$ rpki-client -vvf repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230342e302f32342d3234203d3e203538353033.roa File: 3130332e362e3230342e302f32342d3234203d3e203538353033.roa (raw, json) Hash identifier: vJN17h6zHlw8lhqv4ICIcSweY39vapLLmQqw71/RhS0= Subject key identifier: 18:B1:46:94:33:D6:4A:90:16:3A:08:5B:88:51:4B:76:72:F4:85:F5 Certificate issuer: /CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Certificate serial: 7C28076A1F942C21E8D81C7007259BE2DD82C74B Authority key identifier: CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject info access: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230342e302f32342d3234203d3e203538353033.roa Signing time: Thu 19 Sep 2024 08:00:53 +0000 ROA not before: Thu 19 Sep 2024 07:55:53 +0000 ROA not after: Thu 18 Sep 2025 08:00:53 +0000 asID: 58503 IP address blocks: 103.6.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:28:07:6a:1f:94:2c:21:e8:d8:1c:70:07:25:9b:e2:dd:82:c7:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Validity Not Before: Sep 19 07:55:53 2024 GMT Not After : Sep 18 08:00:53 2025 GMT Subject: CN=18B1469433D64A90163A085B88514B7672F485F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:22:c7:29:ca:6a:c6:91:31:7c:49:cb:5f:5a: 7e:56:17:41:2e:ab:39:39:8f:e3:7c:85:6b:4a:28: d6:b0:3a:85:da:ee:a2:30:ef:79:3e:66:15:c9:01: 16:a3:f7:03:1d:a2:4a:22:0e:c8:b4:2a:75:9f:5a: 17:37:a7:2d:78:a4:4f:4d:ce:4c:20:1b:08:7e:a7: 92:b3:e2:21:1c:b2:7c:df:1b:a4:97:a5:33:58:30: 6a:f0:d3:19:57:c0:56:70:9b:b6:dc:46:9d:05:e0: 6d:02:63:58:d6:70:8f:12:5f:0d:f7:db:50:f6:33: d6:a7:f5:2f:2a:7c:f7:50:30:5f:a8:ad:ae:56:9d: 80:15:7e:cd:2f:33:a3:85:cf:3b:a7:df:e0:b1:86: b9:64:e5:8d:78:22:a4:dc:39:44:40:f1:84:8c:24: b2:86:b0:aa:62:68:ba:d7:a7:aa:b5:3d:85:7a:0f: 83:87:00:a3:e8:1a:b6:7f:5d:55:bc:9a:46:11:d0: 85:a1:af:23:9f:f2:a9:80:54:16:c8:c2:22:03:5d: d3:87:e6:06:b8:90:98:25:3d:3e:dc:0a:99:6c:6a: b2:a6:6d:3c:d6:6f:f1:c9:30:b4:7b:2e:cf:58:fa: f3:05:3e:5c:51:09:37:0d:7a:1e:80:ee:13:fb:48: e6:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:B1:46:94:33:D6:4A:90:16:3A:08:5B:88:51:4B:76:72:F4:85:F5 X509v3 Authority Key Identifier: keyid:CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230342e302f32342d3234203d3e203538353033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.6.204.0/24 Signature Algorithm: sha256WithRSAEncryption b9:bc:59:fe:ff:90:85:eb:09:b9:0d:f8:9b:d2:23:aa:00:ab: 1a:02:6c:51:a8:ba:17:dc:80:0a:10:6c:89:b3:51:8c:eb:9f: 