$ rpki-client -vvf repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/3130332e3130362e3131322e302f32322d3234203d3e20313336383830.roa File: 3130332e3130362e3131322e302f32322d3234203d3e20313336383830.roa (raw, json) Hash identifier: ZCH3XXiTrQMOGAjRhT39z3F568gOjmz+EgX36Ate/V4= Subject key identifier: 2D:3F:A2:D2:D1:B0:79:77:B3:25:61:4B:A9:9E:C7:F4:12:79:50:8B Certificate issuer: /CN=DC80860022A4D5D14DB78082BAC705E0C1B0F915 Certificate serial: 6084BCA50F0085EA69D61ED4B0DEEBFB31C77A19 Authority key identifier: DC:80:86:00:22:A4:D5:D1:4D:B7:80:82:BA:C7:05:E0:C1:B0:F9:15 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC80860022A4D5D14DB78082BAC705E0C1B0F915.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/3130332e3130362e3131322e302f32322d3234203d3e20313336383830.roa Signing time: Mon 01 Jul 2024 01:05:01 +0000 ROA not before: Mon 01 Jul 2024 01:00:01 +0000 ROA not after: Mon 30 Jun 2025 01:05:01 +0000 asID: 136880 IP address blocks: 103.106.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/DC80860022A4D5D14DB78082BAC705E0C1B0F915.crl rsync://repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/DC80860022A4D5D14DB78082BAC705E0C1B0F915.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC80860022A4D5D14DB78082BAC705E0C1B0F915.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:84:bc:a5:0f:00:85:ea:69:d6:1e:d4:b0:de:eb:fb:31:c7:7a:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC80860022A4D5D14DB78082BAC705E0C1B0F915 Validity Not Before: Jul 1 01:00:01 2024 GMT Not After : Jun 30 01:05:01 2025 GMT Subject: CN=2D3FA2D2D1B07977B325614BA99EC7F41279508B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:fe:e9:de:57:09:d5:33:60:49:8a:06:f3:cf: e0:59:02:e8:6f:e4:6c:8b:f9:7f:9a:20:e0:90:f6: c9:2e:b4:b2:47:31:f2:45:e9:83:6f:7a:41:94:0f: 92:b1:56:30:6f:22:9d:19:ff:d6:38:28:f9:d3:60: 6f:e0:74:49:ea:47:6e:ac:59:6b:5c:4e:15:0d:f5: 0b:6b:15:05:93:08:82:d1:9d:8c:21:ff:e3:74:29: ca:57:5c:47:ec:e1:92:06:e0:41:17:68:26:6d:08: 1b:76:fd:3c:e2:99:3e:47:ce:06:19:7c:04:e8:29: 05:ac:50:b9:94:af:c7:98:e0:06:a7:5f:c1:ec:f7: af:35:11:52:10:56:b2:1c:80:00:cf:bb:78:d4:1c: d0:6d:c3:19:88:a6:fe:23:18:e1:79:fd:9a:99:18: 2b:e8:f6:73:2c:b6:16:fe:4b:73:23:4e:55:24:63: 75:63:50:f8:ec:9a:b1:4a:3b:9f:45:c9:c7:34:62: 86:cb:22:06:8d:9b:47:81:62:2b:da:c5:78:ae:0e: 83:fe:18:db:d8:03:e2:45:62:68:c5:be:67:82:f1: f2:a7:22:7d:07:82:e1:94:c7:58:01:30:3b:c0:de: f6:06:b4:38:e7:6e:8b:30:c0:b0:d4:92:80:e5:86: e6:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:3F:A2:D2:D1:B0:79:77:B3:25:61:4B:A9:9E:C7:F4:12:79:50:8B X509v3 Authority Key Identifier: keyid:DC:80:86:00:22:A4:D5:D1:4D:B7:80:82:BA:C7:05:E0:C1:B0:F9:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/DC80860022A4D5D14DB78082BAC705E0C1B0F915.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DC80860022A4D5D14DB78082BAC705E0C1B0F915.