$ rpki-client -vvf repo-rpki.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/3130332e32302e38362e302f32332d3233203d3e2039333431.roa File: 3130332e32302e38362e302f32332d3233203d3e2039333431.roa (raw, json) Hash identifier: X0XLAhvGZfiRvCVCUyNsPxOOwPw6McDgsETmSQQOHuM= Subject key identifier: B0:83:88:99:98:47:8B:8F:86:F5:B5:AD:8C:9A:DF:FD:20:73:9E:CF Certificate issuer: /CN=EE2C52F7BE52A0EB695A549A42E701EEE7E45D68 Certificate serial: 1EC39E9C5252EF7A26E351E8A0D34F8DB0D6FE80 Authority key identifier: EE:2C:52:F7:BE:52:A0:EB:69:5A:54:9A:42:E7:01:EE:E7:E4:5D:68 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE2C52F7BE52A0EB695A549A42E701EEE7E45D68.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/3130332e32302e38362e302f32332d3233203d3e2039333431.roa Signing time: Fri 06 Sep 2024 10:00:02 +0000 ROA not before: Fri 06 Sep 2024 09:55:02 +0000 ROA not after: Fri 05 Sep 2025 10:00:02 +0000 asID: 9341 IP address blocks: 103.20.86.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/EE2C52F7BE52A0EB695A549A42E701EEE7E45D68.crl rsync://repo-rpki.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/EE2C52F7BE52A0EB695A549A42E701EEE7E45D68.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE2C52F7BE52A0EB695A549A42E701EEE7E45D68.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:c3:9e:9c:52:52:ef:7a:26:e3:51:e8:a0:d3:4f:8d:b0:d6:fe:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EE2C52F7BE52A0EB695A549A42E701EEE7E45D68 Validity Not Before: Sep 6 09:55:02 2024 GMT Not After : Sep 5 10:00:02 2025 GMT Subject: CN=B083889998478B8F86F5B5AD8C9ADFFD20739ECF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:26:64:48:12:e3:80:da:5b:ea:ce:36:66:51: 47:bb:3d:a6:28:5f:c2:35:60:62:03:85:4f:cf:7d: 02:ce:7e:2b:db:27:ad:19:56:81:94:d6:b9:46:55: b4:72:d9:d6:05:db:b8:be:36:44:9e:8b:1d:d4:d8: 8c:4e:50:be:f3:dc:6b:83:5f:b3:46:76:34:4b:73: cb:21:8a:3e:ce:dd:6f:f4:aa:e2:a0:4e:ea:f6:fc: 9e:42:90:a8:03:dd:80:08:09:f1:85:f4:af:53:39: 83:dd:4e:21:bd:34:20:ba:ba:53:b2:40:7e:08:66: 16:e1:60:f0:d2:ea:87:03:57:8c:fa:bf:1c:54:89: 4c:2f:f7:b4:96:bd:bc:be:6e:b7:5d:92:05:11:d5: 4d:2d:85:0a:25:24:44:09:21:39:69:66:bc:0b:df: fd:bf:47:fa:f1:32:07:d6:ba:d4:61:0a:22:aa:fa: 95:cd:5d:bc:03:b1:37:88:ef:05:c9:cd:94:29:c3: e5:a1:96:f6:06:70:8c:64:cc:2b:54:4f:21:5e:c0: 00:2e:ba:64:ea:fc:50:df:10:98:b4:51:ed:de:be: f6:13:47:d3:56:0a:51:16:62:22:d3:a3:e2:78:ae: 9d:e2:e0:90:2e:8e:62:64:9a:d9:f5:bf:cb:6f:ef: 56:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:83:88:99:98:47:8B:8F:86:F5:B5:AD:8C:9A:DF:FD:20:73:9E:CF X509v3 Authority Key Identifier: keyid:EE:2C:52:F7:BE:52:A0:EB:69:5A:54:9A:42:E7:01:EE:E7:E4:5D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/EE2C52F7BE52A0EB695A549A42E701EEE7E45D68.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EE2C52F7BE52A0EB695A549A42E701EEE7E45D68.