$ rpki-client -vvf repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/3130332e3135362e3232362e302f32342d3234203d3e203435373031.roa File: 3130332e3135362e3232362e302f32342d3234203d3e203435373031.roa (raw, json) Hash identifier: Pto1t/zWo/BTAn7DwBNKU7vR/ZyYh0xSxibr/QoeoHg= Subject key identifier: 00:A0:07:1C:03:AA:37:5D:29:0B:14:DE:7A:BB:12:5B:85:EC:80:ED Certificate issuer: /CN=6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7 Certificate serial: 1B9B3AF8239163F3585D43D67EBD07FA73817E14 Authority key identifier: 6E:12:35:C8:FC:3F:2E:F6:D9:D2:45:D0:60:7A:A6:D7:63:C5:D4:E7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/3130332e3135362e3232362e302f32342d3234203d3e203435373031.roa Signing time: Tue 01 Oct 2024 01:00:01 +0000 ROA not before: Tue 01 Oct 2024 00:55:01 +0000 ROA not after: Tue 30 Sep 2025 01:00:01 +0000 asID: 45701 IP address blocks: 103.156.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.crl rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:9b:3a:f8:23:91:63:f3:58:5d:43:d6:7e:bd:07:fa:73:81:7e:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7 Validity Not Before: Oct 1 00:55:01 2024 GMT Not After : Sep 30 01:00:01 2025 GMT Subject: CN=00A0071C03AA375D290B14DE7ABB125B85EC80ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8c:17:ea:9b:19:02:42:40:78:6a:86:cc:de: 29:6a:62:cc:05:fa:95:2d:85:ed:58:b3:a7:48:7c: c6:2e:df:a2:5e:12:15:c8:7c:e7:d1:4a:10:1a:07: 0a:6f:be:a1:af:4d:0c:54:48:63:a2:8a:b9:cb:07: 4c:8e:c2:b0:04:0b:40:c2:1d:5b:b3:28:55:3e:de: 04:0d:0c:07:b7:3d:33:86:8d:f1:9c:16:0f:27:0e: 09:35:f3:fe:8d:e7:65:b6:ff:be:ee:2b:60:79:80: ce:9a:39:c8:6a:3a:e6:0e:1d:bb:f4:db:b4:fb:9a: e8:ad:5a:73:25:c6:d1:b2:72:4c:6e:78:38:43:76: 5f:eb:d2:ec:33:72:2e:23:cb:a5:b0:b1:9c:1a:15: 07:5b:5e:31:54:72:09:3f:90:af:7b:cb:0a:80:38: 41:03:6d:e4:34:06:18:a7:ac:3b:fe:1b:b2:0f:74: 1c:4b:ba:fe:dc:8a:33:9c:3c:3e:fc:aa:23:f8:09: 24:b3:ac:87:2a:09:ae:4b:61:fe:8f:74:82:fc:10: 34:1e:8a:ae:80:7f:00:56:97:f7:ae:47:25:25:01: a3:8b:47:b5:17:05:0c:95:3a:5d:d3:8f:c4:9b:5d: 2a:57:b6:82:11:f1:24:66:5a:28:8d:31:94:6c:f4: 37:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:A0:07:1C:03:AA:37:5D:29:0B:14:DE:7A:BB:12:5B:85:EC:80:ED X509v3 Authority Key Identifier: keyid:6E:12:35:C8:FC:3F:2E:F6:D9:D2:45:D0:60:7A:A6:D7:63:C5:D4:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E1235C8FC3F2EF6D9D245D0607AA6D763C5D4E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b5355c5a-efc8-48f7-902f-6e31fc42995a/0/3130332e3135362e3232362e302f32342d3234203d3e203435373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.226.