$ rpki-client -vvf repo-rpki.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0/3130332e3138312e3133362e302f32332d3234203d3e2039333431.roa File: 3130332e3138312e3133362e302f32332d3234203d3e2039333431.roa (raw, json) Hash identifier: kLMAt4pUqam+S5BXiZJsGKCAH7ssUS2ljcV5lrw7cYw= Subject key identifier: F7:F0:5D:81:36:03:C6:F4:7A:E9:C9:1C:D3:CA:77:0F:8E:29:4D:70 Certificate issuer: /CN=6437999FD06F2C7F0F16F8160CD6145F775884A4 Certificate serial: 0A6DA0862BCC2D4737494F6CCCB71F63A926AEE0 Authority key identifier: 64:37:99:9F:D0:6F:2C:7F:0F:16:F8:16:0C:D6:14:5F:77:58:84:A4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6437999FD06F2C7F0F16F8160CD6145F775884A4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0/3130332e3138312e3133362e302f32332d3234203d3e2039333431.roa Signing time: Wed 10 Jan 2024 19:00:00 +0000 ROA not before: Wed 10 Jan 2024 18:55:00 +0000 ROA not after: Wed 08 Jan 2025 19:00:00 +0000 asID: 9341 IP address blocks: 103.181.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0/6437999FD06F2C7F0F16F8160CD6145F775884A4.crl rsync://repo-rpki.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0/6437999FD06F2C7F0F16F8160CD6145F775884A4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6437999FD06F2C7F0F16F8160CD6145F775884A4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:26:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:6d:a0:86:2b:cc:2d:47:37:49:4f:6c:cc:b7:1f:63:a9:26:ae:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6437999FD06F2C7F0F16F8160CD6145F775884A4 Validity Not Before: Jan 10 18:55:00 2024 GMT Not After : Jan 8 19:00:00 2025 GMT Subject: CN=F7F05D813603C6F47AE9C91CD3CA770F8E294D70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2a:22:16:86:a8:12:5f:ac:c0:c3:23:97:ca: 4c:91:24:9c:fb:f6:3e:59:1a:50:9e:9f:57:bf:1d: 06:ef:1a:3b:c1:25:91:51:3c:b2:b7:a7:25:f0:b4: 5a:d1:3e:e2:75:2c:fc:58:51:73:24:25:a0:b2:94: 76:6b:df:0d:ee:82:e9:ec:f0:84:b7:af:49:ea:e3: e7:2c:49:4c:b8:3c:97:de:82:8e:77:d0:2c:e5:5f: 5b:db:c5:cf:84:23:36:08:81:96:5a:ad:d3:f4:ae: 73:36:da:00:b6:0a:8a:88:fe:ed:34:de:4a:07:e4: 61:c9:77:18:6f:87:8a:99:f3:15:e4:74:06:5a:7d: a1:fd:8c:8f:6a:a0:c2:ac:ac:9d:52:7a:03:e7:68: 1b:4d:c8:5c:b3:11:cf:9d:cc:d0:f8:9b:5e:0f:5a: a3:7e:1c:a0:88:77:b1:93:c3:55:a7:91:b9:c9:f2: 43:2d:f7:fd:5a:29:14:b1:5b:3b:80:87:6e:a4:20: 14:97:67:a7:f7:5a:92:19:94:76:b1:cc:b1:5c:80: 66:f5:c8:a1:65:cc:7e:2d:d7:34:0e:0e:d4:15:07: 16:4e:18:03:0e:8d:94:7b:20:b7:a0:c9:78:90:18: b4:6f:19:a2:0f:1c:70:7d:ac:3b:3f:a3:aa:03:a3: 4b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:F0:5D:81:36:03:C6:F4:7A:E9:C9:1C:D3:CA:77:0F:8E:29:4D:70 X509v3 Authority Key Identifier: