$ rpki-client -vvf repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/3130332e35322e3137312e302f32342d3234203d3e203633383732.roa File: 3130332e35322e3137312e302f32342d3234203d3e203633383732.roa (raw, json) Hash identifier: VhIRSNOJ0LS9ugIXorAVroZ6Ii8ZakamTst0aaxHSug= Subject key identifier: 35:94:00:14:FF:9A:D5:30:4B:DF:E0:24:68:BF:BB:84:E9:58:3C:8B Certificate issuer: /CN=6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19 Certificate serial: 2CA44362B97737B6EF6966C7BA8DB3796F6E6148 Authority key identifier: 6D:6B:AE:DB:FD:BB:AA:46:BF:3D:A2:18:55:70:77:16:27:BE:7B:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/3130332e35322e3137312e302f32342d3234203d3e203633383732.roa Signing time: Mon 01 Jul 2024 01:05:52 +0000 ROA not before: Mon 01 Jul 2024 01:00:52 +0000 ROA not after: Mon 30 Jun 2025 01:05:52 +0000 asID: 63872 IP address blocks: 103.52.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.crl rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 05:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:a4:43:62:b9:77:37:b6:ef:69:66:c7:ba:8d:b3:79:6f:6e:61:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19 Validity Not Before: Jul 1 01:00:52 2024 GMT Not After : Jun 30 01:05:52 2025 GMT Subject: CN=35940014FF9AD5304BDFE02468BFBB84E9583C8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:af:a0:5b:42:ea:60:32:b3:a8:e7:75:39:07: 5e:27:1f:4e:29:70:98:e9:e2:4c:07:6a:df:c9:19: 3a:46:86:de:9f:7c:9f:5b:ea:84:dd:70:4d:0c:78: 98:6e:1f:13:dd:22:67:b1:30:5b:2d:bf:e5:fe:d3: 9d:34:61:f4:56:55:d5:b3:68:09:88:bb:f6:77:e3: 08:79:09:16:41:40:df:b4:c2:59:0d:07:85:1d:e7: 12:49:d3:de:94:e4:5d:8a:01:c0:a8:47:a8:64:24: 4b:8b:b8:c8:14:d1:fd:43:a6:02:6a:dd:be:85:b7: df:f9:a7:48:b5:d5:38:ab:8c:84:8f:57:fa:42:17: 38:70:ac:32:12:9c:35:1b:f4:19:66:8b:44:8d:ff: e1:e1:cd:99:4a:11:ed:83:29:c5:57:81:d1:d1:c7: b0:eb:81:51:09:6d:36:dc:b8:03:0a:82:40:48:0c: 29:f1:f1:69:29:4f:59:50:ea:76:2d:f2:ca:9f:38: 06:7e:92:22:a4:60:13:c0:c0:6a:56:e1:44:63:31: 2b:b9:36:a3:83:e9:f0:f4:41:32:18:20:35:74:dd: 25:9e:4a:54:cf:15:38:e5:fb:f2:e7:d3:16:86:8d: 5a:d5:f9:fd:79:9c:be:fc:0e:cc:e1:de:ff:83:1c: 50:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:94:00:14:FF:9A:D5:30:4B:DF:E0:24:68:BF:BB:84:E9:58:3C:8B X509v3 Authority Key Identifier: keyid:6D:6B:AE:DB:FD:BB:AA:46:BF:3D:A2:18:55:70:77:16:27:BE:7B:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6D6BAEDBFDBBAA46BF3DA2185570771627BE7B19.