$ rpki-client -vvf repo-rpki.idnic.net/repo/bce0fe5a-e468-49d9-931b-ab4b924a45c2/0/3130332e38322e3234362e302f32342d3234203d3e20313432333730.roa File: 3130332e38322e3234362e302f32342d3234203d3e20313432333730.roa (raw, json) Hash identifier: dVyAgZUXuyz+nY8sTdVsk2xuXCyUeskNn+BZ9x4ZcyI= Subject key identifier: 35:10:72:51:00:D9:38:1B:7C:13:48:6A:E9:92:36:13:35:33:54:A0 Certificate issuer: /CN=067116F928280AE09336BC39D005AAC13695F63C Certificate serial: 06E0779E935D21A740918EB2C68858BB4077F091 Authority key identifier: 06:71:16:F9:28:28:0A:E0:93:36:BC:39:D0:05:AA:C1:36:95:F6:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/067116F928280AE09336BC39D005AAC13695F63C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bce0fe5a-e468-49d9-931b-ab4b924a45c2/0/3130332e38322e3234362e302f32342d3234203d3e20313432333730.roa Signing time: Wed 11 Sep 2024 05:02:07 +0000 ROA not before: Wed 11 Sep 2024 04:57:07 +0000 ROA not after: Wed 10 Sep 2025 05:02:07 +0000 asID: 142370 IP address blocks: 103.82.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bce0fe5a-e468-49d9-931b-ab4b924a45c2/0/067116F928280AE09336BC39D005AAC13695F63C.crl rsync://repo-rpki.idnic.net/repo/bce0fe5a-e468-49d9-931b-ab4b924a45c2/0/067116F928280AE09336BC39D005AAC13695F63C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/067116F928280AE09336BC39D005AAC13695F63C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:e0:77:9e:93:5d:21:a7:40:91:8e:b2:c6:88:58:bb:40:77:f0:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=067116F928280AE09336BC39D005AAC13695F63C Validity Not Before: Sep 11 04:57:07 2024 GMT Not After : Sep 10 05:02:07 2025 GMT Subject: CN=3510725100D9381B7C13486AE9923613353354A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:08:27:ea:98:89:b1:e9:ec:d6:7e:47:4f:c1: cc:5e:49:e3:e1:9e:7d:b3:a9:37:15:ce:88:f5:4e: a0:d4:34:a5:ee:c4:c9:8f:e5:f4:11:4a:eb:bc:93: 81:e4:f9:db:bb:dd:d9:47:7c:b8:ee:b0:63:71:39: 1f:a3:0f:02:60:74:e8:36:89:2f:42:1d:11:1b:59: 86:94:fb:11:95:14:4c:00:2b:05:42:d8:c9:df:91: 44:0b:4c:e1:e5:50:0c:02:dd:8f:bf:26:68:41:1e: 98:25:cf:2c:c8:2e:63:d5:a7:e5:3a:63:2f:fe:bd: f6:3e:86:c4:4a:27:c3:62:80:2d:c5:65:1e:c4:52: cd:02:f0:af:05:2b:b8:c2:93:75:90:fb:ed:97:da: ac:9b:bc:29:b8:91:14:e7:3c:b3:5f:a9:c1:67:47: 98:a5:7e:d0:11:23:f7:b6:5d:2f:dc:3a:87:c4:8b: d7:81:1f:b3:00:b4:fc:36:e2:27:f7:8e:10:f6:b2: 7f:59:ab:32:38:95:43:7b:1e:9a:2c:a7:72:e4:84: 33:58:0a:f9:48:62:34:9f:6f:78:e7:35:0d:ef:17: 59:6e:5c:19:f7:58:5e:4b:51:ae:58:b7:50:91:e3: 2e:7b:9e:9c:27:ea:78:a2:3a:97:5b:36:05:ef:8f: 19:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:10:72:51:00:D9:38:1B:7C:13:48:6A:E9:92:36:13:35:33:54:A0 X509v3 Authority Key Identifier: