$ rpki-client -vvf repo-rpki.idnic.net/repo/7e1deb93-c190-46ee-ba83-2d91930a4395/0/3130332e3234352e3136382e302f32332d3234203d3e20313531353333.roa File: 3130332e3234352e3136382e302f32332d3234203d3e20313531353333.roa (raw, json) Hash identifier: KkeDpJbJi4/SJuEv3vqbkyR6Y9e6oZK3Xf5VQFtyFSI= Subject key identifier: 6B:22:B4:2A:76:C5:FF:8C:D6:92:3E:F1:0F:16:D1:BA:75:2B:F3:53 Certificate issuer: /CN=6B3BA28FEC3689C8F88CE4137A3D645A51FE6D32 Certificate serial: 1966622DF96E0B444AFE3549DB9772ACCED9CCFB Authority key identifier: 6B:3B:A2:8F:EC:36:89:C8:F8:8C:E4:13:7A:3D:64:5A:51:FE:6D:32 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B3BA28FEC3689C8F88CE4137A3D645A51FE6D32.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e1deb93-c190-46ee-ba83-2d91930a4395/0/3130332e3234352e3136382e302f32332d3234203d3e20313531353333.roa Signing time: Tue 29 Oct 2024 14:02:23 +0000 ROA not before: Tue 29 Oct 2024 13:57:23 +0000 ROA not after: Tue 28 Oct 2025 14:02:23 +0000 asID: 151533 IP address blocks: 103.245.168.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e1deb93-c190-46ee-ba83-2d91930a4395/0/6B3BA28FEC3689C8F88CE4137A3D645A51FE6D32.crl rsync://repo-rpki.idnic.net/repo/7e1deb93-c190-46ee-ba83-2d91930a4395/0/6B3BA28FEC3689C8F88CE4137A3D645A51FE6D32.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B3BA28FEC3689C8F88CE4137A3D645A51FE6D32.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:66:62:2d:f9:6e:0b:44:4a:fe:35:49:db:97:72:ac:ce:d9:cc:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B3BA28FEC3689C8F88CE4137A3D645A51FE6D32 Validity Not Before: Oct 29 13:57:23 2024 GMT Not After : Oct 28 14:02:23 2025 GMT Subject: CN=6B22B42A76C5FF8CD6923EF10F16D1BA752BF353 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:77:f3:1c:92:82:3a:15:37:9c:09:50:a0:90: a2:66:05:00:2e:6a:4f:ca:f6:47:da:ee:c5:9d:38: 42:48:9e:92:d2:ec:af:0e:45:93:66:18:d0:0c:b7: 9d:cf:d8:56:3c:a7:a1:2c:d0:26:32:6b:c8:11:3b: 21:59:fa:73:cf:ba:3a:97:1b:53:65:e2:e2:d9:74: 24:c0:6c:13:48:e3:b7:b3:92:49:99:fb:1e:f7:4c: da:50:d5:35:68:94:4a:fb:95:32:ee:b7:1e:30:fc: 17:8b:01:3f:df:d9:a4:94:66:f7:5c:98:ab:16:96: ec:6e:91:69:0e:e3:14:d8:dd:7c:61:fb:cf:97:8b: 37:47:6f:86:6e:13:65:c9:87:d0:a3:c3:f3:5b:3a: 4e:60:73:13:54:bd:bd:80:8a:88:5c:bf:d0:34:af: 7e:24:f1:6a:51:1b:0a:31:dc:50:73:22:0f:dc:ad: 45:d4:cf:d6:34:1d:d6:35:51:b4:e2:77:74:9a:c6: a5:e2:8d:12:b7:40:99:9e:8a:83:95:e1:b2:04:4e: b3:bc:51:96:1e:42:68:6f:9a:8c:2a:c0:ba:d2:e3: 5c:b1:7d:af:b8:74:cf:58:bc:71:11:7e:73:f8:c9: f8:66:90:e1:97:1a:e1:aa:1f:d5:65:2f:a2:df:5a: 35:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:22:B4:2A:76:C5:FF:8C:D6:92:3E:F1:0F:16:D1:BA:75:2B:F3:53 X509v3 Authority Key Identifier: keyid:6B:3B:A2:8F:EC:36:89:C8:F8:8C:E4:13:7A:3D:64:5A:51:FE:6D:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e1deb93-c190-46ee-ba83-2d91930a4395/0/6B3BA28FEC3689C8F88CE4137A3D645A51FE6D32.