$ rpki-client -vvf repo-rpki.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/3130332e3130362e3131362e302f32342d3234203d3e20313336383836.roa File: 3130332e3130362e3131362e302f32342d3234203d3e20313336383836.roa (raw, json) Hash identifier: PBS24O+Ag988ovNHdwwWEYP3U+1tu1CqBmIH18hjG6M= Subject key identifier: B5:D1:94:9A:9D:F4:E9:0A:5E:9F:B4:3C:3C:2F:A3:3A:F1:36:75:4B Certificate issuer: /CN=919B60E4D7E1171B6624F318ADA1B74502A3A018 Certificate serial: 1F9A3CD41D1CD819B5CBE93B6EC745D603174DFE Authority key identifier: 91:9B:60:E4:D7:E1:17:1B:66:24:F3:18:AD:A1:B7:45:02:A3:A0:18 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/919B60E4D7E1171B6624F318ADA1B74502A3A018.cer Subject info access: rsync://repo-rpki.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/3130332e3130362e3131362e302f32342d3234203d3e20313336383836.roa Signing time: Mon 01 Jul 2024 01:05:06 +0000 ROA not before: Mon 01 Jul 2024 01:00:06 +0000 ROA not after: Mon 30 Jun 2025 01:05:06 +0000 asID: 136886 IP address blocks: 103.106.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/919B60E4D7E1171B6624F318ADA1B74502A3A018.crl rsync://repo-rpki.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/919B60E4D7E1171B6624F318ADA1B74502A3A018.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/919B60E4D7E1171B6624F318ADA1B74502A3A018.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 08:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:9a:3c:d4:1d:1c:d8:19:b5:cb:e9:3b:6e:c7:45:d6:03:17:4d:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=919B60E4D7E1171B6624F318ADA1B74502A3A018 Validity Not Before: Jul 1 01:00:06 2024 GMT Not After : Jun 30 01:05:06 2025 GMT Subject: CN=B5D1949A9DF4E90A5E9FB43C3C2FA33AF136754B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f4:b3:3b:b9:70:ca:90:df:ff:24:b7:e6:7f: 92:07:26:a8:e5:36:f0:21:5b:47:0a:a0:f6:83:32: 27:f0:63:9d:8b:ca:7d:16:75:fe:96:cb:d1:0a:c0: 0d:fa:96:31:bd:55:32:08:50:5c:2b:90:27:72:d4: 52:c2:8f:7c:fc:b3:05:04:21:67:c6:1b:9e:2f:25: 63:9b:a3:99:03:d4:4f:11:23:a0:1e:ee:a0:76:4b: 59:29:85:c2:68:c8:4e:7c:f5:fd:f1:5a:44:e1:79: 5f:b6:99:26:ff:f2:be:c6:ac:b8:a5:a0:8b:ec:41: f6:2f:74:9c:ce:5f:88:f6:75:3b:35:c2:11:39:13: c5:9d:b7:91:ed:8e:dd:da:a9:55:22:78:8f:01:1b: 28:7f:3d:cf:a4:33:ae:9c:5a:e4:f1:ee:15:2c:2d: 85:95:23:9e:4d:f8:5a:a0:a4:b7:73:e0:05:27:0c: 0d:40:f0:3f:78:20:6f:79:89:f1:7d:0d:a4:9c:c6: 7e:85:14:c7:46:6e:78:74:26:d1:cd:6a:b4:65:e1: 8e:55:ce:3f:07:46:b2:e6:30:d0:19:6a:01:1d:a1: 04:07:d2:b5:34:30:7d:44:e3:5f:95:3c:cc:71:a8: 32:24:fe:68:af:60:0c:67:06:f4:30:34:be:bf:94: c2:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:D1:94:9A:9D:F4:E9:0A:5E:9F:B4:3C:3C:2F:A3:3A:F1:36:75:4B X509v3 Authority Key Identifier: keyid:91:9B:60:E4:D7:E1:17:1B:66:24:F3:18:AD:A1:B7:45:02:A3:A0:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/919B60E4D7E1171B6624F318ADA1B74502A3A018.