$ rpki-client -vvf repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/3130332e3131362e3231382e302f32342d3234203d3e20313337333636.roa File: 3130332e3131362e3231382e302f32342d3234203d3e20313337333636.roa (raw, json) Hash identifier: XBLpOc8QLNhoGsvmXEZNep/rcF2zC1JRvYdm6bbhbC8= Subject key identifier: AF:22:F3:48:17:21:A1:6E:74:4E:66:84:4F:5A:30:77:EF:13:E7:42 Certificate issuer: /CN=DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3 Certificate serial: 34807AEE22287A45DD306AF912065ADC40C343CB Authority key identifier: DB:6B:AB:95:61:4F:69:81:1F:2A:E9:B4:83:73:E7:9D:2D:C2:D7:F3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/3130332e3131362e3231382e302f32342d3234203d3e20313337333636.roa Signing time: Mon 01 Jul 2024 01:04:16 +0000 ROA not before: Mon 01 Jul 2024 00:59:16 +0000 ROA not after: Mon 30 Jun 2025 01:04:16 +0000 asID: 137366 IP address blocks: 103.116.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.crl rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:80:7a:ee:22:28:7a:45:dd:30:6a:f9:12:06:5a:dc:40:c3:43:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3 Validity Not Before: Jul 1 00:59:16 2024 GMT Not After : Jun 30 01:04:16 2025 GMT Subject: CN=AF22F3481721A16E744E66844F5A3077EF13E742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2a:4a:ed:f3:dd:17:4e:d7:47:42:d5:a6:d3: c0:3a:29:25:b1:ab:eb:45:5a:08:94:8f:31:35:39: ae:be:86:76:1c:ea:a0:5a:81:92:06:21:31:f5:b1: 56:06:d4:03:cc:b0:e4:de:8c:91:58:5a:26:1e:76: 95:58:70:4a:e4:90:a6:e0:dc:b7:ae:5b:3c:2b:d1: 37:8b:66:85:03:27:48:35:e3:72:db:5b:d1:54:17: f0:df:58:04:95:1a:01:87:32:89:1d:6b:9f:ff:0e: 9b:2e:cb:51:46:25:41:27:9f:c9:fe:9c:d8:20:37: 8c:ec:4c:43:30:60:7a:05:bf:b7:26:49:6f:a1:a5: c3:05:69:b4:d8:91:b6:25:d6:9d:4b:b3:fd:9c:78: 1b:de:c5:84:f2:91:6e:d9:45:30:a4:bb:db:04:41: 11:0b:c8:97:94:4e:26:82:12:92:56:f8:e5:32:16: c4:d7:c9:d5:53:bd:b9:59:12:51:70:6b:9a:c5:73: 29:98:8e:23:5a:db:31:0a:44:8d:8c:05:c4:34:29: ea:6d:22:ec:06:8a:3e:39:99:2e:22:6b:bf:eb:36: e2:28:32:74:bd:94:60:b0:fb:94:63:da:d6:5c:ad: 63:e4:84:96:a9:cd:1b:14:19:4c:1d:b9:f0:cf:74: ef:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:22:F3:48:17:21:A1:6E:74:4E:66:84:4F:5A:30:77:EF:13:E7:42 X509v3 Authority Key Identifier: keyid:DB:6B:AB:95:61:4F:69:81:1F:2A:E9:B4:83:73:E7:9D:2D:C2:D7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/3130332e3131362e3231382e302f32342d3234203d3e20313337333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.116.218.