$ rpki-client -vvf repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230362e302f32332d3233203d3e203538353033.roa File: 3130332e362e3230362e302f32332d3233203d3e203538353033.roa (raw, json) Hash identifier: 7LF1a7D5EDLG17ihfLxfwJXRWol/1ek+UfoMR7jTEuA= Subject key identifier: 05:D5:EC:D4:C6:C4:87:9C:00:41:2D:06:79:06:A9:72:7B:8F:6B:24 Certificate issuer: /CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Certificate serial: 5CB8A5DA41A6443F783A7590938A6AE4D4AA1993 Authority key identifier: CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject info access: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230362e302f32332d3233203d3e203538353033.roa Signing time: Thu 19 Sep 2024 10:01:03 +0000 ROA not before: Thu 19 Sep 2024 09:56:03 +0000 ROA not after: Thu 18 Sep 2025 10:01:03 +0000 asID: 58503 IP address blocks: 103.6.206.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:b8:a5:da:41:a6:44:3f:78:3a:75:90:93:8a:6a:e4:d4:aa:19:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Validity Not Before: Sep 19 09:56:03 2024 GMT Not After : Sep 18 10:01:03 2025 GMT Subject: CN=05D5ECD4C6C4879C00412D067906A9727B8F6B24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:fd:59:da:1e:fc:21:6e:2a:5b:55:5e:9d:de: 94:4d:50:33:f9:2d:3f:66:65:ad:f1:42:1d:26:41: 45:1b:73:41:9e:7e:30:da:40:0b:89:15:d7:fe:c1: e8:49:02:21:de:ee:65:48:d7:03:6e:bd:54:d4:2b: 40:32:45:6f:8e:3e:6d:ae:f2:62:57:08:50:5e:59: 14:1a:4b:89:2e:12:5b:1d:dd:2e:12:e9:d2:87:78: ff:d6:e0:6c:50:22:c8:ee:5d:49:40:7d:cd:a2:5e: a0:0f:cc:ac:6e:3c:9d:92:b2:dc:78:71:09:e2:2c: 82:60:28:ee:08:cb:89:75:fd:41:dd:86:9d:23:6d: 4d:f1:ba:83:6c:58:34:8f:1e:43:21:d0:aa:76:aa: f9:d6:88:df:4d:3e:81:c1:32:c0:d8:ee:ca:bc:8d: a0:10:dc:84:99:31:80:ec:40:76:64:8e:30:99:e8: 01:d0:a7:76:56:21:59:40:4c:a7:3f:e6:b6:08:40: 89:d3:3b:89:64:4c:0d:43:51:cf:43:85:f9:c0:fa: 2b:15:be:98:ec:31:91:1f:b8:72:9c:11:0f:35:a1: 3d:1b:52:4d:51:aa:77:34:05:fb:f1:9b:93:e7:09: bb:4a:d2:52:13:9e:5f:95:e6:b9:6d:9e:ad:b2:9a: dd:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:D5:EC:D4:C6:C4:87:9C:00:41:2D:06:79:06:A9:72:7B:8F:6B:24 X509v3 Authority Key Identifier: keyid:CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/3130332e362e3230362e302f32332d3233203d3e203538353033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.6.206.0/23 Signature Algorithm: sha256WithRSAEncryption cc:d6:f9:0e:36:2f:3a:a8:ba:95:ff:33:32:ec:51:4a:fc:b2: fc:55:5c:b1:2e:56:38:c3:c1:c5:6c:a3:d1:3f:74:3c:1d:35: