$ rpki-client -vvf repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/3130332e3136392e3133322e302f32342d3234203d3e20313432333431.roa File: 3130332e3136392e3133322e302f32342d3234203d3e20313432333431.roa (raw, json) Hash identifier: P56l00js9rnf8V8KM5dQv3ykfj4qv8CRRUVkqILqmlU= Subject key identifier: EC:29:1A:DD:D5:C6:C7:62:39:BC:4A:D1:EF:8C:24:2A:F2:14:09:0F Certificate issuer: /CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Certificate serial: 680A86D1AE5FEA97EE4EF0DA7F447C13D686FB37 Authority key identifier: 36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/3130332e3136392e3133322e302f32342d3234203d3e20313432333431.roa Signing time: Mon 01 Jul 2024 18:00:00 +0000 ROA not before: Mon 01 Jul 2024 17:55:00 +0000 ROA not after: Mon 30 Jun 2025 18:00:00 +0000 asID: 142341 IP address blocks: 103.169.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:0a:86:d1:ae:5f:ea:97:ee:4e:f0:da:7f:44:7c:13:d6:86:fb:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Validity Not Before: Jul 1 17:55:00 2024 GMT Not After : Jun 30 18:00:00 2025 GMT Subject: CN=EC291ADDD5C6C76239BC4AD1EF8C242AF214090F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7f:7d:6c:42:5c:e8:24:39:64:42:f6:3b:4f: 3d:a6:af:4d:ce:08:0d:c4:a8:33:24:87:fd:56:60: ce:75:bd:87:a8:49:da:9b:98:fc:46:be:e0:f8:e9: 20:6f:8a:8f:5f:08:bb:d6:cf:33:a0:b6:06:3e:05: 62:fe:fb:b1:ad:92:64:42:21:86:33:3b:ca:d1:df: 3d:20:00:5f:96:e9:c9:d9:d6:b6:f8:cd:de:5f:85: 5a:40:11:02:d3:55:3f:37:8c:1b:76:2e:61:e2:3d: 69:a8:6b:4f:1c:b8:a1:c0:0e:46:92:02:66:18:0c: e9:0b:5a:dd:e8:42:86:3e:a1:19:0e:fe:f4:84:69: 09:52:2e:85:24:70:f6:f6:33:4a:10:e4:3f:b3:e0: 9f:4d:e2:81:23:b9:e2:8a:c9:35:f6:fd:e4:2f:4c: d7:c2:a1:ca:8f:d2:b1:30:09:08:57:55:df:81:c5: 4f:dd:c6:0d:8a:0b:60:ff:b0:8e:54:a2:88:0b:60: 83:63:f4:57:49:ff:50:5f:03:76:83:41:b6:c1:46: d9:42:51:8a:76:f3:e6:fa:e0:be:4a:68:d5:31:4d: db:d9:7b:12:13:12:05:3c:0c:37:56:c4:47:d8:1b: a3:79:b3:67:c8:4b:a0:62:67:12:01:fd:c7:bf:21: 11:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:29:1A:DD:D5:C6:C7:62:39:BC:4A:D1:EF:8C:24:2A:F2:14:09:0F X509v3 Authority Key Identifier: keyid:36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/3130332e3136392e3133322e302f32342d3234203d3e20313432333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.132.0/24 Signature Algorithm: sha256WithRSAEncryption cf:74:ef:08:49:9f:8c:ad:e9:65:83:c1:30:56:65:72:ba:19: 