$ rpki-client -vvf repo-rpki.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0/3130332e3138352e35322e302f32332d3234203d3e20313339343536.roa File: 3130332e3138352e35322e302f32332d3234203d3e20313339343536.roa (raw, json) Hash identifier: booilFqKqk7YiPZlOpGne/6T1TyNPVoUN5vNVO/pz5U= Subject key identifier: 7D:7E:DA:75:AF:EB:AC:DA:3C:03:F1:D1:09:09:AC:2D:EB:FF:8D:90 Certificate issuer: /CN=DFE92467290F9E190072585C1045251D6F8B05A3 Certificate serial: 0E7EA3314FE06AB085A970B17BAE16580FFE51D6 Authority key identifier: DF:E9:24:67:29:0F:9E:19:00:72:58:5C:10:45:25:1D:6F:8B:05:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DFE92467290F9E190072585C1045251D6F8B05A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0/3130332e3138352e35322e302f32332d3234203d3e20313339343536.roa Signing time: Tue 06 Feb 2024 04:01:56 +0000 ROA not before: Tue 06 Feb 2024 03:56:56 +0000 ROA not after: Tue 04 Feb 2025 04:01:56 +0000 asID: 139456 IP address blocks: 103.185.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0/DFE92467290F9E190072585C1045251D6F8B05A3.crl rsync://repo-rpki.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0/DFE92467290F9E190072585C1045251D6F8B05A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DFE92467290F9E190072585C1045251D6F8B05A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:7e:a3:31:4f:e0:6a:b0:85:a9:70:b1:7b:ae:16:58:0f:fe:51:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFE92467290F9E190072585C1045251D6F8B05A3 Validity Not Before: Feb 6 03:56:56 2024 GMT Not After : Feb 4 04:01:56 2025 GMT Subject: CN=7D7EDA75AFEBACDA3C03F1D10909AC2DEBFF8D90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:d4:6b:32:da:a5:11:13:a8:68:bd:c7:a5:4b: 93:66:3b:42:b1:41:d3:bb:41:f6:af:72:cc:69:65: 9f:ab:b0:ea:67:d2:35:68:31:cd:ea:46:0d:ac:55: 62:33:46:dc:21:d7:06:06:36:52:32:73:b1:40:1a: be:6d:d0:77:c6:8a:32:90:80:c6:85:37:40:ab:25: 9a:d4:95:08:f7:64:8a:ee:04:44:95:64:be:d5:69: 81:72:2a:aa:67:86:f6:58:5a:40:dc:7b:2c:be:00: 93:3d:b5:ae:6a:1a:d8:4b:c1:c5:3f:53:4b:4b:61: 71:02:d3:e2:f7:bc:43:54:57:98:db:36:f9:7c:46: 9b:b4:48:d5:e9:31:c3:1c:fe:7e:d9:38:db:6e:fa: ba:18:4a:3d:b5:d7:13:82:b8:9a:05:5c:36:3f:ad: 0b:3b:44:0b:65:83:f5:74:91:39:b1:d8:8d:df:dc: 28:e8:32:cb:37:7a:76:7e:a3:c3:f2:09:cc:2d:93: 76:82:4b:14:b4:d8:0e:18:1f:21:f1:f3:00:e9:3b: 86:87:73:d5:81:35:25:2b:cd:92:e3:27:15:e8:06: 4b:b4:db:b4:cb:59:34:40:9a:c1:6b:2f:98:77:e2: f8:02:e4:d9:fe:d6:dc:1c:1c:15:07:72:16:5c:f8: ce:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:7E:DA:75:AF:EB:AC:DA:3C:03:F1:D1:09:09:AC:2D:EB:FF:8D:90 X509v3 Authority Key Identifier: keyid:DF:E9:24:67:29:0F:9E:19:00:72:58:5C:10:45:25:1D:6F:8B:05:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0/DFE92467290F9E190072585C1045251D6F8B05A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DFE92467290F9E190072585C1045251D6F8B05A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0/3130332e3138352e35322e302f32332d3234203d3e20313339343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.185.52.0/23 