$ rpki-client -vvf repo-rpki.idnic.net/repo/55272f7b-d656-4058-a7b6-f25adf3ed1be/0/3130332e3234352e31382e302f32332d3234203d3e203436303233.roa File: 3130332e3234352e31382e302f32332d3234203d3e203436303233.roa (raw, json) Hash identifier: LiUE5E5NP3y/9rJb+3iR5iXWUeVWyAD0Ol8W0BAVcIY= Subject key identifier: D5:4C:A9:BA:92:F7:8F:EF:38:C0:D4:E5:1B:F4:8D:85:B1:48:CC:74 Certificate issuer: /CN=6D2120D281865021E16D49A2451DC53A851B5BBD Certificate serial: 7FC4595868EB2110F87247053A08395775DDB93E Authority key identifier: 6D:21:20:D2:81:86:50:21:E1:6D:49:A2:45:1D:C5:3A:85:1B:5B:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D2120D281865021E16D49A2451DC53A851B5BBD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/55272f7b-d656-4058-a7b6-f25adf3ed1be/0/3130332e3234352e31382e302f32332d3234203d3e203436303233.roa Signing time: Wed 13 Nov 2024 09:54:19 +0000 ROA not before: Wed 13 Nov 2024 09:49:19 +0000 ROA not after: Wed 12 Nov 2025 09:54:19 +0000 asID: 46023 IP address blocks: 103.245.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/55272f7b-d656-4058-a7b6-f25adf3ed1be/0/6D2120D281865021E16D49A2451DC53A851B5BBD.crl rsync://repo-rpki.idnic.net/repo/55272f7b-d656-4058-a7b6-f25adf3ed1be/0/6D2120D281865021E16D49A2451DC53A851B5BBD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D2120D281865021E16D49A2451DC53A851B5BBD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:c4:59:58:68:eb:21:10:f8:72:47:05:3a:08:39:57:75:dd:b9:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D2120D281865021E16D49A2451DC53A851B5BBD Validity Not Before: Nov 13 09:49:19 2024 GMT Not After : Nov 12 09:54:19 2025 GMT Subject: CN=D54CA9BA92F78FEF38C0D4E51BF48D85B148CC74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d3:4a:d1:cc:74:50:31:42:9d:44:ca:2c:ac: 52:48:38:88:e7:55:d4:7b:67:4f:fb:b7:61:7f:0f: f3:8c:d7:07:7b:0b:9b:d5:73:d7:b4:fb:df:bd:e1: 9e:19:ab:6e:18:b8:d9:eb:9e:e9:95:4a:11:fb:b3: a2:6e:1e:bb:56:40:89:81:d4:f9:31:c0:1b:23:82: dd:7d:42:27:ce:61:55:8c:10:99:4c:ec:d6:ec:ff: e5:ab:77:29:cd:58:1e:b9:10:f1:fc:f8:c4:de:f2: 07:99:ab:5c:d7:a7:67:9b:c7:3e:0a:e9:89:59:c1: 32:f6:82:de:9b:1e:e6:2c:6f:85:46:c5:c7:6b:d9: 75:e1:5f:8f:27:ee:e7:2f:68:45:a3:18:58:02:60: b9:8c:27:01:f8:be:77:1f:c2:0d:15:bf:d6:6b:0c: a9:b7:2f:32:c4:b0:e2:fe:2f:02:1f:f1:92:58:36: 8a:09:d5:af:dc:3f:6b:e7:95:b8:11:1c:15:b3:22: 56:fc:89:37:e5:6e:65:c7:96:9a:65:e7:6a:87:2c: 4f:5b:c8:2e:f9:0b:b3:43:68:22:1a:4f:6c:52:e5: b2:a9:c0:1e:f8:03:d3:e7:98:85:f0:b6:32:11:db: 43:5d:20:d6:fb:07:be:8f:6e:f0:a1:8c:1c:0d:66: d5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:4C:A9:BA:92:F7:8F:EF:38:C0:D4:E5:1B:F4:8D:85:B1:48:CC:74 X509v3 Authority Key Identifier: keyid:6D:21:20:D2:81:86:50:21:E1:6D:49:A2:45:1D:C5:3A:85:1B:5B:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/55272f7b-d656-4058-a7b6-f25adf3ed1be/0/6D2120D281865021E16D49A2451DC53A851B5BBD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D2120D281865021E16D49A2451DC53A851B5BBD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/55272f7b-d656-4058-a7b6-f25adf3ed1be/0/3130332e3234352e31382e302f32332d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.18.