$ rpki-client -vvf repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230342e302f32342d3234203d3e203538353033.roa File: 3130332e362e3230342e302f32342d3234203d3e203538353033.roa (raw, json) Hash identifier: 39aKSIELmxGzoCk7PF5WK8w71vZ3IRIe1yHLTJgUsgw= Subject key identifier: BC:61:10:3F:25:B5:FD:AE:BC:76:F6:70:6B:97:41:16:BC:F6:69:5D Certificate issuer: /CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Certificate serial: 6644B04638618370C458D69D0C97388B5FB04FFD Authority key identifier: CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject info access: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230342e302f32342d3234203d3e203538353033.roa Signing time: Thu 19 Oct 2023 07:02:47 +0000 ROA not before: Thu 19 Oct 2023 06:57:47 +0000 ROA not after: Thu 17 Oct 2024 07:02:47 +0000 asID: 58503 IP address blocks: 103.6.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 08:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:44:b0:46:38:61:83:70:c4:58:d6:9d:0c:97:38:8b:5f:b0:4f:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Validity Not Before: Oct 19 06:57:47 2023 GMT Not After : Oct 17 07:02:47 2024 GMT Subject: CN=BC61103F25B5FDAEBC76F6706B974116BCF6695D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ea:77:4d:12:ce:75:93:47:1b:8a:32:a9:ab: b1:e7:84:d2:57:d3:47:d7:e0:81:58:95:51:d6:19: 81:28:1b:e3:74:2f:0c:83:0d:e3:c2:f8:03:20:56: 53:4a:15:84:a1:da:bb:78:89:a2:87:bb:cb:97:a2: 13:84:4a:24:ba:f6:f8:cd:db:ce:61:67:e5:48:ca: 0f:b3:f0:19:b5:06:98:dc:5b:72:6e:79:a4:41:78: b9:3a:df:38:fd:24:7e:a8:09:f3:6f:a5:98:86:86: 47:13:4a:c5:76:3b:41:50:62:51:96:33:6c:8b:13: 19:bf:f8:94:0a:f3:9d:ef:d9:81:15:a6:8c:1d:a7: bd:4e:7d:3e:03:25:28:6c:6d:8c:99:0a:65:6d:27: 6c:10:54:85:ff:b3:04:d7:eb:8f:bf:6a:28:e8:5c: 2c:ca:25:fb:1d:d7:05:af:ae:61:1e:5f:cf:6c:93: ba:56:4a:a7:54:8a:c8:69:d3:95:bd:94:e3:95:07: 6a:fc:0f:69:ad:9e:d6:ca:4e:bd:25:3c:e4:56:24: 2a:a3:eb:57:6b:31:5d:5f:ef:a4:23:0a:3c:7d:7a: ee:83:21:0b:7d:25:e1:08:b4:56:6d:40:79:43:87: c2:f7:38:3f:8f:61:e0:a1:fe:63:83:fa:e5:b6:50: 6f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:61:10:3F:25:B5:FD:AE:BC:76:F6:70:6B:97:41:16:BC:F6:69:5D X509v3 Authority Key Identifier: keyid:CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230342e302f32342d3234203d3e203538353033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.6.204.