f0:69:aa:cd:00:fb:4e:0e:39:b7:2a:72:51:20:dd:2c:1e:7c: 28:47:e7:20:cd:6c:f0:03:73:c1:c2:f8:ca:59:ca:ac:59:73: d5:ce:4e:7d:21:30:f6:d8:eb:f9:75:74:28:95:e6:da:96:f3: 9e:d8:1e:81:6c:a7:d6:ce:db:05:87:73:9c:8e:0f:d6:bd:f3: 0c:4e:da:35:38:f5:bd:a3:37:8c:fc:4b:e0:45:af:f8:78:70: 48:24:12:97:cc:ca:dd:14:ae:0a:4b:5e:d1:0c:8b:a1:b9:8c: 6c:e7:4a:98:a6:ba:c7:1f:05:a7:b1:5f:a4:9a:00:24:5c:9d: c7:f6:7d:54:15:40:ef:c5:d3:e5:2a:f8:4b:e2:25:61:4f:0f: d2:23:ee:54:e9:90:06:d6:61:d3:68:33:96:f3:4b:95:83:5d: a6:e7:21:83:1b:7a:c8:c3:89:20:a9:1e:ce:25:4e:68:19:d9: 00:24:63:5c:b3:98:ff:b7:fa:63:59:4c:d8:cd:c5:14:ea:63: 77:08:ed:d1:c6:b9:f9:7c:30:fa:0d:b2:b6:b9:ca:b1:81:ca: ef:a9:8b:7a -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXLil2kGmRD94OnWQk4pq5NSqGZMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0Iy MzRDQTQ0NjAeFw0yNDA5MTkwOTU2MDNaFw0yNTA5MTgxMDAxMDNaMDMxMTAvBgNV BAMTKDA1RDVFQ0Q0QzZDNDg3OUMwMDQxMkQwNjc5MDZBOTcyN0I4RjZCMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL/VnaHvwhbipbVV6d3pRNUDP5 LT9mZa3xQh0mQUUbc0GefjDaQAuJFdf+wehJAiHe7mVI1wNuvVTUK0AyRW+OPm2u 8mJXCFBeWRQaS4kuElsd3S4S6dKHeP/W4GxQIsjuXUlAfc2iXqAPzKxuPJ2Sstx4 cQniLIJgKO4Iy4l1/UHdhp0jbU3xuoNsWDSPHkMh0Kp2qvnWiN9NPoHBMsDY7sq8 jaAQ3ISZMYDsQHZkjjCZ6AHQp3ZWIVlATKc/5rYIQInTO4lkTA1DUc9DhfnA+isV vpjsMZEfuHKcEQ81oT0bUk1Rqnc0Bfvxm5PnCbtK0lITnl+V5rltnq2ymt1HAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUBdXs1MbEh5wAQS0GeQapcnuPayQwHwYDVR0j BBgwFoAUzwz0PylKXIQW4/em/b8HeyNMpEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ODJmMmIzOC1hZGRmLTRiZDMtOTI0OS1lNWJhNTZjZDA1MmUvMC9DRjBDRjQzRjI5 NEE1Qzg0MTZFM0Y3QTZGREJGMDc3QjIzNENBNDQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0IyMzRD QTQ0Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU4MmYyYjM4LWFkZGYtNGJkMy05 MjQ5LWU1YmE1NmNkMDUyZS8wLzMxMzAzMzJlMzYyZTMyMzAzNjJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDM1MzgzNTMwMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnBs4wDQYJKoZIhvcN AQELBQADggEBAMzW+Q42LzqoupX/MzLsUUr8svxVXLEuVjjDwcVso9E/dDwdNfBp qs0A+04OObcqclEg3SwefChH5yDNbPADc8HC+MpZyqxZc9XOTn0hMPbY6/l1dCiV 5tqW857YHoFsp9bO2wWHc5yOD9a98wxO2jU49b2jN4z8S+BFr/h4cEgkEpfMyt0U rgpLXtEMi6G5jGznSpimuscfBaexX6SaACRcncf2fVQVQO/F0+Uq+EviJWFPD9Ij 7lTpkAbWYdNoM5bzS5WDXabnIYMbesjDiSCpHs4lTmgZ2QAkY1yzmP+3+mNZTNjN xRTqY3cI7dHGufl8MPoNsra5yrGByu+pi3o= -----END CERTIFICATE-----Generated at Sun Nov 24 01:31:57 2024 by rpki-client on console-ams.rpki-client.org