$ rpki-client -vvf repo-rpki.idnic.net/repo/657a6bcb-9eb6-49de-b998-0bed3c5c1278/0/3130332e3130352e35322e302f32322d3234203d3e20313336383733.roa File: 3130332e3130352e35322e302f32322d3234203d3e20313336383733.roa (raw, json) Hash identifier: PFQ7FpN31YAHFpzC7fGpvPtUM9Dv0WNkJWYV7s1UY68= Subject key identifier: 5D:AF:4C:80:E6:EC:32:B1:91:81:C5:50:AE:25:B6:01:27:4F:39:A4 Certificate issuer: /CN=69D341364BC344B4ED6B3A65031AACB403AB3222 Certificate serial: 04F484319CD5D06FD78DF85D3B9628CC5C31D5AE Authority key identifier: 69:D3:41:36:4B:C3:44:B4:ED:6B:3A:65:03:1A:AC:B4:03:AB:32:22 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69D341364BC344B4ED6B3A65031AACB403AB3222.cer Subject info access: rsync://repo-rpki.idnic.net/repo/657a6bcb-9eb6-49de-b998-0bed3c5c1278/0/3130332e3130352e35322e302f32322d3234203d3e20313336383733.roa Signing time: Mon 01 Jul 2024 01:05:16 +0000 ROA not before: Mon 01 Jul 2024 01:00:16 +0000 ROA not after: Mon 30 Jun 2025 01:05:16 +0000 asID: 136873 IP address blocks: 103.105.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/657a6bcb-9eb6-49de-b998-0bed3c5c1278/0/69D341364BC344B4ED6B3A65031AACB403AB3222.crl rsync://repo-rpki.idnic.net/repo/657a6bcb-9eb6-49de-b998-0bed3c5c1278/0/69D341364BC344B4ED6B3A65031AACB403AB3222.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69D341364BC344B4ED6B3A65031AACB403AB3222.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:f4:84:31:9c:d5:d0:6f:d7:8d:f8:5d:3b:96:28:cc:5c:31:d5:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69D341364BC344B4ED6B3A65031AACB403AB3222 Validity Not Before: Jul 1 01:00:16 2024 GMT Not After : Jun 30 01:05:16 2025 GMT Subject: CN=5DAF4C80E6EC32B19181C550AE25B601274F39A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:da:30:cf:20:73:9f:3d:df:b5:d3:2c:b4:09: df:1a:97:1a:37:34:b0:dd:26:65:f1:d6:fc:5f:79: db:dc:0d:fd:b4:a2:37:af:6b:62:95:1a:8d:42:dd: 96:3f:47:9a:48:3b:45:da:92:ad:1b:3a:60:3b:b8: 89:18:f9:83:e0:24:62:5b:70:7a:0f:fd:dc:f4:2d: da:cb:53:7d:0b:72:9e:44:d5:18:e3:46:70:f8:fc: 31:51:11:1d:81:1c:7f:b8:98:d5:71:de:ff:98:af: 91:ac:10:76:af:2d:9a:d0:e3:17:22:b2:fe:af:3c: 80:56:e7:81:86:21:a5:51:62:c1:77:20:aa:b7:be: f2:69:26:e8:60:79:03:4c:6e:6d:36:8e:4d:cf:16: 43:27:85:06:8d:6b:f3:c6:3a:f8:97:e9:4a:50:b2: ba:79:6a:10:08:0b:ff:70:b6:24:e7:07:20:6a:e1: 2a:48:27:88:ed:c9:02:d8:da:45:87:a1:c7:a1:f1: 5d:d4:c5:57:7f:90:87:1c:59:42:db:d1:68:f9:5f: 28:ff:52:10:60:00:0c:dd:3c:f7:f5:5d:a3:88:f9: c2:1d:e9:17:26:19:bb:39:94:da:f3:24:2e:e2:00: 13:bd:e5:74:98:9b:c6:1f:ee:1b:82:41:8f:f4:87: 5b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:AF:4C:80:E6:EC:32:B1:91:81:C5:50:AE:25:B6:01:27:4F:39:A4 X509v3 Authority Key Identifier: keyid:69:D3:41:36:4B:C3:44:B4:ED:6B:3A:65:03:1A:AC:B4:03:AB:32:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/657a6bcb-9eb6-49de-b998-0bed3c5c1278/0/69D341364BC344B4ED6B3A65031AACB403AB3222.