$ rpki-client -vvf repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138302e302f32322d3232203d3e20313336383430.roa File: 3130332e3130302e3138302e302f32322d3232203d3e20313336383430.roa (raw, json) Hash identifier: EEoe6rcJHCI5WYJCV/Syozu2zB8bUqSrlyAM5hNEakA= Subject key identifier: 48:7A:E4:17:DF:3E:A7:9A:44:D8:C6:03:F6:74:0D:F4:9E:7E:41:83 Certificate issuer: /CN=F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3 Certificate serial: 6CFAEF3416F2F5C2EDC67704A5485E6706CC9237 Authority key identifier: F3:F9:AB:30:AC:2C:50:B3:ED:F7:C9:1C:45:31:CC:9A:EE:9C:9D:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138302e302f32322d3232203d3e20313336383430.roa Signing time: Fri 31 May 2024 16:01:35 +0000 ROA not before: Fri 31 May 2024 15:56:35 +0000 ROA not after: Fri 30 May 2025 16:01:35 +0000 asID: 136840 IP address blocks: 103.100.180.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.crl rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:fa:ef:34:16:f2:f5:c2:ed:c6:77:04:a5:48:5e:67:06:cc:92:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3 Validity Not Before: May 31 15:56:35 2024 GMT Not After : May 30 16:01:35 2025 GMT Subject: CN=487AE417DF3EA79A44D8C603F6740DF49E7E4183 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:57:15:96:bf:c2:5c:32:5e:87:33:1d:87:e3: a0:86:0b:8a:b5:cf:7c:ee:d2:b9:b7:38:ad:82:f0: 63:82:db:fe:83:2a:9c:fc:fc:9d:6b:07:03:1b:b8: c7:77:88:b0:28:01:97:af:24:45:55:ac:0c:95:5a: b6:c6:3e:11:75:3c:bc:93:b1:45:3c:d4:aa:8b:58: 6d:a4:c5:7a:96:99:68:2e:13:8b:ae:db:93:37:01: ed:ed:ec:be:a5:5c:17:75:e9:de:4d:36:1f:db:19: f1:7c:2d:3e:c3:5c:7d:21:d2:2f:10:ea:49:fd:f0: 87:71:9d:44:ad:31:f6:8d:65:f2:fc:72:4b:29:c6: 45:69:dc:25:78:2f:0d:75:6d:08:25:61:b7:b1:17: fe:94:7a:83:9c:5e:95:21:0c:19:6a:6f:36:f8:46: 00:73:2c:f0:af:dd:5c:ca:fa:94:ff:92:d1:0d:f5: 30:48:ef:a0:ce:ea:4d:61:a1:24:00:4f:c4:4e:2c: b7:07:ef:3b:d8:a8:84:fb:3f:63:1b:22:1a:a7:71: 77:50:7a:4d:52:96:a8:e6:77:5c:9b:f2:14:be:75: 06:81:bc:3e:14:2c:69:e4:0b:f6:10:9b:fa:24:c3: b3:ee:13:e9:c0:74:4a:8d:dd:df:5e:83:98:7c:de: 83:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:7A:E4:17:DF:3E:A7:9A:44:D8:C6:03:F6:74:0D:F4:9E:7E:41:83 X509v3 Authority Key Identifier: keyid:F3:F9:AB:30:AC:2C:50:B3:ED:F7:C9:1C:45:31:CC:9A:EE:9C:9D:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F3F9AB30AC2C50B3EDF7C91C4531CC9AEE9C9DA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ef08900-f2c6-4d07-b694-d188baa3b8f2/0/3130332e3130302e3138302e302f32322d3232203d3e20313336383430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.100.180.0/22 Signature Algorithm: sha256WithRSAEncryption 