$ rpki-client -vvf repo-rpki.idnic.net/repo/95ec6cf8-9655-4379-bf36-37271438d03a/0/3130332e36312e31362e302f32332d3234203d3e20313530353039.roa File: 3130332e36312e31362e302f32332d3234203d3e20313530353039.roa (raw, json) Hash identifier: uBkZq2g+GTZwfiTlMRcDUHb4JTR3q6sbKPcOMUbc9PI= Subject key identifier: 9F:D8:6B:B2:1D:6C:A5:35:DA:BA:DA:2D:D8:F2:62:D2:FD:D7:CE:10 Certificate issuer: /CN=7CA2524C6D82550B5D21C13182BD9CC0214433F4 Certificate serial: 71EC086A07FD906C375839763421E5EB8D01E54F Authority key identifier: 7C:A2:52:4C:6D:82:55:0B:5D:21:C1:31:82:BD:9C:C0:21:44:33:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CA2524C6D82550B5D21C13182BD9CC0214433F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/95ec6cf8-9655-4379-bf36-37271438d03a/0/3130332e36312e31362e302f32332d3234203d3e20313530353039.roa Signing time: Tue 23 Jan 2024 04:00:00 +0000 ROA not before: Tue 23 Jan 2024 03:55:00 +0000 ROA not after: Tue 21 Jan 2025 04:00:00 +0000 asID: 150509 IP address blocks: 103.61.16.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/95ec6cf8-9655-4379-bf36-37271438d03a/0/7CA2524C6D82550B5D21C13182BD9CC0214433F4.crl rsync://repo-rpki.idnic.net/repo/95ec6cf8-9655-4379-bf36-37271438d03a/0/7CA2524C6D82550B5D21C13182BD9CC0214433F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CA2524C6D82550B5D21C13182BD9CC0214433F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:ec:08:6a:07:fd:90:6c:37:58:39:76:34:21:e5:eb:8d:01:e5:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CA2524C6D82550B5D21C13182BD9CC0214433F4 Validity Not Before: Jan 23 03:55:00 2024 GMT Not After : Jan 21 04:00:00 2025 GMT Subject: CN=9FD86BB21D6CA535DABADA2DD8F262D2FDD7CE10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:83:f4:cb:3a:08:dd:06:59:8e:ed:96:e5:e5: b5:a0:e2:e8:df:dc:7c:47:ca:5a:7a:89:c3:81:2e: 63:e7:83:28:5d:e3:d5:6b:eb:8f:eb:c5:b7:46:64: 9e:73:4d:24:f9:92:62:e5:9a:6f:73:c6:04:25:2f: 25:52:f0:bd:76:b7:ec:0b:c7:66:62:08:d9:57:0a: f3:60:02:d2:ff:63:52:fa:9e:4d:f3:93:e6:ff:b6: 88:01:5a:52:6d:35:c9:9b:4a:ee:6f:7b:3e:b7:c3: cd:94:d5:0e:14:43:a7:e0:70:1c:c6:97:61:75:93: f6:30:b8:a1:a5:cc:41:b1:53:48:3f:e1:5f:a2:05: 63:39:cd:f1:f6:01:b6:5a:4f:26:04:a8:d8:17:b3: f4:bc:56:af:51:10:f8:47:7d:a3:50:e9:d4:fa:32: 4e:00:c0:77:2f:dd:2f:a3:44:ba:22:22:07:b6:aa: cf:e3:4e:e0:5b:e8:a8:45:9f:02:a7:3d:fb:4a:1e: 8c:80:41:b9:70:5e:ae:b7:0c:ba:91:87:cb:50:10: 14:eb:99:57:b2:aa:91:6a:06:4c:eb:b5:62:70:7f: 79:82:8d:b1:93:e3:9e:21:52:1c:83:28:6c:6c:46: 2e:47:45:8a:c0:b3:1d:34:b9:32:a3:35:e5:92:99: 60:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:D8:6B:B2:1D:6C:A5:35:DA:BA:DA:2D:D8:F2:62:D2:FD:D7:CE:10 X509v3 Authority Key Identifier: