$ rpki-client -vvf repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/3130332e3136392e3139322e302f32332d3234203d3e20313432333438.roa File: 3130332e3136392e3139322e302f32332d3234203d3e20313432333438.roa (raw, json) Hash identifier: zzH64W01k51UtMKo9K1XtqIEAU0v0y4EltQRbWU1t7M= Subject key identifier: 72:2E:82:BC:2D:C1:AE:FF:FE:3A:75:59:BD:0D:B1:90:E7:AF:8E:80 Certificate issuer: /CN=BB64FDB64281947C3567104C08735A011C6210F4 Certificate serial: 4E314B42D1FF50E7477957A2AD5775DCC42A7D65 Authority key identifier: BB:64:FD:B6:42:81:94:7C:35:67:10:4C:08:73:5A:01:1C:62:10:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB64FDB64281947C3567104C08735A011C6210F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/3130332e3136392e3139322e302f32332d3234203d3e20313432333438.roa Signing time: Thu 02 May 2024 11:02:04 +0000 ROA not before: Thu 02 May 2024 10:57:04 +0000 ROA not after: Thu 01 May 2025 11:02:04 +0000 asID: 142348 IP address blocks: 103.169.192.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/BB64FDB64281947C3567104C08735A011C6210F4.crl rsync://repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/BB64FDB64281947C3567104C08735A011C6210F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB64FDB64281947C3567104C08735A011C6210F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 08:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:31:4b:42:d1:ff:50:e7:47:79:57:a2:ad:57:75:dc:c4:2a:7d:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB64FDB64281947C3567104C08735A011C6210F4 Validity Not Before: May 2 10:57:04 2024 GMT Not After : May 1 11:02:04 2025 GMT Subject: CN=722E82BC2DC1AEFFFE3A7559BD0DB190E7AF8E80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a7:21:d9:c1:c7:d5:85:44:14:22:65:43:07: 91:c2:98:41:19:4a:96:47:59:3a:be:f9:d8:fb:74: 23:5d:e5:3c:ea:ac:6b:4e:76:61:68:f0:6a:c1:02: e8:1f:83:d4:da:71:73:5c:3f:df:03:ad:a1:af:f7: e8:9a:56:a9:a5:40:df:0f:37:57:05:bc:b5:36:ab: 35:a5:e5:58:be:da:b1:11:e9:7c:13:0b:9f:7a:6a: f8:ba:bc:e1:d1:50:de:c9:b0:db:c4:42:d9:da:1d: 88:35:f1:b3:a6:44:dd:b3:a2:1d:98:7c:5e:a7:24: 82:b6:1e:19:77:4b:48:68:81:31:66:41:0d:86:01: 91:ca:b2:b3:fa:6d:38:97:dd:71:be:ec:b6:37:b5: bc:6f:83:56:48:ae:1b:ba:5c:ce:42:4b:31:3b:2f: 95:03:4a:85:ff:f2:84:75:11:08:4b:6a:ce:90:fb: 9e:96:a8:12:c5:7e:8a:0a:0f:8c:98:11:e0:42:52: ac:24:cf:52:6b:d9:d9:ba:c7:69:10:12:30:c1:a7: 2b:28:a0:91:04:15:2f:c6:1c:a9:36:0b:65:a2:d9: 0c:1f:5a:26:40:78:9a:be:50:e6:23:72:7a:63:cb: 3e:f7:37:6e:e0:35:d6:27:75:26:18:bb:e1:af:75: 5f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:2E:82:BC:2D:C1:AE:FF:FE:3A:75:59:BD:0D:B1:90:E7:AF:8E:80 X509v3 Authority Key Identifier: keyid:BB:64:FD:B6:42:81:94:7C:35:67:10:4C:08:73:5A:01:1C:62:10:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/BB64FDB64281947C3567104C08735A011C6210F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BB64FDB64281947C3567104C08735A011C6210F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/3130332e3136392e3139322e302f32332d3234203d3e20313432333438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.192.0/23 