48:25:32:22:24:57:54:39:89:ea:ad:66:57:a2:e2:dc:33:4e: 39:3d:97:71:5c:da:66:13:cd:fe:d6:cc:f6:41:e5:40:ef:e6: 4f:e5:6b:57:60:a6:4d:47:c6:7c:63:a4:c3:38:5d:3f:51:01: 17:c0:ee:c0:f7:a9:8f:97:7d:9e:f8:c6:43:d0:6b:a4:cd:98: 49:4a:1d:39:e2:7f:2b:fe:39:21:5c:46:74:1e:7a:51:b1:55: 74:12:c2:6b:8c:e5:ad:de:fe:2f:3e:4c:94:18:5a:6f:03:60: a4:09:b2:15:83:83:5d:d7:f8:8a:04:a3:76:80:f1:41:22:da: 6a:21:2e:b7:0d:ad:51:9f:2e:65:e6:39:ab:37:6c:48:98:47: 5c:b8:fd:7e:0e:d5:fe:d2:14:20:88:c8:e8:c1:3f:b9:4c:81: 07:0e:cf:bd:9b:f0:d4:d9:b9:86:fe:d2:49:18:bd:6f:b1:9f: ed:9c:9d:4e:cb:21:59:12:f8:ad:c3:34:c3:e2:22:ea:c4:e4: 16:c5:11:53:b7:30:dc:0f:89:75:f6:9d:b7:b5:a2:3b:79:a9: f0:a1:1d:25:0e:8e:ee:ff:d9:f9:aa:4d:e1:3e:99:e8:27:f3: ce:5f:8e:77:94:3a:61:5d:52:14:fa:a1:dd:bd:fc:12:65:22: d5:5e:05:ce -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbPrvNBby9cLtxncEpUheZwbMkjcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNGOUFCMzBBQzJDNTBCM0VERjdDOTFDNDUzMUNDOUFF RTlDOURBMzAeFw0yNDA1MzExNTU2MzVaFw0yNTA1MzAxNjAxMzVaMDMxMTAvBgNV BAMTKDQ4N0FFNDE3REYzRUE3OUE0NEQ4QzYwM0Y2NzQwREY0OUU3RTQxODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnVxWWv8JcMl6HMx2H46CGC4q1 z3zu0rm3OK2C8GOC2/6DKpz8/J1rBwMbuMd3iLAoAZevJEVVrAyVWrbGPhF1PLyT sUU81KqLWG2kxXqWmWguE4uu25M3Ae3t7L6lXBd16d5NNh/bGfF8LT7DXH0h0i8Q 6kn98IdxnUStMfaNZfL8ckspxkVp3CV4Lw11bQglYbexF/6UeoOcXpUhDBlqbzb4 RgBzLPCv3VzK+pT/ktEN9TBI76DO6k1hoSQAT8ROLLcH7zvYqIT7P2MbIhqncXdQ ek1Slqjmd1yb8hS+dQaBvD4ULGnkC/YQm/okw7PuE+nAdEqN3d9eg5h83oN/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUSHrkF98+p5pE2MYD9nQN9J5+QYMwHwYDVR0j BBgwFoAU8/mrMKwsULPt98kcRTHMmu6cnaMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWYwODkwMC1mMmM2LTRkMDctYjY5NC1kMTg4YmFhM2I4ZjIvMC9GM0Y5QUIzMEFD MkM1MEIzRURGN0M5MUM0NTMxQ0M5QUVFOUM5REEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjNGOUFCMzBBQzJDNTBCM0VERjdDOTFDNDUzMUNDOUFFRTlD OURBMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlZjA4OTAwLWYyYzYtNGQwNy1i Njk0LWQxODhiYWEzYjhmMi8wLzMxMzAzMzJlMzEzMDMwMmUzMTM4MzAyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMTMzMzYzODM0MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnZLQwDQYJ KoZIhvcNAQELBQADggEBAEglMiIkV1Q5ieqtZlei4twzTjk9l3Fc2mYTzf7WzPZB 5UDv5k/la1dgpk1HxnxjpMM4XT9RARfA7sD3qY+XfZ74xkPQa6TNmElKHTnifyv+ OSFcRnQeelGxVXQSwmuM5a3e/i8+TJQYWm8DYKQJshWDg13X+IoEo3aA8UEi2moh LrcNrVGfLmXmOas3bEiYR1y4/X4O1f7SFCCIyOjBP7lMgQcOz72b8NTZuYb+0kkY vW+xn+2cnU7LIVkS+K3DNMPiIurE5BbFEVO3MNwPiXX2nbe1ojt5qfChHSUOju7/ 2fmqTeE+megn885fjneUOmFdUhT6od29/BJlItVeBc4= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:56 2024 by rpki-client on console-ams.rpki-client.org