$ rpki-client -vvf repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/3130332e36392e36302e302f32342d3234203d3e20313530353239.roa File: 3130332e36392e36302e302f32342d3234203d3e20313530353239.roa (raw, json) Hash identifier: ueEktd1sAwmpdQ74SOzvsBDLzHoQEwnVisNVfqRC7tw= Subject key identifier: D2:77:72:57:F8:6D:E9:09:CD:91:B1:85:86:E0:D2:C9:4F:95:2E:2A Certificate issuer: /CN=41820333252DF92B1DBA238F558CC8D822C768EF Certificate serial: 06370578BFB3024BD07668E44610884342B0CE9F Authority key identifier: 41:82:03:33:25:2D:F9:2B:1D:BA:23:8F:55:8C:C8:D8:22:C7:68:EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/3130332e36392e36302e302f32342d3234203d3e20313530353239.roa Signing time: Wed 24 Jan 2024 03:00:00 +0000 ROA not before: Wed 24 Jan 2024 02:55:00 +0000 ROA not after: Wed 22 Jan 2025 03:00:00 +0000 asID: 150529 IP address blocks: 103.69.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.crl rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:37:05:78:bf:b3:02:4b:d0:76:68:e4:46:10:88:43:42:b0:ce:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41820333252DF92B1DBA238F558CC8D822C768EF Validity Not Before: Jan 24 02:55:00 2024 GMT Not After : Jan 22 03:00:00 2025 GMT Subject: CN=D2777257F86DE909CD91B18586E0D2C94F952E2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:6a:09:36:a5:4d:a6:f2:48:ee:f2:66:44:6a: 79:cc:55:5f:50:c9:77:ca:88:ef:35:a1:d8:f4:7c: 35:ae:09:2b:c6:ac:dc:f6:79:31:cf:b4:dd:6d:6d: 41:83:56:12:a3:9c:57:64:7c:60:1d:98:ca:be:42: e4:9b:92:14:1d:cb:0e:77:d1:92:31:6a:7d:4b:55: 28:b7:7e:42:a2:86:36:98:11:f4:32:12:1c:05:71: 84:ac:15:c4:75:9a:b4:f6:d5:71:0d:6c:73:ec:da: 37:a6:79:f4:58:7d:5b:fa:c4:4d:d1:f6:9e:7f:1e: 32:68:38:94:ed:1f:66:f7:f8:d8:19:a5:70:69:24: 19:59:e4:3c:4e:5e:e8:86:2b:2d:47:b6:4f:85:d9: cf:3e:a7:e2:f9:78:e3:6d:7b:92:32:91:b1:e0:f6: b2:91:ce:65:58:22:53:99:0c:38:bb:65:e5:4f:47: 9b:4c:da:a5:f4:48:93:ae:33:70:fc:90:66:09:c2: ac:41:82:63:15:6b:c9:4d:ab:58:14:38:e7:f2:67: 68:c4:2a:55:8a:12:dd:4d:80:3f:cf:be:b1:df:9d: 9a:31:37:02:23:93:02:85:21:d1:fb:26:6b:ef:50: f2:7c:da:f7:22:f9:1e:3a:32:43:e2:87:fe:9c:76: 33:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:77:72:57:F8:6D:E9:09:CD:91:B1:85:86:E0:D2:C9:4F:95:2E:2A X509v3 Authority Key Identifier: keyid:41:82:03:33:25:2D:F9:2B:1D:BA:23:8F:55:8C:C8:D8:22:C7:68:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/3130332e36392e36302e302f32342d3234203d3e20313530353239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.69.60.0/24 Signature Algorithm: sha256WithRSAEncryption