$ rpki-client -vvf repo-rpki.idnic.net/repo/aae6379e-b886-436e-b0ed-3aaff9c08501/0/3130332e3137302e33322e302f32332d3233203d3e20313432333631.roa File: 3130332e3137302e33322e302f32332d3233203d3e20313432333631.roa (raw, json) Hash identifier: n4gZ9p5wLBIS47gt9MqDRrCEOzm6EJkO8o6V+1DkaAA= Subject key identifier: 6B:61:8E:52:32:D8:76:64:5C:18:EF:53:D8:83:88:61:89:F0:10:FB Certificate issuer: /CN=B90B0AED87ECD7C87066450AB56ADE2996647CD5 Certificate serial: 34F0351D858CF1D35F1A11992301AA5AD5C5B052 Authority key identifier: B9:0B:0A:ED:87:EC:D7:C8:70:66:45:0A:B5:6A:DE:29:96:64:7C:D5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B90B0AED87ECD7C87066450AB56ADE2996647CD5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aae6379e-b886-436e-b0ed-3aaff9c08501/0/3130332e3137302e33322e302f32332d3233203d3e20313432333631.roa Signing time: Wed 20 Mar 2024 06:00:00 +0000 ROA not before: Wed 20 Mar 2024 05:55:00 +0000 ROA not after: Wed 19 Mar 2025 06:00:00 +0000 asID: 142361 IP address blocks: 103.170.32.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aae6379e-b886-436e-b0ed-3aaff9c08501/0/B90B0AED87ECD7C87066450AB56ADE2996647CD5.crl rsync://repo-rpki.idnic.net/repo/aae6379e-b886-436e-b0ed-3aaff9c08501/0/B90B0AED87ECD7C87066450AB56ADE2996647CD5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B90B0AED87ECD7C87066450AB56ADE2996647CD5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:f0:35:1d:85:8c:f1:d3:5f:1a:11:99:23:01:aa:5a:d5:c5:b0:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B90B0AED87ECD7C87066450AB56ADE2996647CD5 Validity Not Before: Mar 20 05:55:00 2024 GMT Not After : Mar 19 06:00:00 2025 GMT Subject: CN=6B618E5232D876645C18EF53D883886189F010FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:ac:09:5a:e5:46:70:ae:b1:6b:90:ca:cc:87: 13:50:c1:dc:34:80:09:e7:15:04:03:41:5c:21:48: 77:d4:e0:38:dd:6c:5e:9d:de:06:3e:f9:86:6d:c1: 2d:cc:1b:60:b2:35:81:dd:50:f8:d8:f6:88:4f:6c: dd:43:16:bb:e1:fd:ac:28:74:73:72:87:82:d9:a0: df:62:da:26:75:c7:ed:c5:bf:eb:c1:f9:94:e3:55: c7:b1:3c:41:d7:a6:7e:1e:d2:81:d4:e8:fc:44:0d: 57:bc:f4:33:db:69:f6:e1:c6:44:b0:6a:88:88:76: 9f:ac:ea:d0:64:16:3a:2d:15:cd:b5:47:c5:21:c6: 83:96:92:cf:9d:88:b8:75:a9:a8:bb:2f:09:16:e2: c1:e3:d2:f5:44:b5:15:3d:5c:08:24:d4:ea:c7:d8: 37:99:3e:bf:22:2b:0b:ef:59:e3:4e:0f:a7:c7:4e: 61:de:af:dc:0f:1b:69:9f:ff:81:12:de:9a:de:64: 90:44:60:ad:c2:16:74:86:5e:e3:02:89:2e:a0:77: d8:a4:f1:8d:d5:10:c9:a1:ae:89:a8:a7:a9:11:dd: e9:f9:5a:f3:ff:38:1e:04:6d:4e:10:00:e0:57:05: a9:2a:2f:0a:28:82:8a:52:e0:23:5b:cc:2d:db:84: c5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:61:8E:52:32:D8:76:64:5C:18:EF:53:D8:83:88:61:89:F0:10:FB X509v3 Authority Key Identifier: