$ rpki-client -vvf repo-rpki.idnic.net/repo/5711aa46-f28e-4c55-b9ba-7d5bdc95b4f6/0/3130332e36302e38382e302f32332d3233203d3e20313531353732.roa File: 3130332e36302e38382e302f32332d3233203d3e20313531353732.roa (raw, json) Hash identifier: sj/Mmz0IkuIImkgMrX5NfmBzqbmlEbbflvN0FkIxBO4= Subject key identifier: 23:12:AE:B8:CF:B6:F0:B3:77:49:39:35:95:39:27:C0:3A:CD:E1:F7 Certificate issuer: /CN=E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE Certificate serial: 432EC9972BE91570FF8C3633B7965BF74B8A146C Authority key identifier: E7:C9:E4:E5:C8:EA:98:9F:0F:F7:D6:FE:6D:BD:6A:4F:E8:21:2D:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5711aa46-f28e-4c55-b9ba-7d5bdc95b4f6/0/3130332e36302e38382e302f32332d3233203d3e20313531353732.roa Signing time: Sat 31 Aug 2024 00:00:06 +0000 ROA not before: Fri 30 Aug 2024 23:55:06 +0000 ROA not after: Sat 30 Aug 2025 00:00:06 +0000 asID: 151572 IP address blocks: 103.60.88.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5711aa46-f28e-4c55-b9ba-7d5bdc95b4f6/0/E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE.crl rsync://repo-rpki.idnic.net/repo/5711aa46-f28e-4c55-b9ba-7d5bdc95b4f6/0/E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:2e:c9:97:2b:e9:15:70:ff:8c:36:33:b7:96:5b:f7:4b:8a:14:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE Validity Not Before: Aug 30 23:55:06 2024 GMT Not After : Aug 30 00:00:06 2025 GMT Subject: CN=2312AEB8CFB6F0B377493935953927C03ACDE1F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:cc:a4:44:9e:62:0d:3b:85:77:80:35:11:54: 5c:89:f1:29:63:95:b4:a3:e9:86:4f:6d:79:1f:e0: 2a:d2:5a:ce:f5:e4:de:46:4c:43:a3:ac:4a:3d:8d: 61:ee:59:91:a3:58:eb:65:58:4d:84:0f:a7:b4:36: 2d:61:48:a5:f8:ad:0d:f9:2e:2c:93:b3:84:82:fe: 71:39:70:5d:f4:3a:b9:9b:75:7b:96:4b:e0:c0:c0: 4d:dd:9d:92:27:e5:05:22:3a:54:76:2d:37:86:ed: 27:d2:1d:dd:de:20:b4:de:40:c3:a0:25:a1:d6:d3: 4c:05:8a:2f:cb:61:d7:4b:31:b5:6f:27:3b:dc:b1: 7a:f9:7d:62:de:4b:1f:eb:e5:92:e3:8d:ad:05:f8: ae:3f:1d:aa:02:13:a3:50:06:18:6b:e5:9a:e9:f4: e0:19:47:eb:de:5b:97:fc:ba:04:91:7e:6c:b0:4d: 83:6b:52:90:2d:60:1a:f0:e3:b1:bf:3d:76:9b:19: c5:93:01:b2:3b:14:40:3a:47:d1:d9:dd:53:6b:93: 0b:55:bc:8b:67:03:dc:49:8a:60:65:7d:ff:41:47: 08:7b:de:bc:63:08:31:8d:8d:c0:e2:d1:e6:80:87: fc:a5:3f:15:0d:11:83:e7:69:6b:4c:57:07:c6:61: c9:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:12:AE:B8:CF:B6:F0:B3:77:49:39:35:95:39:27:C0:3A:CD:E1:F7 X509v3 Authority Key Identifier: keyid:E7:C9:E4:E5:C8:EA:98:9F:0F:F7:D6:FE:6D:BD:6A:4F:E8:21:2D:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5711aa46-f28e-4c55-b9ba-7d5bdc95b4f6/0/E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7C9E4E5C8EA989F0FF7D6FE6DBD6A4FE8212DDE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5711aa46-f28e-4c55-b9ba-7d5bdc95b4f6/0/3130332e36302e38382e302f32332d3233203d3e20313531353732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.60.88.0/23 