$ rpki-client -vvf repo-rpki.idnic.net/repo/98a7f355-f225-48f3-87f8-0bfb0c8e58f0/0/3130332e38362e3132382e302f32332d3234203d3e2034383030.roa File: 3130332e38362e3132382e302f32332d3234203d3e2034383030.roa (raw, json) Hash identifier: ER09/d673Zei97k2o4R+YDy6neQAyCBVuW6CuWOZSDM= Subject key identifier: 77:FB:AC:10:17:AA:D4:58:0F:4B:8C:16:18:79:B1:56:9A:7A:4A:E3 Certificate issuer: /CN=4BE0EBAFEF1E206CAD8B4EAD6D6A08D3A8C01B50 Certificate serial: 5D8B201A1C103B0FFA45705BDF01F94FF28CA748 Authority key identifier: 4B:E0:EB:AF:EF:1E:20:6C:AD:8B:4E:AD:6D:6A:08:D3:A8:C0:1B:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BE0EBAFEF1E206CAD8B4EAD6D6A08D3A8C01B50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/98a7f355-f225-48f3-87f8-0bfb0c8e58f0/0/3130332e38362e3132382e302f32332d3234203d3e2034383030.roa Signing time: Wed 12 Jun 2024 09:00:01 +0000 ROA not before: Wed 12 Jun 2024 08:55:01 +0000 ROA not after: Wed 11 Jun 2025 09:00:01 +0000 asID: 4800 IP address blocks: 103.86.128.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/98a7f355-f225-48f3-87f8-0bfb0c8e58f0/0/4BE0EBAFEF1E206CAD8B4EAD6D6A08D3A8C01B50.crl rsync://repo-rpki.idnic.net/repo/98a7f355-f225-48f3-87f8-0bfb0c8e58f0/0/4BE0EBAFEF1E206CAD8B4EAD6D6A08D3A8C01B50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BE0EBAFEF1E206CAD8B4EAD6D6A08D3A8C01B50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:8b:20:1a:1c:10:3b:0f:fa:45:70:5b:df:01:f9:4f:f2:8c:a7:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4BE0EBAFEF1E206CAD8B4EAD6D6A08D3A8C01B50 Validity Not Before: Jun 12 08:55:01 2024 GMT Not After : Jun 11 09:00:01 2025 GMT Subject: CN=77FBAC1017AAD4580F4B8C161879B1569A7A4AE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ee:4c:de:45:77:a7:b3:1a:ec:35:76:fd:e6: eb:23:a7:12:1b:60:90:66:23:3b:57:c7:c3:68:b3: 5f:44:39:6d:a5:4d:94:34:fa:9b:16:26:66:9b:81: 83:8b:d0:14:88:b9:5f:40:cb:07:be:22:c5:6f:e4: a3:d7:ab:5c:10:4e:b3:2b:2d:a4:b1:5b:d9:f4:01: 65:fc:88:7b:ac:a9:fb:56:e3:3e:18:92:ed:7e:b4: 8b:96:26:e5:64:27:78:59:6d:0d:82:ff:6c:94:6e: 2f:5f:0b:e7:6a:47:2a:2b:21:6e:74:69:bc:6c:7a: 2f:ba:c8:59:43:1c:30:00:a9:2c:cc:a4:6e:1a:16: 10:b0:59:f2:fb:07:2d:5d:1c:81:58:1a:5c:c3:64: c3:b0:39:a8:5c:f3:0c:f0:02:fe:f1:77:ba:a8:8a: 52:ad:06:42:87:cb:81:50:7d:8d:9b:f3:78:69:e0: 23:9a:71:8b:d8:9f:6a:82:bb:9c:ea:ce:16:11:30: 85:b9:f0:40:54:a1:58:bf:7c:53:9c:ec:5d:24:1a: 36:a5:bb:8a:b7:0e:a7:0b:36:b5:6e:d4:03:0d:14: e1:cd:cb:97:09:40:8e:55:c5:7e:8e:c5:a7:6a:40: d6:18:00:d5:1c:20:e7:3d:34:5d:a0:bf:99:88:72: 7f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:FB:AC:10:17:AA:D4:58:0F:4B:8C:16:18:79:B1:56:9A:7A:4A:E3 X509v3 Authority Key Identifier: keyid:4B:E0:EB:AF:EF:1E:20:6C:AD:8B:4E:AD:6D:6A:08:D3:A8:C0:1B:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/98a7f355-f225-48f3-87f8-0bfb0c8e58f0/0/4BE0EBAFEF1E206CAD8B4EAD6D6A08D3A8C01B50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BE0EBAFEF1E206CAD8B4EAD6D6A08D3A8C01B50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/98a7f355-f225-48f3-87f8-0bfb0c8e58f0/0/3130332e38362e3132382e302f32332d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.86.128.0/23 