$ rpki-client -vvf repo-rpki.idnic.net/repo/bc42480a-8e0f-477a-bd4a-aa8089927ba8/0/3130332e3130312e3139332e302f32342d3234203d3e20313530343638.roa File: 3130332e3130312e3139332e302f32342d3234203d3e20313530343638.roa (raw, json) Hash identifier: dkGR39+XavvYYHc03QkH0P51PWZRgCQrLTLXM9RYMWE= Subject key identifier: 6E:1D:DF:2B:EA:D0:D7:CC:CA:C7:3E:D1:CC:AA:BF:CD:4A:64:03:34 Certificate issuer: /CN=556F35148B9935659C1FE70B505B1D8D79838EFA Certificate serial: 3FC0969EE1FDB442A48EAB9A055C08E5E5B5EAB6 Authority key identifier: 55:6F:35:14:8B:99:35:65:9C:1F:E7:0B:50:5B:1D:8D:79:83:8E:FA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/556F35148B9935659C1FE70B505B1D8D79838EFA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bc42480a-8e0f-477a-bd4a-aa8089927ba8/0/3130332e3130312e3139332e302f32342d3234203d3e20313530343638.roa Signing time: Tue 21 Nov 2023 08:00:52 +0000 ROA not before: Tue 21 Nov 2023 07:55:52 +0000 ROA not after: Tue 19 Nov 2024 08:00:52 +0000 asID: 150468 IP address blocks: 103.101.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bc42480a-8e0f-477a-bd4a-aa8089927ba8/0/556F35148B9935659C1FE70B505B1D8D79838EFA.crl rsync://repo-rpki.idnic.net/repo/bc42480a-8e0f-477a-bd4a-aa8089927ba8/0/556F35148B9935659C1FE70B505B1D8D79838EFA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/556F35148B9935659C1FE70B505B1D8D79838EFA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:c0:96:9e:e1:fd:b4:42:a4:8e:ab:9a:05:5c:08:e5:e5:b5:ea:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=556F35148B9935659C1FE70B505B1D8D79838EFA Validity Not Before: Nov 21 07:55:52 2023 GMT Not After : Nov 19 08:00:52 2024 GMT Subject: CN=6E1DDF2BEAD0D7CCCAC73ED1CCAABFCD4A640334 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c3:cf:ce:65:e9:93:ed:80:6e:52:2c:a8:ef: 95:4c:24:26:84:89:6c:4a:4b:fd:14:dd:91:26:40: 96:7c:a8:31:d4:65:b5:94:66:86:62:11:be:d7:d8: f2:41:76:94:13:6e:ef:94:e0:47:b6:6f:2f:1b:e1: 62:96:28:00:d6:6a:c6:d7:52:2a:fd:2e:26:85:a6: d8:ef:79:30:d8:65:1d:06:be:55:18:a3:c6:1a:75: b7:43:56:b7:62:59:5c:0c:6c:83:b8:2d:af:ca:c7: 9a:f1:fe:4a:18:2d:43:49:18:9b:13:69:00:87:fa: 14:01:d3:04:62:00:de:74:6b:af:3d:40:cf:e1:25: c3:e8:51:54:b5:26:82:af:b2:27:fa:cf:f2:32:5e: 89:75:db:d3:41:02:b4:79:e4:b3:e7:90:0b:95:3a: 27:80:00:44:9a:90:9f:67:5d:03:86:88:68:f3:21: aa:2a:66:2d:60:78:c4:e4:32:01:32:81:c5:6d:4a: 16:71:90:b2:12:82:b3:ae:44:29:f8:02:d8:38:6c: 0e:3a:1f:5e:c4:04:2a:69:36:ca:2f:f0:88:02:6a: a9:f9:64:7d:ef:63:61:c2:ee:36:89:9c:ce:81:28: a3:06:3c:f2:b9:56:28:d1:52:a5:d3:ca:2a:cf:72: fd:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:1D:DF:2B:EA:D0:D7:CC:CA:C7:3E:D1:CC:AA:BF:CD:4A:64:03:34 X509v3 Authority Key Identifier: keyid:55:6F:35:14:8B:99:35:65:9C:1F:E7:0B:50:5B:1D:8D:79:83:8E:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bc42480a-8e0f-477a-bd4a-aa8089927ba8/0/556F35148B9935659C1FE70B505B1D8D79838EFA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/556F35148B9935659C1FE70B505B1D8D79838EFA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bc42480a-8e0f-477a-bd4a-aa8089927ba8/0/3130332e3130312e3139332e302f32342d3234203d3e20313530343638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.193.