Signature Algorithm: sha256WithRSAEncryption b4:15:e7:3f:e8:2e:65:bf:dc:67:c2:a1:09:0d:cb:8f:f5:37: c0:cc:15:58:c7:cd:29:d7:12:77:3d:8d:43:fa:78:86:87:bd: 81:9d:6c:8b:1a:e3:9e:ff:a1:ff:6f:e0:56:17:77:d7:83:e6: a4:8b:84:a5:5f:19:34:fd:f8:ee:17:49:d2:71:10:d6:54:c6: 1d:4f:97:94:3a:a8:55:5d:de:ce:a2:06:f3:ec:a5:1d:fd:79: 37:6b:62:3a:a1:8b:90:36:aa:1d:39:2f:f6:af:67:85:cb:c6: 51:7b:a7:50:35:93:12:92:6f:fe:4f:77:34:a7:41:3b:e2:bf: 9d:d0:bd:6c:08:77:73:fb:00:04:b7:da:f7:05:c9:ba:af:20: 71:dc:5b:ac:d5:ae:1d:4a:9c:2d:dd:25:9c:82:1e:64:e2:78: 71:17:01:b0:0a:35:05:6e:27:ca:49:2d:fe:6d:12:ba:3d:2d: 4a:08:19:38:17:98:da:14:b2:d2:49:16:3d:06:fa:0b:e2:39: 1b:14:fe:f1:6a:d8:ab:5e:2e:23:44:27:8c:b7:e2:8e:1a:d7: 25:d4:26:79:33:96:01:15:df:20:f8:65:74:e7:85:98:1f:3e: c6:a4:bb:1b:10:42:21:0d:f2:ed:73:25:b0:e3:5d:52:85:75: 77:c6:a0:6a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDn6jMU/garCFqXCxe64WWA/+UdYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREZFOTI0NjcyOTBGOUUxOTAwNzI1ODVDMTA0NTI1MUQ2 RjhCMDVBMzAeFw0yNDAyMDYwMzU2NTZaFw0yNTAyMDQwNDAxNTZaMDMxMTAvBgNV BAMTKDdEN0VEQTc1QUZFQkFDREEzQzAzRjFEMTA5MDlBQzJERUJGRjhEOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDg1Gsy2qURE6hovcelS5NmO0Kx QdO7QfavcsxpZZ+rsOpn0jVoMc3qRg2sVWIzRtwh1wYGNlIyc7FAGr5t0HfGijKQ gMaFN0CrJZrUlQj3ZIruBESVZL7VaYFyKqpnhvZYWkDceyy+AJM9ta5qGthLwcU/ U0tLYXEC0+L3vENUV5jbNvl8Rpu0SNXpMcMc/n7ZONtu+roYSj211xOCuJoFXDY/ rQs7RAtlg/V0kTmx2I3f3CjoMss3enZ+o8PyCcwtk3aCSxS02A4YHyHx8wDpO4aH c9WBNSUrzZLjJxXoBku027TLWTRAmsFrL5h34vgC5Nn+1twcHBUHchZc+M4FAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfX7ada/rrNo8A/HRCQmsLev/jZAwHwYDVR0j BBgwFoAU3+kkZykPnhkAclhcEEUlHW+LBaMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YzQ1NzRlMi0zYjk0LTQxNjAtOGViOC04ZjA5YWFkODJjMmMvMC9ERkU5MjQ2NzI5 MEY5RTE5MDA3MjU4NUMxMDQ1MjUxRDZGOEIwNUEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREZFOTI0NjcyOTBGOUUxOTAwNzI1ODVDMTA0NTI1MUQ2RjhC MDVBMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjNDU3NGUyLTNiOTQtNDE2MC04 ZWI4LThmMDlhYWQ4MmMyYy8wLzMxMzAzMzJlMzEzODM1MmUzNTMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7k0MA0GCSqG SIb3DQEBCwUAA4IBAQC0Fec/6C5lv9xnwqEJDcuP9TfAzBVYx80p1xJ3PY1D+niG h72BnWyLGuOe/6H/b+BWF3fXg+aki4SlXxk0/fjuF0nScRDWVMYdT5eUOqhVXd7O ogbz7KUd/Xk3a2I6oYuQNqodOS/2r2eFy8ZRe6dQNZMSkm/+T3c0p0E74r+d0L1s CHdz+wAEt9r3Bcm6ryBx3Fus1a4dSpwt3SWcgh5k4nhxFwGwCjUFbifKSS3+bRK6 PS1KCBk4F5jaFLLSSRY9BvoL4jkbFP7xatirXi4jRCeMt+KOGtcl1CZ5M5YBFd8g +GV054WYHz7GpLsbEEIhDfLtcyWw411ShXV3xqBq -----END CERTIFICATE-----Generated at Sat Jun 1 18:06:22 2024 by rpki-client on console-ams.rpki-client.org