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:94:fd:8e:ac:92:8c:ea:ae:ed:bc:39:01:9c:e8:37:32:1d: 66:8b:ac:08:3d:c8:0a:1e:27:45:1f:72:db:c5:27:c8:8d:fa: 3c:47:ce:ea:75:2f:17:eb:ef:73:44:d0:e5:0f:90:4d:f2:b5: 3a:5e:6e:96:a6:86:16:45:16:69:4a:88:ad:2b:cb:d7:cf:0e: cc:f1:9a:e5:e5:47:62:3f:2a:d1:a8:06:22:16:c3:83:61:a2: f6:da:f5:c4:5f:20:57:64:92:f0:3a:3e:5d:8c:4b:02:9d:d8: 70:86:60:d5:25:50:bc:de:6d:53:b2:c0:ab:5f:27:c7:d1:81: 12:03:9b:08:02:95:9f:a3:98:18:be:eb:20:9f:3e:eb:06:38: 87:6d:25:96:39:a5:23:fb:2d:ed:f1:df:2b:65:2b:9b:5c:ff: aa:42:b3:11:5d:8c:d1:85:77:71:b3:d6:eb:f4:1b:5f:58:07: d4:16:42:9b:fa:48:99:25:fa:16:c3:dd:b1:4e:b4:1d:cb:b8: 28:af:32:33:7b:d5:c7:1e:57:ee:4e:c7:27:2b:67:1a:d0:17: 52:10:92:84:7a:5e:60:6e:08:eb:12:61:21:05:ed:e9:42:67: f4:df:77:39:10:36:75:e3:e7:17:b8:6a:a7:4a:ef:15:56:18: 2d:4d:a7:aa -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUNIB67iIoekXdMGr5EgZa3EDDQ8swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREI2QkFCOTU2MTRGNjk4MTFGMkFFOUI0ODM3M0U3OUQy REMyRDdGMzAeFw0yNDA3MDEwMDU5MTZaFw0yNTA2MzAwMTA0MTZaMDMxMTAvBgNV BAMTKEFGMjJGMzQ4MTcyMUExNkU3NDRFNjY4NDRGNUEzMDc3RUYxM0U3NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxKkrt890XTtdHQtWm08A6KSWx q+tFWgiUjzE1Oa6+hnYc6qBagZIGITH1sVYG1APMsOTejJFYWiYedpVYcErkkKbg 3LeuWzwr0TeLZoUDJ0g143LbW9FUF/DfWASVGgGHMokda5//Dpsuy1FGJUEnn8n+ nNggN4zsTEMwYHoFv7cmSW+hpcMFabTYkbYl1p1Ls/2ceBvexYTykW7ZRTCku9sE QRELyJeUTiaCEpJW+OUyFsTXydVTvblZElFwa5rFcymYjiNa2zEKRI2MBcQ0Kept IuwGij45mS4ia7/rNuIoMnS9lGCw+5Rj2tZcrWPkhJapzRsUGUwdufDPdO/FAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUryLzSBchoW50TmaET1owd+8T50IwHwYDVR0j BBgwFoAU22urlWFPaYEfKum0g3PnnS3C1/MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NmQ3MjBkNS1iN2Q0LTQzOTUtYTA2Yi0xOTkwNGE2M2Y5NDgvMC9EQjZCQUI5NTYx NEY2OTgxMUYyQUU5QjQ4MzczRTc5RDJEQzJEN0YzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREI2QkFCOTU2MTRGNjk4MTFGMkFFOUI0ODM3M0U3OUQyREMy RDdGMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg2ZDcyMGQ1LWI3ZDQtNDM5NS1h MDZiLTE5OTA0YTYzZjk0OC8wLzMxMzAzMzJlMzEzMTM2MmUzMjMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABndNowDQYJ KoZIhvcNAQELBQADggEBADyU/Y6skozqru28OQGc6DcyHWaLrAg9yAoeJ0UfctvF J8iN+jxHzup1Lxfr73NE0OUPkE3ytTpebpamhhZFFmlKiK0ry9fPDszxmuXlR2I/ KtGoBiIWw4Nhovba9cRfIFdkkvA6Pl2MSwKd2HCGYNUlULzebVOywKtfJ8fRgRID mwgClZ+jmBi+6yCfPusGOIdtJZY5pSP7Le3x3ytlK5tc/6pCsxFdjNGFd3Gz1uv0 G19YB9QWQpv6SJkl+hbD3bFOtB3LuCivMjN71cceV+5OxycrZxrQF1IQkoR6XmBu COsSYSEF7elCZ/TfdzkQNnXj5xe4aqdK7xVWGC1Np6o= -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:40 2024 by rpki-client on console-fra.rpki-client.org