keyid:06:71:16:F9:28:28:0A:E0:93:36:BC:39:D0:05:AA:C1:36:95:F6:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bce0fe5a-e468-49d9-931b-ab4b924a45c2/0/067116F928280AE09336BC39D005AAC13695F63C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/067116F928280AE09336BC39D005AAC13695F63C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bce0fe5a-e468-49d9-931b-ab4b924a45c2/0/3130332e38322e3234362e302f32342d3234203d3e20313432333730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.82.246.0/24 Signature Algorithm: sha256WithRSAEncryption 71:af:52:e0:d4:4a:7b:7e:97:9c:9f:5b:4f:d4:82:1e:e4:f5: 3c:8c:07:49:43:db:b9:f4:e7:4f:6b:eb:27:37:56:af:68:80: 04:1a:c7:3a:dc:c0:30:62:e5:f0:94:a1:08:4d:d8:a7:16:49: 6c:83:a9:39:6c:7b:81:88:80:18:ad:d4:25:3e:26:d4:38:b9: 40:df:07:e7:a4:81:65:32:73:b3:61:8d:ae:94:8e:e2:ca:c4: 57:18:a3:40:0d:82:55:26:5a:c7:09:32:99:22:63:2b:2d:40: c3:a4:5b:d0:42:93:14:40:1f:b8:67:c5:5f:f8:d9:d5:6b:9b: 57:ca:c7:a6:ed:8f:30:ca:79:51:f3:11:90:cd:84:68:6d:e2: f6:ce:18:62:bd:96:c3:4a:c1:37:0a:07:e7:e6:4c:14:a0:cf: 97:a8:fb:57:3d:9f:b4:62:31:32:18:ef:9b:55:9a:bd:e2:bd: 3c:f4:b2:53:8c:2d:fe:6b:06:e5:21:5b:d9:e8:27:74:c3:c3: ea:73:b5:97:d4:8c:9f:ca:14:10:a9:73:28:69:9d:1a:74:43: 6e:21:22:3a:f7:ae:0e:20:52:3d:db:39:8c:9b:4e:dd:b5:9f: 68:e1:b6:bc:47:1f:43:9e:d1:e0:5f:cc:a8:db:13:5f:68:4d: dc:bc:93:26 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBuB3npNdIadAkY6yxohYu0B38JEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDY3MTE2RjkyODI4MEFFMDkzMzZCQzM5RDAwNUFBQzEz Njk1RjYzQzAeFw0yNDA5MTEwNDU3MDdaFw0yNTA5MTAwNTAyMDdaMDMxMTAvBgNV BAMTKDM1MTA3MjUxMDBEOTM4MUI3QzEzNDg2QUU5OTIzNjEzMzUzMzU0QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0CCfqmImx6ezWfkdPwcxeSePh nn2zqTcVzoj1TqDUNKXuxMmP5fQRSuu8k4Hk+du73dlHfLjusGNxOR+jDwJgdOg2 iS9CHREbWYaU+xGVFEwAKwVC2MnfkUQLTOHlUAwC3Y+/JmhBHpglzyzILmPVp+U6 Yy/+vfY+hsRKJ8NigC3FZR7EUs0C8K8FK7jCk3WQ++2X2qybvCm4kRTnPLNfqcFn R5ilftARI/e2XS/cOofEi9eBH7MAtPw24if3jhD2sn9ZqzI4lUN7Hposp3LkhDNY CvlIYjSfb3jnNQ3vF1luXBn3WF5LUa5Yt1CR4y57npwn6niiOpdbNgXvjxnPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNRByUQDZOBt8E0hq6ZI2EzUzVKAwHwYDVR0j BBgwFoAUBnEW+SgoCuCTNrw50AWqwTaV9jwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i Y2UwZmU1YS1lNDY4LTQ5ZDktOTMxYi1hYjRiOTI0YTQ1YzIvMC8wNjcxMTZGOTI4 MjgwQUUwOTMzNkJDMzlEMDA1QUFDMTM2OTVGNjNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDY3MTE2RjkyODI4MEFFMDkzMzZCQzM5RDAwNUFBQzEzNjk1 RjYzQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JjZTBmZTVhLWU0NjgtNDlkOS05 MzFiLWFiNGI5MjRhNDVjMi8wLzMxMzAzMzJlMzgzMjJlMzIzNDM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1L2MA0GCSqG SIb3DQEBCwUAA4IBAQBxr1Lg1Ep7fpecn1tP1IIe5PU8jAdJQ9u59OdPa+snN1av aIAEGsc63MAwYuXwlKEITdinFklsg6k5bHuBiIAYrdQlPibUOLlA3wfnpIFlMnOz YY2ulI7iysRXGKNADYJVJlrHCTKZImMrLUDDpFvQQpMUQB+4Z8Vf+NnVa5tXysem 7Y8wynlR8xGQzYRobeL2zhhivZbDSsE3Cgfn5kwUoM+XqPtXPZ+0YjEyGO+bVZq9 4r089LJTjC3+awblIVvZ6Cd0w8Pqc7WX1IyfyhQQqXMoaZ0adENuISI6964OIFI9 2zmMm07dtZ9o4ba8Rx9DntHgX8yo2xNfaE3cvJMm -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:57 2024 by rpki-client on console-ams.rpki-client.org