$ rpki-client -vvf repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3130332e31312e39362e302f32322d3234203d3e203535363533.roa File: 3130332e31312e39362e302f32322d3234203d3e203535363533.roa (raw, json) Hash identifier: i+PocK8SEp44TFX6dfSGcfLf+KIkgk/b4aqmIJNUvI4= Subject key identifier: 33:16:59:8E:23:9C:87:B4:02:52:10:70:85:46:15:C5:0E:70:D8:AD Certificate issuer: /CN=FC646066A689B77054AF95653FA324395357E6A3 Certificate serial: 04F763876169A4687E41107D9A6E9A4103B9D45B Authority key identifier: FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3130332e31312e39362e302f32322d3234203d3e203535363533.roa Signing time: Mon 01 Jul 2024 01:05:00 +0000 ROA not before: Mon 01 Jul 2024 01:00:00 +0000 ROA not after: Mon 30 Jun 2025 01:05:00 +0000 asID: 55653 IP address blocks: 103.11.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.crl rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:f7:63:87:61:69:a4:68:7e:41:10:7d:9a:6e:9a:41:03:b9:d4:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC646066A689B77054AF95653FA324395357E6A3 Validity Not Before: Jul 1 01:00:00 2024 GMT Not After : Jun 30 01:05:00 2025 GMT Subject: CN=3316598E239C87B402521070854615C50E70D8AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5d:bd:bd:56:09:89:c5:2b:17:d1:16:5e:31: 71:84:a8:6d:e2:25:22:86:2e:31:7f:21:73:f5:82: fe:44:81:4f:3a:c8:43:df:7e:73:6a:7f:d2:7b:b9: 98:f4:3f:ec:ed:c6:34:2f:3f:67:ce:d8:06:d1:8c: cf:a1:f6:19:a4:ac:f2:72:f8:ef:e1:58:88:45:c1: 5a:3b:52:5e:46:d5:5c:d8:c3:a3:d3:4f:91:47:48: 12:81:85:ca:94:e7:25:f8:51:a2:7d:1e:28:40:51: da:01:c8:a4:13:64:59:e4:e9:45:0b:53:1f:b2:fb: b8:9e:3a:a2:55:fb:c7:b4:1d:33:d7:f6:37:9c:a6: 4d:12:0b:89:1c:06:35:6f:d8:c1:17:84:94:45:3c: 08:bc:de:36:b3:36:d8:9a:17:df:64:96:e3:ea:8a: a9:a9:ec:28:8d:28:79:0b:6b:b0:3b:66:70:c4:05: f0:8f:ac:b8:bb:ec:4c:87:fd:42:c3:f9:c0:33:15: 63:be:c0:61:cd:cc:d5:91:91:5b:6e:82:a3:be:05: 36:84:12:1e:61:7f:ef:7d:de:a1:0e:2f:e9:ad:31: 70:4e:63:c7:7f:bb:af:7c:51:e5:ec:1b:1c:e3:c0: 57:78:3c:fe:26:a5:84:b2:81:dd:98:f0:0e:34:bc: 55:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:16:59:8E:23:9C:87:B4:02:52:10:70:85:46:15:C5:0E:70:D8:AD X509v3 Authority Key Identifier: keyid:FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/3130332e31312e39362e302f32322d3234203d3e203535363533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.11.96.0/22 Signature Algorithm: sha256WithRSAEncryption 83:6a:c8:3c:01:ae:8a:0e:47:de:5e:27:35:da:8c:c7:fd:4f: 0f:e4:67:eb:1a:4f:54:c2:d4:07:d4:99:4d:7b:f6:1a:02:b7: 