$ rpki-client -vvf repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/3130332e32312e3230342e302f32322d3234203d3e20313331373436.roa File: 3130332e32312e3230342e302f32322d3234203d3e20313331373436.roa (raw, json) Hash identifier: Pzwwc/DaRh7douIe0O7l7uQ+2W5v06vmWKYPm+xMR5Y= Subject key identifier: 03:F3:7C:BB:85:7D:7C:AB:6E:57:B4:F7:CC:96:87:25:70:BC:7E:0A Certificate issuer: /CN=CB8106D827747D008C9DE9181B4EC6739C8EE800 Certificate serial: 22B012A298B8AE62BB9E3A65E332F45E0C384DC5 Authority key identifier: CB:81:06:D8:27:74:7D:00:8C:9D:E9:18:1B:4E:C6:73:9C:8E:E8:00 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB8106D827747D008C9DE9181B4EC6739C8EE800.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/3130332e32312e3230342e302f32322d3234203d3e20313331373436.roa Signing time: Mon 01 Jul 2024 01:05:43 +0000 ROA not before: Mon 01 Jul 2024 01:00:43 +0000 ROA not after: Mon 30 Jun 2025 01:05:43 +0000 asID: 131746 IP address blocks: 103.21.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/CB8106D827747D008C9DE9181B4EC6739C8EE800.crl rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/CB8106D827747D008C9DE9181B4EC6739C8EE800.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB8106D827747D008C9DE9181B4EC6739C8EE800.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:b0:12:a2:98:b8:ae:62:bb:9e:3a:65:e3:32:f4:5e:0c:38:4d:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB8106D827747D008C9DE9181B4EC6739C8EE800 Validity Not Before: Jul 1 01:00:43 2024 GMT Not After : Jun 30 01:05:43 2025 GMT Subject: CN=03F37CBB857D7CAB6E57B4F7CC96872570BC7E0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:8f:5a:da:17:5d:59:19:11:b8:af:53:f6:8d: 2f:35:26:bb:37:8c:c0:8c:13:d5:1d:37:3e:31:4b: e1:7f:ae:f7:12:28:a3:ff:4e:a3:9c:5f:55:b6:cf: 57:07:18:6d:91:7f:72:ba:b6:b9:be:b8:9d:c4:d4: 32:87:4c:b7:ec:a4:eb:3f:52:b9:c7:a2:e7:d6:e8: a8:b2:44:07:59:65:a5:8c:25:7f:39:5e:b3:13:3a: e0:6d:3b:2d:24:f1:63:da:23:9e:74:44:a7:15:c7: c6:12:6a:c6:e2:de:60:25:05:60:96:ea:5f:84:93: 33:bd:ec:16:8e:94:b6:88:32:f0:e0:96:83:06:03: b3:f9:96:a0:ec:b9:e4:4e:17:77:b5:6d:83:94:8a: ce:86:a3:b0:66:10:fc:5b:8f:d7:20:b4:79:72:ef: ea:b0:be:f3:48:d3:89:d3:b6:7f:66:08:fb:d2:50: 7d:11:ff:e3:e2:a1:60:fd:74:d3:10:50:bb:a9:dd: f9:64:cd:29:58:0c:15:0f:4e:52:cb:cc:dc:64:f0: 7d:f9:53:53:d1:f4:54:c3:b6:22:1d:ad:1a:4e:4e: 17:bd:d1:8e:f4:a9:98:26:a4:05:cb:a2:95:6f:70: a8:76:47:6d:48:44:7e:2b:37:ec:82:7a:0b:df:87: 14:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:F3:7C:BB:85:7D:7C:AB:6E:57:B4:F7:CC:96:87:25:70:BC:7E:0A X509v3 Authority Key Identifier: keyid:CB:81:06:D8:27:74:7D:00:8C:9D:E9:18:1B:4E:C6:73:9C:8E:E8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/CB8106D827747D008C9DE9181B4EC6739C8EE800.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB8106D827747D008C9DE9181B4EC6739C8EE800.