$ rpki-client -vvf repo-rpki.idnic.net/repo/a262d341-94b5-474e-8bcd-d17988f099b3/0/3130332e3131372e35382e302f32332d3234203d3e20313530393534.roa File: 3130332e3131372e35382e302f32332d3234203d3e20313530393534.roa (raw, json) Hash identifier: L7KowJX+vkD9OPsQ0owSRhhf4cCZ5+6JZ/CKHdSuVC4= Subject key identifier: A3:29:26:20:98:4B:3F:34:14:FC:16:6A:F4:55:0B:8E:EA:2B:36:9C Certificate issuer: /CN=64B2DB7703C5C56A6F69C4789AB9F69214F22695 Certificate serial: 280EE2B3CF26A241A0FE9A7DC52AEE0C5E95D779 Authority key identifier: 64:B2:DB:77:03:C5:C5:6A:6F:69:C4:78:9A:B9:F6:92:14:F2:26:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64B2DB7703C5C56A6F69C4789AB9F69214F22695.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a262d341-94b5-474e-8bcd-d17988f099b3/0/3130332e3131372e35382e302f32332d3234203d3e20313530393534.roa Signing time: Thu 11 Apr 2024 10:00:00 +0000 ROA not before: Thu 11 Apr 2024 09:55:00 +0000 ROA not after: Thu 10 Apr 2025 10:00:00 +0000 asID: 150954 IP address blocks: 103.117.58.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a262d341-94b5-474e-8bcd-d17988f099b3/0/64B2DB7703C5C56A6F69C4789AB9F69214F22695.crl rsync://repo-rpki.idnic.net/repo/a262d341-94b5-474e-8bcd-d17988f099b3/0/64B2DB7703C5C56A6F69C4789AB9F69214F22695.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64B2DB7703C5C56A6F69C4789AB9F69214F22695.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:0e:e2:b3:cf:26:a2:41:a0:fe:9a:7d:c5:2a:ee:0c:5e:95:d7:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64B2DB7703C5C56A6F69C4789AB9F69214F22695 Validity Not Before: Apr 11 09:55:00 2024 GMT Not After : Apr 10 10:00:00 2025 GMT Subject: CN=A3292620984B3F3414FC166AF4550B8EEA2B369C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a7:d7:ba:45:c9:6d:aa:7a:03:ea:c5:b6:d8: 50:c6:b6:08:b2:2b:f4:fd:c9:95:05:a0:10:00:06: 30:75:8f:7a:4a:03:a4:4d:6a:98:33:79:d4:31:5e: 54:28:2e:3e:d8:a0:17:8b:be:1c:72:e2:0f:ac:b6: a8:f8:12:a3:8d:c9:a1:2b:48:5f:d8:c3:ca:1b:d5: 3d:b9:17:6a:96:41:e2:1e:9b:14:b3:7e:a5:54:67: 9e:85:c1:6d:1c:87:06:af:44:52:2a:04:f7:fd:c0: 5e:30:14:9c:2a:7f:75:55:cf:ff:81:f1:74:08:de: 60:4f:0e:50:9c:be:7e:54:2a:74:3b:d2:70:14:bf: a7:5d:3c:65:7d:19:43:6c:10:a9:e5:f3:b0:6b:15: 83:73:4b:7f:a3:3a:bb:89:ac:30:06:99:e4:c6:6e: 1d:84:2e:db:b0:2a:f6:70:5f:82:a6:59:fb:ff:fe: 0f:5a:53:e8:a5:a1:72:77:4c:5b:e8:b2:b0:12:a1: 8e:37:fd:f3:3a:b1:59:df:be:9a:8a:ac:5d:d3:64: 04:08:bb:3c:76:e7:e2:d9:93:68:7c:48:c4:60:4e: c3:60:d0:81:20:30:41:66:1b:8a:b5:a6:ca:31:e1: 56:fa:42:e3:7b:60:78:33:b3:63:11:35:51:7e:3a: a8:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:29:26:20:98:4B:3F:34:14:FC:16:6A:F4:55:0B:8E:EA:2B:36:9C X509v3 Authority Key Identifier: keyid:64:B2:DB:77:03:C5:C5:6A:6F:69:C4:78:9A:B9:F6:92:14:F2:26:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a262d341-94b5-474e-8bcd-d17988f099b3/0/64B2DB7703C5C56A6F69C4789AB9F69214F22695.