keyid:64:37:99:9F:D0:6F:2C:7F:0F:16:F8:16:0C:D6:14:5F:77:58:84:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0/6437999FD06F2C7F0F16F8160CD6145F775884A4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6437999FD06F2C7F0F16F8160CD6145F775884A4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0/3130332e3138312e3133362e302f32332d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.181.136.0/23 Signature Algorithm: sha256WithRSAEncryption 21:1e:76:5e:11:9f:b3:68:b4:6b:e2:b2:fb:a0:6c:35:7b:ce: 73:21:73:9b:d8:fa:22:8d:84:7e:31:66:bf:d4:29:84:f8:8a: ab:94:a6:bf:06:51:ea:e0:a1:61:38:58:b7:72:a2:df:b9:1f: bc:51:65:ba:40:d8:6d:b9:5b:07:85:7e:a9:b6:ef:82:e0:73: 4d:09:b1:f7:d1:47:66:58:6b:ef:c4:91:15:fb:f5:cd:af:97: 4c:a9:c1:ad:9f:0f:7f:6e:36:16:95:07:5f:86:97:3b:2f:e0: 0f:66:c1:c5:dd:0b:53:4a:39:78:02:96:a3:81:f3:6f:0a:dd: dd:83:ca:da:3c:20:b0:ec:88:bf:b6:eb:bb:ef:95:b8:48:9c: 3e:02:83:7a:bb:c9:6c:11:53:26:b2:12:17:de:a2:88:29:68: c9:10:a4:8f:4f:6c:89:f7:1a:a2:9b:66:f5:fb:12:10:25:d5: e4:77:70:0d:a4:40:2e:f5:55:cf:8c:94:95:ae:90:86:01:00: fd:5a:3f:3f:00:72:1c:1d:38:c0:56:cc:ed:6c:e8:0e:c0:60: a5:55:85:d8:b6:2b:c8:e8:9c:64:de:26:6c:a8:60:18:a7:bf: 22:bb:c3:59:02:bf:c8:88:30:93:6f:b1:46:be:95:a0:a1:15: 12:89:1d:f6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUCm2ghivMLUc3SU9szLcfY6kmruAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjQzNzk5OUZEMDZGMkM3RjBGMTZGODE2MENENjE0NUY3 NzU4ODRBNDAeFw0yNDAxMTAxODU1MDBaFw0yNTAxMDgxOTAwMDBaMDMxMTAvBgNV BAMTKEY3RjA1RDgxMzYwM0M2RjQ3QUU5QzkxQ0QzQ0E3NzBGOEUyOTRENzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMKiIWhqgSX6zAwyOXykyRJJz7 9j5ZGlCen1e/HQbvGjvBJZFRPLK3pyXwtFrRPuJ1LPxYUXMkJaCylHZr3w3uguns 8IS3r0nq4+csSUy4PJfego530CzlX1vbxc+EIzYIgZZardP0rnM22gC2CoqI/u00 3koH5GHJdxhvh4qZ8xXkdAZafaH9jI9qoMKsrJ1SegPnaBtNyFyzEc+dzND4m14P WqN+HKCId7GTw1WnkbnJ8kMt9/1aKRSxWzuAh26kIBSXZ6f3WpIZlHaxzLFcgGb1 yKFlzH4t1zQODtQVBxZOGAMOjZR7ILegyXiQGLRvGaIPHHB9rDs/o6oDo0uHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9/BdgTYDxvR66ckc08p3D44pTXAwHwYDVR0j BBgwFoAUZDeZn9BvLH8PFvgWDNYUX3dYhKQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NzZmZGM2MC04MDIzLTQwY2QtYWFhNC1jZDZlZDIyYzRkNDUvMC82NDM3OTk5RkQw NkYyQzdGMEYxNkY4MTYwQ0Q2MTQ1Rjc3NTg4NEE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjQzNzk5OUZEMDZGMkM3RjBGMTZGODE2MENENjE0NUY3NzU4 ODRBNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3NmZkYzYwLTgwMjMtNDBjZC1h YWE0LWNkNmVkMjJjNGQ0NS8wLzMxMzAzMzJlMzEzODMxMmUzMTMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe1iDANBgkqhkiG 9w0BAQsFAAOCAQEAIR52XhGfs2i0a+Ky+6BsNXvOcyFzm9j6Io2EfjFmv9QphPiK q5SmvwZR6uChYThYt3Ki37kfvFFlukDYbblbB4V+qbbvguBzTQmx99FHZlhr78SR Ffv1za+XTKnBrZ8Pf242FpUHX4aXOy/gD2bBxd0LU0o5eAKWo4Hzbwrd3YPK2jwg sOyIv7bru++VuEicPgKDervJbBFTJrISF96iiCloyRCkj09sifcaoptm9fsSECXV 5HdwDaRALvVVz4yUla6QhgEA/Vo/PwByHB04wFbM7WzoDsBgpVWF2LYryOicZN4m bKhgGKe/IrvDWQK/yIgwk2+xRr6VoKEVEokd9g== -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:36 2024 by rpki-client on console-ams.rpki-client.org