$ rpki-client -vvf repo-rpki.idnic.net/repo/bc42480a-8e0f-477a-bd4a-aa8089927ba8/0/3130332e3130312e3139332e302f32342d3234203d3e20313530343638.roa File: 3130332e3130312e3139332e302f32342d3234203d3e20313530343638.roa (raw, json) Hash identifier: 1bjKbvUqG5BCn/NVvztyzNwID5OVDvMyI+PwBlSda/M= Subject key identifier: 06:0F:B2:6D:33:21:7A:4B:CE:77:BD:14:C7:F2:D4:0E:42:F0:CE:E1 Certificate issuer: /CN=556F35148B9935659C1FE70B505B1D8D79838EFA Certificate serial: 5F4B888031D738D1F19DB066DD1394790A58545F Authority key identifier: 55:6F:35:14:8B:99:35:65:9C:1F:E7:0B:50:5B:1D:8D:79:83:8E:FA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/556F35148B9935659C1FE70B505B1D8D79838EFA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bc42480a-8e0f-477a-bd4a-aa8089927ba8/0/3130332e3130312e3139332e302f32342d3234203d3e20313530343638.roa Signing time: Tue 22 Oct 2024 08:03:19 +0000 ROA not before: Tue 22 Oct 2024 07:58:19 +0000 ROA not after: Tue 21 Oct 2025 08:03:19 +0000 asID: 150468 IP address blocks: 103.101.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bc42480a-8e0f-477a-bd4a-aa8089927ba8/0/556F35148B9935659C1FE70B505B1D8D79838EFA.crl rsync://repo-rpki.idnic.net/repo/bc42480a-8e0f-477a-bd4a-aa8089927ba8/0/556F35148B9935659C1FE70B505B1D8D79838EFA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/556F35148B9935659C1FE70B505B1D8D79838EFA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 11:26:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:4b:88:80:31:d7:38:d1:f1:9d:b0:66:dd:13:94:79:0a:58:54:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=556F35148B9935659C1FE70B505B1D8D79838EFA Validity Not Before: Oct 22 07:58:19 2024 GMT Not After : Oct 21 08:03:19 2025 GMT Subject: CN=060FB26D33217A4BCE77BD14C7F2D40E42F0CEE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a8:ac:45:fd:14:c0:75:f7:b3:e1:93:9d:67: 79:a3:75:42:42:65:b9:e0:f6:37:49:84:5c:e9:96: 76:28:1e:cc:03:fc:54:d3:4e:20:5f:a1:79:19:81: a6:b0:0e:60:f9:c8:26:61:3f:09:bf:71:be:7a:03: 56:54:66:c1:5b:7d:bc:f6:e0:a2:7e:83:75:c1:ac: 19:41:f7:82:6b:22:d9:3c:7f:d6:d1:d8:ae:52:b4: 37:95:c9:22:47:ca:3a:df:9b:08:4d:d6:c0:39:39: 48:2a:63:1e:3d:f9:08:5c:78:00:2b:57:61:62:80: c8:6b:b6:72:77:9a:a4:90:53:82:35:9e:f0:69:e8: bf:4c:fa:6c:34:c1:d1:65:cf:5a:b9:09:74:ed:79: cd:6c:8f:85:f3:6e:a9:bb:e7:a7:4b:96:a2:89:0c: 1b:a9:37:4a:8a:cc:5f:36:7a:f8:74:d9:1d:86:94: 82:74:95:73:da:57:e6:a6:86:52:0a:49:14:1a:f1: b9:45:eb:f6:06:c9:cf:16:8f:42:1d:bb:98:cd:2a: 36:db:cb:a0:fc:13:79:c4:5d:a2:03:d5:99:44:cf: 5d:05:ab:51:cd:1a:9c:20:23:2e:83:b0:f9:08:57: 84:b7:05:b9:12:7b:bf:1a:b0:b1:7b:01:22:92:73: 5f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:0F:B2:6D:33:21:7A:4B:CE:77:BD:14:C7:F2:D4:0E:42:F0:CE:E1 X509v3 Authority Key Identifier: keyid:55:6F:35:14:8B:99:35:65:9C:1F:E7:0B:50:5B:1D:8D:79:83:8E:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bc42480a-8e0f-477a-bd4a-aa8089927ba8/0/556F35148B9935659C1FE70B505B1D8D79838EFA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/556F35148B9935659C1FE70B505B1D8D79838EFA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bc42480a-8e0f-477a-bd4a-aa8089927ba8/0/3130332e3130312e3139332e302f32342d3234203d3e20313530343638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.193.