$ rpki-client -vvf repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/3130332e38372e3233312e302f32342d3234203d3e20313336303838.roa File: 3130332e38372e3233312e302f32342d3234203d3e20313336303838.roa (raw, json) Hash identifier: SE3H4B/meoJw/h1QWLI6uYkZTsm1TtEA1FVx9lAYQqc= Subject key identifier: 65:ED:A5:8E:C0:5B:DA:24:79:EE:44:63:67:50:CD:FA:50:AD:9B:82 Certificate issuer: /CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Certificate serial: 13F5D6AF4B5F8BD3548ABBA1DFD386810FEECFA9 Authority key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/3130332e38372e3233312e302f32342d3234203d3e20313336303838.roa Signing time: Mon 01 Jul 2024 01:04:20 +0000 ROA not before: Mon 01 Jul 2024 00:59:20 +0000 ROA not after: Mon 30 Jun 2025 01:04:20 +0000 asID: 136088 IP address blocks: 103.87.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 08:51:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:f5:d6:af:4b:5f:8b:d3:54:8a:bb:a1:df:d3:86:81:0f:ee:cf:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Validity Not Before: Jul 1 00:59:20 2024 GMT Not After : Jun 30 01:04:20 2025 GMT Subject: CN=65EDA58EC05BDA2479EE44636750CDFA50AD9B82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f4:db:37:fe:23:76:66:7e:5f:64:44:1d:63: 1e:71:b1:57:3e:e9:22:cd:20:f5:8f:8b:f0:36:44: 79:54:c5:b0:a7:98:b2:46:d8:95:f8:1b:2c:91:33: d5:48:4b:72:9e:20:d5:63:b4:01:0c:bd:c9:7e:ca: 1b:b1:37:fa:9a:a9:ed:26:94:e1:07:5e:1e:5b:97: 81:ac:91:d5:ae:14:41:e4:30:44:e5:4c:a3:3b:e0: ea:6f:1c:ac:15:7d:a8:bb:9e:3b:99:3b:05:ef:e0: b2:4b:a9:df:8e:ac:0e:01:29:e4:37:d2:01:3a:ba: a3:e9:b4:99:7c:f9:42:62:57:f0:97:a0:86:37:7f: 6d:ae:80:ed:14:b2:ee:ae:b2:e7:a3:eb:b9:cb:b6: d9:2e:6d:5f:6a:83:3a:f1:1a:11:d3:de:b5:76:16: f2:72:e6:cb:e2:0a:4c:0c:bc:ce:02:24:56:f5:2f: 81:e4:f7:d6:a5:86:17:83:9c:e3:ff:9a:7c:e6:a2: 0e:9f:fb:e5:83:77:28:2a:55:fe:27:39:ff:7f:e2: 5f:f9:d4:c6:5e:c4:c4:65:04:24:ad:15:ff:1d:34: 59:00:71:0c:80:6f:e2:5a:76:88:98:c9:cd:80:05: b0:95:8b:d3:10:1e:91:9c:5a:ef:8a:a2:fb:55:90: eb:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:ED:A5:8E:C0:5B:DA:24:79:EE:44:63:67:50:CD:FA:50:AD:9B:82 X509v3 Authority Key Identifier: keyid:D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/3130332e38372e3233312e302f32342d3234203d3e20313336303838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.87.231.0/24 Signature Algorithm: sha256WithRSAEncryption bd:1c:81:8b:6c:d8:3e:7b:b7:35:80:62:e2:cf:3d:30:f9:9e: