$ rpki-client -vvf repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/3130332e3137322e3138362e302f32332d3233203d3e20313432343030.roa File: 3130332e3137322e3138362e302f32332d3233203d3e20313432343030.roa (raw, json) Hash identifier: zkB5HXDUn4hIZM8BxR9vmf/Op1/JEHll9O9rPcOFDt0= Subject key identifier: 66:DD:09:AB:CA:0C:C5:1C:99:D4:A1:BA:F7:9E:54:C7:89:89:AA:AC Certificate issuer: /CN=B5787D648E70D60E0E09510EBF1809D686E83D03 Certificate serial: 3D4AE3EBE5F1883C906B2BA6AD2EDEBB1686C153 Authority key identifier: B5:78:7D:64:8E:70:D6:0E:0E:09:51:0E:BF:18:09:D6:86:E8:3D:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5787D648E70D60E0E09510EBF1809D686E83D03.cer Subject info access: rsync://repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/3130332e3137322e3138362e302f32332d3233203d3e20313432343030.roa Signing time: Mon 02 Sep 2024 19:00:00 +0000 ROA not before: Mon 02 Sep 2024 18:55:00 +0000 ROA not after: Mon 01 Sep 2025 19:00:00 +0000 asID: 142400 IP address blocks: 103.172.186.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/B5787D648E70D60E0E09510EBF1809D686E83D03.crl rsync://repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/B5787D648E70D60E0E09510EBF1809D686E83D03.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5787D648E70D60E0E09510EBF1809D686E83D03.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:4a:e3:eb:e5:f1:88:3c:90:6b:2b:a6:ad:2e:de:bb:16:86:c1:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5787D648E70D60E0E09510EBF1809D686E83D03 Validity Not Before: Sep 2 18:55:00 2024 GMT Not After : Sep 1 19:00:00 2025 GMT Subject: CN=66DD09ABCA0CC51C99D4A1BAF79E54C78989AAAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:28:a6:27:16:af:21:15:3b:63:80:de:41:2e: d1:ed:09:bd:bf:f5:ca:8d:d8:41:f3:c7:76:3a:cb: d1:f5:e3:0d:d6:10:5d:5f:31:a9:7c:57:0e:97:9b: 73:1e:50:57:36:12:4b:23:cb:52:d1:f3:9e:f3:f1: 5f:28:9a:b2:9e:17:99:b0:ff:54:18:44:4b:7c:e9: 92:79:b7:a0:73:d5:c0:51:08:9c:f9:01:fe:86:c9: 8e:be:16:95:eb:81:40:98:2d:0b:18:f3:d8:8c:be: a2:35:6a:37:88:d7:b6:11:ba:37:2d:bd:16:16:98: 89:12:1b:2e:8f:cd:8d:7c:8f:2e:b6:2b:54:b1:4b: d4:4c:a2:7c:a7:f2:de:2b:b8:90:cf:c1:11:be:88: 03:cc:f8:c5:2e:d5:2b:bb:07:d0:ba:44:d6:c0:e6: 69:c6:97:00:bf:2d:7b:5c:3b:c5:06:d9:d6:2d:7c: 76:2a:43:85:7d:6a:ce:80:d0:24:0f:c3:ce:40:82: 89:86:22:6f:32:e5:12:19:c2:dd:4d:75:30:9a:16: 22:e1:60:38:1a:07:76:8b:bb:5e:ee:45:92:86:2f: c4:fb:04:67:53:87:38:63:50:a9:35:12:7e:a5:e4: ec:37:17:3e:25:d3:3f:bc:3d:1b:34:5c:2f:79:61: 49:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:DD:09:AB:CA:0C:C5:1C:99:D4:A1:BA:F7:9E:54:C7:89:89:AA:AC X509v3 Authority Key Identifier: keyid:B5:78:7D:64:8E:70:D6:0E:0E:09:51:0E:BF:18:09:D6:86:E8:3D:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/B5787D648E70D60E0E09510EBF1809D686E83D03.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5787D648E70D60E0E09510EBF1809D686E83D03.