$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3138392e302f32342d3234203d3e203535363835.roa File: 3130332e32302e3138392e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: bH774859sVD6cqG6WjB7OKJl1e5lhiJD+R/xEIy8ERA= Subject key identifier: FF:A2:71:D2:5E:11:7A:BE:36:57:2A:7F:C6:6F:B3:D6:1F:9E:2F:6B Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 718EFE5AB71C97726A2709F5267A625055F740CF Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3138392e302f32342d3234203d3e203535363835.roa Signing time: Mon 01 Jul 2024 01:05:49 +0000 ROA not before: Mon 01 Jul 2024 01:00:49 +0000 ROA not after: Mon 30 Jun 2025 01:05:49 +0000 asID: 55685 IP address blocks: 103.20.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:8e:fe:5a:b7:1c:97:72:6a:27:09:f5:26:7a:62:50:55:f7:40:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Jul 1 01:00:49 2024 GMT Not After : Jun 30 01:05:49 2025 GMT Subject: CN=FFA271D25E117ABE36572A7FC66FB3D61F9E2F6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:17:fd:b3:83:93:83:74:5a:52:dc:38:8b:21: a5:4e:c4:43:7c:a4:da:6c:ba:48:83:90:38:d4:b5: 83:62:2e:c3:10:89:ce:9f:13:da:53:54:34:11:61: 2e:c6:8d:7c:60:99:f8:48:ef:e4:96:10:1a:03:26: 44:b0:f9:e2:ff:18:03:95:94:01:0d:bd:c9:e9:41: e4:1c:ab:6f:b2:ef:52:15:b0:19:78:27:e0:6f:00: fc:77:56:e6:52:29:cd:11:d3:37:a1:fc:9c:e3:47: 7a:b7:16:02:c5:ac:a6:65:fd:54:c7:c5:13:8f:ee: d5:38:e0:8a:2b:74:6c:58:68:04:7f:2d:c3:08:62: 1d:e9:2f:89:78:3f:67:5f:5f:15:dc:ef:ff:d2:46: 53:0f:c3:c5:ef:34:b9:18:cd:95:e4:05:05:c3:5f: 15:5d:31:df:50:42:c2:7c:9e:f6:5a:b7:66:46:55: c8:30:04:45:30:37:83:aa:d9:91:03:40:09:e6:17: 3b:48:1e:4a:a1:d9:06:32:37:40:a8:84:31:de:98: b9:89:e7:12:62:ef:0d:3c:93:da:da:16:07:7e:81: 9c:fe:5b:7d:48:2f:ee:10:3c:f4:2f:f6:82:0b:19: 63:a5:e9:23:e2:f2:04:26:bd:a3:22:3d:db:5d:b4: 0f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:A2:71:D2:5E:11:7A:BE:36:57:2A:7F:C6:6F:B3:D6:1F:9E:2F:6B X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3138392e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.189.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:31:09:c8:33:d2:ab:32:7c:f4:09:25:f3:1a:13:dc:a2:0a: fd:37:08:93:5c:69:4e:2b:c2:ef:8f:ed:43:b4:62:9c:e8:08: a0:2f:50:bf:24:04:a2:14:26:5b:03:6b:fa:b6:98:cd:37:8f: ea:66:0e:f0:25:62:3a:d4:ca:bb:82:9c:39:9d:8b:0a:59:09: d2:55:3d:61:07:94:e2:e7:d8:33:f7:af:a0:0f:1b:9e:36:a9: 5c:cc:58:ca:4d:5c:c2:52:33:16:fe:dd:a6:48:c9:b2:d5:6f: 6a:2a:83:89:64:51:2d:09:d1:26:fa:75:24:10:e0:6d:7f:6b: 04:34:0e:35:a0:0a:b8:98:51:43:95:78:67:e4:ee:86:63:2f: 6b:c3:4b:f5:cd:08:c5:35:40:fa:80:57:db:fe:44:f6:e0:62: 8c:45:a1:ec:ce:d3:c4:4c:47:26:14:3a:ad:61:73:e1:43:11: 63:c3:41:52:22:14:0e:07:7b:93:bb:6f:c7:8d:7b:a5:e8:fa: 8e:31:4a:00:0e:27:c5:06:3e:43:c3:b5:d2:ad:4e:13:8d:f1: 20:fa:56:7a:0e:8f:91:4b:17:2c:61:4f:e8:c3:b2:b3:3d:4f: af:6b:cc:c2:8b:5e:40:22:ea:68:cf:0c:af:ec:94:a4:f2:71: c0:42:6b:60 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcY7+Wrccl3JqJwn1JnpiUFX3QM8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNDA3MDEwMTAwNDlaFw0yNTA2MzAwMTA1NDlaMDMxMTAvBgNV BAMTKEZGQTI3MUQyNUUxMTdBQkUzNjU3MkE3RkM2NkZCM0Q2MUY5RTJGNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSF/2zg5ODdFpS3DiLIaVOxEN8 pNpsukiDkDjUtYNiLsMQic6fE9pTVDQRYS7GjXxgmfhI7+SWEBoDJkSw+eL/GAOV lAENvcnpQeQcq2+y71IVsBl4J+BvAPx3VuZSKc0R0zeh/JzjR3q3FgLFrKZl/VTH xROP7tU44IordGxYaAR/LcMIYh3pL4l4P2dfXxXc7//SRlMPw8XvNLkYzZXkBQXD XxVdMd9QQsJ8nvZat2ZGVcgwBEUwN4Oq2ZEDQAnmFztIHkqh2QYyN0CohDHemLmJ 5xJi7w08k9raFgd+gZz+W31IL+4QPPQv9oILGWOl6SPi8gQmvaMiPdtdtA/ZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU/6Jx0l4Rer42Vyp/xm+z1h+eL2swHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMxMzAzMzJlMzIzMDJlMzEzODM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUvTANBgkqhkiG 9w0BAQsFAAOCAQEAPjEJyDPSqzJ89Akl8xoT3KIK/TcIk1xpTivC74/tQ7RinOgI oC9QvyQEohQmWwNr+raYzTeP6mYO8CViOtTKu4KcOZ2LClkJ0lU9YQeU4ufYM/ev oA8bnjapXMxYyk1cwlIzFv7dpkjJstVvaiqDiWRRLQnRJvp1JBDgbX9rBDQONaAK uJhRQ5V4Z+TuhmMva8NL9c0IxTVA+oBX2/5E9uBijEWh7M7TxExHJhQ6rWFz4UMR Y8NBUiIUDgd7k7tvx417pej6jjFKAA4nxQY+Q8O10q1OE43xIPpWeg6PkUsXLGFP 6MOysz1Pr2vMwoteQCLqaM8Mr+yUpPJxwEJrYA== -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:18 2024 by rpki-client on console-fra.rpki-client.org