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:35:fa:95:7c:e1:ff:d9:b4:6c:4d:2c:7a:2a:2c:30:73:bd: d9:f9:95:bf:61:d5:85:18:34:2b:10:b3:1f:3e:f1:64:60:c2: 91:41:c8:07:08:c7:85:33:1b:78:89:69:8b:20:89:1a:3a:e3: ab:0e:69:f6:a9:d7:e1:90:03:aa:ad:6e:c9:a5:8f:00:fc:21: 9a:02:a2:e4:3d:6d:d0:4e:cd:29:0d:3d:a1:97:fc:6b:bb:d9: 6e:12:2d:36:fd:ac:ff:4b:f5:37:ed:4f:10:69:ee:8c:8a:3f: 9d:7c:83:61:17:b7:86:69:bf:c8:20:07:1d:12:71:a3:b0:c1: 15:42:81:d4:a6:78:50:3c:3a:c7:48:5a:2a:64:28:c7:e5:be: 53:db:38:e9:90:0d:8c:67:dd:d0:76:88:8f:e0:ac:1e:e7:6a: f6:08:e3:a3:6a:2b:1e:6f:38:b1:d1:a0:06:f4:27:01:95:6e: 3d:50:0e:01:53:49:58:8e:e0:7e:cd:fd:b7:3d:1e:63:e0:91: 43:49:67:b7:ff:67:ea:0c:45:c8:b2:aa:3d:03:85:86:d0:6b: 7c:56:bd:c4:f0:4a:96:8f:32:1e:fc:d6:a2:66:00:63:ba:ac: c7:b7:fa:11:85:1f:8a:35:cd:c3:31:37:3f:55:aa:db:cd:b8: 31:a7:5a:a3 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUZkSwRjhhg3DEWNadDJc4i1+wT/0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0Iy MzRDQTQ0NjAeFw0yMzEwMTkwNjU3NDdaFw0yNDEwMTcwNzAyNDdaMDMxMTAvBgNV BAMTKEJDNjExMDNGMjVCNUZEQUVCQzc2RjY3MDZCOTc0MTE2QkNGNjY5NUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC46ndNEs51k0cbijKpq7HnhNJX 00fX4IFYlVHWGYEoG+N0LwyDDePC+AMgVlNKFYSh2rt4iaKHu8uXohOESiS69vjN 285hZ+VIyg+z8Bm1BpjcW3JueaRBeLk63zj9JH6oCfNvpZiGhkcTSsV2O0FQYlGW M2yLExm/+JQK853v2YEVpowdp71OfT4DJShsbYyZCmVtJ2wQVIX/swTX64+/aijo XCzKJfsd1wWvrmEeX89sk7pWSqdUishp05W9lOOVB2r8D2mtntbKTr0lPORWJCqj 61drMV1f76QjCjx9eu6DIQt9JeEItFZtQHlDh8L3OD+PYeCh/mOD+uW2UG+7AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUvGEQPyW1/a68dvZwa5dBFrz2aV0wHwYDVR0j BBgwFoAUzwz0PylKXIQW4/em/b8HeyNMpEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ODJmMmIzOC1hZGRmLTRiZDMtOTI0OS1lNWJhNTZjZDA1MmUvMC9DRjBDRjQzRjI5 NEE1Qzg0MTZFM0Y3QTZGREJGMDc3QjIzNENBNDQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0IyMzRD QTQ0Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU4MmYyYjM4LWFkZGYtNGJkMy05 MjQ5LWU1YmE1NmNkMDUyZS8wLzMxMzAzMzJlMzYyZTMyMzAzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzgzNTMwMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnBswwDQYJKoZIhvcN AQELBQADggEBAFs1+pV84f/ZtGxNLHoqLDBzvdn5lb9h1YUYNCsQsx8+8WRgwpFB yAcIx4UzG3iJaYsgiRo646sOafap1+GQA6qtbsmljwD8IZoCouQ9bdBOzSkNPaGX /Gu72W4SLTb9rP9L9TftTxBp7oyKP518g2EXt4Zpv8ggBx0ScaOwwRVCgdSmeFA8 OsdIWipkKMflvlPbOOmQDYxn3dB2iI/grB7navYI46NqKx5vOLHRoAb0JwGVbj1Q DgFTSViO4H7N/bc9HmPgkUNJZ7f/Z+oMRciyqj0DhYbQa3xWvcTwSpaPMh781qJm AGO6rMe3+hGFH4o1zcMxNz9VqtvNuDGnWqM= -----END CERTIFICATE-----Generated at Sun Jun 2 18:43:43 2024 by rpki-client on console-ams.rpki-client.org