$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32342d3234203d3e203538353030.roa File: 3130332e3130312e3133362e302f32342d3234203d3e203538353030.roa (raw, json) Hash identifier: bWRExWZZIgQwRxIP86bPE6hDOmLbrhGh8hJvUz7o6EE= Subject key identifier: C0:62:C6:AE:6A:27:B2:69:76:76:66:9F:E0:E9:CE:63:99:9B:F1:C0 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 638C414E2625205413C2966501074EE17D4B2963 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32342d3234203d3e203538353030.roa Signing time: Tue 20 Aug 2024 05:00:00 +0000 ROA not before: Tue 20 Aug 2024 04:55:00 +0000 ROA not after: Tue 19 Aug 2025 05:00:00 +0000 asID: 58500 IP address blocks: 103.101.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:8c:41:4e:26:25:20:54:13:c2:96:65:01:07:4e:e1:7d:4b:29:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Aug 20 04:55:00 2024 GMT Not After : Aug 19 05:00:00 2025 GMT Subject: CN=C062C6AE6A27B2697676669FE0E9CE63999BF1C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c9:db:0e:74:0b:6e:5b:a3:fa:e8:16:dd:8f: df:64:c0:bf:77:2e:29:1a:42:9b:f7:4b:f9:38:6b: f7:c2:7d:2a:45:50:fb:30:16:d2:f3:11:20:94:b8: 79:6d:d9:95:13:f6:e3:31:f7:ad:0c:ec:01:d5:39: d5:c7:98:2f:02:77:87:85:f1:1c:05:59:0b:a6:0a: f5:63:9c:51:0f:be:bd:32:5a:73:ef:70:45:27:be: b3:b9:86:3c:ef:a4:67:37:05:8d:ac:6f:3d:e7:64: 45:8c:40:e7:a7:37:41:50:f6:74:b7:54:90:37:2f: ba:f7:84:36:76:4b:3b:1a:83:cf:b7:3d:a8:e4:40: 03:28:10:f9:45:f5:d3:87:fb:a3:6a:96:b2:35:f4: 9b:78:ac:61:7d:e2:be:88:94:b8:a5:99:c9:5d:51: 09:b8:a0:90:a7:66:57:e5:1b:71:a9:ca:1a:c5:5f: cd:1d:cd:1a:f7:65:b0:ef:6e:35:31:1f:6f:44:70: 9f:cc:b4:5f:01:ba:47:ce:40:e3:2c:8a:2c:6c:45: a6:9c:48:1c:e4:e2:63:a6:4e:c9:e1:f0:67:c9:09: b9:f9:c9:61:aa:3a:28:de:a2:0c:b9:46:d1:6c:02: 71:48:b9:83:3b:ca:14:6d:bb:9c:45:f8:43:c7:67: a1:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:62:C6:AE:6A:27:B2:69:76:76:66:9F:E0:E9:CE:63:99:9B:F1:C0 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133362e302f32342d3234203d3e203538353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.136.0/24 Signature Algorithm: sha256WithRSAEncryption 94:ac:14:4b:3f:f0:87:77:f1:71:7a:45:b2:14:70:55:17:cb: 00:97:6f:6e:80:3b:ba:6a:53:57:a2:52:86:9a:ea:ae:bb:e4: 15:29:ab:65:a2:60:c5:b6:17:10:eb:ec:32:9c:4b:18:de:1c: c1:32:f9:15:31:8d:0f:0e:bc:e7:2f:34:02:c5:90:80:bf:db: cc:1a:b8:db:28:5d:13:59:e7:95:23:a8:8a:76:14:56:e7:5f: ea:71:38:66:7b:7e:25:ca:a7:c7:e8:29:26:c4:c9:9f:1f:be: 9d:91:cf:62:94:62:b2:06:fd:55:2b:46:38:9d:cd:b8:f2:f0: 3e:83:ad:d6:f9:44:c5:87:fc:ee:89:24:28:fd:82:35:da:4b: c6:9f:13:9d:4c:25:ff:77:2d:ca:8e:82:6c:a8:a7:b5:56:f9: db:b2:a9:a0:89:fa:46:ef:c2:fd:3a:4a:b1:1c:7d:6f:d0:65: 33:06:20:6c:47:ae:ce:ea:fe:99:8e:88:27:ab:d0:a3:2f:17: 69:36:1c:60:12:14:ca:7b:f2:cc:c6:58:7e:ab:e7:a2:f5:8e: 78:9f:e7:65:0d:63:47:93:61:91:92:fc:0e:0a:af:6a:cb:7e: 04:7a:8e:51:77:e5:2d:62:cf:fa:50:1e:b5:2b:f4:e1:39:41: 54:0b:e3:39 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY4xBTiYlIFQTwpZlAQdO4X1LKWMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNDA4MjAwNDU1MDBaFw0yNTA4MTkwNTAwMDBaMDMxMTAvBgNV BAMTKEMwNjJDNkFFNkEyN0IyNjk3Njc2NjY5RkUwRTlDRTYzOTk5QkYxQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRydsOdAtuW6P66Bbdj99kwL93 LikaQpv3S/k4a/fCfSpFUPswFtLzESCUuHlt2ZUT9uMx960M7AHVOdXHmC8Cd4eF 8RwFWQumCvVjnFEPvr0yWnPvcEUnvrO5hjzvpGc3BY2sbz3nZEWMQOenN0FQ9nS3 VJA3L7r3hDZ2Szsag8+3PajkQAMoEPlF9dOH+6NqlrI19Jt4rGF94r6IlLilmcld UQm4oJCnZlflG3GpyhrFX80dzRr3ZbDvbjUxH29EcJ/MtF8BukfOQOMsiixsRaac SBzk4mOmTsnh8GfJCbn5yWGqOijeogy5RtFsAnFIuYM7yhRtu5xF+EPHZ6HLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUwGLGrmonsml2dmaf4OnOY5mb8cAwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMxMzAzMzJlMzEzMDMxMmUzMTMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2WIMA0GCSqG SIb3DQEBCwUAA4IBAQCUrBRLP/CHd/FxekWyFHBVF8sAl29ugDu6alNXolKGmuqu u+QVKatlomDFthcQ6+wynEsY3hzBMvkVMY0PDrznLzQCxZCAv9vMGrjbKF0TWeeV I6iKdhRW51/qcThme34lyqfH6CkmxMmfH76dkc9ilGKyBv1VK0Y4nc248vA+g63W +UTFh/zuiSQo/YI12kvGnxOdTCX/dy3KjoJsqKe1VvnbsqmgifpG78L9OkqxHH1v 0GUzBiBsR67O6v6Zjognq9CjLxdpNhxgEhTKe/LMxlh+q+ei9Y54n+dlDWNHk2GR kvwOCq9qy34Eeo5Rd+UtYs/6UB61K/ThOUFUC+M5 -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:58 2024 by rpki-client on console-ams.rpki-client.org