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6be578d0-d3aa-4f0f-bb9d-f74b49c6a655/0/3130332e32312e3230342e302f32322d3234203d3e20313331373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.204.0/22 Signature Algorithm: sha256WithRSAEncryption 74:1d:33:93:cc:46:0f:8f:d7:97:38:b2:db:bd:36:4a:78:b1: 3d:70:a5:ef:30:01:ad:33:cf:55:32:15:d1:0d:d9:87:0a:fb: 4e:e5:74:72:7f:95:17:8d:e0:09:a2:2f:52:2b:23:1c:00:19: 46:77:cc:33:e7:d7:37:3d:ea:8f:92:3a:1a:ff:30:48:1d:48: 36:f7:f0:c8:69:95:8b:99:a0:1e:b1:47:02:0e:88:97:dd:86: c3:fd:ad:4c:29:30:35:64:6f:1e:52:f1:cf:28:2a:47:8d:ea: 42:c5:ef:3e:d7:f9:18:71:96:68:ad:82:7d:cc:b7:3d:b2:10: 8a:9a:21:b9:6b:e5:59:09:d4:d6:d4:51:c8:4b:51:c9:ec:64: 6a:2f:a2:7c:0b:29:40:cd:7a:4f:91:ba:2a:b7:20:c2:d9:ad: 29:88:cc:8e:ec:10:9d:53:8e:32:32:a2:47:ef:03:76:01:29: 5e:9c:a2:d7:07:e7:4d:05:49:7a:68:40:5a:e2:48:1b:87:77: a3:aa:23:dd:42:37:12:58:d3:92:37:95:2f:d5:4e:c3:84:ea: b7:14:4a:6b:88:f6:3c:71:90:f8:fe:a2:97:2d:b8:7e:31:ab: 5b:c3:b5:f9:aa:5b:f1:16:8d:a6:89:0c:cd:1b:22:30:9c:21: c2:b4:72:40 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIrASopi4rmK7njpl4zL0Xgw4TcUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0I4MTA2RDgyNzc0N0QwMDhDOURFOTE4MUI0RUM2NzM5 QzhFRTgwMDAeFw0yNDA3MDEwMTAwNDNaFw0yNTA2MzAwMTA1NDNaMDMxMTAvBgNV BAMTKDAzRjM3Q0JCODU3RDdDQUI2RTU3QjRGN0NDOTY4NzI1NzBCQzdFMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdj1raF11ZGRG4r1P2jS81Jrs3 jMCME9UdNz4xS+F/rvcSKKP/TqOcX1W2z1cHGG2Rf3K6trm+uJ3E1DKHTLfspOs/ UrnHoufW6KiyRAdZZaWMJX85XrMTOuBtOy0k8WPaI550RKcVx8YSasbi3mAlBWCW 6l+EkzO97BaOlLaIMvDgloMGA7P5lqDsueROF3e1bYOUis6Go7BmEPxbj9cgtHly 7+qwvvNI04nTtn9mCPvSUH0R/+PioWD9dNMQULup3flkzSlYDBUPTlLLzNxk8H35 U1PR9FTDtiIdrRpOThe90Y70qZgmpAXLopVvcKh2R21IRH4rN+yCegvfhxSXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUA/N8u4V9fKtuV7T3zJaHJXC8fgowHwYDVR0j BBgwFoAUy4EG2Cd0fQCMnekYG07Gc5yO6AAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YmU1NzhkMC1kM2FhLTRmMGYtYmI5ZC1mNzRiNDljNmE2NTUvMC9DQjgxMDZEODI3 NzQ3RDAwOEM5REU5MTgxQjRFQzY3MzlDOEVFODAwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0I4MTA2RDgyNzc0N0QwMDhDOURFOTE4MUI0RUM2NzM5QzhF RTgwMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZiZTU3OGQwLWQzYWEtNGYwZi1i YjlkLWY3NGI0OWM2YTY1NS8wLzMxMzAzMzJlMzIzMTJlMzIzMDM0MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZxXMMA0GCSqG SIb3DQEBCwUAA4IBAQB0HTOTzEYPj9eXOLLbvTZKeLE9cKXvMAGtM89VMhXRDdmH CvtO5XRyf5UXjeAJoi9SKyMcABlGd8wz59c3PeqPkjoa/zBIHUg29/DIaZWLmaAe sUcCDoiX3YbD/a1MKTA1ZG8eUvHPKCpHjepCxe8+1/kYcZZorYJ9zLc9shCKmiG5 a+VZCdTW1FHIS1HJ7GRqL6J8CylAzXpPkboqtyDC2a0piMyO7BCdU44yMqJH7wN2 ASlenKLXB+dNBUl6aEBa4kgbh3ejqiPdQjcSWNOSN5Uv1U7DhOq3FEpriPY8cZD4 /qKXLbh+Matbw7X5qlvxFo2miQzNGyIwnCHCtHJA -----END CERTIFICATE-----Generated at Mon Nov 25 04:42:07 2024 by rpki-client on console-ams.rpki-client.org