$ rpki-client -vvf repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/3130332e3135312e39352e302f32342d3234203d3e203137353338.roa File: 3130332e3135312e39352e302f32342d3234203d3e203137353338.roa (raw, json) Hash identifier: bGhluMXBlQ6D58wwD+73zV+Z0ql197un24tcoC8iLHI= Subject key identifier: B3:CD:60:F1:A9:2F:2E:56:95:3F:18:BD:50:2D:5E:66:49:42:DB:45 Certificate issuer: /CN=6A75F95EA11C3F984C5C610FE9222026394BA8E9 Certificate serial: 2EF7E7306EE844B4C4BA6B9EACF1E15FBCFFEC26 Authority key identifier: 6A:75:F9:5E:A1:1C:3F:98:4C:5C:61:0F:E9:22:20:26:39:4B:A8:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A75F95EA11C3F984C5C610FE9222026394BA8E9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/3130332e3135312e39352e302f32342d3234203d3e203137353338.roa Signing time: Mon 01 Jul 2024 01:05:06 +0000 ROA not before: Mon 01 Jul 2024 01:00:06 +0000 ROA not after: Mon 30 Jun 2025 01:05:06 +0000 asID: 17538 IP address blocks: 103.151.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/6A75F95EA11C3F984C5C610FE9222026394BA8E9.crl rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/6A75F95EA11C3F984C5C610FE9222026394BA8E9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A75F95EA11C3F984C5C610FE9222026394BA8E9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:f7:e7:30:6e:e8:44:b4:c4:ba:6b:9e:ac:f1:e1:5f:bc:ff:ec:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A75F95EA11C3F984C5C610FE9222026394BA8E9 Validity Not Before: Jul 1 01:00:06 2024 GMT Not After : Jun 30 01:05:06 2025 GMT Subject: CN=B3CD60F1A92F2E56953F18BD502D5E664942DB45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:04:e3:39:15:28:47:aa:15:a2:08:0d:92:73: 39:2a:76:dc:5d:6c:2f:d2:52:60:54:86:e4:e8:8c: 35:b4:78:ab:5e:ad:ba:bb:bf:6b:b2:20:92:ac:6b: 64:63:5c:ef:b7:3d:9e:d8:e4:b2:f6:23:ae:bc:a5: b4:fd:fb:51:85:59:74:0d:fa:60:57:3d:4e:a8:6b: b6:1c:f0:44:2e:44:30:ee:3b:4d:3b:b9:97:96:c3: cb:81:ef:4b:e2:8d:56:25:ef:89:11:a1:24:95:31: 64:0f:c2:d7:82:f5:06:68:9d:10:a8:7e:5b:0e:b7: ca:fa:70:04:61:9c:1e:a3:71:1f:46:6e:fa:b1:88: 81:ad:7a:5d:08:97:b3:b4:de:c4:d5:67:b1:01:08: c9:b1:f7:1c:01:c6:c3:07:36:1a:18:34:e9:6d:b4: 42:d7:ed:ab:ed:56:29:b8:46:09:9f:16:69:85:36: 64:7f:a2:70:b3:7a:d1:8c:46:1f:01:39:0c:33:e5: b5:ba:50:ac:73:e4:3a:e1:f7:99:b8:dc:cf:9f:86: f5:1c:91:9d:d6:6a:7a:91:af:50:c3:11:be:5b:a1: de:41:4e:e7:49:86:24:35:9a:51:bf:ec:6c:1d:8c: 22:e6:1f:c0:a4:7b:f5:db:83:d7:9b:0e:2e:78:20: de:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:CD:60:F1:A9:2F:2E:56:95:3F:18:BD:50:2D:5E:66:49:42:DB:45 X509v3 Authority Key Identifier: keyid:6A:75:F9:5E:A1:1C:3F:98:4C:5C:61:0F:E9:22:20:26:39:4B:A8:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/6A75F95EA11C3F984C5C610FE9222026394BA8E9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A75F95EA11C3F984C5C610FE9222026394BA8E9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/3130332e3135312e39352e302f32342d3234203d3e203137353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.151.95.0/24 