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:12:b5:47:de:67:63:6b:86:c3:7f:d4:5e:ce:19:7a:6f:b4: f7:19:5e:fe:7b:75:3c:ab:41:2a:d6:cc:8f:c4:6a:69:21:ea: 4f:59:20:48:16:ec:75:5b:60:b2:2d:65:ee:ee:04:03:b1:af: 96:0f:11:f7:d4:3d:ad:04:d9:89:37:4f:f9:a6:40:80:cf:a4: 1e:05:c9:ec:f8:20:bc:16:d8:5f:35:58:a5:3d:bf:4b:18:4b: e1:2a:04:09:2a:d9:09:56:6d:0f:cc:6d:fb:1d:c1:9c:85:04: bb:32:04:bd:d6:f9:df:e5:d9:06:61:6a:3d:31:d3:66:b0:42: 80:5a:2a:92:06:7d:e2:e8:f4:52:9c:f9:bc:27:b5:25:ad:54: 8d:cc:b4:06:f4:3e:e5:39:b1:38:5f:09:6c:80:15:7c:13:86: 30:dd:8e:14:d0:11:40:21:6b:00:bd:e8:bc:f8:4b:19:48:a5: 3a:46:68:2d:1b:57:e8:a7:a3:b0:67:1a:ff:e6:42:72:9b:d9: 57:c7:94:a0:94:d0:00:f4:56:0c:3e:af:fb:0e:3e:c9:84:fc: 2d:1a:0c:87:51:8e:13:f1:ba:aa:e9:cc:c0:38:e3:a5:59:f5: 3b:9a:de:97:6b:23:10:ab:e9:d9:1f:33:a2:98:1d:c1:8b:d0: 66:b6:15:85 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUG5s6+CORY/NYXUPWfr0H+nOBfhQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkUxMjM1QzhGQzNGMkVGNkQ5RDI0NUQwNjA3QUE2RDc2 M0M1RDRFNzAeFw0yNDEwMDEwMDU1MDFaFw0yNTA5MzAwMTAwMDFaMDMxMTAvBgNV BAMTKDAwQTAwNzFDMDNBQTM3NUQyOTBCMTRERTdBQkIxMjVCODVFQzgwRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNjBfqmxkCQkB4aobM3ilqYswF +pUthe1Ys6dIfMYu36JeEhXIfOfRShAaBwpvvqGvTQxUSGOiirnLB0yOwrAEC0DC HVuzKFU+3gQNDAe3PTOGjfGcFg8nDgk18/6N52W2/77uK2B5gM6aOchqOuYOHbv0 27T7muitWnMlxtGyckxueDhDdl/r0uwzci4jy6WwsZwaFQdbXjFUcgk/kK97ywqA OEEDbeQ0BhinrDv+G7IPdBxLuv7cijOcPD78qiP4CSSzrIcqCa5LYf6PdIL8EDQe iq6AfwBWl/euRyUlAaOLR7UXBQyVOl3Tj8SbXSpXtoIR8SRmWiiNMZRs9DeTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUAKAHHAOqN10pCxTeersSW4XsgO0wHwYDVR0j BBgwFoAUbhI1yPw/LvbZ0kXQYHqm12PF1OcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTM1NWM1YS1lZmM4LTQ4ZjctOTAyZi02ZTMxZmM0Mjk5NWEvMC82RTEyMzVDOEZD M0YyRUY2RDlEMjQ1RDA2MDdBQTZENzYzQzVENEU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkUxMjM1QzhGQzNGMkVGNkQ5RDI0NUQwNjA3QUE2RDc2M0M1 RDRFNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1MzU1YzVhLWVmYzgtNDhmNy05 MDJmLTZlMzFmYzQyOTk1YS8wLzMxMzAzMzJlMzEzNTM2MmUzMjMyMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzczMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5ziMA0GCSqG SIb3DQEBCwUAA4IBAQB9ErVH3mdja4bDf9Rezhl6b7T3GV7+e3U8q0Eq1syPxGpp IepPWSBIFux1W2CyLWXu7gQDsa+WDxH31D2tBNmJN0/5pkCAz6QeBcns+CC8Fthf NVilPb9LGEvhKgQJKtkJVm0PzG37HcGchQS7MgS91vnf5dkGYWo9MdNmsEKAWiqS Bn3i6PRSnPm8J7UlrVSNzLQG9D7lObE4XwlsgBV8E4Yw3Y4U0BFAIWsAvei8+EsZ SKU6RmgtG1fop6OwZxr/5kJym9lXx5SglNAA9FYMPq/7Dj7JhPwtGgyHUY4T8bqq 6czAOOOlWfU7mt6XayMQq+nZHzOimB3Bi9BmthWF -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org