$ rpki-client -vvf repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/3130332e3139312e36302e302f32332d3234203d3e20313430343233.roa File: 3130332e3139312e36302e302f32332d3234203d3e20313430343233.roa (raw, json) Hash identifier: B7I4pT8xixNUOiX63bEN83in57afrlzmDDKwQ4/5sls= Subject key identifier: 7A:6B:78:55:06:7F:A6:76:23:ED:50:CE:65:80:8F:D3:B2:CC:71:58 Certificate issuer: /CN=2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5 Certificate serial: 6B124180FC85463AEB9D25985CB0F7D15191C7C1 Authority key identifier: 2D:6F:96:FA:63:0E:A7:AE:0A:2B:12:2B:6F:04:CC:4F:5F:32:CE:B5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/3130332e3139312e36302e302f32332d3234203d3e20313430343233.roa Signing time: Sun 01 Sep 2024 07:02:23 +0000 ROA not before: Sun 01 Sep 2024 06:57:23 +0000 ROA not after: Sun 31 Aug 2025 07:02:23 +0000 asID: 140423 IP address blocks: 103.191.60.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.crl rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:12:41:80:fc:85:46:3a:eb:9d:25:98:5c:b0:f7:d1:51:91:c7:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5 Validity Not Before: Sep 1 06:57:23 2024 GMT Not After : Aug 31 07:02:23 2025 GMT Subject: CN=7A6B7855067FA67623ED50CE65808FD3B2CC7158 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e3:9c:6b:e4:ff:ad:b2:59:0c:1d:12:99:54: 53:7f:29:73:bf:ac:cd:72:e3:30:23:4f:27:ab:95: 5f:f1:1b:fc:4a:75:13:b9:fc:dd:f0:c6:30:7a:64: 02:19:03:62:e4:8e:1f:74:b9:34:e7:de:49:99:e6: 68:20:b9:ed:5d:40:21:25:cd:78:c3:0c:2c:97:75: 38:a3:a3:ad:3b:e0:15:d5:d2:cb:cc:ef:69:f4:51: 5d:fc:33:d3:05:23:39:ae:77:ec:27:c6:be:3c:e0: a0:4b:3d:73:f2:5f:09:12:97:25:07:cc:48:93:f5: f3:f4:f1:b5:10:cb:46:89:5c:ca:67:ee:d5:cb:51: 19:8a:a7:bb:09:a3:98:96:fd:b3:37:8b:ce:95:40: ef:0f:0b:e6:20:f0:a0:96:d0:b6:cb:e8:e9:10:c3: 62:2e:35:75:c3:4f:c7:db:01:73:28:72:6a:55:34: 48:c5:f1:de:15:9d:c8:99:09:9c:15:c9:7c:37:e1: 75:79:d3:cf:b7:5d:7f:31:1a:5b:48:10:5a:de:36: e8:8c:e4:ba:75:eb:06:35:c1:2e:6d:6f:5f:65:db: bf:64:24:69:4a:c4:95:01:36:33:51:8e:f8:8f:d5: 5a:1c:1b:eb:11:5b:ed:d7:b5:19:3c:a6:a9:5d:30: 46:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:6B:78:55:06:7F:A6:76:23:ED:50:CE:65:80:8F:D3:B2:CC:71:58 X509v3 Authority Key Identifier: keyid:2D:6F:96:FA:63:0E:A7:AE:0A:2B:12:2B:6F:04:CC:4F:5F:32:CE:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/3130332e3139312e36302e302f32332d3234203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.60.0/23 Signature Algorithm: sha256WithRSAEncryption 