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:c9:a7:5f:88:52:dc:10:c6:f4:d2:d7:ea:5e:44:69:3f:e6: bf:07:5a:91:06:bf:0a:71:e2:d7:c4:81:a1:68:51:bd:81:4c: 7d:6f:84:d1:2c:cf:fa:d4:e2:12:d9:cf:6b:15:f5:1d:51:1f: 53:c1:59:6c:1b:a6:6e:03:00:39:f1:74:69:1d:35:b4:9f:f8: 06:07:51:c9:39:55:e8:1c:ca:99:49:df:a0:b5:79:3a:b5:1b: 15:45:ab:be:ea:e5:95:4c:aa:6c:e8:7d:53:cf:bd:dd:e7:15: 44:f9:48:0b:ab:29:89:fb:28:4d:69:56:92:7c:e4:e5:b4:be: 2d:d9:94:c0:a3:93:23:d4:0d:60:d7:31:0f:37:44:82:49:2c: ec:63:92:b7:67:b2:c3:d8:72:9b:41:87:33:13:57:b4:10:d9: 1d:e3:f0:02:71:8d:dd:61:45:9e:13:41:be:e5:75:89:b9:6a: 32:9d:fd:13:3f:c9:a1:b8:ea:91:d1:f7:1a:3c:56:bb:30:11: 7c:9f:ca:39:f7:3d:38:33:86:bf:8a:b2:5c:14:54:04:88:14: 10:68:fe:8a:b2:f0:73:1a:9d:88:f8:5a:14:27:25:d2:07:69: 04:5f:42:3c:ba:f6:a8:b0:fc:b0:53:fe:4c:be:69:8f:1e:e9: 8b:2e:8a:bf -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUf8RZWGjrIRD4ckcFOgg5V3XduT4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkQyMTIwRDI4MTg2NTAyMUUxNkQ0OUEyNDUxREM1M0E4 NTFCNUJCRDAeFw0yNDExMTMwOTQ5MTlaFw0yNTExMTIwOTU0MTlaMDMxMTAvBgNV BAMTKEQ1NENBOUJBOTJGNzhGRUYzOEMwRDRFNTFCRjQ4RDg1QjE0OENDNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA00rRzHRQMUKdRMosrFJIOIjn VdR7Z0/7t2F/D/OM1wd7C5vVc9e0+9+94Z4Zq24YuNnrnumVShH7s6JuHrtWQImB 1PkxwBsjgt19QifOYVWMEJlM7Nbs/+WrdynNWB65EPH8+MTe8geZq1zXp2ebxz4K 6YlZwTL2gt6bHuYsb4VGxcdr2XXhX48n7ucvaEWjGFgCYLmMJwH4vncfwg0Vv9Zr DKm3LzLEsOL+LwIf8ZJYNooJ1a/cP2vnlbgRHBWzIlb8iTflbmXHlppl52qHLE9b yC75C7NDaCIaT2xS5bKpwB74A9PnmIXwtjIR20NdINb7B76PbvChjBwNZtWJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1UypupL3j+84wNTlG/SNhbFIzHQwHwYDVR0j BBgwFoAUbSEg0oGGUCHhbUmiRR3FOoUbW70wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NTI3MmY3Yi1kNjU2LTQwNTgtYTdiNi1mMjVhZGYzZWQxYmUvMC82RDIxMjBEMjgx ODY1MDIxRTE2RDQ5QTI0NTFEQzUzQTg1MUI1QkJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkQyMTIwRDI4MTg2NTAyMUUxNkQ0OUEyNDUxREM1M0E4NTFC NUJCRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1MjcyZjdiLWQ2NTYtNDA1OC1h N2I2LWYyNWFkZjNlZDFiZS8wLzMxMzAzMzJlMzIzNDM1MmUzMTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzNjMwMzIzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWf1EjANBgkqhkiG 9w0BAQsFAAOCAQEAG8mnX4hS3BDG9NLX6l5EaT/mvwdakQa/CnHi18SBoWhRvYFM fW+E0SzP+tTiEtnPaxX1HVEfU8FZbBumbgMAOfF0aR01tJ/4BgdRyTlV6BzKmUnf oLV5OrUbFUWrvurllUyqbOh9U8+93ecVRPlIC6spifsoTWlWknzk5bS+LdmUwKOT I9QNYNcxDzdEgkks7GOSt2eyw9hym0GHMxNXtBDZHePwAnGN3WFFnhNBvuV1iblq Mp39Ez/JobjqkdH3GjxWuzARfJ/KOfc9ODOGv4qyXBRUBIgUEGj+irLwcxqdiPha FCcl0gdpBF9CPLr2qLD8sFP+TL5pjx7piy6Kvw== -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:00 2024 by rpki-client on console-ams.rpki-client.org