$ rpki-client -vvf repo-rpki.idnic.net/repo/2fbd7cf6-f55a-4b78-a588-d9261f15f763/0/3130332e3130362e3137342e302f32342d3234203d3e20313336383838.roa File: 3130332e3130362e3137342e302f32342d3234203d3e20313336383838.roa (raw, json) Hash identifier: x4cc1kbGeyzVURkk65Vy/+5L5MwnZDAtlAl9vg2PUts= Subject key identifier: 66:48:69:C4:DB:DD:56:AF:D6:B3:A3:F7:37:11:6C:EC:B1:F3:DE:75 Certificate issuer: /CN=B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8 Certificate serial: 52FBE138F0B50975288F2B5B9F450A8DBA130B16 Authority key identifier: B2:FA:6D:D6:2C:0D:60:EA:AD:64:F6:B4:71:D2:2D:29:44:32:B7:B8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2fbd7cf6-f55a-4b78-a588-d9261f15f763/0/3130332e3130362e3137342e302f32342d3234203d3e20313336383838.roa Signing time: Thu 27 Jun 2024 16:00:00 +0000 ROA not before: Thu 27 Jun 2024 15:55:00 +0000 ROA not after: Thu 26 Jun 2025 16:00:00 +0000 asID: 136888 IP address blocks: 103.106.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2fbd7cf6-f55a-4b78-a588-d9261f15f763/0/B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8.crl rsync://repo-rpki.idnic.net/repo/2fbd7cf6-f55a-4b78-a588-d9261f15f763/0/B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:fb:e1:38:f0:b5:09:75:28:8f:2b:5b:9f:45:0a:8d:ba:13:0b:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8 Validity Not Before: Jun 27 15:55:00 2024 GMT Not After : Jun 26 16:00:00 2025 GMT Subject: CN=664869C4DBDD56AFD6B3A3F737116CECB1F3DE75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:87:54:12:d2:8a:de:39:ca:fd:c7:bb:f2:2c: 33:30:8d:c7:90:eb:1b:f3:c9:8a:4d:76:a5:50:e6: b5:eb:83:cc:60:3b:b2:56:45:2a:0f:dc:2c:4b:8b: f6:48:45:86:08:54:a9:3b:1d:89:c1:07:61:63:66: b8:59:5e:02:3d:b6:60:da:8b:bd:a1:71:f3:95:6e: c9:07:6f:11:5a:1d:f4:d3:50:0d:bb:bd:47:5f:8c: 85:2e:69:d3:5b:d8:d8:19:07:50:53:b0:15:1b:aa: e5:1c:0d:e0:ab:ab:4b:b0:99:cc:ef:9c:c4:d7:70: fe:44:a7:a7:9e:e7:24:af:ec:dc:27:d1:0b:2e:86: d5:52:82:f2:50:a2:f1:7d:f1:54:c6:e7:ab:6f:e9: 67:be:da:c5:45:08:74:c2:68:99:2a:b9:b0:cf:b3: 7c:a8:83:27:d4:6e:38:ea:cf:de:41:23:88:77:88: ef:76:cb:7e:ae:7d:1d:89:8f:42:b1:d5:6f:e0:84: d8:d2:56:20:39:1a:07:4c:b8:1f:cf:3f:e6:35:2e: 58:3f:1d:f1:e4:f2:0a:af:63:19:11:89:66:07:83: 7b:1b:a6:92:05:29:6f:9e:80:95:f7:df:7b:55:70: 48:0b:25:eb:ee:ec:60:69:42:86:78:29:f1:79:90: 82:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:48:69:C4:DB:DD:56:AF:D6:B3:A3:F7:37:11:6C:EC:B1:F3:DE:75 X509v3 Authority Key Identifier: keyid:B2:FA:6D:D6:2C:0D:60:EA:AD:64:F6:B4:71:D2:2D:29:44:32:B7:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2fbd7cf6-f55a-4b78-a588-d9261f15f763/0/B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2FA6DD62C0D60EAAD64F6B471D22D294432B7B8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fbd7cf6-f55a-4b78-a588-d9261f15f763/0/3130332e3130362e3137342e302f32342d3234203d3e20313336383838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.106.174.