$ rpki-client -vvf repo-rpki.idnic.net/repo/925e88bd-75e2-45df-8867-45402fc7c4b1/0/3130332e36302e3233332e302f32342d3234203d3e20313530353034.roa File: 3130332e36302e3233332e302f32342d3234203d3e20313530353034.roa (raw, json) Hash identifier: hqkF7JP7I5Nsp5jfRZpVZIickIDH+IaCA30LmQZm2eo= Subject key identifier: B6:94:83:84:31:B5:81:96:4D:D3:10:45:28:6B:76:91:43:0C:53:D2 Certificate issuer: /CN=6862B9697E607C0C4861E56917A18D87AC33A721 Certificate serial: 03BB920FE6960C966A643C349716E15403C509A2 Authority key identifier: 68:62:B9:69:7E:60:7C:0C:48:61:E5:69:17:A1:8D:87:AC:33:A7:21 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6862B9697E607C0C4861E56917A18D87AC33A721.cer Subject info access: rsync://repo-rpki.idnic.net/repo/925e88bd-75e2-45df-8867-45402fc7c4b1/0/3130332e36302e3233332e302f32342d3234203d3e20313530353034.roa Signing time: Sun 14 Jan 2024 13:00:00 +0000 ROA not before: Sun 14 Jan 2024 12:55:00 +0000 ROA not after: Sun 12 Jan 2025 13:00:00 +0000 asID: 150504 IP address blocks: 103.60.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/925e88bd-75e2-45df-8867-45402fc7c4b1/0/6862B9697E607C0C4861E56917A18D87AC33A721.crl rsync://repo-rpki.idnic.net/repo/925e88bd-75e2-45df-8867-45402fc7c4b1/0/6862B9697E607C0C4861E56917A18D87AC33A721.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6862B9697E607C0C4861E56917A18D87AC33A721.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:35:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:bb:92:0f:e6:96:0c:96:6a:64:3c:34:97:16:e1:54:03:c5:09:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6862B9697E607C0C4861E56917A18D87AC33A721 Validity Not Before: Jan 14 12:55:00 2024 GMT Not After : Jan 12 13:00:00 2025 GMT Subject: CN=B694838431B581964DD31045286B7691430C53D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:be:cf:4f:bb:98:3a:a9:f8:86:0a:17:99:4f: d5:10:d2:0d:23:04:10:5c:d2:d7:88:6a:a7:7d:4e: a2:66:91:48:0b:10:2c:3d:8a:3d:6c:73:55:df:27: 80:1c:e4:3a:e0:c7:1b:50:be:94:8f:f1:31:b3:79: aa:6b:3f:46:6e:d3:d6:de:f5:be:8b:2b:4a:a9:0e: 81:05:a0:3d:42:e6:77:78:85:60:65:fb:89:5b:5e: 45:1c:21:24:64:f2:b5:88:85:3d:97:0b:c3:fb:ef: 31:34:66:07:66:c1:8f:dc:eb:6b:e1:d7:c4:87:8f: 53:ce:14:14:2f:ba:7f:f4:68:ef:70:3d:23:93:13: 04:0b:7c:44:ba:e1:bb:fc:e3:90:dd:71:b8:a6:e7: c2:cc:69:35:5f:c7:35:1e:79:b0:82:ee:40:a6:00: d5:04:a1:b2:67:f4:12:e9:f1:56:b7:3a:82:f2:ba: 48:02:d1:84:0c:8f:48:81:41:88:26:21:0e:17:0f: b8:c3:4f:16:2f:d3:ad:a9:f9:59:48:83:be:97:7a: 5f:a9:93:2a:fe:fe:c1:1d:9a:01:01:0b:30:9d:34: ae:8f:f5:97:07:6b:7d:71:bc:f9:ac:f6:4c:e2:de: b4:bf:d3:68:3b:09:5e:1e:c0:f4:2c:57:79:58:eb: 0b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:94:83:84:31:B5:81:96:4D:D3:10:45:28:6B:76:91:43:0C:53:D2 X509v3 Authority Key Identifier: keyid:68:62:B9:69:7E:60:7C:0C:48:61:E5:69:17:A1:8D:87:AC:33:A7:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/925e88bd-75e2-45df-8867-45402fc7c4b1/0/6862B9697E607C0C4861E56917A18D87AC33A721.