$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31302e3132302e302f32322d3232203d3e203536323436.roa File: 3130332e31302e3132302e302f32322d3232203d3e203536323436.roa (raw, json) Hash identifier: ck1B0JuSE/gon0nrhb0PjZqTDS0I+H8rmyL6RUjkYFU= Subject key identifier: 62:F0:74:77:62:54:B6:22:90:8D:26:2A:AD:8C:89:39:79:42:D4:ED Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Certificate serial: 7E2C10A5C43589D5983BB63E2A3378B6C4E8E4B0 Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31302e3132302e302f32322d3232203d3e203536323436.roa Signing time: Mon 01 Jul 2024 01:03:04 +0000 ROA not before: Mon 01 Jul 2024 00:58:04 +0000 ROA not after: Mon 30 Jun 2025 01:03:04 +0000 asID: 56246 IP address blocks: 103.10.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:2c:10:a5:c4:35:89:d5:98:3b:b6:3e:2a:33:78:b6:c4:e8:e4:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6 Validity Not Before: Jul 1 00:58:04 2024 GMT Not After : Jun 30 01:03:04 2025 GMT Subject: CN=62F074776254B622908D262AAD8C89397942D4ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:11:0c:82:65:cf:1e:61:90:dd:06:7a:c6:ad: 0e:03:49:62:cf:a5:1f:dc:d5:4e:3b:1c:f6:86:2b: 4d:6d:b3:90:93:b9:9b:e7:a7:f4:1c:84:43:2d:61: 28:dd:a4:53:fd:40:a2:71:64:26:d3:87:ef:f7:ce: a8:21:d6:c6:d2:65:81:1c:be:22:09:08:f2:e2:9c: 19:90:8c:3c:88:5b:74:2d:4c:bb:1b:05:8b:7d:9a: f3:6a:2b:93:9a:46:27:16:88:fd:20:fc:b1:fe:31: b4:da:30:1d:25:5d:90:8a:32:d8:81:0c:fb:3a:ec: 9a:f1:a3:0f:31:c7:bc:06:aa:79:74:12:a8:c8:f9: fb:f3:78:38:22:07:ba:52:76:42:e5:ff:8e:a8:64: 40:53:05:a9:41:97:e8:c0:56:62:ff:3e:4a:59:8f: 49:97:46:53:60:19:d2:ce:ed:60:ee:92:0d:aa:b6: 61:43:5a:08:bc:ac:eb:15:fe:79:d5:85:0a:f4:80: 77:db:d2:2e:39:80:b9:15:df:4d:e3:24:5f:4e:41: 5f:d8:13:fb:47:b0:b8:19:04:6a:b7:5b:35:e1:83: 0d:a6:8a:e7:4c:02:5f:e5:5a:e4:64:c5:0c:c2:3d: cd:35:e0:0a:27:65:5a:e0:dd:a1:20:84:de:f7:2d: 39:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:F0:74:77:62:54:B6:22:90:8D:26:2A:AD:8C:89:39:79:42:D4:ED X509v3 Authority Key Identifier: keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/3130332e31302e3132302e302f32322d3232203d3e203536323436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.120.0/22 Signature Algorithm: sha256WithRSAEncryption 94:d9:c7:a3:80:31:c7:bc:9a:ba:bc:35:dc:0c:f7:b7:07:fd: 22:fe:6a:6a:80:66:5c:1a:c3:2c:4d:fb:89:a5:91:75:1d:b7: e1:5d:59:b8:96:fa:6f:44:d0:75:74:c2:8b:11:c4:9c:4e:cb: fc:3e:57:c9:54:18:e2:93:73:ae:2f:b6:2b:33:a5:a9:bb:40: 17:79:13:63:ea:cd:76:6e:f5:24:ad:47:41:27:42:ab:0d:3e: 00:e3:0f:8a:59:47:b0:55:4c:94:81:7f:6e:8a:94:69:a5:eb: 89:9d:b2:dd:ce:9f:91:8f:97:db:ac:e4:44:13:39:cb:25:48: cb:18:07:9b:de:5d:08:65:8b:e9:f8:2b:7e:5b:7d:69:c0:c4: 4e:bd:b2:7e:28:26:44:3d:7e:2f:e3:e6:c9:cd:2b:b1:13:3e: 99:72:31:94:5d:88:bf:d7:78:c5:60:11:8c:7d:aa:6c:16:80: 6a:51:7b:92:8f:0f:f4:0e:0f:9d:46:fe:ab:15:ed:e0:bb:d1: 10:d8:48:80:69:e3:8f:42:f4:a9:51:d3:f1:4c:b3:47:21:0b: df:1d:60:27:3f:c1:8f:d9:b8:20:f7:b3:86:af:c8:91:b5:79: 00:1e:b0:67:da:d8:9b:42:ee:fd:d7:83:0b:10:b4:99:a1:99: de:1c:10:10 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfiwQpcQ1idWYO7Y+KjN4tsTo5LAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF NEQ1RkRFNjAeFw0yNDA3MDEwMDU4MDRaFw0yNTA2MzAwMTAzMDRaMDMxMTAvBgNV BAMTKDYyRjA3NDc3NjI1NEI2MjI5MDhEMjYyQUFEOEM4OTM5Nzk0MkQ0RUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDEQyCZc8eYZDdBnrGrQ4DSWLP pR/c1U47HPaGK01ts5CTuZvnp/QchEMtYSjdpFP9QKJxZCbTh+/3zqgh1sbSZYEc viIJCPLinBmQjDyIW3QtTLsbBYt9mvNqK5OaRicWiP0g/LH+MbTaMB0lXZCKMtiB DPs67Jrxow8xx7wGqnl0EqjI+fvzeDgiB7pSdkLl/46oZEBTBalBl+jAVmL/PkpZ j0mXRlNgGdLO7WDukg2qtmFDWgi8rOsV/nnVhQr0gHfb0i45gLkV303jJF9OQV/Y E/tHsLgZBGq3WzXhgw2miudMAl/lWuRkxQzCPc014AonZVrg3aEghN73LTkpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYvB0d2JUtiKQjSYqrYyJOXlC1O0wHwYDVR0j BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1 RkRFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05 NGE2LTc5M2JkYmRhMzc3Ny8wLzMxMzAzMzJlMzEzMDJlMzEzMjMwMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzUzNjMyMzQzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcKeDANBgkqhkiG 9w0BAQsFAAOCAQEAlNnHo4Axx7yaurw13Az3twf9Iv5qaoBmXBrDLE37iaWRdR23 4V1ZuJb6b0TQdXTCixHEnE7L/D5XyVQY4pNzri+2KzOlqbtAF3kTY+rNdm71JK1H QSdCqw0+AOMPillHsFVMlIF/boqUaaXriZ2y3c6fkY+X26zkRBM5yyVIyxgHm95d CGWL6fgrflt9acDETr2yfigmRD1+L+Pmyc0rsRM+mXIxlF2Iv9d4xWARjH2qbBaA alF7ko8P9A4PnUb+qxXt4LvRENhIgGnjj0L0qVHT8UyzRyEL3x1gJz/Bj9m4IPez hq/IkbV5AB6wZ9rYm0Lu/deDCxC0maGZ3hwQEA== -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:30 2024 by rpki-client on console-fra.rpki-client.org