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B3BA28FEC3689C8F88CE4137A3D645A51FE6D32.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e1deb93-c190-46ee-ba83-2d91930a4395/0/3130332e3234352e3136382e302f32332d3234203d3e20313531353333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.168.0/23 Signature Algorithm: sha256WithRSAEncryption 54:11:cf:68:ab:55:23:da:e3:13:f6:29:c9:7b:ae:4a:c9:f0: c2:7f:a0:2f:5b:a4:59:8b:ef:14:af:56:1a:5a:ae:51:1f:d9: a3:7e:e8:d5:c7:6d:1a:f8:5a:5f:db:a9:e8:7f:06:34:e2:3d: 55:6e:4a:63:c7:e6:70:26:cc:af:eb:eb:87:1e:0f:7a:45:7e: 06:5c:0c:15:4a:df:a1:55:5d:4f:74:13:14:0d:ed:74:f5:46: 77:97:b5:c2:4a:84:9f:c4:d2:53:97:2b:bb:1a:31:09:4a:3c: 08:e7:0c:ff:2e:f2:ce:b7:c3:51:68:22:70:43:39:03:2d:40: 9a:6d:05:22:b8:eb:63:4c:4a:30:26:c8:4f:52:a7:48:00:4b: aa:ce:fc:5a:49:c4:b6:a2:90:b7:b2:09:c4:e0:11:bb:cf:9b: 1d:95:ba:c9:41:4c:7d:65:17:61:0d:01:7f:63:57:99:67:c3: 8b:e1:d5:a0:e1:b4:9b:4a:35:d8:70:42:b6:33:4d:d7:9d:d0: ca:3e:45:4a:a2:50:f4:1b:9c:47:69:f7:6f:69:db:77:cc:d2: ce:f0:a9:84:57:4e:8d:5e:56:35:48:c9:5b:f9:ab:48:9a:e9: 0b:bc:51:f6:39:a4:55:ab:4f:d8:74:94:7d:10:a4:96:87:16: ed:e0:a6:20 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUGWZiLfluC0RK/jVJ25dyrM7ZzPswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkIzQkEyOEZFQzM2ODlDOEY4OENFNDEzN0EzRDY0NUE1 MUZFNkQzMjAeFw0yNDEwMjkxMzU3MjNaFw0yNTEwMjgxNDAyMjNaMDMxMTAvBgNV BAMTKDZCMjJCNDJBNzZDNUZGOENENjkyM0VGMTBGMTZEMUJBNzUyQkYzNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5d/MckoI6FTecCVCgkKJmBQAu ak/K9kfa7sWdOEJInpLS7K8ORZNmGNAMt53P2FY8p6Es0CYya8gROyFZ+nPPujqX G1Nl4uLZdCTAbBNI47ezkkmZ+x73TNpQ1TVolEr7lTLutx4w/BeLAT/f2aSUZvdc mKsWluxukWkO4xTY3Xxh+8+XizdHb4ZuE2XJh9Cjw/NbOk5gcxNUvb2Aiohcv9A0 r34k8WpRGwox3FBzIg/crUXUz9Y0HdY1UbTid3SaxqXijRK3QJmeioOV4bIETrO8 UZYeQmhvmowqwLrS41yxfa+4dM9YvHERfnP4yfhmkOGXGuGqH9VlL6LfWjUtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUayK0KnbF/4zWkj7xDxbRunUr81MwHwYDVR0j BBgwFoAUazuij+w2icj4jOQTej1kWlH+bTIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTFkZWI5My1jMTkwLTQ2ZWUtYmE4My0yZDkxOTMwYTQzOTUvMC82QjNCQTI4RkVD MzY4OUM4Rjg4Q0U0MTM3QTNENjQ1QTUxRkU2RDMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkIzQkEyOEZFQzM2ODlDOEY4OENFNDEzN0EzRDY0NUE1MUZF NkQzMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlMWRlYjkzLWMxOTAtNDZlZS1i YTgzLTJkOTE5MzBhNDM5NS8wLzMxMzAzMzJlMzIzNDM1MmUzMTM2MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM1MzEzNTMzMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn9agwDQYJ KoZIhvcNAQELBQADggEBAFQRz2irVSPa4xP2Kcl7rkrJ8MJ/oC9bpFmL7xSvVhpa rlEf2aN+6NXHbRr4Wl/bqeh/BjTiPVVuSmPH5nAmzK/r64ceD3pFfgZcDBVK36FV XU90ExQN7XT1RneXtcJKhJ/E0lOXK7saMQlKPAjnDP8u8s63w1FoInBDOQMtQJpt BSK462NMSjAmyE9Sp0gAS6rO/FpJxLaikLeyCcTgEbvPmx2VuslBTH1lF2ENAX9j V5lnw4vh1aDhtJtKNdhwQrYzTded0Mo+RUqiUPQbnEdp929p23fM0s7wqYRXTo1e VjVIyVv5q0ia6Qu8UfY5pFWrT9h0lH0QpJaHFu3gpiA= -----END CERTIFICATE-----Generated at Sun Nov 24 18:20:18 2024 by rpki-client on console-ams.rpki-client.org