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/22f5f07c-f07b-4aaa-a0c2-df17c910c586/0/3130332e3137322e3138362e302f32332d3233203d3e20313432343030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.186.0/23 Signature Algorithm: sha256WithRSAEncryption 28:2d:52:f9:a2:7b:01:9a:3b:79:c2:13:ce:fc:a4:64:c1:06: ce:95:28:ae:90:e9:cb:79:90:38:03:e5:eb:63:bf:9b:e0:26: d2:ba:87:f4:e6:85:42:78:0b:34:68:66:91:65:46:b6:34:e6: 86:42:a9:bb:02:e0:fc:6e:7e:02:e8:da:ea:67:15:7e:72:9a: f7:56:c1:c6:67:86:72:c7:c9:fd:3c:81:76:33:77:e9:77:9c: 5b:30:03:00:fd:7f:b9:2b:61:98:bb:17:00:9f:fc:6f:85:2c: f0:66:65:36:28:b2:fa:09:ef:d8:81:26:a7:cc:56:f0:0f:50: 43:59:4f:8b:98:09:e2:44:cf:fc:81:b4:28:1f:bd:78:ec:19: 7f:c0:98:23:2a:00:a3:45:83:4a:a9:96:f7:54:bc:5f:6b:25: 1d:32:b9:e8:01:89:45:dd:57:94:a2:1d:12:4a:d0:3d:01:f2: ef:ee:fd:eb:90:85:94:a5:fa:a0:78:40:97:84:c5:61:55:62: 54:5e:5c:55:96:91:b0:b3:0b:f4:19:90:58:5f:05:76:c2:03: 73:4b:61:75:ba:71:f8:bb:e9:f4:cd:9d:81:fe:90:ed:c5:51: 89:97:1c:05:62:91:84:e9:66:67:8a:32:e8:dd:db:6d:db:7d: 05:1a:7e:da -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPUrj6+XxiDyQayumrS7euxaGwVMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjU3ODdENjQ4RTcwRDYwRTBFMDk1MTBFQkYxODA5RDY4 NkU4M0QwMzAeFw0yNDA5MDIxODU1MDBaFw0yNTA5MDExOTAwMDBaMDMxMTAvBgNV BAMTKDY2REQwOUFCQ0EwQ0M1MUM5OUQ0QTFCQUY3OUU1NEM3ODk4OUFBQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzKKYnFq8hFTtjgN5BLtHtCb2/ 9cqN2EHzx3Y6y9H14w3WEF1fMal8Vw6Xm3MeUFc2Eksjy1LR857z8V8omrKeF5mw /1QYREt86ZJ5t6Bz1cBRCJz5Af6GyY6+FpXrgUCYLQsY89iMvqI1ajeI17YRujct vRYWmIkSGy6PzY18jy62K1SxS9RMonyn8t4ruJDPwRG+iAPM+MUu1Su7B9C6RNbA 5mnGlwC/LXtcO8UG2dYtfHYqQ4V9as6A0CQPw85AgomGIm8y5RIZwt1NdTCaFiLh YDgaB3aLu17uRZKGL8T7BGdThzhjUKk1En6l5Ow3Fz4l0z+8PRs0XC95YUkjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUZt0Jq8oMxRyZ1KG6955Ux4mJqqwwHwYDVR0j BBgwFoAUtXh9ZI5w1g4OCVEOvxgJ1oboPQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MmY1ZjA3Yy1mMDdiLTRhYWEtYTBjMi1kZjE3YzkxMGM1ODYvMC9CNTc4N0Q2NDhF NzBENjBFMEUwOTUxMEVCRjE4MDlENjg2RTgzRDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjU3ODdENjQ4RTcwRDYwRTBFMDk1MTBFQkYxODA5RDY4NkU4 M0QwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyZjVmMDdjLWYwN2ItNGFhYS1h MGMyLWRmMTdjOTEwYzU4Ni8wLzMxMzAzMzJlMzEzNzMyMmUzMTM4MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzIzNDMwMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnrLowDQYJ KoZIhvcNAQELBQADggEBACgtUvmiewGaO3nCE878pGTBBs6VKK6Q6ct5kDgD5etj v5vgJtK6h/TmhUJ4CzRoZpFlRrY05oZCqbsC4PxufgLo2upnFX5ymvdWwcZnhnLH yf08gXYzd+l3nFswAwD9f7krYZi7FwCf/G+FLPBmZTYosvoJ79iBJqfMVvAPUENZ T4uYCeJEz/yBtCgfvXjsGX/AmCMqAKNFg0qplvdUvF9rJR0yuegBiUXdV5SiHRJK 0D0B8u/u/euQhZSl+qB4QJeExWFVYlReXFWWkbCzC/QZkFhfBXbCA3NLYXW6cfi7 6fTNnYH+kO3FUYmXHAVikYTpZmeKMujd223bfQUafto= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:56 2024 by rpki-client on console-ams.rpki-client.org