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/919B60E4D7E1171B6624F318ADA1B74502A3A018.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/700aed1d-94c9-49a6-a609-882e03cd07ba/0/3130332e3130362e3131362e302f32342d3234203d3e20313336383836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.106.116.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:c8:f9:5d:27:ac:69:94:f3:12:16:e2:9c:cc:62:f3:45:2e: 34:08:17:32:6c:78:6b:82:e5:6a:d1:01:fb:38:8e:ef:7a:58: 2a:5a:9f:a9:42:64:ba:94:ea:ce:cb:26:84:13:fa:0c:ca:9a: b9:ce:61:e0:54:75:f4:2a:79:6f:12:b2:3b:6c:14:5f:72:f0: c9:d3:d2:5b:70:49:17:71:cb:0a:27:30:f6:ca:14:2a:31:af: 4f:30:e5:7e:d2:0d:63:fc:ed:6e:9b:f9:c2:ea:3e:9a:bc:16: b3:6d:81:4a:f8:73:5f:32:ec:97:b6:89:33:10:1a:d3:17:79: 2a:f2:5c:8f:1a:b2:64:c7:78:81:64:78:46:1e:72:34:4e:a0: a8:f1:a9:1b:4d:16:dc:a9:b5:85:58:20:53:4b:12:2f:21:f4: 72:4c:2c:85:24:24:67:43:cf:56:03:6a:ec:03:7e:6d:7a:e1: 0b:3a:1f:28:3b:c7:6a:8f:ef:ff:aa:55:10:e0:f3:18:87:08: 68:08:af:66:71:8f:78:9d:9e:dc:a1:92:42:19:22:1e:41:e8: c1:55:b1:15:e8:af:11:96:68:b5:71:8d:eb:f8:15:03:1f:40: e7:a7:4a:87:ff:e4:b6:7e:96:4d:81:17:5e:f2:e1:2d:b1:31: 01:32:3d:4f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUH5o81B0c2Bm1y+k7bsdF1gMXTf4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE5QjYwRTREN0UxMTcxQjY2MjRGMzE4QURBMUI3NDUw MkEzQTAxODAeFw0yNDA3MDEwMTAwMDZaFw0yNTA2MzAwMTA1MDZaMDMxMTAvBgNV BAMTKEI1RDE5NDlBOURGNEU5MEE1RTlGQjQzQzNDMkZBMzNBRjEzNjc1NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx9LM7uXDKkN//JLfmf5IHJqjl NvAhW0cKoPaDMifwY52Lyn0Wdf6Wy9EKwA36ljG9VTIIUFwrkCdy1FLCj3z8swUE IWfGG54vJWObo5kD1E8RI6Ae7qB2S1kphcJoyE589f3xWkTheV+2mSb/8r7GrLil oIvsQfYvdJzOX4j2dTs1whE5E8Wdt5Htjt3aqVUieI8BGyh/Pc+kM66cWuTx7hUs LYWVI55N+FqgpLdz4AUnDA1A8D94IG95ifF9DaScxn6FFMdGbnh0JtHNarRl4Y5V zj8HRrLmMNAZagEdoQQH0rU0MH1E41+VPMxxqDIk/mivYAxnBvQwNL6/lMI7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUtdGUmp306Qpen7Q8PC+jOvE2dUswHwYDVR0j BBgwFoAUkZtg5NfhFxtmJPMYraG3RQKjoBgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MDBhZWQxZC05NGM5LTQ5YTYtYTYwOS04ODJlMDNjZDA3YmEvMC85MTlCNjBFNEQ3 RTExNzFCNjYyNEYzMThBREExQjc0NTAyQTNBMDE4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTE5QjYwRTREN0UxMTcxQjY2MjRGMzE4QURBMUI3NDUwMkEz QTAxOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwMGFlZDFkLTk0YzktNDlhNi1h NjA5LTg4MmUwM2NkMDdiYS8wLzMxMzAzMzJlMzEzMDM2MmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnanQwDQYJ KoZIhvcNAQELBQADggEBAArI+V0nrGmU8xIW4pzMYvNFLjQIFzJseGuC5WrRAfs4 ju96WCpan6lCZLqU6s7LJoQT+gzKmrnOYeBUdfQqeW8SsjtsFF9y8MnT0ltwSRdx ywonMPbKFCoxr08w5X7SDWP87W6b+cLqPpq8FrNtgUr4c18y7Je2iTMQGtMXeSry XI8asmTHeIFkeEYecjROoKjxqRtNFtyptYVYIFNLEi8h9HJMLIUkJGdDz1YDauwD fm164Qs6Hyg7x2qP7/+qVRDg8xiHCGgIr2Zxj3idntyhkkIZIh5B6MFVsRXorxGW aLVxjev4FQMfQOenSof/5LZ+lk2BF17y4S2xMQEyPU8= -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org