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64B2DB7703C5C56A6F69C4789AB9F69214F22695.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a262d341-94b5-474e-8bcd-d17988f099b3/0/3130332e3131372e35382e302f32332d3234203d3e20313530393534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.117.58.0/23 Signature Algorithm: sha256WithRSAEncryption 90:87:c5:f2:79:6a:b2:13:24:24:af:b2:dc:87:1b:bc:2b:bf: fb:b1:6c:3f:52:d5:dd:af:ed:53:97:6a:20:fc:a0:39:d1:80: 5b:1a:ad:5a:4f:00:e5:a3:7d:f1:27:6d:5b:ca:5b:09:53:b1: 10:49:d1:7b:f0:08:50:a8:eb:d1:09:38:3e:d7:a6:cb:8f:1a: 02:94:e8:1e:08:d4:96:37:d0:a2:27:c7:93:f6:88:d7:16:e3: 04:d4:08:39:34:1d:c6:10:91:da:c6:4a:5c:f6:60:62:1c:34: ee:32:ce:47:32:d5:02:1a:b4:00:da:c2:51:28:ae:18:fd:ca: 3e:63:d9:ef:55:7c:df:d3:ad:29:46:3b:ef:b6:18:85:f9:71: 2e:09:95:89:04:46:83:47:dd:d6:fa:94:7c:ff:b0:c5:8a:51: 11:2a:8b:ca:00:9a:c7:1e:19:00:f2:07:78:97:11:44:1a:93: a3:89:0b:76:94:33:2a:af:90:5e:0b:11:02:a2:89:63:bb:69: 8c:33:82:3f:34:1a:34:06:e0:b9:50:2b:58:0d:69:43:1e:5f: b3:47:9d:89:6a:6c:66:1d:fc:94:6f:c9:51:82:24:57:8d:15: 9d:2f:db:42:ec:16:b8:71:dc:38:0f:ad:89:44:07:e4:42:15: c6:1d:98:29 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKA7is88mokGg/pp9xSruDF6V13kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjRCMkRCNzcwM0M1QzU2QTZGNjlDNDc4OUFCOUY2OTIx NEYyMjY5NTAeFw0yNDA0MTEwOTU1MDBaFw0yNTA0MTAxMDAwMDBaMDMxMTAvBgNV BAMTKEEzMjkyNjIwOTg0QjNGMzQxNEZDMTY2QUY0NTUwQjhFRUEyQjM2OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDap9e6RcltqnoD6sW22FDGtgiy K/T9yZUFoBAABjB1j3pKA6RNapgzedQxXlQoLj7YoBeLvhxy4g+stqj4EqONyaEr SF/Yw8ob1T25F2qWQeIemxSzfqVUZ56FwW0chwavRFIqBPf9wF4wFJwqf3VVz/+B 8XQI3mBPDlCcvn5UKnQ70nAUv6ddPGV9GUNsEKnl87BrFYNzS3+jOruJrDAGmeTG bh2ELtuwKvZwX4KmWfv//g9aU+iloXJ3TFvosrASoY43/fM6sVnfvpqKrF3TZAQI uzx25+LZk2h8SMRgTsNg0IEgMEFmG4q1psox4Vb6QuN7YHgzs2MRNVF+Oqj3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUoykmIJhLPzQU/BZq9FULjuorNpwwHwYDVR0j BBgwFoAUZLLbdwPFxWpvacR4mrn2khTyJpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MjYyZDM0MS05NGI1LTQ3NGUtOGJjZC1kMTc5ODhmMDk5YjMvMC82NEIyREI3NzAz QzVDNTZBNkY2OUM0Nzg5QUI5RjY5MjE0RjIyNjk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjRCMkRCNzcwM0M1QzU2QTZGNjlDNDc4OUFCOUY2OTIxNEYy MjY5NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EyNjJkMzQxLTk0YjUtNDc0ZS04 YmNkLWQxNzk4OGYwOTliMy8wLzMxMzAzMzJlMzEzMTM3MmUzNTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzNTM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ3U6MA0GCSqG SIb3DQEBCwUAA4IBAQCQh8XyeWqyEyQkr7Lchxu8K7/7sWw/UtXdr+1Tl2og/KA5 0YBbGq1aTwDlo33xJ21bylsJU7EQSdF78AhQqOvRCTg+16bLjxoClOgeCNSWN9Ci J8eT9ojXFuME1Ag5NB3GEJHaxkpc9mBiHDTuMs5HMtUCGrQA2sJRKK4Y/co+Y9nv VXzf060pRjvvthiF+XEuCZWJBEaDR93W+pR8/7DFilERKovKAJrHHhkA8gd4lxFE GpOjiQt2lDMqr5BeCxECoolju2mMM4I/NBo0BuC5UCtYDWlDHl+zR52JamxmHfyU b8lRgiRXjRWdL9tC7Ba4cdw4D62JRAfkQhXGHZgp -----END CERTIFICATE-----Generated at Sat Jun 22 17:13:22 2024 by rpki-client on console-ams.rpki-client.org