$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3138382e302f32342d3234203d3e203535363835.roa File: 3130332e32302e3138382e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: nHqm8yyPxBWFnTDMPE5qYpJPxvv0T73kbb2TqPheBX0= Subject key identifier: C0:06:36:94:87:C2:12:39:AA:99:26:7F:A7:93:A7:5A:69:85:AE:D8 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 495EF35A03A4B43CE4BD10F29858AB893A734559 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3138382e302f32342d3234203d3e203535363835.roa Signing time: Mon 01 Jul 2024 01:05:48 +0000 ROA not before: Mon 01 Jul 2024 01:00:48 +0000 ROA not after: Mon 30 Jun 2025 01:05:48 +0000 asID: 55685 IP address blocks: 103.20.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:5e:f3:5a:03:a4:b4:3c:e4:bd:10:f2:98:58:ab:89:3a:73:45:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Jul 1 01:00:48 2024 GMT Not After : Jun 30 01:05:48 2025 GMT Subject: CN=C006369487C21239AA99267FA793A75A6985AED8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:92:6c:5e:09:67:00:68:6b:1a:f4:c9:3e:1f: 26:22:34:5e:b2:f6:3f:2f:6e:64:3d:e2:b4:af:fc: 47:39:a0:20:39:43:91:9f:f4:cf:79:b8:f7:33:19: 9e:1d:22:31:f0:67:69:7e:2b:c1:14:9b:78:f9:bf: e6:9a:0b:8d:04:c5:c2:7b:3b:51:05:8d:a4:b9:db: 2b:6d:c9:0d:fa:60:1f:a2:a6:a0:8e:09:4f:e6:01: 48:0e:d5:a3:b0:0f:58:02:8f:6a:34:90:5d:1d:58: 45:44:2e:90:f3:2b:fc:30:db:8f:84:17:cb:48:53: 51:1b:58:16:a1:bd:7c:51:25:c6:c9:8f:44:3a:d7: 20:60:c3:99:cb:62:b3:52:c6:5b:c5:d4:b1:62:5d: 24:4b:48:84:ad:91:4f:48:87:f2:ba:38:23:26:a6: 2e:79:b9:49:1b:24:e3:99:e4:a4:dc:b8:58:a2:0f: 8d:83:a6:a1:68:25:ad:b5:03:2e:5d:bc:32:2f:d5: f7:7a:c7:2a:4f:9a:9c:59:63:e7:ca:aa:31:02:7c: 74:22:e1:17:0c:f8:7d:7d:ff:6d:da:f7:ee:ea:d2: 6d:f4:a1:a8:80:81:a0:74:a6:a7:2b:a6:98:70:9a: fb:4b:1d:71:ab:58:bb:13:33:c4:c4:97:3d:5b:95: 52:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:06:36:94:87:C2:12:39:AA:99:26:7F:A7:93:A7:5A:69:85:AE:D8 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3138382e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.188.0/24 Signature Algorithm: sha256WithRSAEncryption 93:00:5a:a2:30:2c:a7:53:e2:fe:3b:6a:d7:19:4c:12:1d:cc: 13:b7:de:d8:1c:de:a8:b0:8a:84:8d:89:0b:e6:8a:d8:40:50: dd:1a:7c:fb:19:71:f3:4f:64:c7:84:7f:7c:81:b8:49:bd:9b: 67:a3:33:05:10:fa:6b:35:2f:2a:ac:46:c6:8c:92:48:a9:44: 5d:48:b1:71:f0:90:8c:c5:c1:c6:3d:f1:22:7d:4d:07:5c:fe: ef:bf:85:aa:78:ac:de:56:fb:75:7a:be:ad:ec:c2:ed:6d:ee: 03:ab:70:27:b8:83:07:d6:e9:ba:8d:d8:63:e1:9b:2e:81:19: 74:44:eb:b9:45:68:a8:7b:33:84:4a:88:c5:05:20:d4:63:d9: 99:e4:f1:02:34:8a:9b:20:a9:b4:08:22:be:ec:c6:6e:71:82: 7a:18:88:49:df:41:e0:fe:a8:7b:f0:86:f1:38:0f:63:51:e0: b3:18:04:fe:41:fa:97:3a:cc:2f:96:09:04:2d:27:94:ac:46: 37:3b:c9:8a:01:87:5b:ca:63:34:5e:1b:c3:ab:31:be:f9:b1: 8d:08:96:ce:24:0a:6e:4c:e3:13:fc:db:83:19:f8:24:0b:95: 39:bd:6b:50:8d:83:79:b4:ac:4e:1d:ab:b3:b4:77:84:b0:7c: 07:09:c1:bb -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSV7zWgOktDzkvRDymFiriTpzRVkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNDA3MDEwMTAwNDhaFw0yNTA2MzAwMTA1NDhaMDMxMTAvBgNV BAMTKEMwMDYzNjk0ODdDMjEyMzlBQTk5MjY3RkE3OTNBNzVBNjk4NUFFRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDakmxeCWcAaGsa9Mk+HyYiNF6y 9j8vbmQ94rSv/Ec5oCA5Q5Gf9M95uPczGZ4dIjHwZ2l+K8EUm3j5v+aaC40ExcJ7 O1EFjaS52yttyQ36YB+ipqCOCU/mAUgO1aOwD1gCj2o0kF0dWEVELpDzK/ww24+E F8tIU1EbWBahvXxRJcbJj0Q61yBgw5nLYrNSxlvF1LFiXSRLSIStkU9Ih/K6OCMm pi55uUkbJOOZ5KTcuFiiD42DpqFoJa21Ay5dvDIv1fd6xypPmpxZY+fKqjECfHQi 4RcM+H19/23a9+7q0m30oaiAgaB0pqcrpphwmvtLHXGrWLsTM8TElz1blVINAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUwAY2lIfCEjmqmSZ/p5OnWmmFrtgwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMxMzAzMzJlMzIzMDJlMzEzODM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUvDANBgkqhkiG 9w0BAQsFAAOCAQEAkwBaojAsp1Pi/jtq1xlMEh3ME7fe2BzeqLCKhI2JC+aK2EBQ 3Rp8+xlx809kx4R/fIG4Sb2bZ6MzBRD6azUvKqxGxoySSKlEXUixcfCQjMXBxj3x In1NB1z+77+Fqnis3lb7dXq+rezC7W3uA6twJ7iDB9bpuo3YY+GbLoEZdETruUVo qHszhEqIxQUg1GPZmeTxAjSKmyCptAgivuzGbnGCehiISd9B4P6oe/CG8TgPY1Hg sxgE/kH6lzrML5YJBC0nlKxGNzvJigGHW8pjNF4bw6sxvvmxjQiWziQKbkzjE/zb gxn4JAuVOb1rUI2DebSsTh2rs7R3hLB8BwnBuw== -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:18 2024 by rpki-client on console-fra.rpki-client.org