$ rpki-client -vvf repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/3130332e32312e36342e302f32332d3233203d3e20313530393832.roa File: 3130332e32312e36342e302f32332d3233203d3e20313530393832.roa (raw, json) Hash identifier: sS/JfJH6/syCfv8X96+pktI0j5W2E8MoW0IKVvTurfA= Subject key identifier: B7:04:DE:9E:4B:AC:0F:26:25:7B:3E:0A:0D:32:6B:67:A3:E2:6B:44 Certificate issuer: /CN=D456F5EAD8D734455DAEF896A9055409FF4A078F Certificate serial: 760D65C1CEA0BB87BA31CF52B2B4690B8ED8FD4F Authority key identifier: D4:56:F5:EA:D8:D7:34:45:5D:AE:F8:96:A9:05:54:09:FF:4A:07:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D456F5EAD8D734455DAEF896A9055409FF4A078F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/3130332e32312e36342e302f32332d3233203d3e20313530393832.roa Signing time: Fri 19 Apr 2024 07:00:00 +0000 ROA not before: Fri 19 Apr 2024 06:55:00 +0000 ROA not after: Fri 18 Apr 2025 07:00:00 +0000 asID: 150982 IP address blocks: 103.21.64.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/D456F5EAD8D734455DAEF896A9055409FF4A078F.crl rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/D456F5EAD8D734455DAEF896A9055409FF4A078F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D456F5EAD8D734455DAEF896A9055409FF4A078F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:0d:65:c1:ce:a0:bb:87:ba:31:cf:52:b2:b4:69:0b:8e:d8:fd:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D456F5EAD8D734455DAEF896A9055409FF4A078F Validity Not Before: Apr 19 06:55:00 2024 GMT Not After : Apr 18 07:00:00 2025 GMT Subject: CN=B704DE9E4BAC0F26257B3E0A0D326B67A3E26B44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c9:30:94:4e:71:fd:8d:e6:60:90:3a:94:75: 29:51:87:e6:8a:bc:c9:b5:64:2a:69:b4:3d:fd:d2: ba:59:74:39:05:9e:0a:98:30:26:c3:ce:ff:b6:f0: bd:84:98:90:7e:ee:e0:a7:04:c6:38:a1:48:64:15: f8:3e:c7:0f:7d:c1:06:bb:0e:e8:e2:8a:d7:ab:1a: 60:23:f6:01:f8:34:76:2a:f4:9b:b8:5c:73:04:13: 03:61:06:db:2c:41:a2:bd:b1:cd:2a:d6:f5:85:97: ad:e1:30:29:60:35:37:8c:63:5e:9c:80:b0:d7:5e: ff:52:87:cd:da:85:e7:de:2a:d9:58:6f:4c:56:eb: db:46:47:41:47:f3:d4:f8:0e:7e:07:79:b5:48:a6: 2e:e6:07:f7:82:11:c9:c5:34:f7:87:ce:47:2b:2a: 8a:41:b8:13:5a:92:93:be:4c:da:66:03:bc:cc:f6: 73:d8:7c:81:01:8a:69:c7:80:ce:ed:8a:3f:b3:2d: 5f:0c:3d:33:e4:5b:33:60:32:38:07:e8:3e:9d:90: e9:ed:f4:fc:e3:74:54:f4:20:bf:83:3a:83:fd:68: 78:b6:d2:f4:a2:8c:ab:d5:5f:7f:41:0d:fa:43:82: 9e:68:0d:4e:d2:0d:4c:94:f8:63:43:46:76:f4:b1: 1f:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:04:DE:9E:4B:AC:0F:26:25:7B:3E:0A:0D:32:6B:67:A3:E2:6B:44 X509v3 Authority Key Identifier: keyid:D4:56:F5:EA:D8:D7:34:45:5D:AE:F8:96:A9:05:54:09:FF:4A:07:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/D456F5EAD8D734455DAEF896A9055409FF4A078F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D456F5EAD8D734455DAEF896A9055409FF4A078F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c6bec8e9-6568-478d-bd26-f6e777875511/0/3130332e32312e36342e302f32332d3233203d3e20313530393832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.64.0/23 