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:f8:46:5a:96:ef:65:93:9a:77:64:62:b7:68:f8:fd:42:9a: 36:0d:7a:97:2f:f7:b2:3e:a4:83:a1:2d:86:b5:59:a7:9e:80: 4d:dd:69:30:25:34:6c:d3:fc:4b:87:75:a4:80:50:cb:4e:1b: 6c:e1:e3:a8:df:e8:83:ee:c4:a4:9b:8a:a1:cd:1d:7b:4a:74: 16:82:38:3e:58:ca:ea:84:cf:48:1a:81:c1:f2:16:14:32:01: bc:3c:58:b0:c7:0b:e7:66:08:c7:37:2f:02:74:91:d0:8b:c8: 8a:ef:ef:50:fe:7f:d4:d3:95:29:57:2e:60:68:4c:38:e7:da: fd:6a:f1:b3:7a:40:f6:04:bb:84:bf:72:30:e4:3f:11:a3:14: 04:a1:0c:17:49:c8:b1:fe:09:af:37:36:4e:f4:89:96:80:08: f9:43:ff:03:bb:46:d7:a3:87:6c:6d:cb:f1:f2:36:bf:d9:df: 63:05:25:37:42:ea:ea:be:82:d4:39:2f:a6:6c:70:b2:38:58: e2:98:26:52:5c:76:b2:3e:82:af:76:f7:c7:30:13:03:82:ff: 4e:7f:a8:36:0d:c1:c8:dd:94:24:28:8d:7e:a0:e2:b3:44:11: d2:95:79:80:7f:2e:43:b7:86:17:fc:05:5f:d3:b4:28:1b:a4: 7c:6e:82:96 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUvvhOPC1CXUojytbn0UKjboTCxYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjJGQTZERDYyQzBENjBFQUFENjRGNkI0NzFEMjJEMjk0 NDMyQjdCODAeFw0yNDA2MjcxNTU1MDBaFw0yNTA2MjYxNjAwMDBaMDMxMTAvBgNV BAMTKDY2NDg2OUM0REJERDU2QUZENkIzQTNGNzM3MTE2Q0VDQjFGM0RFNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjh1QS0oreOcr9x7vyLDMwjceQ 6xvzyYpNdqVQ5rXrg8xgO7JWRSoP3CxLi/ZIRYYIVKk7HYnBB2FjZrhZXgI9tmDa i72hcfOVbskHbxFaHfTTUA27vUdfjIUuadNb2NgZB1BTsBUbquUcDeCrq0uwmczv nMTXcP5Ep6ee5ySv7Nwn0QsuhtVSgvJQovF98VTG56tv6We+2sVFCHTCaJkqubDP s3yogyfUbjjqz95BI4h3iO92y36ufR2Jj0Kx1W/ghNjSViA5GgdMuB/PP+Y1Llg/ HfHk8gqvYxkRiWYHg3sbppIFKW+egJX333tVcEgLJevu7GBpQoZ4KfF5kIJdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUZkhpxNvdVq/Ws6P3NxFs7LHz3nUwHwYDVR0j BBgwFoAUsvpt1iwNYOqtZPa0cdItKUQyt7gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZmJkN2NmNi1mNTVhLTRiNzgtYTU4OC1kOTI2MWYxNWY3NjMvMC9CMkZBNkRENjJD MEQ2MEVBQUQ2NEY2QjQ3MUQyMkQyOTQ0MzJCN0I4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjJGQTZERDYyQzBENjBFQUFENjRGNkI0NzFEMjJEMjk0NDMy QjdCOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmYmQ3Y2Y2LWY1NWEtNGI3OC1h NTg4LWQ5MjYxZjE1Zjc2My8wLzMxMzAzMzJlMzEzMDM2MmUzMTM3MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM4Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnaq4wDQYJ KoZIhvcNAQELBQADggEBACz4RlqW72WTmndkYrdo+P1CmjYNepcv97I+pIOhLYa1 WaeegE3daTAlNGzT/EuHdaSAUMtOG2zh46jf6IPuxKSbiqHNHXtKdBaCOD5YyuqE z0gagcHyFhQyAbw8WLDHC+dmCMc3LwJ0kdCLyIrv71D+f9TTlSlXLmBoTDjn2v1q 8bN6QPYEu4S/cjDkPxGjFAShDBdJyLH+Ca83Nk70iZaACPlD/wO7Rtejh2xty/Hy Nr/Z32MFJTdC6uq+gtQ5L6ZscLI4WOKYJlJcdrI+gq9298cwEwOC/05/qDYNwcjd lCQojX6g4rNEEdKVeYB/LkO3hhf8BV/TtCgbpHxugpY= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:47 2024 by rpki-client on console-fra.rpki-client.org