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aaa489a6-5485-487f-b5dd-8f4edeb46bcb/0/3130332e32302e38362e302f32332d3233203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.86.0/23 Signature Algorithm: sha256WithRSAEncryption 14:5a:3a:77:f6:5f:4a:ba:bb:68:73:e3:ef:ee:ae:d8:f6:f1: 0b:20:10:a8:59:16:99:0a:1a:7b:37:90:23:29:c4:3f:72:4e: f5:f9:22:b5:07:92:c7:17:33:11:76:e7:c8:11:04:1b:4f:6b: 45:8e:4e:ab:0b:be:59:51:ec:fc:05:3b:a4:71:a8:a4:0b:f3: 10:87:35:a5:89:ae:8b:58:85:0f:22:7b:2f:83:4c:f0:9f:d1: f8:cf:5b:5a:86:98:22:ff:c7:89:6d:92:44:56:3c:b9:dc:e2: a8:53:13:12:c5:6f:ca:e9:21:9b:3e:61:eb:10:94:3d:21:ae: 96:e5:98:93:41:23:58:ac:0a:8f:ed:d8:d4:10:08:97:36:cf: b8:b0:54:aa:b4:9e:fb:01:f4:be:5b:1c:98:8c:83:5c:6d:c9: 31:4b:42:c0:15:32:ef:d5:24:ab:b2:05:69:e8:56:aa:a6:8f: 7f:b6:5f:eb:c7:35:6a:bc:11:a9:22:4a:a1:b8:58:57:65:ca: 22:4d:ca:bc:f6:26:44:21:ec:95:8b:7e:5f:e6:2e:0d:e2:f5: 66:48:4e:9a:fa:1f:70:a9:5f:a7:66:90:38:ce:fe:b8:fa:b0: 1b:01:b4:f1:c6:ba:1f:cc:b4:2a:9f:63:c8:af:8a:3c:15:1e: 29:65:6a:a5 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUHsOenFJS73om41HooNNPjbDW/oAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUUyQzUyRjdCRTUyQTBFQjY5NUE1NDlBNDJFNzAxRUVF N0U0NUQ2ODAeFw0yNDA5MDYwOTU1MDJaFw0yNTA5MDUxMDAwMDJaMDMxMTAvBgNV BAMTKEIwODM4ODk5OTg0NzhCOEY4NkY1QjVBRDhDOUFERkZEMjA3MzlFQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2JmRIEuOA2lvqzjZmUUe7PaYo X8I1YGIDhU/PfQLOfivbJ60ZVoGU1rlGVbRy2dYF27i+NkSeix3U2IxOUL7z3GuD X7NGdjRLc8shij7O3W/0quKgTur2/J5CkKgD3YAICfGF9K9TOYPdTiG9NCC6ulOy QH4IZhbhYPDS6ocDV4z6vxxUiUwv97SWvby+brddkgUR1U0thQolJEQJITlpZrwL 3/2/R/rxMgfWutRhCiKq+pXNXbwDsTeI7wXJzZQpw+WhlvYGcIxkzCtUTyFewAAu umTq/FDfEJi0Ue3evvYTR9NWClEWYiLTo+J4rp3i4JAujmJkmtn1v8tv71ZNAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUsIOImZhHi4+G9bWtjJrf/SBzns8wHwYDVR0j BBgwFoAU7ixS975SoOtpWlSaQucB7ufkXWgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWE0ODlhNi01NDg1LTQ4N2YtYjVkZC04ZjRlZGViNDZiY2IvMC9FRTJDNTJGN0JF NTJBMEVCNjk1QTU0OUE0MkU3MDFFRUU3RTQ1RDY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUUyQzUyRjdCRTUyQTBFQjY5NUE1NDlBNDJFNzAxRUVFN0U0 NUQ2OC5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYWFhNDg5YTYtNTQ4NS00ODdmLWI1 ZGQtOGY0ZWRlYjQ2YmNiLzAvMzEzMDMzMmUzMjMwMmUzODM2MmUzMDJmMzIzMzJk MzIzMzIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnFFYwDQYJKoZIhvcNAQEL BQADggEBABRaOnf2X0q6u2hz4+/urtj28QsgEKhZFpkKGns3kCMpxD9yTvX5IrUH kscXMxF258gRBBtPa0WOTqsLvllR7PwFO6RxqKQL8xCHNaWJrotYhQ8iey+DTPCf 0fjPW1qGmCL/x4ltkkRWPLnc4qhTExLFb8rpIZs+YesQlD0hrpblmJNBI1isCo/t 2NQQCJc2z7iwVKq0nvsB9L5bHJiMg1xtyTFLQsAVMu/VJKuyBWnoVqqmj3+2X+vH NWq8EakiSqG4WFdlyiJNyrz2JkQh7JWLfl/mLg3i9WZITpr6H3CpX6dmkDjO/rj6 sBsBtPHGuh/MtCqfY8ivijwVHillaqU= -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org