3b:c1:48:2d:d9:a6:33:7a:d3:52:f9:df:9d:43:da:60:18:b0: a8:f7:1f:c4:26:4b:f6:c2:1d:ad:c4:a9:d1:13:f0:a6:e7:21: 31:f2:f2:44:4f:d9:03:75:14:d7:55:03:a6:a2:48:8c:2e:b4: be:51:4c:ea:84:a8:84:61:d6:e1:03:19:0e:5b:44:dd:ed:0b: 8d:df:8b:de:0d:a8:7f:79:80:ca:6f:bf:03:3c:76:bf:07:36: 66:89:1d:e1:da:fb:0c:35:a2:86:96:83:0b:d5:9e:4a:6b:e7: 36:6b:7a:12:53:8b:de:3e:2b:85:67:bc:65:c8:dc:c3:6e:87: ab:a1:e8:7f:b8:05:ac:d9:51:6d:98:a7:0d:98:f3:25:48:22: 26:47:f1:1e:b0:11:81:2d:6b:6f:19:8c:99:8e:d4:15:8b:ec: 79:d9:9e:b3:99:5f:64:69:bd:d5:84:64:63:91:33:b8:0f:85: e3:e4:6a:c8:d1:28:12:f5:92:84:b3:30:30:37:93:80:c3:f9: 2e:30:60:b3:be:cc:a8:cf:16:63:4e:db:d4:6a:81:a5:bb:ca: 81:ac:b1:84 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUBPdjh2FppGh+QRB9mm6aQQO51FswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1 MzU3RTZBMzAeFw0yNDA3MDEwMTAwMDBaFw0yNTA2MzAwMTA1MDBaMDMxMTAvBgNV BAMTKDMzMTY1OThFMjM5Qzg3QjQwMjUyMTA3MDg1NDYxNUM1MEU3MEQ4QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCXb29VgmJxSsX0RZeMXGEqG3i JSKGLjF/IXP1gv5EgU86yEPffnNqf9J7uZj0P+ztxjQvP2fO2AbRjM+h9hmkrPJy +O/hWIhFwVo7Ul5G1VzYw6PTT5FHSBKBhcqU5yX4UaJ9HihAUdoByKQTZFnk6UUL Ux+y+7ieOqJV+8e0HTPX9jecpk0SC4kcBjVv2MEXhJRFPAi83jazNtiaF99kluPq iqmp7CiNKHkLa7A7ZnDEBfCPrLi77EyH/ULD+cAzFWO+wGHNzNWRkVtugqO+BTaE Eh5hf+993qEOL+mtMXBOY8d/u698UeXsGxzjwFd4PP4mpYSygd2Y8A40vFWJAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUMxZZjiOch7QCUhBwhUYVxQ5w2K0wHwYDVR0j BBgwFoAU/GRgZqaJt3BUr5VlP6MkOVNX5qMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OTc0NjVlMy03OGEwLTQ5NjUtYWUxNC1lNGNiNGQwZmMxODUvMC9GQzY0NjA2NkE2 ODlCNzcwNTRBRjk1NjUzRkEzMjQzOTUzNTdFNkEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkM2NDYwNjZBNjg5Qjc3MDU0QUY5NTY1M0ZBMzI0Mzk1MzU3 RTZBMy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5NzQ2NWUzLTc4YTAtNDk2NS1h ZTE0LWU0Y2I0ZDBmYzE4NS8wLzMxMzAzMzJlMzEzMTJlMzkzNjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM1MzUzNjM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnC2AwDQYJKoZIhvcN AQELBQADggEBAINqyDwBrooOR95eJzXajMf9Tw/kZ+saT1TC1AfUmU179hoCtzvB SC3ZpjN601L5351D2mAYsKj3H8QmS/bCHa3EqdET8KbnITHy8kRP2QN1FNdVA6ai SIwutL5RTOqEqIRh1uEDGQ5bRN3tC43fi94NqH95gMpvvwM8dr8HNmaJHeHa+ww1 ooaWgwvVnkpr5zZrehJTi94+K4VnvGXI3MNuh6uh6H+4BazZUW2Ypw2Y8yVIIiZH 8R6wEYEta28ZjJmO1BWL7HnZnrOZX2RpvdWEZGORM7gPhePkasjRKBL1koSzMDA3 k4DD+S4wYLO+zKjPFmNO29RqgaW7yoGssYQ= -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:17 2024 by rpki-client on console-fra.rpki-client.org