bf:fb:bb:fa:72:ff:c2:f8:4e:b5:96:10:98:92:a2:a0:e7:18: ad:ed:92:85:56:e8:de:62:47:c3:2e:92:65:a4:f0:5d:63:b4: 63:16:73:a1:73:4a:44:2f:32:7b:56:9f:96:fb:fd:e8:d9:80: ec:1e:88:b2:8a:f9:c5:20:55:dd:c9:da:fc:2c:13:16:99:48: e5:73:bd:d2:e3:12:58:dd:95:75:fd:c3:cb:bd:2c:4a:ac:6d: 49:df:46:d6:15:aa:c9:f9:bf:98:64:cf:dd:b6:de:e6:95:48: a0:23:fc:24:ad:c9:be:b5:46:96:8a:f4:c6:4e:ab:b0:c4:4c: 87:6d:11:da:ab:bb:25:33:56:a8:29:8e:4e:b5:03:0d:93:57: 8d:3f:23:1a:df:79:69:e6:a5:ad:52:c9:5f:67:0a:35:b1:70: 38:c2:9b:30:86:a8:89:9d:6a:da:78:4a:64:ff:03:62:51:7c: 6b:58:57:b6:21:6a:bb:34:9c:74:0f:01:b3:7e:65:f3:ab:75: 33:9a:14:2b:d7:e8:d1:12:f7:e0:ae:b8:c0:5f:82:91:f5:65: 6d:60:99:ea:f5:a1:f2:1e:c0:ef:ef:22:79:d2:8d:04:a7:bf: 7e:9c:9f:83:ea:5b:9f:a3:f6:e4:a2:a1:08:79:d3:b3:81:27: 8d:fa:cc:ac -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUBjcFeL+zAkvQdmjkRhCIQ0Kwzp8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4RDgy MkM3NjhFRjAeFw0yNDAxMjQwMjU1MDBaFw0yNTAxMjIwMzAwMDBaMDMxMTAvBgNV BAMTKEQyNzc3MjU3Rjg2REU5MDlDRDkxQjE4NTg2RTBEMkM5NEY5NTJFMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvagk2pU2m8kju8mZEannMVV9Q yXfKiO81odj0fDWuCSvGrNz2eTHPtN1tbUGDVhKjnFdkfGAdmMq+QuSbkhQdyw53 0ZIxan1LVSi3fkKihjaYEfQyEhwFcYSsFcR1mrT21XENbHPs2jemefRYfVv6xE3R 9p5/HjJoOJTtH2b3+NgZpXBpJBlZ5DxOXuiGKy1Htk+F2c8+p+L5eONte5IykbHg 9rKRzmVYIlOZDDi7ZeVPR5tM2qX0SJOuM3D8kGYJwqxBgmMVa8lNq1gUOOfyZ2jE KlWKEt1NgD/PvrHfnZoxNwIjkwKFIdH7JmvvUPJ82vci+R46MkPih/6cdjP9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0ndyV/ht6QnNkbGFhuDSyU+VLiowHwYDVR0j BBgwFoAUQYIDMyUt+SsduiOPVYzI2CLHaO8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NTk3MWFlOS01Y2RkLTRkNDEtYjYyYS01YzI4NGFhODA5OGUvMC80MTgyMDMzMzI1 MkRGOTJCMURCQTIzOEY1NThDQzhEODIyQzc2OEVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4RDgyMkM3 NjhFRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1OTcxYWU5LTVjZGQtNGQ0MS1i NjJhLTVjMjg0YWE4MDk4ZS8wLzMxMzAzMzJlMzYzOTJlMzYzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDM1MzIzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdFPDANBgkqhkiG 9w0BAQsFAAOCAQEAv/u7+nL/wvhOtZYQmJKioOcYre2ShVbo3mJHwy6SZaTwXWO0 YxZzoXNKRC8ye1aflvv96NmA7B6Isor5xSBV3cna/CwTFplI5XO90uMSWN2Vdf3D y70sSqxtSd9G1hWqyfm/mGTP3bbe5pVIoCP8JK3JvrVGlor0xk6rsMRMh20R2qu7 JTNWqCmOTrUDDZNXjT8jGt95aealrVLJX2cKNbFwOMKbMIaoiZ1q2nhKZP8DYlF8 a1hXtiFquzScdA8Bs35l86t1M5oUK9fo0RL34K64wF+CkfVlbWCZ6vWh8h7A7+8i edKNBKe/fpyfg+pbn6P25KKhCHnTs4EnjfrMrA== -----END CERTIFICATE-----Generated at Sun Nov 24 08:35:26 2024 by rpki-client on console-ams.rpki-client.org