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:90:86:9a:c4:a2:71:80:00:64:fb:d2:43:9d:e4:71:eb:6a: b4:65:88:33:eb:47:43:ca:2b:1e:19:bf:c0:b1:37:88:e0:47: f3:0d:42:86:e6:20:45:86:49:18:02:5f:39:ad:24:58:6a:4f: ea:4e:f3:e0:c0:60:3f:e3:7f:fb:dd:32:56:4e:c9:3c:64:97: e2:47:87:ab:fc:dc:e1:ab:ee:de:89:21:b1:31:e4:83:de:7b: b4:de:c9:5a:f7:cd:8e:08:5c:e6:d7:db:54:3c:28:6f:69:5b: ad:b6:2d:8b:54:e9:1b:8c:89:8b:e0:b8:61:a7:f4:d1:95:33: ab:84:12:b5:76:74:f4:37:48:0c:d4:88:07:36:cc:8b:21:cc: 3a:12:6b:64:0c:cb:a1:fc:b2:03:45:84:f3:42:e2:18:af:25: e3:c7:ec:ee:10:9a:08:e1:3c:e0:b1:e1:f9:f2:1b:73:ed:bb: bc:c5:fa:e6:23:45:22:dc:6c:a3:51:4d:17:d6:39:42:5e:a0: 33:ea:29:96:5f:69:16:6f:21:94:25:2f:e4:a3:c1:c5:fb:0b: 9e:8b:74:46:c9:fc:98:83:bd:ee:1b:0f:c6:dd:8a:d8:4b:85: a9:dc:74:43:e6:ee:fa:61:10:6f:36:18:2c:33:11:9c:5f:26: 19:4e:ff:0b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUP8CWnuH9tEKkjquaBVwI5eW16rYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTU2RjM1MTQ4Qjk5MzU2NTlDMUZFNzBCNTA1QjFEOEQ3 OTgzOEVGQTAeFw0yMzExMjEwNzU1NTJaFw0yNDExMTkwODAwNTJaMDMxMTAvBgNV BAMTKDZFMURERjJCRUFEMEQ3Q0NDQUM3M0VEMUNDQUFCRkNENEE2NDAzMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSw8/OZemT7YBuUiyo75VMJCaE iWxKS/0U3ZEmQJZ8qDHUZbWUZoZiEb7X2PJBdpQTbu+U4Ee2by8b4WKWKADWasbX Uir9LiaFptjveTDYZR0GvlUYo8YadbdDVrdiWVwMbIO4La/Kx5rx/koYLUNJGJsT aQCH+hQB0wRiAN50a689QM/hJcPoUVS1JoKvsif6z/IyXol129NBArR55LPnkAuV OieAAESakJ9nXQOGiGjzIaoqZi1geMTkMgEygcVtShZxkLISgrOuRCn4Atg4bA46 H17EBCppNsov8IgCaqn5ZH3vY2HC7jaJnM6BKKMGPPK5VijRUqXTyirPcv0VAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUbh3fK+rQ18zKxz7RzKq/zUpkAzQwHwYDVR0j BBgwFoAUVW81FIuZNWWcH+cLUFsdjXmDjvowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YzQyNDgwYS04ZTBmLTQ3N2EtYmQ0YS1hYTgwODk5MjdiYTgvMC81NTZGMzUxNDhC OTkzNTY1OUMxRkU3MEI1MDVCMUQ4RDc5ODM4RUZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTU2RjM1MTQ4Qjk5MzU2NTlDMUZFNzBCNTA1QjFEOEQ3OTgz OEVGQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JjNDI0ODBhLThlMGYtNDc3YS1i ZDRhLWFhODA4OTkyN2JhOC8wLzMxMzAzMzJlMzEzMDMxMmUzMTM5MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzNDM2Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZcEwDQYJ KoZIhvcNAQELBQADggEBACuQhprEonGAAGT70kOd5HHrarRliDPrR0PKKx4Zv8Cx N4jgR/MNQobmIEWGSRgCXzmtJFhqT+pO8+DAYD/jf/vdMlZOyTxkl+JHh6v83OGr 7t6JIbEx5IPee7TeyVr3zY4IXObX21Q8KG9pW622LYtU6RuMiYvguGGn9NGVM6uE ErV2dPQ3SAzUiAc2zIshzDoSa2QMy6H8sgNFhPNC4hivJePH7O4QmgjhPOCx4fny G3Ptu7zF+uYjRSLcbKNRTRfWOUJeoDPqKZZfaRZvIZQlL+SjwcX7C56LdEbJ/JiD ve4bD8bdithLhancdEPm7vphEG82GCwzEZxfJhlO/ws= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:29 2024 by rpki-client on console-fra.rpki-client.org