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6862B9697E607C0C4861E56917A18D87AC33A721.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/925e88bd-75e2-45df-8867-45402fc7c4b1/0/3130332e36302e3233332e302f32342d3234203d3e20313530353034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.60.233.0/24 Signature Algorithm: sha256WithRSAEncryption 62:28:8d:a2:e0:b9:a8:9b:ae:3f:96:f5:dc:29:1f:d4:cf:fc: fe:07:8d:94:0a:71:fc:8b:71:16:62:05:ad:84:20:52:c7:66: 51:c6:5f:5c:5a:03:a8:f3:34:70:42:37:9d:2a:d4:2c:f5:1a: ae:4a:82:90:85:b3:c6:f3:f5:d6:5c:17:7c:88:74:e7:01:a2: 3e:ef:53:be:44:3a:e7:bc:97:5d:97:1b:88:d9:01:49:25:8e: a3:23:31:e7:be:8a:fb:08:cc:e7:b9:06:66:7f:3d:be:7a:72: 42:ef:77:b1:2a:80:3d:51:b4:8c:1b:44:5c:e5:6b:70:e5:7a: 1b:24:ee:2e:2f:f0:02:22:0d:ce:1a:c5:ea:d4:32:c6:cd:1c: 4f:74:51:21:0b:bf:b1:ce:37:ee:c0:86:0f:d9:ce:a0:d6:dc: 25:59:71:bc:af:c4:6d:ed:ae:2e:1b:5a:d1:68:46:c4:d6:61: de:9e:67:d1:9e:dc:df:f6:d4:9c:93:26:23:df:3f:56:71:a6: 2e:32:4d:fd:27:01:c4:9b:0e:1a:11:45:ad:24:b0:cc:16:cc: 5c:6c:63:63:c4:e3:2d:d0:d4:df:4b:d7:69:e1:49:5f:c1:da: d3:5f:a5:af:25:96:31:46:b3:dd:69:75:cf:91:49:56:a5:2e: 6a:61:0d:33 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUA7uSD+aWDJZqZDw0lxbhVAPFCaIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjg2MkI5Njk3RTYwN0MwQzQ4NjFFNTY5MTdBMThEODdB QzMzQTcyMTAeFw0yNDAxMTQxMjU1MDBaFw0yNTAxMTIxMzAwMDBaMDMxMTAvBgNV BAMTKEI2OTQ4Mzg0MzFCNTgxOTY0REQzMTA0NTI4NkI3NjkxNDMwQzUzRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfvs9Pu5g6qfiGCheZT9UQ0g0j BBBc0teIaqd9TqJmkUgLECw9ij1sc1XfJ4Ac5DrgxxtQvpSP8TGzeaprP0Zu09be 9b6LK0qpDoEFoD1C5nd4hWBl+4lbXkUcISRk8rWIhT2XC8P77zE0ZgdmwY/c62vh 18SHj1POFBQvun/0aO9wPSOTEwQLfES64bv845Ddcbim58LMaTVfxzUeebCC7kCm ANUEobJn9BLp8Va3OoLyukgC0YQMj0iBQYgmIQ4XD7jDTxYv062p+VlIg76Xel+p kyr+/sEdmgEBCzCdNK6P9ZcHa31xvPms9kzi3rS/02g7CV4ewPQsV3lY6wvrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUtpSDhDG1gZZN0xBFKGt2kUMMU9IwHwYDVR0j BBgwFoAUaGK5aX5gfAxIYeVpF6GNh6wzpyEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjVlODhiZC03NWUyLTQ1ZGYtODg2Ny00NTQwMmZjN2M0YjEvMC82ODYyQjk2OTdF NjA3QzBDNDg2MUU1NjkxN0ExOEQ4N0FDMzNBNzIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjg2MkI5Njk3RTYwN0MwQzQ4NjFFNTY5MTdBMThEODdBQzMz QTcyMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyNWU4OGJkLTc1ZTItNDVkZi04 ODY3LTQ1NDAyZmM3YzRiMS8wLzMxMzAzMzJlMzYzMDJlMzIzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzUzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZzzpMA0GCSqG SIb3DQEBCwUAA4IBAQBiKI2i4Lmom64/lvXcKR/Uz/z+B42UCnH8i3EWYgWthCBS x2ZRxl9cWgOo8zRwQjedKtQs9RquSoKQhbPG8/XWXBd8iHTnAaI+71O+RDrnvJdd lxuI2QFJJY6jIzHnvor7CMznuQZmfz2+enJC73exKoA9UbSMG0Rc5Wtw5XobJO4u L/ACIg3OGsXq1DLGzRxPdFEhC7+xzjfuwIYP2c6g1twlWXG8r8Rt7a4uG1rRaEbE 1mHenmfRntzf9tSckyYj3z9WcaYuMk39JwHEmw4aEUWtJLDMFsxcbGNjxOMt0NTf S9dp4UlfwdrTX6WvJZYxRrPdaXXPkUlWpS5qYQ0z -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:38 2024 by rpki-client on console-ams.rpki-client.org