$ rpki-client -vvf repo-rpki.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/3130332e3233352e36362e302f32332d3234203d3e203633343930.roa File: 3130332e3233352e36362e302f32332d3234203d3e203633343930.roa (raw, json) Hash identifier: 0aRFrXTSbHUOy2mZwEH0txx1Tk9Q/AHJdIJdOAn4gUw= Subject key identifier: 3C:B7:CB:59:6D:61:22:E2:D4:7B:0D:B8:A9:11:B8:C3:0A:60:C8:4C Certificate issuer: /CN=1D996206B24E67937CEF2CE40882DBFAD893F1FB Certificate serial: 1CA4CC13DFAD10367FF5780A214C4EE59B3E7D8E Authority key identifier: 1D:99:62:06:B2:4E:67:93:7C:EF:2C:E4:08:82:DB:FA:D8:93:F1:FB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D996206B24E67937CEF2CE40882DBFAD893F1FB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/3130332e3233352e36362e302f32332d3234203d3e203633343930.roa Signing time: Sun 21 Jul 2024 20:00:01 +0000 ROA not before: Sun 21 Jul 2024 19:55:01 +0000 ROA not after: Sun 20 Jul 2025 20:00:01 +0000 asID: 63490 IP address blocks: 103.235.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/1D996206B24E67937CEF2CE40882DBFAD893F1FB.crl rsync://repo-rpki.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/1D996206B24E67937CEF2CE40882DBFAD893F1FB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D996206B24E67937CEF2CE40882DBFAD893F1FB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:a4:cc:13:df:ad:10:36:7f:f5:78:0a:21:4c:4e:e5:9b:3e:7d:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D996206B24E67937CEF2CE40882DBFAD893F1FB Validity Not Before: Jul 21 19:55:01 2024 GMT Not After : Jul 20 20:00:01 2025 GMT Subject: CN=3CB7CB596D6122E2D47B0DB8A911B8C30A60C84C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:37:56:30:b1:35:cc:ae:69:94:aa:81:8b:6b: ee:c3:79:32:cc:4c:2a:07:9d:65:c6:ca:f2:a2:12: ba:18:5e:66:1c:08:25:e4:f4:48:eb:70:c2:2d:3c: fe:5f:cc:f9:5e:4b:c0:ac:28:14:ec:c1:01:37:a9: 00:29:57:85:e6:d1:7c:1b:d2:3e:ff:53:6f:ad:d0: ff:55:8e:b8:dc:1e:37:64:5e:94:18:ce:64:11:19: 5d:5b:da:5e:ff:92:0e:15:72:9f:62:c9:97:51:55: 06:a1:0d:f7:30:10:58:63:82:50:52:98:3a:41:1c: 57:23:3c:56:38:4a:12:c6:5d:89:68:e5:08:3b:ba: 3a:ae:8e:ba:c3:30:77:7a:03:e5:93:4b:a9:c6:6b: c2:f1:79:3c:bc:b4:68:59:74:fa:9d:11:50:3d:f9: 2e:67:f9:3d:dd:27:fd:56:ec:55:90:b7:90:85:71: e2:8d:5f:a5:92:dc:61:5e:19:cc:dd:59:8f:84:79: 04:5f:99:71:ee:2d:83:18:f1:6f:2a:66:bd:8f:c8: 96:52:80:8c:7e:dd:4e:76:7a:d9:49:4b:db:b2:cc: 3f:8c:f6:fc:ab:87:ef:4d:e2:6c:ad:a3:44:f4:b3: fd:12:66:d9:05:b2:07:de:d6:df:ca:2c:c3:42:7b: 5f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:B7:CB:59:6D:61:22:E2:D4:7B:0D:B8:A9:11:B8:C3:0A:60:C8:4C X509v3 Authority Key Identifier: keyid:1D:99:62:06:B2:4E:67:93:7C:EF:2C:E4:08:82:DB:FA:D8:93:F1:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/1D996206B24E67937CEF2CE40882DBFAD893F1FB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D996206B24E67937CEF2CE40882DBFAD893F1FB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c9e36056-f097-49a7-bd23-3d711e89f305/0/3130332e3233352e36362e302f32332d3234203d3e203633343930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.235.66.