$ rpki-client -vvf repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e36392e302f32342d3234203d3e203535363835.roa File: 3130332e36362e36392e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: KbszhduYQIrnDZTe+l2/4wHbcW+0A4j+CJHjbrOZWDI= Subject key identifier: AB:13:43:D1:D6:88:D9:D1:24:1A:3D:33:73:3D:7A:88:1D:BC:1E:8A Certificate issuer: /CN=8458BC369C80A76B2875FC97DBE5D1A09B6AF317 Certificate serial: 40BF1687B770703633F27B2462C4D3AD03A77890 Authority key identifier: 84:58:BC:36:9C:80:A7:6B:28:75:FC:97:DB:E5:D1:A0:9B:6A:F3:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e36392e302f32342d3234203d3e203535363835.roa Signing time: Mon 01 Jul 2024 01:04:09 +0000 ROA not before: Mon 01 Jul 2024 00:59:09 +0000 ROA not after: Mon 30 Jun 2025 01:04:09 +0000 asID: 55685 IP address blocks: 103.66.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.crl rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:bf:16:87:b7:70:70:36:33:f2:7b:24:62:c4:d3:ad:03:a7:78:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8458BC369C80A76B2875FC97DBE5D1A09B6AF317 Validity Not Before: Jul 1 00:59:09 2024 GMT Not After : Jun 30 01:04:09 2025 GMT Subject: CN=AB1343D1D688D9D1241A3D33733D7A881DBC1E8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b0:89:80:b3:65:50:cf:89:b6:0c:c8:f0:9a: ad:64:4a:33:b6:1a:4b:04:06:2e:1d:1c:ac:ca:be: 49:75:48:77:9b:84:06:d5:97:ac:aa:09:89:18:b8: 27:75:0a:4b:26:a7:42:fc:33:13:bf:d9:ec:19:23: 2c:15:6c:4e:62:87:53:19:11:9f:2e:a5:79:6e:4c: 07:d4:ec:19:77:1c:7b:29:3d:cc:d2:7a:96:15:54: ab:d6:07:1d:d6:0b:8d:f9:45:e2:32:2f:33:08:8d: 94:ee:3a:b6:2c:dd:68:55:d4:44:03:47:41:c8:a3: d2:e7:e9:51:be:11:60:ce:39:9b:11:57:32:cd:20: 8e:59:00:f1:e9:98:79:ad:14:83:39:e6:15:6d:7c: fe:a7:82:1a:ac:ab:c9:fa:a9:1a:84:9f:b4:f2:10: 16:8c:28:7a:3e:2d:a4:9b:44:ec:35:0a:a7:85:b4: d0:8a:2a:63:1d:64:f6:d4:b9:af:3c:54:c9:26:d7: 20:91:68:cb:f3:a4:5a:71:22:ca:02:ee:6a:de:43: 6f:9f:dd:c7:a3:26:4c:56:31:d0:d0:7b:7f:84:4c: 86:63:71:a4:29:20:a4:09:f0:56:1a:dc:97:e6:5b: 6b:38:77:9d:00:26:42:9b:89:9b:38:83:71:ce:55: 0e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:13:43:D1:D6:88:D9:D1:24:1A:3D:33:73:3D:7A:88:1D:BC:1E:8A X509v3 Authority Key Identifier: keyid:84:58:BC:36:9C:80:A7:6B:28:75:FC:97:DB:E5:D1:A0:9B:6A:F3:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8458BC369C80A76B2875FC97DBE5D1A09B6AF317.