Signature Algorithm: sha256WithRSAEncryption 98:35:1e:45:9f:34:5f:34:bb:ec:61:ae:14:e8:5c:38:8a:9c: 55:21:1a:fd:f2:7f:af:59:4b:67:3e:22:1f:0f:69:9f:fe:af: 6b:fd:83:51:56:e9:f6:65:8d:36:94:05:63:19:27:a8:d6:d1: 6c:d1:43:41:74:f0:37:a7:c0:0b:21:a5:00:4a:de:b9:7d:0b: d9:0b:2a:36:13:9d:8a:61:97:ae:09:33:fb:ec:9b:9e:f9:b1: 17:85:f0:1d:76:ae:f2:24:7b:86:30:0e:e0:da:01:0a:cd:07: 6a:7c:93:85:bd:b3:7f:e6:13:a4:58:a7:1f:cd:21:cd:74:be: 95:93:1b:1a:16:75:a6:6a:fc:39:95:65:55:48:72:1c:0d:df: c8:12:be:85:af:ac:cd:5e:55:07:d4:21:c1:fe:be:fe:2b:7f: fa:0c:99:df:80:1d:37:01:b8:37:d6:ca:78:09:42:2c:2f:81: 6b:b4:e4:a5:9f:e7:82:4a:6e:54:c5:3a:de:02:76:77:ec:02: 55:bd:36:9c:77:77:db:cd:db:a0:e9:59:0b:39:c1:fe:36:19: 78:bb:79:9e:f1:00:ee:e6:b6:4e:a9:9c:f7:75:b5:e8:16:c4: a8:9a:f9:f8:8e:c1:b7:73:15:4a:42:29:3c:61:3f:54:bf:3f: a0:4a:6f:4b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULvfnMG7oRLTEumuerPHhX7z/7CYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkE3NUY5NUVBMTFDM0Y5ODRDNUM2MTBGRTkyMjIwMjYz OTRCQThFOTAeFw0yNDA3MDEwMTAwMDZaFw0yNTA2MzAwMTA1MDZaMDMxMTAvBgNV BAMTKEIzQ0Q2MEYxQTkyRjJFNTY5NTNGMThCRDUwMkQ1RTY2NDk0MkRCNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgBOM5FShHqhWiCA2Sczkqdtxd bC/SUmBUhuTojDW0eKterbq7v2uyIJKsa2RjXO+3PZ7Y5LL2I668pbT9+1GFWXQN +mBXPU6oa7Yc8EQuRDDuO007uZeWw8uB70vijVYl74kRoSSVMWQPwteC9QZonRCo flsOt8r6cARhnB6jcR9GbvqxiIGtel0Il7O03sTVZ7EBCMmx9xwBxsMHNhoYNOlt tELX7avtVim4RgmfFmmFNmR/onCzetGMRh8BOQwz5bW6UKxz5Drh95m43M+fhvUc kZ3WanqRr1DDEb5bod5BTudJhiQ1mlG/7GwdjCLmH8Cke/Xbg9ebDi54IN4BAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUs81g8akvLlaVPxi9UC1eZklC20UwHwYDVR0j BBgwFoAUanX5XqEcP5hMXGEP6SIgJjlLqOkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YTQzMzkzNC0zODQ0LTQ2NTMtOGZhYy0xODU4YjI4MjNkMWMvMC82QTc1Rjk1RUEx MUMzRjk4NEM1QzYxMEZFOTIyMjAyNjM5NEJBOEU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkE3NUY5NUVBMTFDM0Y5ODRDNUM2MTBGRTkyMjIwMjYzOTRC QThFOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhNDMzOTM0LTM4NDQtNDY1My04 ZmFjLTE4NThiMjgyM2QxYy8wLzMxMzAzMzJlMzEzNTMxMmUzOTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM1MzMzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeXXzANBgkqhkiG 9w0BAQsFAAOCAQEAmDUeRZ80XzS77GGuFOhcOIqcVSEa/fJ/r1lLZz4iHw9pn/6v a/2DUVbp9mWNNpQFYxknqNbRbNFDQXTwN6fACyGlAEreuX0L2QsqNhOdimGXrgkz ++ybnvmxF4XwHXau8iR7hjAO4NoBCs0HanyThb2zf+YTpFinH80hzXS+lZMbGhZ1 pmr8OZVlVUhyHA3fyBK+ha+szV5VB9Qhwf6+/it/+gyZ34AdNwG4N9bKeAlCLC+B a7TkpZ/ngkpuVMU63gJ2d+wCVb02nHd3283boOlZCznB/jYZeLt5nvEA7ua2Tqmc 93W16BbEqJr5+I7Bt3MVSkIpPGE/VL8/oEpvSw== -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:18 2024 by rpki-client on console-fra.rpki-client.org