$ rpki-client -vvf repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230342e302f32322d3232203d3e203538353033.roa File: 3130332e362e3230342e302f32322d3232203d3e203538353033.roa (raw, json) Hash identifier: 4hTYB6oeBmhzrslyPSwrX3Ek6Lkwqv8RzR59ex14KTA= Subject key identifier: A8:2B:83:12:CC:10:AE:32:75:68:17:EF:46:0E:BC:8A:64:FC:6C:0D Certificate issuer: /CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Certificate serial: 33045F412D1C6F80B70A94C00570942B6685C9F7 Authority key identifier: CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject info access: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230342e302f32322d3232203d3e203538353033.roa Signing time: Thu 19 Sep 2024 10:01:04 +0000 ROA not before: Thu 19 Sep 2024 09:56:04 +0000 ROA not after: Thu 18 Sep 2025 10:01:04 +0000 asID: 58503 IP address blocks: 103.6.204.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:04:5f:41:2d:1c:6f:80:b7:0a:94:c0:05:70:94:2b:66:85:c9:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Validity Not Before: Sep 19 09:56:04 2024 GMT Not After : Sep 18 10:01:04 2025 GMT Subject: CN=A82B8312CC10AE32756817EF460EBC8A64FC6C0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:68:99:9a:0c:3a:3c:a6:9c:8c:27:1d:81:6b: 11:7e:d2:6a:ef:fe:72:c5:7f:41:fd:e0:ea:3d:42: 4a:30:50:e2:08:2d:e3:cf:bb:2b:95:53:e9:52:ed: 5a:0a:72:eb:80:13:35:f4:1c:b0:e1:3b:9e:14:66: f2:9a:0b:ad:4f:48:e7:ee:56:52:2a:73:d5:8a:1e: 20:4a:d3:2f:77:06:8f:8c:6c:62:e5:ce:f6:6c:67: 21:54:60:71:03:2e:68:48:78:e1:d8:f1:1a:77:97: 89:6c:44:09:bb:14:0d:d4:ab:98:78:6c:28:e8:48: 75:a4:58:9c:0c:cf:81:82:b9:c5:92:b9:8f:6d:3b: 7f:c8:f1:0c:e9:1c:ae:ed:d0:62:7b:92:12:31:28: 1b:34:f1:22:2b:62:32:8d:d3:35:5d:a6:04:b6:80: f2:fa:65:20:af:b5:59:22:51:4a:ae:be:26:a7:b5: c3:e9:fa:16:70:25:ca:c4:bf:2b:61:d1:99:7a:17: 3f:f7:f0:a2:58:98:dc:4c:86:27:00:6a:ab:c9:7f: f7:f5:e3:44:2f:75:b5:eb:34:d0:41:a8:0e:7f:0e: 49:3a:6d:d0:cf:e0:d4:7b:32:07:30:27:2b:57:b5: 3b:c6:35:d7:c3:67:32:37:37:8b:85:c0:56:34:78: ff:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:2B:83:12:CC:10:AE:32:75:68:17:EF:46:0E:BC:8A:64:FC:6C:0D X509v3 Authority Key Identifier: keyid:CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230342e302f32322d3232203d3e203538353033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.6.204.0/22 Signature Algorithm: sha256WithRSAEncryption ca:fe:e9:28:a0:3b:34:70:bf:e1:45:2a:be:41:2b:3f:46:0b: 11:47:1d:61:8e:fd:a8:72:50:52:43:1c:d2:0d:64:a0:22:53: 