Signature Algorithm: sha256WithRSAEncryption b1:82:90:e2:5b:b3:3c:d7:fa:1f:a0:1a:4d:3c:61:c6:6d:a0: ab:4d:11:fd:84:e3:51:d2:0f:72:5c:7e:78:e5:41:7b:1f:85: bf:c0:7a:4c:83:66:d3:4a:38:33:cd:7a:59:48:fb:8a:ec:58: 3a:7c:34:cd:6c:34:68:34:d1:e6:3b:c5:39:da:23:0c:38:f0: 06:38:4a:be:da:e0:9e:85:2c:7f:5e:37:e1:f9:49:34:10:70: 61:4b:df:01:c6:76:52:1e:08:51:01:72:3a:47:02:96:6d:15: 4d:0b:a3:7c:6b:45:2c:ae:cf:bc:fc:3f:76:12:cb:28:44:4b: 7d:6f:65:83:68:68:32:82:c8:ac:37:fc:c7:56:df:68:d0:6e: 3b:06:63:02:a0:e2:e8:12:3c:ef:76:53:59:69:94:f6:2c:02: 21:85:6d:0b:11:52:19:f4:ba:bf:c4:20:72:0d:d6:34:23:85: 30:1b:77:aa:2d:d8:a8:99:ba:6d:51:f9:04:5a:f0:03:a3:03: cd:ec:83:13:cd:fa:d9:7b:fd:1c:4d:dd:df:12:06:43:4f:a6: 67:85:70:83:4c:d9:8a:72:8e:dd:27:bd:1e:57:fc:ec:bf:3d: 0b:9f:95:bd:33:54:ab:73:c9:05:e5:88:03:c0:87:3b:01:d8: 2f:71:8d:83 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUdg1lwc6gu4e6Mc9SsrRpC47Y/U8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQ1NkY1RUFEOEQ3MzQ0NTVEQUVGODk2QTkwNTU0MDlG RjRBMDc4RjAeFw0yNDA0MTkwNjU1MDBaFw0yNTA0MTgwNzAwMDBaMDMxMTAvBgNV BAMTKEI3MDRERTlFNEJBQzBGMjYyNTdCM0UwQTBEMzI2QjY3QTNFMjZCNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeyTCUTnH9jeZgkDqUdSlRh+aK vMm1ZCpptD390rpZdDkFngqYMCbDzv+28L2EmJB+7uCnBMY4oUhkFfg+xw99wQa7 DujiiterGmAj9gH4NHYq9Ju4XHMEEwNhBtssQaK9sc0q1vWFl63hMClgNTeMY16c gLDXXv9Sh83ahefeKtlYb0xW69tGR0FH89T4Dn4HebVIpi7mB/eCEcnFNPeHzkcr KopBuBNakpO+TNpmA7zM9nPYfIEBimnHgM7tij+zLV8MPTPkWzNgMjgH6D6dkOnt 9PzjdFT0IL+DOoP9aHi20vSijKvVX39BDfpDgp5oDU7SDUyU+GNDRnb0sR+9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUtwTenkusDyYlez4KDTJrZ6Pia0QwHwYDVR0j BBgwFoAU1Fb16tjXNEVdrviWqQVUCf9KB48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NmJlYzhlOS02NTY4LTQ3OGQtYmQyNi1mNmU3Nzc4NzU1MTEvMC9ENDU2RjVFQUQ4 RDczNDQ1NURBRUY4OTZBOTA1NTQwOUZGNEEwNzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDQ1NkY1RUFEOEQ3MzQ0NTVEQUVGODk2QTkwNTU0MDlGRjRB MDc4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2YmVjOGU5LTY1NjgtNDc4ZC1i ZDI2LWY2ZTc3Nzg3NTUxMS8wLzMxMzAzMzJlMzIzMTJlMzYzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMDM5MzgzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcVQDANBgkqhkiG 9w0BAQsFAAOCAQEAsYKQ4luzPNf6H6AaTTxhxm2gq00R/YTjUdIPclx+eOVBex+F v8B6TINm00o4M816WUj7iuxYOnw0zWw0aDTR5jvFOdojDDjwBjhKvtrgnoUsf143 4flJNBBwYUvfAcZ2Uh4IUQFyOkcClm0VTQujfGtFLK7PvPw/dhLLKERLfW9lg2ho MoLIrDf8x1bfaNBuOwZjAqDi6BI873ZTWWmU9iwCIYVtCxFSGfS6v8Qgcg3WNCOF MBt3qi3YqJm6bVH5BFrwA6MDzeyDE8362Xv9HE3d3xIGQ0+mZ4Vwg0zZinKO3Se9 Hlf87L89C5+VvTNUq3PJBeWIA8CHOwHYL3GNgw== -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org