Signature Algorithm: sha256WithRSAEncryption 23:96:60:e3:03:8e:39:af:44:d3:38:26:ba:f1:63:1b:02:95: 78:d0:60:f2:60:03:26:bf:e8:9f:0b:54:61:52:e1:ca:fa:ba: 4b:9a:08:6c:4e:84:6f:57:1b:20:76:e3:ab:99:2c:af:de:36: a2:39:58:83:e7:97:0b:3d:66:45:73:83:24:54:bc:5e:0f:b5: c4:91:43:33:70:2a:1a:fe:18:17:a7:36:02:65:04:5d:5e:59: 5d:8e:8a:5e:f7:44:9f:c1:98:20:39:0d:23:34:a9:34:2a:bd: 59:d6:75:dd:5b:37:1d:94:a4:96:07:4e:2c:a7:be:5d:5f:98: bd:4c:08:67:64:d5:21:26:e8:60:ce:e1:0e:32:fa:3b:1b:8e: 68:3a:24:39:61:5c:48:48:6e:ed:b7:07:e1:77:a4:d6:7d:ed: 78:60:08:d6:0d:94:6f:ed:85:96:f1:96:c3:d5:2b:3b:23:8f: 0e:25:94:7c:19:b3:d2:e6:01:9a:25:9c:75:24:83:eb:27:92: 2c:0e:35:01:b3:4e:0d:56:42:fc:c3:09:11:6f:59:98:f8:3a: 0f:88:03:58:1c:d9:bb:02:ce:b3:76:42:5e:58:d8:9e:a7:65: 0b:e6:61:b1:6f:0c:fb:a5:87:97:bc:03:2f:8d:82:87:a5:23: 40:91:bf:ca -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQy7JlyvpFXD/jDYzt5Zb90uKFGwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTdDOUU0RTVDOEVBOTg5RjBGRjdENkZFNkRCRDZBNEZF ODIxMkRERTAeFw0yNDA4MzAyMzU1MDZaFw0yNTA4MzAwMDAwMDZaMDMxMTAvBgNV BAMTKDIzMTJBRUI4Q0ZCNkYwQjM3NzQ5MzkzNTk1MzkyN0MwM0FDREUxRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLzKREnmINO4V3gDURVFyJ8Slj lbSj6YZPbXkf4CrSWs715N5GTEOjrEo9jWHuWZGjWOtlWE2ED6e0Ni1hSKX4rQ35 LiyTs4SC/nE5cF30OrmbdXuWS+DAwE3dnZIn5QUiOlR2LTeG7SfSHd3eILTeQMOg JaHW00wFii/LYddLMbVvJzvcsXr5fWLeSx/r5ZLjja0F+K4/HaoCE6NQBhhr5Zrp 9OAZR+veW5f8ugSRfmywTYNrUpAtYBrw47G/PXabGcWTAbI7FEA6R9HZ3VNrkwtV vItnA9xJimBlff9BRwh73rxjCDGNjcDi0eaAh/ylPxUNEYPnaWtMVwfGYcmJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIxKuuM+28LN3STk1lTknwDrN4fcwHwYDVR0j BBgwFoAU58nk5cjqmJ8P99b+bb1qT+ghLd4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NzExYWE0Ni1mMjhlLTRjNTUtYjliYS03ZDViZGM5NWI0ZjYvMC9FN0M5RTRFNUM4 RUE5ODlGMEZGN0Q2RkU2REJENkE0RkU4MjEyRERFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTdDOUU0RTVDOEVBOTg5RjBGRjdENkZFNkRCRDZBNEZFODIx MkRERS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3MTFhYTQ2LWYyOGUtNGM1NS1i OWJhLTdkNWJkYzk1YjRmNi8wLzMxMzAzMzJlMzYzMDJlMzgzODJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMTM1MzczMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWc8WDANBgkqhkiG 9w0BAQsFAAOCAQEAI5Zg4wOOOa9E0zgmuvFjGwKVeNBg8mADJr/onwtUYVLhyvq6 S5oIbE6Eb1cbIHbjq5ksr942ojlYg+eXCz1mRXODJFS8Xg+1xJFDM3AqGv4YF6c2 AmUEXV5ZXY6KXvdEn8GYIDkNIzSpNCq9WdZ13Vs3HZSklgdOLKe+XV+YvUwIZ2TV ISboYM7hDjL6OxuOaDokOWFcSEhu7bcH4Xek1n3teGAI1g2Ub+2FlvGWw9UrOyOP DiWUfBmz0uYBmiWcdSSD6yeSLA41AbNODVZC/MMJEW9ZmPg6D4gDWBzZuwLOs3ZC XljYnqdlC+ZhsW8M+6WHl7wDL42Ch6UjQJG/yg== -----END CERTIFICATE-----Generated at Thu Nov 21 15:01:34 2024 by rpki-client on console-fra.rpki-client.org