$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133362e302f32322d3234203d3e203435373235.roa File: 3130332e3234352e3133362e302f32322d3234203d3e203435373235.roa (raw, json) Hash identifier: pPKoAcX+7p00Sy44YJj0aiNIuzXOuSgLCA/RKAF2nXA= Subject key identifier: C3:C2:BB:AB:DB:A3:5F:59:4E:BB:6E:C7:A1:DC:41:C0:47:A1:24:48 Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Certificate serial: 70C47D4539BA62AAE53127C0C689B8FD15B02DBC Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133362e302f32322d3234203d3e203435373235.roa Signing time: Tue 25 Jun 2024 10:00:00 +0000 ROA not before: Tue 25 Jun 2024 09:55:00 +0000 ROA not after: Tue 24 Jun 2025 10:00:00 +0000 asID: 45725 IP address blocks: 103.245.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:c4:7d:45:39:ba:62:aa:e5:31:27:c0:c6:89:b8:fd:15:b0:2d:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103 Validity Not Before: Jun 25 09:55:00 2024 GMT Not After : Jun 24 10:00:00 2025 GMT Subject: CN=C3C2BBABDBA35F594EBB6EC7A1DC41C047A12448 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0d:fa:c0:5b:a9:87:fa:5c:63:b0:ea:10:6a: 15:d0:52:8c:7c:f4:61:52:cb:58:41:b9:27:2b:d3: 38:9c:94:83:93:d5:49:e9:81:64:77:65:ba:8a:cd: 66:3d:ad:71:18:f7:b1:5b:89:8f:aa:fd:8c:10:0c: f3:e0:04:99:36:45:bc:71:f5:09:7e:0c:9f:a4:1d: 40:e3:a2:a8:23:75:66:50:25:2f:2e:e4:9e:5c:9f: 88:7e:d1:5a:45:68:cd:d8:a8:2e:5b:2f:8f:61:7a: 86:e3:94:50:8a:4b:5f:c4:a0:a2:a9:53:9d:6e:13: b8:29:7c:5e:94:93:c4:22:3d:73:a5:4a:59:97:11: e8:ee:b8:e6:0d:f7:05:57:7d:f7:7b:f5:2f:c3:9c: 1c:ad:aa:02:42:90:0c:11:96:e4:d1:e3:fd:24:30: 1b:e0:9b:e3:75:9b:aa:26:f4:fd:a9:e9:70:52:6a: 94:a5:69:a6:91:ff:e6:2d:ea:4e:de:fd:2b:83:97: 8b:6a:56:d8:65:4d:f0:d9:b0:1f:68:53:9d:c1:5c: 8b:e9:cc:cd:ae:5e:a5:ad:aa:bf:ff:7e:59:1f:65: 3c:f7:69:de:d5:c8:60:a7:e3:29:16:db:fc:f8:0d: 73:21:3d:dc:68:53:34:51:fe:7d:65:6c:8f:9a:03: 44:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:C2:BB:AB:DB:A3:5F:59:4E:BB:6E:C7:A1:DC:41:C0:47:A1:24:48 X509v3 Authority Key Identifier: keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133362e302f32322d3234203d3e203435373235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.136.0/22 Signature Algorithm: sha256WithRSAEncryption 91:94:68:98:3a:9f:74:8b:9d:b3:7a:5b:e3:c1:78:31:07:da: e0:56:c9:89:1f:53:04:d3:68:ff:66:75:9c:07:64:01:60:43: c0:23:10:1b:73:63:ad:3e:5d:c6:b6:25:50:48:e0:57:4f:15: 2d:01:a0:a3:91:b9:2e:a5:b7:b5:94:d3:db:39:35:e6:0c:7f: ea:24:aa:79:f8:cf:45:1b:72:ce:aa:4a:b1:4c:bd:e3:a3:8d: 95:ba:62:e9:ca:44:eb:45:70:6d:99:eb:ea:45:b1:a1:6e:f7: a1:f2:26:79:67:32:95:0f:de:75:ee:d9:d1:57:cb:9f:3b:a3: fd:72:34:96:78:4c:b3:b7:f1:b6:1c:a3:b1:e7:14:aa:95:fd: 82:fa:d3:a4:df:ff:cd:1f:71:73:c8:e0:67:51:9a:3f:94:92: 66:32:e2:f0:65:a0:ca:66:0c:9b:58:dd:95:09:e4:7d:9a:a7: b1:b2:9a:15:d8:5f:f2:58:d1:b6:a1:c5:cd:c2:55:6b:52:dc: 8c:07:b7:ef:19:d8:d0:ad:94:33:9e:45:f9:ef:cc:25:c9:98: 75:2f:cf:85:61:80:fb:0d:bd:56:05:ec:db:15:c9:49:c2:cd: 94:b6:af:60:e7:80:b8:74:b1:af:23:97:30:c4:60:32:3e:94: de:8b:54:47 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcMR9RTm6YqrlMSfAxom4/RWwLbwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy NzQ1ODEwMzAeFw0yNDA2MjUwOTU1MDBaFw0yNTA2MjQxMDAwMDBaMDMxMTAvBgNV BAMTKEMzQzJCQkFCREJBMzVGNTk0RUJCNkVDN0ExREM0MUMwNDdBMTI0NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2DfrAW6mH+lxjsOoQahXQUox8 9GFSy1hBuScr0ziclIOT1UnpgWR3ZbqKzWY9rXEY97FbiY+q/YwQDPPgBJk2Rbxx 9Ql+DJ+kHUDjoqgjdWZQJS8u5J5cn4h+0VpFaM3YqC5bL49heobjlFCKS1/EoKKp U51uE7gpfF6Uk8QiPXOlSlmXEejuuOYN9wVXffd79S/DnBytqgJCkAwRluTR4/0k MBvgm+N1m6om9P2p6XBSapSlaaaR/+Yt6k7e/SuDl4tqVthlTfDZsB9oU53BXIvp zM2uXqWtqr//flkfZTz3ad7VyGCn4ykW2/z4DXMhPdxoUzRR/n1lbI+aA0QfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUw8K7q9ujX1lOu27HodxBwEehJEgwHwYDVR0j BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1 ODEwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h NzJiLWVjMjczZjQzYmJjMi8wLzMxMzAzMzJlMzIzNDM1MmUzMTMzMzYyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNDM1MzczMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ/WIMA0GCSqG SIb3DQEBCwUAA4IBAQCRlGiYOp90i52zelvjwXgxB9rgVsmJH1ME02j/ZnWcB2QB YEPAIxAbc2OtPl3GtiVQSOBXTxUtAaCjkbkupbe1lNPbOTXmDH/qJKp5+M9FG3LO qkqxTL3jo42VumLpykTrRXBtmevqRbGhbveh8iZ5ZzKVD9517tnRV8ufO6P9cjSW eEyzt/G2HKOx5xSqlf2C+tOk3//NH3FzyOBnUZo/lJJmMuLwZaDKZgybWN2VCeR9 mqexspoV2F/yWNG2ocXNwlVrUtyMB7fvGdjQrZQznkX578wlyZh1L8+FYYD7Db1W BezbFclJws2Utq9g54C4dLGvI5cwxGAyPpTei1RH -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org