5e:44:9f:0e:9a:fa:77:cd:95:3a:19:7c:43:f7:1d:92:98:45: ad:12:12:d7:35:ae:3f:19:85:c8:d6:22:49:1d:f8:fc:c3:7b: 87:2c:af:2e:65:c8:9e:93:a4:23:22:d7:1b:f9:be:5c:53:f9: 4f:1c:10:25:5a:63:2a:05:a1:18:45:2b:f5:67:62:fe:cf:f3: 2a:44:70:1e:95:08:ff:86:be:00:38:b8:7a:5d:e2:8b:4d:5e: fc:f5:1a:0f:5d:fd:f3:7f:42:fd:fc:d5:bf:6e:e6:3a:08:2d: d6:2f:e8:eb:9f:38:22:3d:d0:01:0e:4f:c9:eb:0a:78:3c:68: 20:a8:2f:28:d8:83:96:84:8d:f4:ef:34:26:98:8b:c4:2c:c4: a1:0b:c6:91:75:44:13:0f:4e:a2:68:e1:84:43:e3:35:53:cb: 75:50:7b:45:aa:0f:b6:4c:0f:c7:aa:ca:cd:09:15:e9:6c:80: 21:00:43:e5:da:b4:bc:cf:31:a8:4c:5b:1b:40:b5:08:45:24: dc:cd:56:83:fd:66:80:c4:03:0f:97:c5:44:29:b4:8e:b9:a5: 17:6e:b5:a3:5e:f2:9e:42:9f:a0:ca:23:4b:ea:09:4a:55:b0: 92:52:97:ca -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUaAqG0a5f6pfuTvDaf0R8E9aG+zcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VF NDlFOEExNzAeFw0yNDA3MDExNzU1MDBaFw0yNTA2MzAxODAwMDBaMDMxMTAvBgNV BAMTKEVDMjkxQURERDVDNkM3NjIzOUJDNEFEMUVGOEMyNDJBRjIxNDA5MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbf31sQlzoJDlkQvY7Tz2mr03O CA3EqDMkh/1WYM51vYeoSdqbmPxGvuD46SBvio9fCLvWzzOgtgY+BWL++7GtkmRC IYYzO8rR3z0gAF+W6cnZ1rb4zd5fhVpAEQLTVT83jBt2LmHiPWmoa08cuKHADkaS AmYYDOkLWt3oQoY+oRkO/vSEaQlSLoUkcPb2M0oQ5D+z4J9N4oEjueKKyTX2/eQv TNfCocqP0rEwCQhXVd+BxU/dxg2KC2D/sI5UoogLYINj9FdJ/1BfA3aDQbbBRtlC UYp28+b64L5KaNUxTdvZexITEgU8DDdWxEfYG6N5s2fIS6BiZxIB/ce/IRE7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU7Cka3dXGx2I5vErR74wkKvIUCQ8wHwYDVR0j BBgwFoAUNuaOKiZOGL/Z9J5HLQ0mfuSeihcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2QyMDMxYi0yNzYxLTRjMzYtYjY5MC01YjY5ZDE1NjliYWUvMC8zNkU2OEUyQTI2 NEUxOEJGRDlGNDlFNDcyRDBEMjY3RUU0OUU4QTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VFNDlF OEExNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZDIwMzFiLTI3NjEtNGMzNi1i NjkwLTViNjlkMTU2OWJhZS8wLzMxMzAzMzJlMzEzNjM5MmUzMTMzMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqYQwDQYJ KoZIhvcNAQELBQADggEBAM907whJn4yt6WWDwTBWZXK6GV5Enw6a+nfNlToZfEP3 HZKYRa0SEtc1rj8ZhcjWIkkd+PzDe4csry5lyJ6TpCMi1xv5vlxT+U8cECVaYyoF oRhFK/VnYv7P8ypEcB6VCP+GvgA4uHpd4otNXvz1Gg9d/fN/Qv381b9u5joILdYv 6OufOCI90AEOT8nrCng8aCCoLyjYg5aEjfTvNCaYi8QsxKELxpF1RBMPTqJo4YRD 4zVTy3VQe0WqD7ZMD8eqys0JFelsgCEAQ+XatLzPMahMWxtAtQhFJNzNVoP9ZoDE Aw+XxUQptI65pRdutaNe8p5Cn6DKI0vqCUpVsJJSl8o= -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:32 2024 by rpki-client on console-fra.rpki-client.org