3b:9e:9d:ab:53:9b:af:13:1d:31:92:cf:8b:0b:ad:0e:12:50: fb:4d:f1:dd:04:c9:7e:eb:31:8a:eb:73:b3:0d:78:62:50:ac: e2:f7:42:c9:d0:69:be:44:47:4d:9b:be:4e:23:9b:06:d4:d7: 37:17:e1:04:62:c4:86:ac:fd:0a:c1:4f:d0:70:ad:c1:4c:86: 9c:0c:13:22:22:af:55:dd:44:af:4f:8a:ae:ff:f2:24:11:9a: 8a:86:70:12:1e:4a:2c:04:bb:9d:59:ef:37:bc:68:fc:3e:7f: 6e:43:3c:5f:1f:b2:bf:53:fa:8b:8a:20:cc:e0:1a:f3:6f:90: 43:6a:fe:c1:a1:ed:20:0d:8b:a7:58:28:56:8e:6c:c7:b6:a5: 19:77:57:cb:41:07:6a:a1:31:93:b2:58:5d:2a:84:86:e5:b8: 7a:61:01:73:61:5d:cc:a0:98:36:de:30:4a:0e:9b:33:2f:1c: 1e:92:02:c9:d4:cb:5f:e5:f7:ab:d2:df:26:77:60:02:b6:1b: a9:0b:28:58:b8:f7:bc:44:7c:1f:fd:40:df:10:55:1b:de:44: 0c:5b:51:d6 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUfCgHah+ULCHo2BxwByWb4t2Cx0swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0Iy MzRDQTQ0NjAeFw0yNDA5MTkwNzU1NTNaFw0yNTA5MTgwODAwNTNaMDMxMTAvBgNV BAMTKDE4QjE0Njk0MzNENjRBOTAxNjNBMDg1Qjg4NTE0Qjc2NzJGNDg1RjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClIscpymrGkTF8SctfWn5WF0Eu qzk5j+N8hWtKKNawOoXa7qIw73k+ZhXJARaj9wMdokoiDsi0KnWfWhc3py14pE9N zkwgGwh+p5Kz4iEcsnzfG6SXpTNYMGrw0xlXwFZwm7bcRp0F4G0CY1jWcI8SXw33 21D2M9an9S8qfPdQMF+ora5WnYAVfs0vM6OFzzun3+Cxhrlk5Y14IqTcOURA8YSM JLKGsKpiaLrXp6q1PYV6D4OHAKPoGrZ/XVW8mkYR0IWhryOf8qmAVBbIwiIDXdOH 5ga4kJglPT7cCplsarKmbTzWb/HJMLR7Ls9Y+vMFPlxRCTcNeh6A7hP7SOYBAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUGLFGlDPWSpAWOghbiFFLdnL0hfUwHwYDVR0j BBgwFoAUzwz0PylKXIQW4/em/b8HeyNMpEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ODJmMmIzOC1hZGRmLTRiZDMtOTI0OS1lNWJhNTZjZDA1MmUvMC9DRjBDRjQzRjI5 NEE1Qzg0MTZFM0Y3QTZGREJGMDc3QjIzNENBNDQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0IyMzRD QTQ0Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU4MmYyYjM4LWFkZGYtNGJkMy05 MjQ5LWU1YmE1NmNkMDUyZS8wLzMxMzAzMzJlMzYyZTMyMzAzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNTMwMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnBswwDQYJKoZIhvcN AQELBQADggEBALm8Wf7/kIXrCbkN+JvSI6oAqxoCbFGouhfcgAoQbImzUYzrnzue natTm68THTGSz4sLrQ4SUPtN8d0EyX7rMYrrc7MNeGJQrOL3QsnQab5ER02bvk4j mwbU1zcX4QRixIas/QrBT9BwrcFMhpwMEyIir1XdRK9Piq7/8iQRmoqGcBIeSiwE u51Z7ze8aPw+f25DPF8fsr9T+ouKIMzgGvNvkENq/sGh7SANi6dYKFaObMe2pRl3 V8tBB2qhMZOyWF0qhIbluHphAXNhXcygmDbeMEoOmzMvHB6SAsnUy1/l96vS3yZ3 YAK2G6kLKFi497xEfB/9QN8QVRveRAxbUdY= -----END CERTIFICATE-----Generated at Sun Nov 24 02:34:15 2024 by rpki-client on console-fra.rpki-client.org