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bb07b37c-0507-4913-8329-3f161b6aff56/0/3130332e3130362e3131322e302f32322d3234203d3e20313336383830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.106.112.0/22 Signature Algorithm: sha256WithRSAEncryption e4:ef:be:3f:59:ba:53:67:69:86:33:17:cb:c7:46:fb:6e:94: f7:1f:b1:6b:ca:90:3a:78:a8:8e:57:e0:0c:71:75:58:00:fa: 23:d7:d1:b7:2f:e8:07:a0:9c:b7:e3:32:82:5e:fa:e2:84:b0: e9:9d:96:39:79:cb:91:32:15:99:04:9a:6d:5a:f4:d8:58:90: 69:de:e4:e4:5e:f7:a2:fd:20:7e:22:5a:dd:3e:05:5a:77:95: 61:48:77:8e:77:05:aa:4e:ed:c6:ed:5f:01:de:20:c4:7f:57: 77:b3:cf:8b:94:12:c7:1b:4e:1c:3e:58:c8:c1:c4:30:82:ee: a0:9e:54:db:e9:75:c4:36:ea:5a:6e:fe:12:dc:bf:6e:21:1c: 6e:69:50:45:f1:fc:a9:90:ca:19:45:c1:77:81:15:a7:ee:46: b8:9a:61:d9:92:e4:0c:e5:52:43:45:74:c3:23:d5:f6:e4:a6: fa:1e:a1:5e:14:1d:05:e1:0f:aa:34:42:ca:b2:ed:e7:37:ea: d4:17:f3:89:01:da:1f:89:ca:d2:72:c0:1f:30:f0:64:a7:1f: ba:33:d6:b4:0d:95:ee:76:b3:2b:0a:69:f5:f3:db:8c:b9:2c: 12:b4:b9:bc:52:c3:6f:4e:87:2b:d2:d1:19:8d:41:15:d6:d4: e9:8c:5f:f8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYIS8pQ8Ahepp1h7UsN7r+zHHehkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREM4MDg2MDAyMkE0RDVEMTREQjc4MDgyQkFDNzA1RTBD MUIwRjkxNTAeFw0yNDA3MDEwMTAwMDFaFw0yNTA2MzAwMTA1MDFaMDMxMTAvBgNV BAMTKDJEM0ZBMkQyRDFCMDc5NzdCMzI1NjE0QkE5OUVDN0Y0MTI3OTUwOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDj/uneVwnVM2BJigbzz+BZAuhv 5GyL+X+aIOCQ9skutLJHMfJF6YNvekGUD5KxVjBvIp0Z/9Y4KPnTYG/gdEnqR26s WWtcThUN9QtrFQWTCILRnYwh/+N0KcpXXEfs4ZIG4EEXaCZtCBt2/TzimT5HzgYZ fAToKQWsULmUr8eY4AanX8Hs9681EVIQVrIcgADPu3jUHNBtwxmIpv4jGOF5/ZqZ GCvo9nMsthb+S3MjTlUkY3VjUPjsmrFKO59Fycc0YobLIgaNm0eBYivaxXiuDoP+ GNvYA+JFYmjFvmeC8fKnIn0HguGUx1gBMDvA3vYGtDjnboswwLDUkoDlhuY5AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQULT+i0tGweXezJWFLqZ7H9BJ5UIswHwYDVR0j BBgwFoAU3ICGACKk1dFNt4CCuscF4MGw+RUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YjA3YjM3Yy0wNTA3LTQ5MTMtODMyOS0zZjE2MWI2YWZmNTYvMC9EQzgwODYwMDIy QTRENUQxNERCNzgwODJCQUM3MDVFMEMxQjBGOTE1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREM4MDg2MDAyMkE0RDVEMTREQjc4MDgyQkFDNzA1RTBDMUIw RjkxNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JiMDdiMzdjLTA1MDctNDkxMy04 MzI5LTNmMTYxYjZhZmY1Ni8wLzMxMzAzMzJlMzEzMDM2MmUzMTMxMzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzYzODM4MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnanAwDQYJ KoZIhvcNAQELBQADggEBAOTvvj9ZulNnaYYzF8vHRvtulPcfsWvKkDp4qI5X4Axx dVgA+iPX0bcv6AegnLfjMoJe+uKEsOmdljl5y5EyFZkEmm1a9NhYkGne5ORe96L9 IH4iWt0+BVp3lWFId453BapO7cbtXwHeIMR/V3ezz4uUEscbThw+WMjBxDCC7qCe VNvpdcQ26lpu/hLcv24hHG5pUEXx/KmQyhlFwXeBFafuRriaYdmS5AzlUkNFdMMj 1fbkpvoeoV4UHQXhD6o0Qsqy7ec36tQX84kB2h+JytJywB8w8GSnH7oz1rQNle52 sysKafXz24y5LBK0ubxSw29OhyvS0RmNQRXW1OmMX/g= -----END CERTIFICATE-----Generated at Wed Nov 20 18:59:47 2024 by rpki-client on console-ams.rpki-client.org