$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133382e302f32332d3234203d3e203233393531.roa File: 3130332e3130312e3133382e302f32332d3234203d3e203233393531.roa (raw, json) Hash identifier: vhMXT0X2yZyfjqh1If/jDIC06hgxnPfiOfL606K6iKk= Subject key identifier: 8C:D9:CA:6D:F3:02:8F:AA:5A:85:28:80:58:A0:51:42:21:D9:2B:B5 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 55161A159C2D3BF4735054B006528E811A9170E1 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133382e302f32332d3234203d3e203233393531.roa Signing time: Tue 20 Aug 2024 04:00:00 +0000 ROA not before: Tue 20 Aug 2024 03:55:00 +0000 ROA not after: Tue 19 Aug 2025 04:00:00 +0000 asID: 23951 IP address blocks: 103.101.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:16:1a:15:9c:2d:3b:f4:73:50:54:b0:06:52:8e:81:1a:91:70:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Aug 20 03:55:00 2024 GMT Not After : Aug 19 04:00:00 2025 GMT Subject: CN=8CD9CA6DF3028FAA5A85288058A0514221D92BB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:92:e7:dc:43:cf:db:09:9f:c0:74:7d:ea:40: 63:7f:7a:d1:d4:ac:a4:02:97:9b:47:9f:34:5f:8d: 91:73:b2:ca:30:5f:ea:3e:d1:40:01:a2:04:22:ec: da:7e:92:e6:5b:9e:6d:30:61:42:d1:20:17:b2:cd: 35:8f:cf:ba:71:1b:e7:15:0d:c2:8b:89:1c:07:20: 41:7a:f1:a2:23:4d:29:69:8f:24:b0:f6:d5:e8:61: 1f:ed:b8:97:66:b7:87:c0:a7:48:46:2f:f6:09:20: 1f:a3:5b:ce:f5:d3:3f:30:10:8b:eb:0e:16:2a:ab: ef:c5:5d:ba:a4:51:cb:3e:8a:b8:a5:2b:84:5f:64: 65:d7:6d:6b:ee:67:63:8f:7e:ee:3c:f3:a2:fe:ff: 6b:42:72:6d:ce:0b:69:3f:00:9e:da:2b:18:e5:31: f7:6e:41:8b:cf:7c:56:c0:e0:35:b2:58:4f:9a:15: 4f:3e:a6:b5:be:11:f2:cd:a6:89:b7:1d:14:96:bf: ba:91:59:e2:8e:cf:fb:2e:f4:ac:7e:64:6f:00:5d: f4:db:20:11:d6:c5:e3:34:10:c3:c3:52:81:e0:1d: cb:ae:d6:c5:ff:b7:ea:87:d3:e4:05:bd:54:19:7f: 6a:0c:a2:d2:9e:0d:db:7a:46:5c:60:6b:7a:50:1c: 78:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:D9:CA:6D:F3:02:8F:AA:5A:85:28:80:58:A0:51:42:21:D9:2B:B5 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3130332e3130312e3133382e302f32332d3234203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.138.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:72:66:f7:38:04:e2:92:1d:91:79:b0:00:4a:64:32:d3:b1: 57:da:ca:65:37:48:f5:82:39:1b:ad:f7:69:72:ac:05:e3:46: 39:4a:10:10:ca:f6:44:37:93:4d:ee:2b:54:2b:7d:0c:cf:73: 9e:e6:06:e5:b5:de:83:ff:9d:5a:44:28:ef:3c:0d:86:f1:2d: 76:dc:65:fe:c8:de:7d:0c:f0:66:91:55:32:48:e4:bf:0d:d4: 4d:4c:68:c2:a7:b9:c3:d1:1d:3d:6e:7a:0c:cf:95:20:43:fa: 2b:43:a3:3c:ee:df:05:3c:fe:70:9c:62:7c:08:9b:35:ab:61: 2a:9b:ac:ef:a9:25:c7:82:05:a0:68:77:d5:4f:11:65:21:22: ac:2a:30:65:2b:1e:6d:d6:ba:d9:83:ca:57:95:c6:55:e4:e3: 4d:ef:d1:95:fa:d1:42:b0:e6:40:85:f7:52:0b:53:67:8a:9d: a7:f5:2f:26:b8:1d:69:bc:a4:12:0e:88:4a:2a:0b:d9:50:62: 74:f9:49:e7:f8:3b:d9:5a:b1:a8:d3:aa:81:62:b4:40:6d:46: 2d:77:db:0d:cb:67:ca:35:18:e7:4c:45:65:ea:3c:b2:b1:c9: f2:77:d4:fe:00:b5:3e:e2:7a:a0:3a:42:61:1c:53:c1:75:0e: 08:a7:11:b9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVRYaFZwtO/RzUFSwBlKOgRqRcOEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNDA4MjAwMzU1MDBaFw0yNTA4MTkwNDAwMDBaMDMxMTAvBgNV BAMTKDhDRDlDQTZERjMwMjhGQUE1QTg1Mjg4MDU4QTA1MTQyMjFEOTJCQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2kufcQ8/bCZ/AdH3qQGN/etHU rKQCl5tHnzRfjZFzssowX+o+0UABogQi7Np+kuZbnm0wYULRIBeyzTWPz7pxG+cV DcKLiRwHIEF68aIjTSlpjySw9tXoYR/tuJdmt4fAp0hGL/YJIB+jW8710z8wEIvr DhYqq+/FXbqkUcs+irilK4RfZGXXbWvuZ2OPfu4886L+/2tCcm3OC2k/AJ7aKxjl MfduQYvPfFbA4DWyWE+aFU8+prW+EfLNpom3HRSWv7qRWeKOz/su9Kx+ZG8AXfTb IBHWxeM0EMPDUoHgHcuu1sX/t+qH0+QFvVQZf2oMotKeDdt6Rlxga3pQHHiDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUjNnKbfMCj6pahSiAWKBRQiHZK7UwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMxMzAzMzJlMzEzMDMxMmUzMTMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMjMzMzkzNTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2WKMA0GCSqG SIb3DQEBCwUAA4IBAQAecmb3OATikh2RebAASmQy07FX2splN0j1gjkbrfdpcqwF 40Y5ShAQyvZEN5NN7itUK30Mz3Oe5gbltd6D/51aRCjvPA2G8S123GX+yN59DPBm kVUySOS/DdRNTGjCp7nD0R09bnoMz5UgQ/orQ6M87t8FPP5wnGJ8CJs1q2Eqm6zv qSXHggWgaHfVTxFlISKsKjBlKx5t1rrZg8pXlcZV5ONN79GV+tFCsOZAhfdSC1Nn ip2n9S8muB1pvKQSDohKKgvZUGJ0+Unn+DvZWrGo06qBYrRAbUYtd9sNy2fKNRjn TEVl6jyyscnyd9T+ALU+4nqgOkJhHFPBdQ4IpxG5 -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:58 2024 by rpki-client on console-ams.rpki-client.org