keyid:B9:0B:0A:ED:87:EC:D7:C8:70:66:45:0A:B5:6A:DE:29:96:64:7C:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aae6379e-b886-436e-b0ed-3aaff9c08501/0/B90B0AED87ECD7C87066450AB56ADE2996647CD5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B90B0AED87ECD7C87066450AB56ADE2996647CD5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aae6379e-b886-436e-b0ed-3aaff9c08501/0/3130332e3137302e33322e302f32332d3233203d3e20313432333631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.32.0/23 Signature Algorithm: sha256WithRSAEncryption 30:af:ed:f0:cf:9d:5e:86:46:1b:1c:c7:bd:ac:a0:de:2f:24: 0c:25:9b:4e:a0:a9:cc:6b:d0:8c:e5:50:01:2f:5d:5f:69:dd: db:5f:c2:39:9a:65:9c:e2:44:c4:d8:e1:94:77:ec:db:21:6f: a0:07:54:49:d4:46:00:6f:02:b2:5a:06:9f:a5:30:9c:8b:c0: c2:8b:c5:dc:57:d2:8d:9e:aa:04:90:5e:20:ba:b5:1d:11:ad: 73:ae:24:5f:f8:c3:6b:5b:be:8e:c4:ec:9a:71:87:56:ae:6f: 5a:54:68:0d:19:1e:84:dd:03:fd:3f:b5:bf:6b:32:3f:b1:fd: aa:70:36:bd:a7:e4:b1:07:bb:bd:64:5c:c1:62:af:2b:a2:2b: dd:9c:ea:4c:8d:61:07:95:45:a6:1e:10:b0:f6:1f:43:9e:d8: b6:e9:7e:52:64:f7:76:cd:fd:82:34:79:77:eb:7b:f2:03:fa: ad:6e:47:d0:22:ff:40:1c:df:41:6a:7a:66:0f:18:a7:d9:62: 40:17:b9:4d:e6:98:f4:63:8c:ab:eb:7a:0b:d0:62:f1:5c:bf: a9:f7:1f:87:59:84:ae:45:29:dd:14:43:c2:b1:08:c5:9b:af: 00:11:78:23:a5:f4:46:6d:d3:a4:40:3c:89:db:56:e8:cd:3e: 3f:11:34:d3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNPA1HYWM8dNfGhGZIwGqWtXFsFIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjkwQjBBRUQ4N0VDRDdDODcwNjY0NTBBQjU2QURFMjk5 NjY0N0NENTAeFw0yNDAzMjAwNTU1MDBaFw0yNTAzMTkwNjAwMDBaMDMxMTAvBgNV BAMTKDZCNjE4RTUyMzJEODc2NjQ1QzE4RUY1M0Q4ODM4ODYxODlGMDEwRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDorAla5UZwrrFrkMrMhxNQwdw0 gAnnFQQDQVwhSHfU4DjdbF6d3gY++YZtwS3MG2CyNYHdUPjY9ohPbN1DFrvh/awo dHNyh4LZoN9i2iZ1x+3Fv+vB+ZTjVcexPEHXpn4e0oHU6PxEDVe89DPbafbhxkSw aoiIdp+s6tBkFjotFc21R8UhxoOWks+diLh1qai7LwkW4sHj0vVEtRU9XAgk1OrH 2DeZPr8iKwvvWeNOD6fHTmHer9wPG2mf/4ES3preZJBEYK3CFnSGXuMCiS6gd9ik 8Y3VEMmhromop6kR3en5WvP/OB4EbU4QAOBXBakqLwoogopS4CNbzC3bhMXpAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUa2GOUjLYdmRcGO9T2IOIYYnwEPswHwYDVR0j BBgwFoAUuQsK7Yfs18hwZkUKtWreKZZkfNUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWU2Mzc5ZS1iODg2LTQzNmUtYjBlZC0zYWFmZjljMDg1MDEvMC9COTBCMEFFRDg3 RUNEN0M4NzA2NjQ1MEFCNTZBREUyOTk2NjQ3Q0Q1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjkwQjBBRUQ4N0VDRDdDODcwNjY0NTBBQjU2QURFMjk5NjY0 N0NENS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhZTYzNzllLWI4ODYtNDM2ZS1i MGVkLTNhYWZmOWMwODUwMS8wLzMxMzAzMzJlMzEzNzMwMmUzMzMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMyMzMzNjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6ogMA0GCSqG SIb3DQEBCwUAA4IBAQAwr+3wz51ehkYbHMe9rKDeLyQMJZtOoKnMa9CM5VABL11f ad3bX8I5mmWc4kTE2OGUd+zbIW+gB1RJ1EYAbwKyWgafpTCci8DCi8XcV9KNnqoE kF4gurUdEa1zriRf+MNrW76OxOyacYdWrm9aVGgNGR6E3QP9P7W/azI/sf2qcDa9 p+SxB7u9ZFzBYq8roivdnOpMjWEHlUWmHhCw9h9Dnti26X5SZPd2zf2CNHl363vy A/qtbkfQIv9AHN9BanpmDxin2WJAF7lN5pj0Y4yr63oL0GLxXL+p9x+HWYSuRSnd FEPCsQjFm68AEXgjpfRGbdOkQDyJ21bozT4/ETTT -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:56 2024 by rpki-client on console-ams.rpki-client.org