332d3233203d3e203538353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.136.0/23 Signature Algorithm: sha256WithRSAEncryption 36:79:0a:f1:ae:0c:e5:c2:79:24:dd:1e:22:b0:86:49:05:d6: 82:0a:b4:ae:c8:fa:0f:7a:be:97:7f:13:ec:a2:fe:e5:19:0a: f4:27:21:68:2a:25:cf:f4:bf:0a:6d:6a:6c:71:78:e8:cf:a2: 5d:12:bf:06:f5:47:0a:b1:ff:04:9c:cb:ac:47:eb:11:42:3f: c3:78:75:3c:c4:c8:ab:2f:9c:a2:8c:7a:4f:47:6c:7d:9b:00: 9f:2f:22:28:53:9b:f8:0a:a8:21:7d:44:96:ed:1c:83:1d:7c: 9a:cf:48:39:34:3e:2f:34:b2:b0:9b:0c:fd:a3:df:0c:2c:b1: d7:41:f0:03:2d:38:f1:45:6b:ed:6e:e5:fb:df:8a:f7:3e:f0: 62:61:fc:1a:da:25:2f:db:79:8a:08:c5:43:d6:cd:d7:aa:94: ef:5a:59:4e:4f:91:51:94:4f:ca:ac:7c:8a:3a:db:fe:7e:8f: 2a:03:e6:25:f8:db:16:46:de:bc:5d:53:6a:f2:6c:18:a1:4a: 55:66:8c:2c:e3:6e:ee:bb:a8:98:c2:6b:2c:b9:fd:22:ce:42: f1:cb:0a:3b:b7:d2:55:63:94:3d:13:56:60:39:0f:22:02:dd: 34:31:58:2d:24:e9:e9:1d:fc:eb:41:67:28:01:22:9f:8c:bc: 7b:21:bc:25 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeX8ottvXkhr6xDx+4G7ps3YeBt8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNDA4MjAwNDU1MDFaFw0yNTA4MTkwNTAwMDFaMDMxMTAvBgNV BAMTKDA2NjY0QkEyM0FDQUM2QURGNDcwQTBBM0Q1OThBRjVGQjBGNjNBREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkwB9JSNLcXRZ4T8aIn2lA2aG3 PknaHKtNWzZcPyB8vqKxUNh9SiMvjJ0Cgq9NVUzuvq0C3rcEVXbcis6RKMHZkxPl vgTUM23GyXQGI68LhMvinwsn1tswNQPqaR5alZr447uDmwxBKFGBiVcMgD3/NVBF 3EDjxm0MNSPP/MIzSdAwB5WrTdiBbPPK7FuaFtEFkOsEuQn9f0qGZS0uu1dsWBSI CyWqbJybh6O2WW0AwsXxT7gg0GtAXzlm6YoYUh/lkhjCf1wQXoRc1fmdhIqbQiSY 9JSnkRoGtEKOPjPoWAzQBOBkZ591kWTu1sueptQ/xEjWphTzt++4txQMvoslAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBmZLojrKxq30cKCj1ZivX7D2Ot4wHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMxMzAzMzJlMzEzMDMxMmUzMTMzMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2WIMA0GCSqG SIb3DQEBCwUAA4IBAQA2eQrxrgzlwnkk3R4isIZJBdaCCrSuyPoPer6XfxPsov7l GQr0JyFoKiXP9L8KbWpscXjoz6JdEr8G9UcKsf8EnMusR+sRQj/DeHU8xMirL5yi jHpPR2x9mwCfLyIoU5v4CqghfUSW7RyDHXyaz0g5ND4vNLKwmwz9o98MLLHXQfAD LTjxRWvtbuX734r3PvBiYfwa2iUv23mKCMVD1s3XqpTvWllOT5FRlE/KrHyKOtv+ fo8qA+Yl+NsWRt68XVNq8mwYoUpVZows427uu6iYwmssuf0izkLxywo7t9JVY5Q9 E1ZgOQ8iAt00MVgtJOnpHfzrQWcoASKfjLx7Ibwl -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:20 2024 by rpki-client on console-fra.rpki-client.org