Signature Algorithm: sha256WithRSAEncryption 17:36:b8:12:11:06:65:67:c7:36:3f:d1:f0:5a:c4:f6:6a:d1: 60:b3:99:a3:f9:9a:cd:2a:e6:9d:a0:fd:e4:83:9b:f4:30:cd: 46:fb:bd:28:e1:82:8a:d8:c6:44:ad:e1:80:18:d0:50:34:54: fe:c7:64:26:3a:35:dc:1d:3b:54:e1:80:b9:5f:a6:3f:5a:1a: fe:0f:39:5f:e6:f2:9b:23:65:3d:35:59:cf:8d:d1:9e:a4:ec: e9:22:58:6f:7e:3b:99:3f:dc:32:78:36:60:73:cd:e1:3a:ca: d9:42:49:8c:3c:b5:11:04:22:87:7c:d2:be:bc:b1:3a:9a:c2: 7b:b0:cc:91:f1:d3:42:20:f8:7b:90:03:95:d7:4a:78:d7:81: e9:27:1c:7f:6f:76:54:b7:11:dc:f7:35:39:a6:8f:58:85:16: 14:46:b7:f2:52:c5:85:ec:bb:b7:07:23:cf:af:b8:a2:57:6b: 3b:79:d8:b1:e1:6b:42:8d:a2:9b:05:e0:b0:2e:3d:3d:da:9e: 41:72:bf:17:59:4a:d5:73:d4:6c:4b:c3:fb:e0:a3:e2:60:80: 39:29:f4:a9:6d:55:93:b5:1a:c6:2c:e2:da:35:e8:47:a8:19: 00:7e:ca:c1:a7:e5:76:20:a3:7d:73:aa:a3:09:8c:d2:10:8a: f0:2f:43:6a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTjFLQtH/UOdHeVeirVd13MQqfWUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI2NEZEQjY0MjgxOTQ3QzM1NjcxMDRDMDg3MzVBMDEx QzYyMTBGNDAeFw0yNDA1MDIxMDU3MDRaFw0yNTA1MDExMTAyMDRaMDMxMTAvBgNV BAMTKDcyMkU4MkJDMkRDMUFFRkZGRTNBNzU1OUJEMERCMTkwRTdBRjhFODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqpyHZwcfVhUQUImVDB5HCmEEZ SpZHWTq++dj7dCNd5TzqrGtOdmFo8GrBAugfg9TacXNcP98DraGv9+iaVqmlQN8P N1cFvLU2qzWl5Vi+2rER6XwTC596avi6vOHRUN7JsNvEQtnaHYg18bOmRN2zoh2Y fF6nJIK2Hhl3S0hogTFmQQ2GAZHKsrP6bTiX3XG+7LY3tbxvg1ZIrhu6XM5CSzE7 L5UDSoX/8oR1EQhLas6Q+56WqBLFfooKD4yYEeBCUqwkz1Jr2dm6x2kQEjDBpyso oJEEFS/GHKk2C2Wi2QwfWiZAeJq+UOYjcnpjyz73N27gNdYndSYYu+GvdV87AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUci6CvC3Brv/+OnVZvQ2xkOevjoAwHwYDVR0j BBgwFoAUu2T9tkKBlHw1ZxBMCHNaARxiEPQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NGEwMmQzNy0zYjlkLTQ1M2EtOGM4MS0zMjhlNTQwMTQxZmQvMC9CQjY0RkRCNjQy ODE5NDdDMzU2NzEwNEMwODczNUEwMTFDNjIxMEY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkI2NEZEQjY0MjgxOTQ3QzM1NjcxMDRDMDg3MzVBMDExQzYy MTBGNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I0YTAyZDM3LTNiOWQtNDUzYS04 YzgxLTMyOGU1NDAxNDFmZC8wLzMxMzAzMzJlMzEzNjM5MmUzMTM5MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM0Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqcAwDQYJ KoZIhvcNAQELBQADggEBABc2uBIRBmVnxzY/0fBaxPZq0WCzmaP5ms0q5p2g/eSD m/QwzUb7vSjhgorYxkSt4YAY0FA0VP7HZCY6NdwdO1ThgLlfpj9aGv4POV/m8psj ZT01Wc+N0Z6k7OkiWG9+O5k/3DJ4NmBzzeE6ytlCSYw8tREEIod80r68sTqawnuw zJHx00Ig+HuQA5XXSnjXgeknHH9vdlS3Edz3NTmmj1iFFhRGt/JSxYXsu7cHI8+v uKJXazt52LHha0KNopsF4LAuPT3ankFyvxdZStVz1GxLw/vgo+JggDkp9KltVZO1 GsYs4to16EeoGQB+ysGn5XYgo31zqqMJjNIQivAvQ2o= -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:49 2024 by rpki-client on console-ams.rpki-client.org