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96bb333c-982b-4fce-ac81-bc069229e243/0/3130332e35322e3137312e302f32342d3234203d3e203633383732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.52.171.0/24 Signature Algorithm: sha256WithRSAEncryption 20:f5:58:ae:c0:4b:51:92:c5:db:e8:71:11:2a:51:70:b2:e6: 03:d9:be:0b:f5:5f:39:78:c1:6c:ad:54:56:c2:54:49:dc:fe: 03:a9:53:7d:1a:3f:26:ee:63:fc:12:6f:ee:de:0d:9a:22:5d: 1c:7d:53:d1:79:d1:68:73:e6:fa:0d:39:77:49:08:96:25:62: 33:9f:4c:59:1c:28:6a:84:06:05:f7:54:c2:e7:47:1b:b7:81: fc:8f:78:89:b2:4f:a2:cc:86:d1:6c:e5:f1:73:23:af:02:11: 10:b0:e3:0a:dd:cc:aa:77:ec:46:7d:3b:9e:aa:e4:ad:62:7e: 07:d9:5e:01:bd:a8:de:95:b5:d0:67:2e:c7:e3:c4:14:79:98: 8e:80:e5:96:84:ca:c0:9a:98:e8:0f:4f:5d:df:68:57:88:b6: 25:3a:2b:d6:31:43:d0:79:a4:49:dd:b9:1a:01:3a:79:38:11: 49:ea:41:da:bb:d4:67:f5:f3:22:e2:e2:34:36:46:33:0f:9f: de:68:a7:ee:1d:67:81:ff:de:76:ba:b4:20:9a:15:69:45:1c: 7a:3f:0b:13:07:34:a3:d3:8d:d3:94:5c:41:65:de:29:45:57: a8:df:46:81:2b:eb:d2:e8:d0:bd:f7:0c:dc:06:37:de:88:78: a9:92:d7:59 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULKRDYrl3N7bvaWbHuo2zeW9uYUgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkQ2QkFFREJGREJCQUE0NkJGM0RBMjE4NTU3MDc3MTYy N0JFN0IxOTAeFw0yNDA3MDEwMTAwNTJaFw0yNTA2MzAwMTA1NTJaMDMxMTAvBgNV BAMTKDM1OTQwMDE0RkY5QUQ1MzA0QkRGRTAyNDY4QkZCQjg0RTk1ODNDOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOr6BbQupgMrOo53U5B14nH04p cJjp4kwHat/JGTpGht6ffJ9b6oTdcE0MeJhuHxPdImexMFstv+X+0500YfRWVdWz aAmIu/Z34wh5CRZBQN+0wlkNB4Ud5xJJ096U5F2KAcCoR6hkJEuLuMgU0f1DpgJq 3b6Ft9/5p0i11TirjISPV/pCFzhwrDISnDUb9Blmi0SN/+HhzZlKEe2DKcVXgdHR x7DrgVEJbTbcuAMKgkBIDCnx8WkpT1lQ6nYt8sqfOAZ+kiKkYBPAwGpW4URjMSu5 NqOD6fD0QTIYIDV03SWeSlTPFTjl+/Ln0xaGjVrV+f15nL78Dszh3v+DHFA7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNZQAFP+a1TBL3+AkaL+7hOlYPIswHwYDVR0j BBgwFoAUbWuu2/27qka/PaIYVXB3Fie+exkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NmJiMzMzYy05ODJiLTRmY2UtYWM4MS1iYzA2OTIyOWUyNDMvMC82RDZCQUVEQkZE QkJBQTQ2QkYzREEyMTg1NTcwNzcxNjI3QkU3QjE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkQ2QkFFREJGREJCQUE0NkJGM0RBMjE4NTU3MDc3MTYyN0JF N0IxOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2YmIzMzNjLTk4MmItNGZjZS1h YzgxLWJjMDY5MjI5ZTI0My8wLzMxMzAzMzJlMzUzMjJlMzEzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzczMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc0qzANBgkqhkiG 9w0BAQsFAAOCAQEAIPVYrsBLUZLF2+hxESpRcLLmA9m+C/VfOXjBbK1UVsJUSdz+ A6lTfRo/Ju5j/BJv7t4NmiJdHH1T0XnRaHPm+g05d0kIliViM59MWRwoaoQGBfdU wudHG7eB/I94ibJPosyG0Wzl8XMjrwIRELDjCt3MqnfsRn07nqrkrWJ+B9leAb2o 3pW10Gcux+PEFHmYjoDlloTKwJqY6A9PXd9oV4i2JTor1jFD0HmkSd25GgE6eTgR SepB2rvUZ/XzIuLiNDZGMw+f3min7h1ngf/edrq0IJoVaUUcej8LEwc0o9ON05Rc QWXeKUVXqN9GgSvr0ujQvfcM3AY33oh4qZLXWQ== -----END CERTIFICATE-----Generated at Tue Nov 26 04:35:17 2024 by rpki-client on console-fra.rpki-client.org