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:7a:f1:e7:40:71:bc:d9:b8:98:fc:2a:4c:00:00:0e:f1:94: ce:9c:73:11:e7:5e:ad:2c:39:82:a2:86:f0:ec:58:93:58:c8: 97:f0:95:6e:e1:98:49:31:bc:77:d1:64:b5:57:30:2c:2d:7d: 7c:1e:6b:ea:dc:d7:d5:02:05:c7:2e:09:37:da:93:4f:5b:6e: 32:eb:64:3f:d2:ad:b2:56:40:e6:77:f7:e6:63:a4:e6:6a:68: 6c:f4:e9:6a:b5:c9:48:a7:09:25:be:bb:44:96:46:ec:44:f3: 86:4f:10:29:5e:33:c8:ed:8f:fe:1d:5f:35:2e:be:a7:60:ea: 3d:4f:7a:a1:1c:38:71:39:17:d1:c3:8e:b4:cd:ad:00:43:43: 83:ea:d7:ba:ee:8c:37:2a:cd:7d:c4:53:21:da:45:32:1b:63: 2d:c4:5a:c2:b8:a0:bd:b1:9a:cf:f7:87:4b:a2:da:67:e3:a8: 63:38:45:7e:d9:9e:c2:3a:e8:d1:83:f5:1f:74:97:b5:99:f4: fb:fc:70:44:7b:0a:68:1e:db:8f:6d:12:f4:02:97:b7:17:51: ac:ee:0a:4b:61:f6:38:fb:77:d9:84:e8:87:04:9a:1d:24:18: a8:2e:01:c1:f1:7e:84:80:64:6b:67:65:7c:45:fd:77:48:c2: 81:eb:0c:6e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUX0uIgDHXONHxnbBm3ROUeQpYVF8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTU2RjM1MTQ4Qjk5MzU2NTlDMUZFNzBCNTA1QjFEOEQ3 OTgzOEVGQTAeFw0yNDEwMjIwNzU4MTlaFw0yNTEwMjEwODAzMTlaMDMxMTAvBgNV BAMTKDA2MEZCMjZEMzMyMTdBNEJDRTc3QkQxNEM3RjJENDBFNDJGMENFRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfqKxF/RTAdfez4ZOdZ3mjdUJC Zbng9jdJhFzplnYoHswD/FTTTiBfoXkZgaawDmD5yCZhPwm/cb56A1ZUZsFbfbz2 4KJ+g3XBrBlB94JrItk8f9bR2K5StDeVySJHyjrfmwhN1sA5OUgqYx49+QhceAAr V2FigMhrtnJ3mqSQU4I1nvBp6L9M+mw0wdFlz1q5CXTtec1sj4Xzbqm756dLlqKJ DBupN0qKzF82evh02R2GlIJ0lXPaV+amhlIKSRQa8blF6/YGyc8Wj0Idu5jNKjbb y6D8E3nEXaID1ZlEz10Fq1HNGpwgIy6DsPkIV4S3BbkSe78asLF7ASKSc187AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBg+ybTMhekvOd70Ux/LUDkLwzuEwHwYDVR0j BBgwFoAUVW81FIuZNWWcH+cLUFsdjXmDjvowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YzQyNDgwYS04ZTBmLTQ3N2EtYmQ0YS1hYTgwODk5MjdiYTgvMC81NTZGMzUxNDhC OTkzNTY1OUMxRkU3MEI1MDVCMUQ4RDc5ODM4RUZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTU2RjM1MTQ4Qjk5MzU2NTlDMUZFNzBCNTA1QjFEOEQ3OTgz OEVGQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JjNDI0ODBhLThlMGYtNDc3YS1i ZDRhLWFhODA4OTkyN2JhOC8wLzMxMzAzMzJlMzEzMDMxMmUzMTM5MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzNDM2Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZcEwDQYJ KoZIhvcNAQELBQADggEBABt68edAcbzZuJj8KkwAAA7xlM6ccxHnXq0sOYKihvDs WJNYyJfwlW7hmEkxvHfRZLVXMCwtfXwea+rc19UCBccuCTfak09bbjLrZD/SrbJW QOZ39+ZjpOZqaGz06Wq1yUinCSW+u0SWRuxE84ZPECleM8jtj/4dXzUuvqdg6j1P eqEcOHE5F9HDjrTNrQBDQ4Pq17rujDcqzX3EUyHaRTIbYy3EWsK4oL2xms/3h0ui 2mfjqGM4RX7ZnsI66NGD9R90l7WZ9Pv8cER7Cmge249tEvQCl7cXUazuCkth9jj7 d9mE6IcEmh0kGKguAcHxfoSAZGtnZXxF/XdIwoHrDG4= -----END CERTIFICATE-----Generated at Mon Nov 25 09:02:06 2024 by rpki-client on console-ams.rpki-client.org