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/69D341364BC344B4ED6B3A65031AACB403AB3222.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/657a6bcb-9eb6-49de-b998-0bed3c5c1278/0/3130332e3130352e35322e302f32322d3234203d3e20313336383733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.105.52.0/22 Signature Algorithm: sha256WithRSAEncryption 21:59:82:2e:93:d5:4c:db:c2:f6:ac:80:46:50:83:a0:14:9a: 6a:47:9a:59:58:e3:13:48:d9:2a:4e:95:a6:ab:fc:77:62:31: 5d:32:bb:68:80:42:28:3b:51:1d:4c:03:3b:70:4e:4d:aa:bf: 54:94:b1:74:2e:f1:20:8c:21:ea:33:69:3c:4a:f9:f3:41:5d: 2d:07:4c:d8:29:c5:b4:32:63:e5:f2:77:cd:4f:de:f7:df:72: 18:4d:d4:91:78:d7:8c:31:26:49:bd:fe:55:2e:1d:db:ac:88: 70:c3:6d:a6:27:08:16:b1:cc:f3:ff:d4:82:9d:03:c1:01:25: 8c:28:17:fc:a3:d6:7c:e7:0f:6d:a6:4a:20:7a:99:8d:99:75: 30:64:00:20:f0:95:c2:a9:21:67:a8:b9:6e:48:43:01:4b:2a: 43:17:78:c6:6c:b1:98:e0:c8:67:dc:f3:9a:08:af:4b:18:be: 67:16:35:3b:11:b0:85:7b:8d:fb:06:6f:5c:c7:b4:7a:ad:e6: ce:81:8f:b0:a0:c6:d3:e2:52:11:aa:79:25:f3:3f:b3:55:c7: c3:2f:52:17:28:9c:7e:01:e4:c3:44:7e:3b:cb:ca:71:0f:ae: 0d:97:22:de:ea:d3:4c:db:e5:05:3d:6a:01:d0:d3:ad:bf:ce: a8:26:bb:da -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBPSEMZzV0G/XjfhdO5YozFwx1a4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjlEMzQxMzY0QkMzNDRCNEVENkIzQTY1MDMxQUFDQjQw M0FCMzIyMjAeFw0yNDA3MDEwMTAwMTZaFw0yNTA2MzAwMTA1MTZaMDMxMTAvBgNV BAMTKDVEQUY0QzgwRTZFQzMyQjE5MTgxQzU1MEFFMjVCNjAxMjc0RjM5QTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU2jDPIHOfPd+10yy0Cd8alxo3 NLDdJmXx1vxfedvcDf20ojeva2KVGo1C3ZY/R5pIO0Xakq0bOmA7uIkY+YPgJGJb cHoP/dz0LdrLU30Lcp5E1RjjRnD4/DFRER2BHH+4mNVx3v+Yr5GsEHavLZrQ4xci sv6vPIBW54GGIaVRYsF3IKq3vvJpJuhgeQNMbm02jk3PFkMnhQaNa/PGOviX6UpQ srp5ahAIC/9wtiTnByBq4SpIJ4jtyQLY2kWHoceh8V3UxVd/kIccWULb0Wj5Xyj/ UhBgAAzdPPf1XaOI+cId6RcmGbs5lNrzJC7iABO95XSYm8Yf7huCQY/0h1s9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUXa9MgObsMrGRgcVQriW2ASdPOaQwHwYDVR0j BBgwFoAUadNBNkvDRLTtazplAxqstAOrMiIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NTdhNmJjYi05ZWI2LTQ5ZGUtYjk5OC0wYmVkM2M1YzEyNzgvMC82OUQzNDEzNjRC QzM0NEI0RUQ2QjNBNjUwMzFBQUNCNDAzQUIzMjIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjlEMzQxMzY0QkMzNDRCNEVENkIzQTY1MDMxQUFDQjQwM0FC MzIyMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1N2E2YmNiLTllYjYtNDlkZS1i OTk4LTBiZWQzYzVjMTI3OC8wLzMxMzAzMzJlMzEzMDM1MmUzNTMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ2k0MA0GCSqG SIb3DQEBCwUAA4IBAQAhWYIuk9VM28L2rIBGUIOgFJpqR5pZWOMTSNkqTpWmq/x3 YjFdMrtogEIoO1EdTAM7cE5Nqr9UlLF0LvEgjCHqM2k8SvnzQV0tB0zYKcW0MmPl 8nfNT97333IYTdSReNeMMSZJvf5VLh3brIhww22mJwgWsczz/9SCnQPBASWMKBf8 o9Z85w9tpkogepmNmXUwZAAg8JXCqSFnqLluSEMBSypDF3jGbLGY4Mhn3POaCK9L GL5nFjU7EbCFe437Bm9cx7R6rebOgY+woMbT4lIRqnkl8z+zVcfDL1IXKJx+AeTD RH47y8pxD64NlyLe6tNM2+UFPWoB0NOtv86oJrva -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:14 2024 by rpki-client on console-ams.rpki-client.org