$ rpki-client -vvf repo-rpki.idnic.net/repo/c64b20d8-591b-4152-9768-9c42b06c2fe2/0/3130332e3132392e362e302f32332d3234203d3e20313335343738.roa File: 3130332e3132392e362e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: 1qK8ae84iRsh4msGMn8LBnEnQGSfAd7848FVnXQ10Ek= Subject key identifier: 11:1B:6A:21:17:72:2C:D8:D9:C2:F7:E8:C6:AB:4A:31:E4:4B:0C:14 Certificate issuer: /CN=556756B0E211DD262F0D5DC9EC5931EFA74CAC3C Certificate serial: 6DA2E29464A5591BEFA5DCEAD08AF821BB320C3C Authority key identifier: 55:67:56:B0:E2:11:DD:26:2F:0D:5D:C9:EC:59:31:EF:A7:4C:AC:3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/556756B0E211DD262F0D5DC9EC5931EFA74CAC3C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c64b20d8-591b-4152-9768-9c42b06c2fe2/0/3130332e3132392e362e302f32332d3234203d3e20313335343738.roa Signing time: Wed 03 Jan 2024 08:00:00 +0000 ROA not before: Wed 03 Jan 2024 07:55:00 +0000 ROA not after: Wed 01 Jan 2025 08:00:00 +0000 asID: 135478 IP address blocks: 103.129.6.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c64b20d8-591b-4152-9768-9c42b06c2fe2/0/556756B0E211DD262F0D5DC9EC5931EFA74CAC3C.crl rsync://repo-rpki.idnic.net/repo/c64b20d8-591b-4152-9768-9c42b06c2fe2/0/556756B0E211DD262F0D5DC9EC5931EFA74CAC3C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/556756B0E211DD262F0D5DC9EC5931EFA74CAC3C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:56:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:a2:e2:94:64:a5:59:1b:ef:a5:dc:ea:d0:8a:f8:21:bb:32:0c:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=556756B0E211DD262F0D5DC9EC5931EFA74CAC3C Validity Not Before: Jan 3 07:55:00 2024 GMT Not After : Jan 1 08:00:00 2025 GMT Subject: CN=111B6A2117722CD8D9C2F7E8C6AB4A31E44B0C14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0d:1a:e7:4f:a9:5d:b2:91:50:de:a3:d2:b8: 5d:20:06:0a:20:63:40:f3:4b:2b:bf:f4:ac:2d:f8: 3a:c4:ac:bb:6b:e0:64:f0:38:28:17:c1:d4:43:e8: 0a:80:4f:75:ce:21:42:04:d4:a8:ef:04:d8:bf:d5: 47:2c:40:f3:dd:31:47:73:70:a5:73:ef:4b:2e:94: 66:97:91:3c:f8:2e:fd:fb:fe:8b:b5:bc:48:95:e9: 71:e9:46:4f:88:9d:e0:e3:36:d0:ea:8e:c2:ef:61: b9:6a:9d:b4:03:be:b9:07:1b:b5:c6:e9:94:77:fc: e1:af:02:f9:c2:9a:a7:d7:df:59:41:22:ec:29:00: 5f:c4:0f:58:ad:3f:89:2f:94:86:d9:26:07:9e:cb: f1:17:c3:74:66:f9:d7:38:bd:18:4f:b9:d9:2d:17: 4c:a6:e4:79:fa:a1:c5:07:c6:6f:79:91:4d:e0:03: 37:01:75:2a:90:30:32:4d:4d:c6:57:fe:df:91:a3: d6:5e:73:b4:62:ee:2a:85:b9:9c:32:dd:f6:29:fd: 29:b7:17:d4:36:a6:e3:0e:ef:fc:5d:12:4e:5d:e6: 11:7a:73:a6:dd:9d:4d:d3:f0:49:12:fd:8e:ae:98: 36:9b:9a:5a:ba:c4:37:17:8a:05:0a:13:e4:b6:dc: 07:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:1B:6A:21:17:72:2C:D8:D9:C2:F7:E8:C6:AB:4A:31:E4:4B:0C:14 X509v3 Authority Key Identifier: keyid:55:67:56:B0:E2:11:DD:26:2F:0D:5D:C9:EC:59:31:EF:A7:4C:AC:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c64b20d8-591b-4152-9768-9c42b06c2fe2/0/556756B0E211DD262F0D5DC9EC5931EFA74CAC3C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/556756B0E211DD262F0D5DC9EC5931EFA74CAC3C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c64b20d8-591b-4152-9768-9c42b06c2fe2/0/3130332e3132392e362e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.6.0/23 Signature Algorithm: sha256WithRSAEncryption 43:65:49:6c:93:3a:c8:0b:8e:a1:79:e6:82:08:e8:43:04:6d: fb:f5:9e:8e:e2:1a:af:2a:3e:ea:17:f0:04:0c:83:bd:b6:97: 0f:f9:f0:31:dd:c0:27:98:be:8e:c0:c3:86:48:89:b3:8e:e6: 45:96:85:14:a7:02:79:f2:a8:71:ae:8c:3b:84:83:8e:2f:9e: 9b:37:70:61:c4:1a:a5:f8:dd:64:b4:d6:0a:7c:31:c2:fe:27: 87:e6:f9:93:09:a9:2b:2e:e0:bb:72:91:da:38:12:0d:21:79: 85:8a:14:b6:4c:9e:e3:0d:a9:d2:fb:d4:d3:79:80:44:76:5c: c6:7f:2b:ae:e4:4b:dd:11:34:40:c3:9b:46:d5:cd:2d:07:2b: ac:06:10:d8:3f:83:0d:cf:bc:7e:55:65:54:b2:16:69:c0:a5: b2:fb:4d:e2:2a:ff:6b:a0:6e:35:03:db:58:af:1c:b8:5b:52: 5a:ae:96:51:e6:b3:18:9f:92:49:f8:f9:26:82:0a:cd:36:9c: 56:d8:59:70:a8:0c:dd:2b:43:72:db:6f:0a:3f:84:44:5d:5b: 9a:28:1f:a1:ae:81:a0:9b:7d:85:f8:e4:9b:27:1f:08:14:5a: 11:00:22:8b:68:8e:43:b3:82:ac:24:61:61:6e:d5:26:52:e6: a9:1f:fb:16 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbaLilGSlWRvvpdzq0Ir4IbsyDDwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTU2NzU2QjBFMjExREQyNjJGMEQ1REM5RUM1OTMxRUZB NzRDQUMzQzAeFw0yNDAxMDMwNzU1MDBaFw0yNTAxMDEwODAwMDBaMDMxMTAvBgNV BAMTKDExMUI2QTIxMTc3MjJDRDhEOUMyRjdFOEM2QUI0QTMxRTQ0QjBDMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwDRrnT6ldspFQ3qPSuF0gBgog Y0DzSyu/9Kwt+DrErLtr4GTwOCgXwdRD6AqAT3XOIUIE1KjvBNi/1UcsQPPdMUdz cKVz70sulGaXkTz4Lv37/ou1vEiV6XHpRk+IneDjNtDqjsLvYblqnbQDvrkHG7XG 6ZR3/OGvAvnCmqfX31lBIuwpAF/ED1itP4kvlIbZJgeey/EXw3Rm+dc4vRhPudkt F0ym5Hn6ocUHxm95kU3gAzcBdSqQMDJNTcZX/t+Ro9Zec7Ri7iqFuZwy3fYp/Sm3 F9Q2puMO7/xdEk5d5hF6c6bdnU3T8EkS/Y6umDabmlq6xDcXigUKE+S23AdLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUERtqIRdyLNjZwvfoxqtKMeRLDBQwHwYDVR0j BBgwFoAUVWdWsOIR3SYvDV3J7Fkx76dMrDwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NjRiMjBkOC01OTFiLTQxNTItOTc2OC05YzQyYjA2YzJmZTIvMC81NTY3NTZCMEUy MTFERDI2MkYwRDVEQzlFQzU5MzFFRkE3NENBQzNDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTU2NzU2QjBFMjExREQyNjJGMEQ1REM5RUM1OTMxRUZBNzRD QUMzQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2NGIyMGQ4LTU5MWItNDE1Mi05 NzY4LTljNDJiMDZjMmZlMi8wLzMxMzAzMzJlMzEzMjM5MmUzNjJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWeBBjANBgkqhkiG 9w0BAQsFAAOCAQEAQ2VJbJM6yAuOoXnmggjoQwRt+/WejuIaryo+6hfwBAyDvbaX D/nwMd3AJ5i+jsDDhkiJs47mRZaFFKcCefKoca6MO4SDji+emzdwYcQapfjdZLTW Cnwxwv4nh+b5kwmpKy7gu3KR2jgSDSF5hYoUtkye4w2p0vvU03mARHZcxn8rruRL 3RE0QMObRtXNLQcrrAYQ2D+DDc+8flVlVLIWacClsvtN4ir/a6BuNQPbWK8cuFtS Wq6WUeazGJ+SSfj5JoIKzTacVthZcKgM3StDcttvCj+ERF1bmigfoa6BoJt9hfjk mycfCBRaEQAii2iOQ7OCrCRhYW7VJlLmqR/7Fg== -----END CERTIFICATE-----Generated at Thu Nov 21 05:34:48 2024 by rpki-client on console-ams.rpki-client.org