$ rpki-client -vvf repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230342e302f32332d3233203d3e203538353033.roa File: 3130332e362e3230342e302f32332d3233203d3e203538353033.roa (raw, json) Hash identifier: yBaA0+xOkr+iculo5l4/62QXBhceh7/LNqxDxugk/Cg= Subject key identifier: 85:89:DD:DA:37:A9:76:55:7D:95:C2:B6:3F:FB:27:9E:70:42:E9:48 Certificate issuer: /CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Certificate serial: 02EA58485F31DC697281BFE182DDC4894BCFB587 Authority key identifier: CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject info access: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230342e302f32332d3233203d3e203538353033.roa Signing time: Thu 19 Sep 2024 10:01:03 +0000 ROA not before: Thu 19 Sep 2024 09:56:03 +0000 ROA not after: Thu 18 Sep 2025 10:01:03 +0000 asID: 58503 IP address blocks: 103.6.204.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:ea:58:48:5f:31:dc:69:72:81:bf:e1:82:dd:c4:89:4b:cf:b5:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Validity Not Before: Sep 19 09:56:03 2024 GMT Not After : Sep 18 10:01:03 2025 GMT Subject: CN=8589DDDA37A976557D95C2B63FFB279E7042E948 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:55:87:ad:bf:fe:4a:04:b5:32:ac:31:b6:f1: 4b:27:39:f7:90:fe:04:69:30:5a:6c:87:e8:9f:9b: b2:a5:9e:dc:e3:79:c9:fb:a2:4c:4e:e6:84:09:3c: ea:31:4e:af:8c:24:34:19:b7:d7:ed:f8:07:68:aa: fc:b9:92:11:09:85:09:24:e7:06:55:6d:64:2f:08: 7b:78:f8:e6:7d:94:b8:49:17:7a:37:bd:53:ff:35: aa:49:f8:a2:b5:a3:2d:b2:28:15:f1:59:d8:2a:ee: ec:f1:15:69:db:9b:46:a1:ee:e6:6c:e6:11:95:c7: 82:05:9c:e7:8c:98:28:2c:ea:b2:13:c0:33:16:41: f1:47:e8:f4:a7:f9:06:43:52:d1:c8:06:89:8a:73: dd:e2:7a:42:ef:d4:77:dc:4b:5a:fd:86:0d:22:97: 97:4d:fd:50:b3:0c:05:1b:ce:42:a7:60:37:71:a8: 26:08:c7:b0:15:41:8d:36:6f:de:f7:1e:55:ee:11: 9e:56:9e:82:a3:ba:a6:60:01:ea:bd:19:f3:13:23: 82:db:28:b9:3c:06:82:a1:47:28:87:84:e6:75:3e: 60:47:0f:ad:a0:f9:bb:47:b8:63:a2:c6:91:22:2b: 93:05:93:68:ee:36:c1:ab:ec:5d:0f:fe:60:77:c1: d2:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:89:DD:DA:37:A9:76:55:7D:95:C2:B6:3F:FB:27:9E:70:42:E9:48 X509v3 Authority Key Identifier: keyid:CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230342e302f32332d3233203d3e203538353033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.6.204.0/23 Signature Algorithm: sha256WithRSAEncryption 66:e8:5c:bd:02:09:4a:f1:eb:2b:d1:c2:ee:36:07:67:16:98: 0c:dc:e0:22:4a:b8:93:30:58:58:56:50:49:6b:f8:4b:a8:e8: 