$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133362e302f32322d3234203d3e203137363731.roa File: 3130332e31302e3133362e302f32322d3234203d3e203137363731.roa (raw, json) Hash identifier: QbxosqQK//d2RqBMvzHIwqangnp+BlfddLrLSWuWwjQ= Subject key identifier: DA:AB:FA:43:8B:2E:5E:A3:93:8B:A6:B9:8C:5F:10:56:E9:73:C6:C9 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 1E34DC1E9E44D04B7F91648AAE614715C250CB4C Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133362e302f32322d3234203d3e203137363731.roa Signing time: Fri 14 Jun 2024 03:00:02 +0000 ROA not before: Fri 14 Jun 2024 02:55:02 +0000 ROA not after: Fri 13 Jun 2025 03:00:02 +0000 asID: 17671 IP address blocks: 103.10.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:34:dc:1e:9e:44:d0:4b:7f:91:64:8a:ae:61:47:15:c2:50:cb:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 14 02:55:02 2024 GMT Not After : Jun 13 03:00:02 2025 GMT Subject: CN=DAABFA438B2E5EA3938BA6B98C5F1056E973C6C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:36:4d:b1:4f:b4:6d:83:20:45:f0:62:b2:82: b2:2d:c0:fc:f9:e8:a2:52:80:08:ba:9a:d2:30:b5: 30:3a:4d:58:e2:85:e4:5e:10:41:0d:7d:2f:e1:59: 66:ee:55:0e:e0:1c:aa:3a:0c:56:00:6d:2f:c1:c0: 0e:5d:b4:c5:72:03:df:4e:88:c5:54:3a:1b:48:fa: ef:45:7d:25:6c:2e:9a:60:80:94:55:f9:85:56:02: db:c0:c1:f8:2d:45:c4:95:5a:9c:eb:ac:d3:6e:25: 7b:72:48:47:65:99:88:26:33:85:d3:9e:c7:b7:be: de:c1:58:04:bb:47:f9:c2:a5:c4:74:b4:50:b3:5d: d5:10:18:62:ea:2f:53:04:fe:3b:e6:25:25:02:01: bb:7e:29:11:39:65:3c:91:73:46:3b:a5:fa:3f:99: e2:65:d4:e1:a0:88:1f:19:d3:9d:19:9e:8c:a2:2a: 32:fd:67:0f:df:72:96:47:dc:74:6e:4b:19:24:7b: ad:24:89:21:b4:d7:ad:d4:64:4e:7a:bb:18:b3:f3: 2d:dd:1b:2a:a8:d3:2f:77:e7:09:05:a6:82:7d:95: 7f:8d:49:98:7d:e6:b1:73:b7:1f:5c:58:9f:4a:ce: b4:a0:7a:8e:fa:6a:60:db:d9:78:39:b9:01:7a:34: fa:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:AB:FA:43:8B:2E:5E:A3:93:8B:A6:B9:8C:5F:10:56:E9:73:C6:C9 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133362e302f32322d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.136.0/22 Signature Algorithm: sha256WithRSAEncryption 4f:03:da:f7:91:e8:0a:bc:98:98:d3:82:0d:e2:19:c0:80:05: d8:8d:f9:96:44:ba:84:39:dc:b9:ca:10:0b:d4:1b:9a:71:ff: 8b:b1:a7:0a:a9:55:48:ad:c9:d6:04:0d:d3:b0:dd:ef:50:e2: 5a:7e:65:d5:54:c3:1a:44:f4:49:1a:07:e2:da:37:27:03:cd: 1d:34:d9:71:11:e9:59:1c:de:d8:9a:2a:11:3c:de:3e:bd:5d: 74:de:09:4d:95:bb:54:03:ef:8e:3b:c6:ff:4a:a9:96:95:18: c8:35:e8:28:80:cf:78:2f:d3:c4:98:b9:96:9a:b9:03:4a:e8: 86:6e:14:ff:29:3f:3d:23:18:a5:42:67:bc:d8:3e:46:cd:38: 94:bc:7d:cf:04:42:aa:96:dd:b8:29:01:33:49:00:f5:45:15: cb:96:19:44:c9:a3:16:d8:dc:ba:cf:69:b7:98:f4:97:16:6d: 68:30:cb:81:42:e6:b7:25:fe:b6:e4:ec:01:b9:aa:07:32:e9: 98:e8:77:a7:a5:db:7f:bf:d1:18:ba:74:a8:b9:42:5b:49:cc: 1e:e1:39:55:59:6c:78:5e:b5:4a:00:0d:85:e6:93:6a:3d:5e: a9:d6:5b:d0:d8:da:f6:21:97:63:54:dd:ec:50:bb:3b:1f:4c: f8:ae:54:83 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHjTcHp5E0Et/kWSKrmFHFcJQy0wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTQwMjU1MDJaFw0yNTA2MTMwMzAwMDJaMDMxMTAvBgNV BAMTKERBQUJGQTQzOEIyRTVFQTM5MzhCQTZCOThDNUYxMDU2RTk3M0M2QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfNk2xT7RtgyBF8GKygrItwPz5 6KJSgAi6mtIwtTA6TVjiheReEEENfS/hWWbuVQ7gHKo6DFYAbS/BwA5dtMVyA99O iMVUOhtI+u9FfSVsLppggJRV+YVWAtvAwfgtRcSVWpzrrNNuJXtySEdlmYgmM4XT nse3vt7BWAS7R/nCpcR0tFCzXdUQGGLqL1ME/jvmJSUCAbt+KRE5ZTyRc0Y7pfo/ meJl1OGgiB8Z050ZnoyiKjL9Zw/fcpZH3HRuSxkke60kiSG0163UZE56uxiz8y3d Gyqo0y935wkFpoJ9lX+NSZh95rFztx9cWJ9KzrSgeo76amDb2Xg5uQF6NPrHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU2qv6Q4suXqOTi6a5jF8QVulzxskwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzAzMzJlMzEzMDJlMzEzMzM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcKiDANBgkqhkiG 9w0BAQsFAAOCAQEATwPa95HoCryYmNOCDeIZwIAF2I35lkS6hDncucoQC9QbmnH/ i7GnCqlVSK3J1gQN07Dd71DiWn5l1VTDGkT0SRoH4to3JwPNHTTZcRHpWRze2Joq ETzePr1ddN4JTZW7VAPvjjvG/0qplpUYyDXoKIDPeC/TxJi5lpq5A0rohm4U/yk/ PSMYpUJnvNg+Rs04lLx9zwRCqpbduCkBM0kA9UUVy5YZRMmjFtjcus9pt5j0lxZt aDDLgULmtyX+tuTsAbmqBzLpmOh3p6Xbf7/RGLp0qLlCW0nMHuE5VVlseF61SgAN heaTaj1eqdZb0Nja9iGXY1Td7FC7Ox9M+K5Ugw== -----END CERTIFICATE-----Generated at Sun Nov 24 20:07:39 2024 by rpki-client on console-ams.rpki-client.org