Signature Algorithm: sha256WithRSAEncryption 55:33:c0:a6:e0:a1:18:d4:e7:26:81:e5:5f:fc:a8:b9:64:a9: 52:33:43:b3:32:ec:28:8e:6b:55:f5:f2:07:e8:ec:3e:05:2c: 0b:77:dc:93:61:b9:a3:d9:6d:5a:67:19:29:38:d0:97:68:8a: a1:5d:c5:71:57:6b:c6:99:f9:c8:45:35:23:b8:47:40:e3:fc: 6d:18:f6:45:35:18:1e:d8:c9:26:ed:32:9e:8c:a4:4b:ff:37: 81:c4:3b:5b:9b:8d:db:d3:de:1b:a1:05:a5:72:1e:cf:4f:ae: d6:54:06:fe:df:d3:60:c1:e0:bc:ac:62:71:e0:0d:60:67:85: 6a:c0:21:e0:87:7e:86:17:8c:3c:19:84:ef:ce:7c:ed:50:e5: 99:01:11:b0:df:60:a6:7a:98:93:9b:f2:db:7c:91:10:2c:ef: eb:65:c3:4e:de:0b:72:75:93:32:83:9d:54:82:be:a7:85:c0: 7f:bf:bc:70:32:b4:c8:3c:9c:28:c6:0b:44:8b:73:49:f5:17: bc:f1:26:35:cd:11:32:97:f7:c8:13:be:20:a7:ae:98:ac:92: f0:13:09:76:00:65:1f:8b:d3:86:d0:92:b3:91:c5:05:41:36: c3:ab:fe:ff:8e:a8:26:48:29:70:9e:21:e8:59:ad:67:66:6a: 44:a4:bf:16 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUXYsgGhwQOw/6RXBb3wH5T/KMp0gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEJFMEVCQUZFRjFFMjA2Q0FEOEI0RUFENkQ2QTA4RDNB OEMwMUI1MDAeFw0yNDA2MTIwODU1MDFaFw0yNTA2MTEwOTAwMDFaMDMxMTAvBgNV BAMTKDc3RkJBQzEwMTdBQUQ0NTgwRjRCOEMxNjE4NzlCMTU2OUE3QTRBRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO7kzeRXensxrsNXb95usjpxIb YJBmIztXx8Nos19EOW2lTZQ0+psWJmabgYOL0BSIuV9Aywe+IsVv5KPXq1wQTrMr LaSxW9n0AWX8iHusqftW4z4Yku1+tIuWJuVkJ3hZbQ2C/2yUbi9fC+dqRyorIW50 abxsei+6yFlDHDAAqSzMpG4aFhCwWfL7By1dHIFYGlzDZMOwOahc8wzwAv7xd7qo ilKtBkKHy4FQfY2b83hp4COacYvYn2qCu5zqzhYRMIW58EBUoVi/fFOc7F0kGjal u4q3DqcLNrVu1AMNFOHNy5cJQI5VxX6OxadqQNYYANUcIOc9NF2gv5mIcn8bAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUd/usEBeq1FgPS4wWGHmxVpp6SuMwHwYDVR0j BBgwFoAUS+Drr+8eIGyti06tbWoI06jAG1AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OGE3ZjM1NS1mMjI1LTQ4ZjMtODdmOC0wYmZiMGM4ZTU4ZjAvMC80QkUwRUJBRkVG MUUyMDZDQUQ4QjRFQUQ2RDZBMDhEM0E4QzAxQjUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEJFMEVCQUZFRjFFMjA2Q0FEOEI0RUFENkQ2QTA4RDNBOEMw MUI1MC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk4YTdmMzU1LWYyMjUtNDhmMy04 N2Y4LTBiZmIwYzhlNThmMC8wLzMxMzAzMzJlMzgzNjJlMzEzMjM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzODMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnVoAwDQYJKoZIhvcN AQELBQADggEBAFUzwKbgoRjU5yaB5V/8qLlkqVIzQ7My7CiOa1X18gfo7D4FLAt3 3JNhuaPZbVpnGSk40JdoiqFdxXFXa8aZ+chFNSO4R0Dj/G0Y9kU1GB7YySbtMp6M pEv/N4HEO1ubjdvT3huhBaVyHs9PrtZUBv7f02DB4LysYnHgDWBnhWrAIeCHfoYX jDwZhO/OfO1Q5ZkBEbDfYKZ6mJOb8tt8kRAs7+tlw07eC3J1kzKDnVSCvqeFwH+/ vHAytMg8nCjGC0SLc0n1F7zxJjXNETKX98gTviCnrpiskvATCXYAZR+L04bQkrOR xQVBNsOr/v+OqCZIKXCeIehZrWdmakSkvxY= -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:33 2024 by rpki-client on console-ams.rpki-client.org