a7:a3:bf:e0:ca:36:99:1f:4e:29:36:85:2d:1a:e5:20:d5:18: 83:15:fa:44:8b:66:27:97:0a:4f:9b:6c:ab:8f:a7:0b:6d:19: 51:6e:c5:5c:15:13:4c:f0:d4:f9:2d:aa:6e:c0:ed:a1:7b:7a: 87:18:a3:cc:f3:fc:cd:c4:a2:c2:ba:c1:68:4f:cb:5c:2e:35: 0a:6a:db:42:92:3b:b0:7c:db:14:00:e4:3e:ba:0d:9d:16:f5: b1:82:73:55:f9:ec:87:da:f7:26:66:66:ba:79:b8:a4:b6:b6: 64:0a:81:34:3e:f4:56:cc:d0:35:74:26:f1:8f:42:68:05:f1: c0:c7:5b:f0:12:a3:19:7f:39:4c:45:bb:46:84:9a:48:d5:91: 47:f0:8a:c6:25:92:ca:f6:1b:b4:8b:25:92:b9:3f:88:44:a0: e6:55:f7:bd:42:1a:40:69:67:9a:5b:3b:f1:a2:7d:1c:29:d0: 17:ae:0f:9a:bf:6c:be:21:b7:f2:1f:39:bc:9b:50:52:42:bf: e9:01:a4:14:81:2e:4f:f9:0a:70:5a:7e:b8:fb:a9:e1:69:3a: c2:fd:54:e7:1b:e0:cb:45:39:8d:d0:38:06:2c:b1:5b:a1:48: 89:79:f3:98 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUE/XWr0tfi9NUiruh39OGgQ/uz6kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhE MEJFOTIzRjAeFw0yNDA3MDEwMDU5MjBaFw0yNTA2MzAwMTA0MjBaMDMxMTAvBgNV BAMTKDY1RURBNThFQzA1QkRBMjQ3OUVFNDQ2MzY3NTBDREZBNTBBRDlCODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT9Ns3/iN2Zn5fZEQdYx5xsVc+ 6SLNIPWPi/A2RHlUxbCnmLJG2JX4GyyRM9VIS3KeINVjtAEMvcl+yhuxN/qaqe0m lOEHXh5bl4GskdWuFEHkMETlTKM74OpvHKwVfai7njuZOwXv4LJLqd+OrA4BKeQ3 0gE6uqPptJl8+UJiV/CXoIY3f22ugO0Usu6usuej67nLttkubV9qgzrxGhHT3rV2 FvJy5sviCkwMvM4CJFb1L4Hk99alhheDnOP/mnzmog6f++WDdygqVf4nOf9/4l/5 1MZexMRlBCStFf8dNFkAcQyAb+JadoiYyc2ABbCVi9MQHpGcWu+KovtVkOvbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZe2ljsBb2iR57kRjZ1DN+lCtm4IwHwYDVR0j BBgwFoAU0/th10akR2fUUY1un9H72NC+kj8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMC9EM0ZCNjFENzQ2 QTQ0NzY3RDQ1MThENkU5RkQxRkJEOEQwQkU5MjNGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNGQjYxRDc0NkE0NDc2N0Q0NTE4RDZFOUZEMUZCRDhEMEJF OTIzRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFjLTk1MzUtNGNiZi05 YzdhLWZkMzJjODMwZWRiYS8wLzMxMzAzMzJlMzgzNzJlMzIzMzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1fnMA0GCSqG SIb3DQEBCwUAA4IBAQC9HIGLbNg+e7c1gGLizz0w+Z6no7/gyjaZH04pNoUtGuUg 1RiDFfpEi2YnlwpPm2yrj6cLbRlRbsVcFRNM8NT5LapuwO2he3qHGKPM8/zNxKLC usFoT8tcLjUKattCkjuwfNsUAOQ+ug2dFvWxgnNV+eyH2vcmZma6ebiktrZkCoE0 PvRWzNA1dCbxj0JoBfHAx1vwEqMZfzlMRbtGhJpI1ZFH8IrGJZLK9hu0iyWSuT+I RKDmVfe9QhpAaWeaWzvxon0cKdAXrg+av2y+IbfyHzm8m1BSQr/pAaQUgS5P+Qpw Wn64+6nhaTrC/VTnG+DLRTmN0DgGLLFboUiJefOY -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:38 2024 by rpki-client on console-ams.rpki-client.org