8c:51:2e:c4:74:98:1c:56:ce:98:a7:a5:85:bb:6f:b4:a9:17: a3:6f:6b:76:55:51:f2:65:c2:ee:eb:9e:ae:37:44:ec:9f:54: f9:e5:9d:63:7a:4a:6e:4d:5c:12:24:38:02:df:bf:9d:7c:6a: 98:93:f2:85:6e:2d:40:bd:3f:a0:b6:cb:fb:54:b3:d2:f7:b0: 8f:50:26:e0:b0:52:d2:14:68:19:f6:7d:56:ac:12:4b:80:01: 48:bb:f6:ea:c3:d8:a1:5d:31:bb:d2:76:4b:ce:7f:5c:d4:0d: e0:d3:44:05:b4:eb:ee:a7:c2:2f:2f:e7:67:69:72:8d:d1:5e: 73:d3:24:be:f5:b8:a0:27:d3:d5:34:f8:f2:a0:46:c5:c7:48: bd:3d:b3:3f:f9:9a:93:06:46:cf:4e:d1:fc:66:3f:67:b8:c7: 35:41:11:23:ed:cc:77:61:59:6f:2a:00:25:f7:c5:67:f7:3f: e9:dd:4c:f3:ca:47:3b:f0:79:f8:f4:23:71:7c:be:0e:00:50: 83:ec:66:05:3e:94:02:2a:1f:7b:fd:56:36:e0:a7:55:16:a3: 81:f1:ba:09 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUMwRfQS0cb4C3CpTABXCUK2aFyfcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0Iy MzRDQTQ0NjAeFw0yNDA5MTkwOTU2MDRaFw0yNTA5MTgxMDAxMDRaMDMxMTAvBgNV BAMTKEE4MkI4MzEyQ0MxMEFFMzI3NTY4MTdFRjQ2MEVCQzhBNjRGQzZDMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKaJmaDDo8ppyMJx2BaxF+0mrv /nLFf0H94Oo9QkowUOIILePPuyuVU+lS7VoKcuuAEzX0HLDhO54UZvKaC61PSOfu VlIqc9WKHiBK0y93Bo+MbGLlzvZsZyFUYHEDLmhIeOHY8Rp3l4lsRAm7FA3Uq5h4 bCjoSHWkWJwMz4GCucWSuY9tO3/I8QzpHK7t0GJ7khIxKBs08SIrYjKN0zVdpgS2 gPL6ZSCvtVkiUUquviantcPp+hZwJcrEvyth0Zl6Fz/38KJYmNxMhicAaqvJf/f1 40QvdbXrNNBBqA5/Dkk6bdDP4NR7MgcwJytXtTvGNdfDZzI3N4uFwFY0eP9LAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUqCuDEswQrjJ1aBfvRg68imT8bA0wHwYDVR0j BBgwFoAUzwz0PylKXIQW4/em/b8HeyNMpEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ODJmMmIzOC1hZGRmLTRiZDMtOTI0OS1lNWJhNTZjZDA1MmUvMC9DRjBDRjQzRjI5 NEE1Qzg0MTZFM0Y3QTZGREJGMDc3QjIzNENBNDQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0IyMzRD QTQ0Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU4MmYyYjM4LWFkZGYtNGJkMy05 MjQ5LWU1YmE1NmNkMDUyZS8wLzMxMzAzMzJlMzYyZTMyMzAzNDJlMzAyZjMyMzIy ZDMyMzIyMDNkM2UyMDM1MzgzNTMwMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnBswwDQYJKoZIhvcN AQELBQADggEBAMr+6SigOzRwv+FFKr5BKz9GCxFHHWGO/ahyUFJDHNINZKAiU4xR LsR0mBxWzpinpYW7b7SpF6Nva3ZVUfJlwu7rnq43ROyfVPnlnWN6Sm5NXBIkOALf v518apiT8oVuLUC9P6C2y/tUs9L3sI9QJuCwUtIUaBn2fVasEkuAAUi79urD2KFd MbvSdkvOf1zUDeDTRAW06+6nwi8v52dpco3RXnPTJL71uKAn09U0+PKgRsXHSL09 sz/5mpMGRs9O0fxmP2e4xzVBESPtzHdhWW8qACX3xWf3P+ndTPPKRzvwefj0I3F8 vg4AUIPsZgU+lAIqH3v9Vjbgp1UWo4Hxugk= -----END CERTIFICATE-----Generated at Sun Nov 24 01:31:57 2024 by rpki-client on console-ams.rpki-client.org