40:4d:0a:69:4c:3e:03:8e:c8:7a:1f:16:20:21:64:a0:c1:dc: b0:e7:a8:ad:fb:29:18:6d:5d:c7:2b:f3:73:e1:52:58:79:48: 97:76:f0:14:f4:62:da:88:b9:ed:5a:40:df:8c:fd:d6:d1:9c: fb:13:1f:15:13:a2:1a:46:e6:f3:77:c8:8a:61:8e:b3:6f:e5: 40:24:b2:69:d0:22:80:5d:f9:49:66:38:5b:63:d6:4e:ff:48: 97:57:69:17:38:26:a1:ec:c8:98:b7:9c:9b:b6:9e:f2:88:97: 6d:d5:32:5f:fe:71:86:b0:e8:e2:a4:75:22:64:8b:ab:d4:da: 73:6a:33:8f:31:08:c1:89:4f:22:21:8f:24:cc:78:58:1f:af: 4a:d8:85:c7:e5:f0:40:d2:7a:1c:72:48:0d:89:cb:4c:22:1c: df:fe:16:11:42:86:9e:7f:a7:bf:eb:f2:ec:62:09:f5:42:e1: a0:0e:7e:e2:0f:e1:e8:cc:62:e1:5e:7b:d2:ce:c0:09:bb:e5: 09:09:68:eb:11:c2:9b:37:69:c7:51:8d:c8:5b:e3:76:48:3a: 28:67:23:9d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUAupYSF8x3Glygb/hgt3EiUvPtYcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0Iy MzRDQTQ0NjAeFw0yNDA5MTkwOTU2MDNaFw0yNTA5MTgxMDAxMDNaMDMxMTAvBgNV BAMTKDg1ODlERERBMzdBOTc2NTU3RDk1QzJCNjNGRkIyNzlFNzA0MkU5NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAVYetv/5KBLUyrDG28UsnOfeQ /gRpMFpsh+ifm7Klntzjecn7okxO5oQJPOoxTq+MJDQZt9ft+Adoqvy5khEJhQkk 5wZVbWQvCHt4+OZ9lLhJF3o3vVP/NapJ+KK1oy2yKBXxWdgq7uzxFWnbm0ah7uZs 5hGVx4IFnOeMmCgs6rITwDMWQfFH6PSn+QZDUtHIBomKc93iekLv1HfcS1r9hg0i l5dN/VCzDAUbzkKnYDdxqCYIx7AVQY02b973HlXuEZ5WnoKjuqZgAeq9GfMTI4Lb KLk8BoKhRyiHhOZ1PmBHD62g+btHuGOixpEiK5MFk2juNsGr7F0P/mB3wdKhAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUhYnd2jepdlV9lcK2P/snnnBC6UgwHwYDVR0j BBgwFoAUzwz0PylKXIQW4/em/b8HeyNMpEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ODJmMmIzOC1hZGRmLTRiZDMtOTI0OS1lNWJhNTZjZDA1MmUvMC9DRjBDRjQzRjI5 NEE1Qzg0MTZFM0Y3QTZGREJGMDc3QjIzNENBNDQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0IyMzRD QTQ0Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU4MmYyYjM4LWFkZGYtNGJkMy05 MjQ5LWU1YmE1NmNkMDUyZS8wLzMxMzAzMzJlMzYyZTMyMzAzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM1MzgzNTMwMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnBswwDQYJKoZIhvcN AQELBQADggEBAGboXL0CCUrx6yvRwu42B2cWmAzc4CJKuJMwWFhWUElr+Euo6EBN CmlMPgOOyHofFiAhZKDB3LDnqK37KRhtXccr83PhUlh5SJd28BT0YtqIue1aQN+M /dbRnPsTHxUTohpG5vN3yIphjrNv5UAksmnQIoBd+UlmOFtj1k7/SJdXaRc4JqHs yJi3nJu2nvKIl23VMl/+cYaw6OKkdSJki6vU2nNqM48xCMGJTyIhjyTMeFgfr0rY hcfl8EDSehxySA2Jy0wiHN/+FhFChp5/p7/r8uxiCfVC4aAOfuIP4ejMYuFee9LO wAm75QkJaOsRwps3acdRjchb43ZIOihnI50= -----END CERTIFICATE-----Generated at Sun Nov 24 02:34:15 2024 by rpki-client on console-fra.rpki-client.org