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:37:13:97:23:12:4f:d8:df:de:06:f4:6f:fc:8a:6d:a0:a6: 60:b2:34:fd:61:87:70:4c:9b:a2:c5:37:68:f3:14:b2:bb:25: 4a:51:7f:02:22:c8:01:ba:cb:a4:3a:9d:03:c3:1b:fd:a4:a3: 52:9f:5b:34:58:e3:fc:51:99:7b:59:56:0e:04:21:5f:8b:e9: 9c:84:80:65:5f:94:69:81:8b:3a:95:3e:a9:33:15:fd:b4:17: 81:69:f1:db:1c:18:69:d9:7d:ea:6c:ef:ae:59:47:e7:03:1e: a9:9b:e4:54:34:a2:1b:1a:d7:4a:f3:33:93:91:f6:8c:28:9b: 1a:f4:97:8d:4d:14:0b:cf:06:f6:07:5c:e0:14:fd:f7:f3:c1: 68:2c:aa:e1:3c:70:2e:28:6d:74:fa:e6:32:58:d3:09:cc:4f: a4:98:a0:c1:24:01:37:7f:d2:9c:b2:77:84:c2:69:fc:e7:b1: 41:9b:94:d9:ca:6c:68:fc:48:9f:25:30:eb:dd:34:ed:a7:37: e9:be:00:17:f6:40:29:e2:44:37:95:f3:35:a3:bc:8f:51:29: 3b:3c:df:f5:17:ff:5d:7c:0b:17:62:e5:3c:0f:52:53:e1:a3: 9e:67:86:87:14:8f:4c:51:04:7f:ba:68:f2:0a:ed:30:d2:bd: f0:5d:c9:4c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHKTME9+tEDZ/9XgKIUxO5Zs+fY4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ5OTYyMDZCMjRFNjc5MzdDRUYyQ0U0MDg4MkRCRkFE ODkzRjFGQjAeFw0yNDA3MjExOTU1MDFaFw0yNTA3MjAyMDAwMDFaMDMxMTAvBgNV BAMTKDNDQjdDQjU5NkQ2MTIyRTJENDdCMERCOEE5MTFCOEMzMEE2MEM4NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiN1YwsTXMrmmUqoGLa+7DeTLM TCoHnWXGyvKiEroYXmYcCCXk9EjrcMItPP5fzPleS8CsKBTswQE3qQApV4Xm0Xwb 0j7/U2+t0P9VjrjcHjdkXpQYzmQRGV1b2l7/kg4Vcp9iyZdRVQahDfcwEFhjglBS mDpBHFcjPFY4ShLGXYlo5Qg7ujqujrrDMHd6A+WTS6nGa8LxeTy8tGhZdPqdEVA9 +S5n+T3dJ/1W7FWQt5CFceKNX6WS3GFeGczdWY+EeQRfmXHuLYMY8W8qZr2PyJZS gIx+3U52etlJS9uyzD+M9vyrh+9N4myto0T0s/0SZtkFsgfe1t/KLMNCe185AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUPLfLWW1hIuLUew24qRG4wwpgyEwwHwYDVR0j BBgwFoAUHZliBrJOZ5N87yzkCILb+tiT8fswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OWUzNjA1Ni1mMDk3LTQ5YTctYmQyMy0zZDcxMWU4OWYzMDUvMC8xRDk5NjIwNkIy NEU2NzkzN0NFRjJDRTQwODgyREJGQUQ4OTNGMUZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQ5OTYyMDZCMjRFNjc5MzdDRUYyQ0U0MDg4MkRCRkFEODkz RjFGQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5ZTM2MDU2LWYwOTctNDlhNy1i ZDIzLTNkNzExZTg5ZjMwNS8wLzMxMzAzMzJlMzIzMzM1MmUzNjM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzYzMzM0MzkzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWfrQjANBgkqhkiG 9w0BAQsFAAOCAQEATDcTlyMST9jf3gb0b/yKbaCmYLI0/WGHcEybosU3aPMUsrsl SlF/AiLIAbrLpDqdA8Mb/aSjUp9bNFjj/FGZe1lWDgQhX4vpnISAZV+UaYGLOpU+ qTMV/bQXgWnx2xwYadl96mzvrllH5wMeqZvkVDSiGxrXSvMzk5H2jCibGvSXjU0U C88G9gdc4BT99/PBaCyq4TxwLihtdPrmMljTCcxPpJigwSQBN3/SnLJ3hMJp/Oex QZuU2cpsaPxInyUw69007ac36b4AF/ZAKeJEN5XzNaO8j1EpOzzf9Rf/XXwLF2Ll PA9SU+GjnmeGhxSPTFEEf7po8grtMNK98F3JTA== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org