keyid:7C:A2:52:4C:6D:82:55:0B:5D:21:C1:31:82:BD:9C:C0:21:44:33:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/95ec6cf8-9655-4379-bf36-37271438d03a/0/7CA2524C6D82550B5D21C13182BD9CC0214433F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CA2524C6D82550B5D21C13182BD9CC0214433F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/95ec6cf8-9655-4379-bf36-37271438d03a/0/3130332e36312e31362e302f32332d3234203d3e20313530353039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.61.16.0/23 Signature Algorithm: sha256WithRSAEncryption ce:dd:da:9e:1f:6c:18:6a:35:6d:49:f0:19:e0:99:e6:c4:02: d7:d5:d7:49:a6:62:7c:32:f4:61:b0:b0:6b:db:cf:d6:bb:89: e5:f1:de:b2:0d:3e:1f:d9:97:7f:48:70:55:d4:f3:12:c5:ef: 89:57:4e:23:d2:a5:83:58:30:ca:f4:3d:17:d9:10:66:2c:e9: c3:44:33:18:b4:e7:23:d0:d8:b9:d9:e9:75:1f:fa:a2:b4:b3: 7a:89:a1:46:d4:7b:27:61:60:72:af:ce:2f:f4:fe:dc:a9:8b: 1a:5f:50:c9:f4:11:2a:ed:c5:ae:f1:48:ef:0d:3f:3b:a2:de: e0:77:4b:25:93:b0:86:30:d6:48:5f:3b:8d:37:16:58:ee:72: 86:3f:7f:1d:2a:c0:21:e0:5d:e2:8e:fd:87:14:04:8e:10:37: 4c:98:6f:4b:d4:52:07:d5:ca:28:21:8d:f6:11:2d:b6:69:5a: 03:f9:d5:2d:6e:d6:b7:c2:50:af:29:1f:89:07:c5:ef:ee:a9: cf:ee:b7:5b:e2:15:54:28:63:e1:4a:76:c7:a9:83:c7:2e:e8: aa:4a:87:f4:31:de:bb:a2:36:8a:97:9d:f0:cb:70:df:e5:10: 22:41:8a:ce:32:d1:20:96:79:62:64:b7:59:80:83:56:9f:f4: fd:4b:9d:ca -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcewIagf9kGw3WDl2NCHl640B5U8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0NBMjUyNEM2RDgyNTUwQjVEMjFDMTMxODJCRDlDQzAy MTQ0MzNGNDAeFw0yNDAxMjMwMzU1MDBaFw0yNTAxMjEwNDAwMDBaMDMxMTAvBgNV BAMTKDlGRDg2QkIyMUQ2Q0E1MzVEQUJBREEyREQ4RjI2MkQyRkREN0NFMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbg/TLOgjdBlmO7Zbl5bWg4ujf 3HxHylp6icOBLmPngyhd49Vr64/rxbdGZJ5zTST5kmLlmm9zxgQlLyVS8L12t+wL x2ZiCNlXCvNgAtL/Y1L6nk3zk+b/togBWlJtNcmbSu5vez63w82U1Q4UQ6fgcBzG l2F1k/YwuKGlzEGxU0g/4V+iBWM5zfH2AbZaTyYEqNgXs/S8Vq9REPhHfaNQ6dT6 Mk4AwHcv3S+jRLoiIge2qs/jTuBb6KhFnwKnPftKHoyAQblwXq63DLqRh8tQEBTr mVeyqpFqBkzrtWJwf3mCjbGT454hUhyDKGxsRi5HRYrAsx00uTKjNeWSmWDrAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUn9hrsh1spTXautot2PJi0v3XzhAwHwYDVR0j BBgwFoAUfKJSTG2CVQtdIcExgr2cwCFEM/QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NWVjNmNmOC05NjU1LTQzNzktYmYzNi0zNzI3MTQzOGQwM2EvMC83Q0EyNTI0QzZE ODI1NTBCNUQyMUMxMzE4MkJEOUNDMDIxNDQzM0Y0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0NBMjUyNEM2RDgyNTUwQjVEMjFDMTMxODJCRDlDQzAyMTQ0 MzNGNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1ZWM2Y2Y4LTk2NTUtNDM3OS1i ZjM2LTM3MjcxNDM4ZDAzYS8wLzMxMzAzMzJlMzYzMTJlMzEzNjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMDM1MzAzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWc9EDANBgkqhkiG 9w0BAQsFAAOCAQEAzt3anh9sGGo1bUnwGeCZ5sQC19XXSaZifDL0YbCwa9vP1ruJ 5fHesg0+H9mXf0hwVdTzEsXviVdOI9Klg1gwyvQ9F9kQZizpw0QzGLTnI9DYudnp dR/6orSzeomhRtR7J2Fgcq/OL/T+3KmLGl9QyfQRKu3FrvFI7w0/O6Le4HdLJZOw hjDWSF87jTcWWO5yhj9/HSrAIeBd4o79hxQEjhA3TJhvS9RSB9XKKCGN9hEttmla A/nVLW7Wt8JQrykfiQfF7+6pz+63W+IVVChj4Up2x6mDxy7oqkqH9DHeu6I2iped 8Mtw3+UQIkGKzjLRIJZ5YmS3WYCDVp/0/Uudyg== -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:02 2024 by rpki-client on console-ams.rpki-client.org