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a2aa16ea-2aec-495d-a9a3-6925730d5e0f/0/3130332e36362e36392e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.66.69.0/24 Signature Algorithm: sha256WithRSAEncryption b2:bb:7e:82:92:09:5e:b2:5e:81:2c:f9:06:bc:37:cb:1c:3d: 6f:2d:bc:7a:ce:d4:56:dc:a1:e0:53:df:30:11:9f:ce:50:19: 4d:33:50:90:97:6b:a3:1a:3c:df:be:c1:d8:92:8e:79:35:5b: f4:af:49:e7:68:69:dd:32:d2:c5:1b:5f:41:26:8f:49:e7:da: a5:f2:28:70:31:d8:32:ca:0c:da:11:09:b3:fe:0a:35:d5:fa: ac:53:f8:01:ef:37:e2:8c:12:1d:14:9b:14:6f:f3:66:f0:06: d8:a3:d5:51:78:44:f6:8e:1c:46:14:25:4f:5a:42:9c:65:da: a8:ed:2f:50:a5:13:7e:70:90:cb:57:53:18:06:81:16:92:ee: 13:33:23:6f:ef:75:cf:ad:bd:86:5e:b2:1c:fc:4c:e1:1d:6e: cf:90:97:b8:40:56:40:86:c5:6f:ce:95:f8:06:06:80:62:3c: 7f:6a:9b:a5:ed:2b:69:dd:79:0a:4c:06:72:e7:46:0e:ac:b9: 2f:72:0a:d9:e2:89:dd:6b:f1:1f:1b:2b:0e:5f:ee:59:11:ac: 67:3d:2d:1b:b4:b8:a6:bb:56:19:6d:83:59:6f:5c:8f:d7:c6: 37:9b:d1:ab:3b:54:c1:83:5e:a3:ee:0c:9c:46:b4:9b:b9:21: 4a:64:b0:81 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUQL8Wh7dwcDYz8nskYsTTrQOneJAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ1OEJDMzY5QzgwQTc2QjI4NzVGQzk3REJFNUQxQTA5 QjZBRjMxNzAeFw0yNDA3MDEwMDU5MDlaFw0yNTA2MzAwMTA0MDlaMDMxMTAvBgNV BAMTKEFCMTM0M0QxRDY4OEQ5RDEyNDFBM0QzMzczM0Q3QTg4MURCQzFFOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7sImAs2VQz4m2DMjwmq1kSjO2 GksEBi4dHKzKvkl1SHebhAbVl6yqCYkYuCd1Cksmp0L8MxO/2ewZIywVbE5ih1MZ EZ8upXluTAfU7Bl3HHspPczSepYVVKvWBx3WC435ReIyLzMIjZTuOrYs3WhV1EQD R0HIo9Ln6VG+EWDOOZsRVzLNII5ZAPHpmHmtFIM55hVtfP6nghqsq8n6qRqEn7Ty EBaMKHo+LaSbROw1CqeFtNCKKmMdZPbUua88VMkm1yCRaMvzpFpxIsoC7mreQ2+f 3cejJkxWMdDQe3+ETIZjcaQpIKQJ8FYa3JfmW2s4d50AJkKbiZs4g3HOVQ6TAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUqxND0daI2dEkGj0zcz16iB28HoowHwYDVR0j BBgwFoAUhFi8NpyAp2sodfyX2+XRoJtq8xcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MmFhMTZlYS0yYWVjLTQ5NWQtYTlhMy02OTI1NzMwZDVlMGYvMC84NDU4QkMzNjlD ODBBNzZCMjg3NUZDOTdEQkU1RDFBMDlCNkFGMzE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQ1OEJDMzY5QzgwQTc2QjI4NzVGQzk3REJFNUQxQTA5QjZB RjMxNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EyYWExNmVhLTJhZWMtNDk1ZC1h OWEzLTY5MjU3MzBkNWUwZi8wLzMxMzAzMzJlMzYzNjJlMzYzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzNjM4MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnQkUwDQYJKoZIhvcN AQELBQADggEBALK7foKSCV6yXoEs+Qa8N8scPW8tvHrO1FbcoeBT3zARn85QGU0z UJCXa6MaPN++wdiSjnk1W/SvSedoad0y0sUbX0Emj0nn2qXyKHAx2DLKDNoRCbP+ CjXV+qxT+AHvN+KMEh0UmxRv82bwBtij1VF4RPaOHEYUJU9aQpxl2qjtL1ClE35w kMtXUxgGgRaS7hMzI2/vdc+tvYZeshz8TOEdbs+Ql7hAVkCGxW/OlfgGBoBiPH9q m6XtK2ndeQpMBnLnRg6suS9yCtniid1r8R8bKw5f7lkRrGc9LRu0uKa7Vhltg1lv XI/Xxjeb0as7VMGDXqPuDJxGtJu5IUpksIE= -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org