$ rpki-client -vvf repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3139312e302f32342d3234203d3e203535363835.roa File: 3130332e32302e3139312e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: luFl1qKNk39m+FnirbwTqYt4mCOvHq552sI0WT7DYaI= Subject key identifier: BB:44:3E:33:7B:55:8E:FC:ED:BC:D3:44:DB:8A:DB:35:3C:3B:A1:C8 Certificate issuer: /CN=B6F0131510E62F73E5F29246F9C8F691811A704D Certificate serial: 674D10AE08F1B9CB4265C116D1934A3D1A0A11E6 Authority key identifier: B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3139312e302f32342d3234203d3e203535363835.roa Signing time: Mon 01 Jul 2024 01:05:48 +0000 ROA not before: Mon 01 Jul 2024 01:00:48 +0000 ROA not after: Mon 30 Jun 2025 01:05:48 +0000 asID: 55685 IP address blocks: 103.20.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:4d:10:ae:08:f1:b9:cb:42:65:c1:16:d1:93:4a:3d:1a:0a:11:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6F0131510E62F73E5F29246F9C8F691811A704D Validity Not Before: Jul 1 01:00:48 2024 GMT Not After : Jun 30 01:05:48 2025 GMT Subject: CN=BB443E337B558EFCEDBCD344DB8ADB353C3BA1C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:54:be:8f:42:a5:b1:dc:7c:cb:ad:00:b4:8d: 60:0e:7b:d6:bc:ce:5e:a8:94:37:c9:a4:bf:b4:0e: 93:07:f8:e7:a4:69:51:9d:b5:fe:05:c5:5d:45:43: e7:98:3c:7a:e8:e8:87:3d:21:50:6c:a5:84:06:0c: b2:df:ed:cf:b6:0d:3d:b1:16:2b:0d:eb:6d:b9:ff: 46:90:5c:a7:36:d6:30:dd:76:aa:c4:69:20:7e:e5: df:eb:18:d2:aa:ab:8e:e2:c5:c0:5e:71:5b:8e:be: c7:98:6f:a1:3a:26:a9:66:aa:bf:d7:01:5b:94:13: 84:23:04:a7:3f:93:03:3a:84:a1:02:73:ef:7c:d4: 19:a2:51:9c:1b:e6:3e:ee:55:90:95:56:35:d0:aa: 0b:ff:97:04:45:b6:de:6d:69:58:c8:4d:d7:78:19: 68:9f:f7:65:98:0c:ae:4d:e2:be:c6:5a:25:1e:37: 07:da:84:d7:3c:c6:ba:25:f2:34:45:18:3a:0e:75: 7b:4d:b1:18:a3:78:7d:ec:cd:e7:e8:c9:8e:22:70: 56:42:ed:16:ec:f8:16:1e:d4:2f:76:c0:83:c5:77: b9:2d:d3:f7:5c:55:70:7d:f7:92:6b:20:eb:8d:22: df:94:77:33:2c:4e:50:a6:b1:ba:59:43:1d:e5:53: 51:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:44:3E:33:7B:55:8E:FC:ED:BC:D3:44:DB:8A:DB:35:3C:3B:A1:C8 X509v3 Authority Key Identifier: keyid:B6:F0:13:15:10:E6:2F:73:E5:F2:92:46:F9:C8:F6:91:81:1A:70:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/B6F0131510E62F73E5F29246F9C8F691811A704D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6F0131510E62F73E5F29246F9C8F691811A704D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85d8dab4-8bb6-4ed0-8dab-5a406167b99d/0/3130332e32302e3139312e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.191.0/24 Signature Algorithm: