$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133372e302f32342d3234203d3e203538353030.roa File: 3130332e3130312e3133372e302f32342d3234203d3e203538353030.roa (raw, json) Hash identifier: dASDC6A8QkcoKOTRQ/CvgSqJWSyAkaKqOmqilKOQ97g= Subject key identifier: F2:1A:0E:EE:AE:AA:74:9F:3D:0F:DC:8F:89:8A:9E:A3:C3:5F:87:16 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 22C3E963336EAF454EA74E51DD1B2E1EC92201F9 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133372e302f32342d3234203d3e203538353030.roa Signing time: Tue 20 Aug 2024 05:00:01 +0000 ROA not before: Tue 20 Aug 2024 04:55:01 +0000 ROA not after: Tue 19 Aug 2025 05:00:01 +0000 asID: 58500 IP address blocks: 103.101.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:c3:e9:63:33:6e:af:45:4e:a7:4e:51:dd:1b:2e:1e:c9:22:01:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Aug 20 04:55:01 2024 GMT Not After : Aug 19 05:00:01 2025 GMT Subject: CN=F21A0EEEAEAA749F3D0FDC8F898A9EA3C35F8716 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a1:3b:61:41:c2:02:1f:5f:5b:34:33:ec:18: 71:4e:ad:d3:1b:5a:06:8f:19:ac:b0:50:8f:38:50: ad:1f:f3:c5:0e:26:7e:5b:52:90:d6:58:44:05:88: 6d:dc:24:fe:e8:8e:a4:27:55:98:e1:50:54:14:e7: 5f:1a:69:18:be:57:50:a6:54:f0:0c:c4:cc:af:3a: 09:e8:22:5d:d0:eb:78:28:65:80:6e:7e:c6:94:04: b2:ae:ad:c5:39:ec:5a:0f:4e:fe:28:63:cd:29:56: 0c:79:5c:bd:18:e0:1e:77:c8:4b:b4:f7:1c:de:10: 87:a7:3a:75:e3:fa:fe:03:1d:6a:77:5c:e6:85:70: 6f:ff:20:90:d6:f7:05:86:05:af:ca:83:87:74:2e: c5:ab:cb:6e:a7:55:0a:ea:7d:77:6c:b8:15:ad:3c: 7c:5e:7e:78:83:e6:74:59:97:6a:24:b6:18:b2:e9: c9:80:d5:1e:cd:f6:cd:14:9f:70:56:9d:23:16:91: aa:78:32:7f:d8:f5:9b:4c:be:c1:30:2a:61:53:75: 3c:20:1a:36:7a:56:75:74:93:06:06:25:b0:a0:ab: a4:6a:8c:5a:22:fe:77:20:0d:07:48:56:25:aa:8d: cb:85:d2:f1:e6:40:67:a2:a5:ff:77:bd:7d:c8:52: ab:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:1A:0E:EE:AE:AA:74:9F:3D:0F:DC:8F:89:8A:9E:A3:C3:5F:87:16 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133372e302f32342d3234203d3e203538353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.137.0/24 Signature Algorithm: sha256WithRSAEncryption 71:c3:10:48:aa:e1:5a:c1:3e:9e:c3:e5:7f:5e:85:dd:d8:8a: 07:c5:85:47:29:ba:9d:bc:f4:7f:95:7d:ed:11:bc:5a:90:bb: eb:bb:38:fe:14:4e:c6:33:8e:77:a9:48:ba:86:c1:99:51:16: 95:28:f1:5f:f4:4e:6d:3d:eb:51:01:4d:42:a1:d0:1c:7b:d7: 1d:54:6d:61:00:a4:14:af:a5:80:80:89:dc:2d:76:15:c6:c9: 9c:c4:cf:bb:dc:5a:0f:35:e9:dc:dd:3a:20:ff:ca:35:6d:50: 0c:da:ef:1b:b9:b1:59:76:a2:f8:6d:77:35:12:12:7d:fb:96: bd:04:27:e9:59:23:6c:49:ea:c4:44:1f:f5:98:38:e9:09:ac: 2f:90:1c:20:f5:08:fc:b2:77:20:e0:bb:63:5e:f0:4a:0c:39: 62:fc:10:ee:38:76:6c:65:7c:f4:32:bd:0c:20:d4:77:9e:8d: 86:d3:59:23:74:11:76:38:4a:83:77:84:1b:13:e5:1e:1e:cf: 6a:2e:19:5b:4b:56:e8:f4:94:95:ec:cd:e3:d5:ea:3c:9a:e6: 69:7d:cb:90:28:04:94:e3:60:6a:ee:f9:53:55:a7:c5:9b:a6: e2:6f:f4:9b:e5:ce:e4:cc:60:30:e6:3a:8c:17:78:61:06:d6: e5:d6:b3:1c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIsPpYzNur0VOp05R3RsuHskiAfkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNDA4MjAwNDU1MDFaFw0yNTA4MTkwNTAwMDFaMDMxMTAvBgNV BAMTKEYyMUEwRUVFQUVBQTc0OUYzRDBGREM4Rjg5OEE5RUEzQzM1Rjg3MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuoTthQcICH19bNDPsGHFOrdMb WgaPGaywUI84UK0f88UOJn5bUpDWWEQFiG3cJP7ojqQnVZjhUFQU518aaRi+V1Cm VPAMxMyvOgnoIl3Q63goZYBufsaUBLKurcU57FoPTv4oY80pVgx5XL0Y4B53yEu0 9xzeEIenOnXj+v4DHWp3XOaFcG//IJDW9wWGBa/Kg4d0LsWry26nVQrqfXdsuBWt PHxefniD5nRZl2okthiy6cmA1R7N9s0Un3BWnSMWkap4Mn/Y9ZtMvsEwKmFTdTwg GjZ6VnV0kwYGJbCgq6RqjFoi/ncgDQdIViWqjcuF0vHmQGeipf93vX3IUqtRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8hoO7q6qdJ89D9yPiYqeo8NfhxYwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMxMzAzMzJlMzEzMDMxMmUzMTMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2WJMA0GCSqG SIb3DQEBCwUAA4IBAQBxwxBIquFawT6ew+V/XoXd2IoHxYVHKbqdvPR/lX3tEbxa kLvruzj+FE7GM453qUi6hsGZURaVKPFf9E5tPetRAU1CodAce9cdVG1hAKQUr6WA gIncLXYVxsmcxM+73FoPNenc3Tog/8o1bVAM2u8bubFZdqL4bXc1EhJ9+5a9BCfp WSNsSerERB/1mDjpCawvkBwg9Qj8sncg4LtjXvBKDDli/BDuOHZsZXz0Mr0MINR3 no2G01kjdBF2OEqDd4QbE+UeHs9qLhlbS1bo9JSV7M3j1eo8muZpfcuQKASU42Bq 7vlTVafFm6bib/Sb5c7kzGAw5jqMF3hhBtbl1rMc -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:58 2024 by rpki-client on console-ams.rpki-client.org