$ rpki-client -vvf repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/3130332e3232362e3233322e302f32322d3234203d3e203539323736.roa File: 3130332e3232362e3233322e302f32322d3234203d3e203539323736.roa (raw, json) Hash identifier: mIadMjq4UPhjMcufts8sVpv2m1fFG5DcpXriIiccse0= Subject key identifier: BF:B1:9C:92:FB:C8:28:A0:1C:53:7B:E8:E1:F4:FE:00:44:AD:36:B4 Certificate issuer: /CN=6319B77FD8EB7EC968DD59FE94AE146A879A74E5 Certificate serial: 796D244B6BE4B4757CD119232691DE75E109F7E9 Authority key identifier: 63:19:B7:7F:D8:EB:7E:C9:68:DD:59:FE:94:AE:14:6A:87:9A:74:E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/3130332e3232362e3233322e302f32322d3234203d3e203539323736.roa Signing time: Mon 01 Jul 2024 01:02:21 +0000 ROA not before: Mon 01 Jul 2024 00:57:21 +0000 ROA not after: Mon 30 Jun 2025 01:02:21 +0000 asID: 59276 IP address blocks: 103.226.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.crl rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:6d:24:4b:6b:e4:b4:75:7c:d1:19:23:26:91:de:75:e1:09:f7:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6319B77FD8EB7EC968DD59FE94AE146A879A74E5 Validity Not Before: Jul 1 00:57:21 2024 GMT Not After : Jun 30 01:02:21 2025 GMT Subject: CN=BFB19C92FBC828A01C537BE8E1F4FE0044AD36B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:31:d3:a0:a1:06:9c:34:b0:31:5d:bf:50:28: a0:86:bc:1b:06:e6:44:25:d4:8a:1c:f2:3d:6a:5b: a9:88:5d:61:b6:11:19:3c:fd:ac:15:60:10:58:7b: c7:3a:8f:b8:8e:41:ef:e6:0e:19:40:69:fc:55:13: d1:9f:e9:82:30:46:e3:5d:b1:e7:61:3c:25:4d:8a: c7:1d:b5:5b:09:1a:35:5a:b6:57:d8:45:f6:6c:dd: de:d9:e5:05:a7:94:10:8f:57:d9:3c:39:03:b2:61: 8c:d0:1c:65:e4:a4:b8:1b:23:83:46:21:35:e8:d7: 73:a8:a2:31:4c:c2:c1:fe:b4:3b:a4:42:a2:0d:a5: 54:90:0c:fb:63:f0:d7:02:76:16:85:c5:d3:fb:f8: f1:e6:5b:2c:ac:92:4f:4f:f9:11:ec:0f:ad:a8:a9: 89:00:36:8a:58:76:77:65:1d:71:ae:53:86:d2:f9: 16:c2:16:09:9e:24:e8:43:48:f6:cf:9b:57:cf:57: 26:bf:fb:ad:f6:fb:f9:e9:a2:00:9d:fd:1f:f5:02: 87:f1:5d:48:96:72:5f:9a:cd:0c:99:f8:46:b3:26: 82:bc:d0:69:45:d9:51:86:82:a4:18:60:e3:7d:4e: 3e:da:31:3d:c4:a4:0e:51:84:2f:77:7e:b3:29:c5: 4d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:B1:9C:92:FB:C8:28:A0:1C:53:7B:E8:E1:F4:FE:00:44:AD:36:B4 X509v3 Authority Key Identifier: keyid:63:19:B7:7F:D8:EB:7E:C9:68:DD:59:FE:94:AE:14:6A:87:9A:74:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6319B77FD8EB7EC968DD59FE94AE146A879A74E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bf542bc4-74dc-45dd-b659-745ca2aca333/0/3130332e3232362e3233322e302f32322d3234203d3e203539323736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.226.232.0/22 