sha256WithRSAEncryption 55:aa:e9:8e:d0:33:65:d8:e5:fd:65:54:40:c0:29:1f:d8:8b: 3e:ea:ea:3d:b8:5e:29:3f:10:2a:41:a4:c9:21:48:35:21:f5: 8f:20:38:d2:6d:dc:4a:7a:47:e6:a6:2b:e9:e2:93:72:31:2f: 34:25:27:ad:21:b8:85:bb:9d:c1:dc:29:a5:8a:26:b1:ac:68: ca:83:62:27:1c:84:f9:57:30:21:7b:cf:70:f2:23:17:4c:21: 1d:8e:43:35:6d:ba:cb:49:e6:c2:57:98:f0:6d:a5:83:16:5f: 89:bd:4a:39:60:d2:36:84:38:cf:70:81:02:af:0d:85:7e:04: dc:34:46:1e:51:61:e6:51:d2:8b:b7:73:e0:d6:60:7c:d1:79: 16:70:c4:60:85:f8:86:9a:55:47:6d:1c:8d:8e:ef:92:1e:c9: 67:dd:01:24:89:74:1c:e9:f5:c0:41:5b:63:44:84:f4:2d:df: bc:0a:f3:83:ce:5f:81:52:ca:d1:81:28:50:17:25:b8:d4:c6: 37:5d:f2:8f:75:ca:18:01:4d:d9:f0:c1:34:e0:22:12:0e:52: 7a:b9:22:06:61:aa:a8:96:4e:9d:1c:8e:58:42:3a:d4:e9:cc: 4c:d7:dc:00:bb:ed:c6:ab:a0:65:99:2e:db:0e:b3:36:f2:03: dc:d4:4f:96 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUZ00QrgjxuctCZcEW0ZNKPRoKEeYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4 MTFBNzA0RDAeFw0yNDA3MDEwMTAwNDhaFw0yNTA2MzAwMTA1NDhaMDMxMTAvBgNV BAMTKEJCNDQzRTMzN0I1NThFRkNFREJDRDM0NERCOEFEQjM1M0MzQkExQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeVL6PQqWx3HzLrQC0jWAOe9a8 zl6olDfJpL+0DpMH+OekaVGdtf4FxV1FQ+eYPHro6Ic9IVBspYQGDLLf7c+2DT2x FisN6225/0aQXKc21jDddqrEaSB+5d/rGNKqq47ixcBecVuOvseYb6E6Jqlmqr/X AVuUE4QjBKc/kwM6hKECc+981BmiUZwb5j7uVZCVVjXQqgv/lwRFtt5taVjITdd4 GWif92WYDK5N4r7GWiUeNwfahNc8xrol8jRFGDoOdXtNsRijeH3szefoyY4icFZC 7Rbs+BYe1C92wIPFd7kt0/dcVXB995JrIOuNIt+UdzMsTlCmsbpZQx3lU1FLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUu0Q+M3tVjvztvNNE24rbNTw7ocgwHwYDVR0j BBgwFoAUtvATFRDmL3Pl8pJG+cj2kYEacE0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWQ4ZGFiNC04YmI2LTRlZDAtOGRhYi01YTQwNjE2N2I5OWQvMC9CNkYwMTMxNTEw RTYyRjczRTVGMjkyNDZGOUM4RjY5MTgxMUE3MDRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZGMDEzMTUxMEU2MkY3M0U1RjI5MjQ2RjlDOEY2OTE4MTFB NzA0RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZDhkYWI0LThiYjYtNGVkMC04 ZGFiLTVhNDA2MTY3Yjk5ZC8wLzMxMzAzMzJlMzIzMDJlMzEzOTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUvzANBgkqhkiG 9w0BAQsFAAOCAQEAVarpjtAzZdjl/WVUQMApH9iLPurqPbheKT8QKkGkySFINSH1 jyA40m3cSnpH5qYr6eKTcjEvNCUnrSG4hbudwdwppYomsaxoyoNiJxyE+VcwIXvP cPIjF0whHY5DNW26y0nmwleY8G2lgxZfib1KOWDSNoQ4z3CBAq8NhX4E3DRGHlFh 5lHSi7dz4NZgfNF5FnDEYIX4hppVR20cjY7vkh7JZ90BJIl0HOn1wEFbY0SE9C3f vArzg85fgVLK0YEoUBcluNTGN13yj3XKGAFN2fDBNOAiEg5SerkiBmGqqJZOnRyO WEI61OnMTNfcALvtxqugZZku2w6zNvID3NRPlg== -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:18 2024 by rpki-client on console-fra.rpki-client.org