93:66:f8:6b:dc:02:e9:03:a3:ba:17:f5:32:a7:a1:43:30:15: 74:9b:3e:15:f6:62:59:c7:23:56:4f:ac:1f:5d:72:06:86:87: 98:1a:17:9c:81:c0:e5:3a:6f:97:1a:bf:1a:8d:1d:c6:1f:06: a5:20:55:d4:4e:e5:8d:ec:ff:75:5b:86:e7:86:7a:e7:d3:29: 40:07:25:48:61:2b:dc:69:c1:e7:ef:6e:88:7b:a3:27:af:ee: 5a:a3:71:5f:ad:6b:c1:c5:55:f8:0f:52:e0:4e:eb:85:c1:96: 06:a6:d5:1d:2a:a8:bf:25:73:d8:20:56:f5:46:89:3e:18:75: db:bc:af:d7:4b:db:c2:46:62:c5:74:37:37:41:fc:06:9f:b3: e1:59:60:a4:3f:5c:eb:b8:83:b4:41:11:12:4d:15:a4:7e:c4: 4d:b8:a8:0b:29:2b:a5:01:5e:66:3f:6c:2d:1c:f7:63:c2:c0: e5:24:75:e1:f7:65:9c:02:df:9a:97:c2:db:79:28:54:2d:bf: d0:4b:b9:25:e5:21:b3:98:55:0e:0b:2e:2f:0f:04:42:7e:a6: 87:60:67:43:3b:1f:47:6f:49:23:31:b7:fb:4c:f6:01:09:2a: c3:97:66:b8:6d:d8:89:b4:7d:65:21:94:b5:56:33:de:25:e8: f7:0d:a5:22 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaxJBgPyFRjrrnSWYXLD30VGRx8EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ2Rjk2RkE2MzBFQTdBRTBBMkIxMjJCNkYwNENDNEY1 RjMyQ0VCNTAeFw0yNDA5MDEwNjU3MjNaFw0yNTA4MzEwNzAyMjNaMDMxMTAvBgNV BAMTKDdBNkI3ODU1MDY3RkE2NzYyM0VENTBDRTY1ODA4RkQzQjJDQzcxNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE45xr5P+tslkMHRKZVFN/KXO/ rM1y4zAjTyerlV/xG/xKdRO5/N3wxjB6ZAIZA2Lkjh90uTTn3kmZ5mggue1dQCEl zXjDDCyXdTijo6074BXV0svM72n0UV38M9MFIzmud+wnxr484KBLPXPyXwkSlyUH zEiT9fP08bUQy0aJXMpn7tXLURmKp7sJo5iW/bM3i86VQO8PC+Yg8KCW0LbL6OkQ w2IuNXXDT8fbAXMocmpVNEjF8d4VnciZCZwVyXw34XV508+3XX8xGltIEFreNuiM 5Lp16wY1wS5tb19l279kJGlKxJUBNjNRjviP1VocG+sRW+3XtRk8pqldMEZ3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUemt4VQZ/pnYj7VDOZYCP07LMcVgwHwYDVR0j BBgwFoAULW+W+mMOp64KKxIrbwTMT18yzrUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTM0ZDJkOC0zNGFmLTQ3NTctOGFkOS05MmRhMzVkOTIxNjgvMC8yRDZGOTZGQTYz MEVBN0FFMEEyQjEyMkI2RjA0Q0M0RjVGMzJDRUI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQ2Rjk2RkE2MzBFQTdBRTBBMkIxMjJCNkYwNENDNEY1RjMy Q0VCNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlMzRkMmQ4LTM0YWYtNDc1Ny04 YWQ5LTkyZGEzNWQ5MjE2OC8wLzMxMzAzMzJlMzEzOTMxMmUzNjMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ788MA0GCSqG SIb3DQEBCwUAA4IBAQCTZvhr3ALpA6O6F/Uyp6FDMBV0mz4V9mJZxyNWT6wfXXIG hoeYGhecgcDlOm+XGr8ajR3GHwalIFXUTuWN7P91W4bnhnrn0ylAByVIYSvcacHn 726Ie6Mnr+5ao3FfrWvBxVX4D1LgTuuFwZYGptUdKqi/JXPYIFb1Rok+GHXbvK/X S9vCRmLFdDc3QfwGn7PhWWCkP1zruIO0QRESTRWkfsRNuKgLKSulAV5mP2wtHPdj wsDlJHXh92WcAt+al8LbeShULb/QS7kl5SGzmFUOCy4vDwRCfqaHYGdDOx9Hb0kj Mbf7TPYBCSrDl2a4bdiJtH1lIZS1VjPeJej3DaUi -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org