Signature Algorithm: sha256WithRSAEncryption 0a:d5:ee:82:b1:c9:de:0d:3d:04:97:48:24:80:a2:78:12:1f: 8e:14:d6:20:b6:7f:32:f1:7d:c9:53:69:99:bf:63:ee:4e:a9: 67:6a:7b:c6:e0:68:9d:be:3e:61:b4:b6:96:75:65:c6:0f:87: 5a:51:c2:5c:3a:5a:28:a4:70:15:c1:3a:f9:09:dd:a2:2b:da: f2:96:e5:3c:2d:bd:60:5d:a0:be:a9:6d:5c:92:47:fb:5a:f3: f5:fa:3b:d8:53:bf:64:66:23:55:b0:a8:b2:ff:92:b7:c2:db: f6:9d:22:5f:d1:35:0b:8c:e4:7d:dd:0a:21:69:02:73:31:d0: 1c:12:a0:c3:d4:c8:1b:08:a9:b4:ed:78:01:f0:5e:cb:01:ce: 78:ec:f0:f8:8d:cf:26:93:77:ad:5c:03:f7:a6:40:78:19:59: 43:02:6c:f8:72:02:5e:cf:c4:27:5f:43:cb:ad:c9:a1:b4:ff: 03:4d:47:24:ef:5b:69:14:a5:e7:80:95:bd:4c:8f:3d:17:58: eb:8d:93:99:da:64:24:57:33:0f:46:64:f6:83:d6:cd:1b:9e: e2:62:de:e4:da:b0:d8:74:5d:78:c5:6a:db:95:82:3d:43:15: a2:fe:ce:f2:14:e8:e6:51:3f:a0:64:0a:29:f4:c5:aa:cb:7d: be:1e:48:a1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeW0kS2vktHV80RkjJpHedeEJ9+kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjMxOUI3N0ZEOEVCN0VDOTY4REQ1OUZFOTRBRTE0NkE4 NzlBNzRFNTAeFw0yNDA3MDEwMDU3MjFaFw0yNTA2MzAwMTAyMjFaMDMxMTAvBgNV BAMTKEJGQjE5QzkyRkJDODI4QTAxQzUzN0JFOEUxRjRGRTAwNDRBRDM2QjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuMdOgoQacNLAxXb9QKKCGvBsG 5kQl1Ioc8j1qW6mIXWG2ERk8/awVYBBYe8c6j7iOQe/mDhlAafxVE9Gf6YIwRuNd sedhPCVNiscdtVsJGjVatlfYRfZs3d7Z5QWnlBCPV9k8OQOyYYzQHGXkpLgbI4NG ITXo13OoojFMwsH+tDukQqINpVSQDPtj8NcCdhaFxdP7+PHmWyyskk9P+RHsD62o qYkANopYdndlHXGuU4bS+RbCFgmeJOhDSPbPm1fPVya/+632+/npogCd/R/1Aofx XUiWcl+azQyZ+EazJoK80GlF2VGGgqQYYON9Tj7aMT3EpA5RhC93frMpxU2FAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUv7GckvvIKKAcU3vo4fT+AEStNrQwHwYDVR0j BBgwFoAUYxm3f9jrfslo3Vn+lK4UaoeadOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZjU0MmJjNC03NGRjLTQ1ZGQtYjY1OS03NDVjYTJhY2EzMzMvMC82MzE5Qjc3RkQ4 RUI3RUM5NjhERDU5RkU5NEFFMTQ2QTg3OUE3NEU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjMxOUI3N0ZEOEVCN0VDOTY4REQ1OUZFOTRBRTE0NkE4NzlB NzRFNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmNTQyYmM0LTc0ZGMtNDVkZC1i NjU5LTc0NWNhMmFjYTMzMy8wLzMxMzAzMzJlMzIzMjM2MmUzMjMzMzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM5MzIzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+LoMA0GCSqG SIb3DQEBCwUAA4IBAQAK1e6CscneDT0El0gkgKJ4Eh+OFNYgtn8y8X3JU2mZv2Pu TqlnanvG4Gidvj5htLaWdWXGD4daUcJcOloopHAVwTr5Cd2iK9ryluU8Lb1gXaC+ qW1ckkf7WvP1+jvYU79kZiNVsKiy/5K3wtv2nSJf0TULjOR93QohaQJzMdAcEqDD 1MgbCKm07XgB8F7LAc547PD4jc8mk3etXAP3pkB4GVlDAmz4cgJez8QnX0PLrcmh tP8DTUck71tpFKXngJW9TI89F1jrjZOZ2mQkVzMPRmT2g9bNG57iYt7k2rDYdF14 xWrblYI9QxWi/s7yFOjmUT+gZAop9MWqy32+Hkih -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org