$ rpki-client -vvf repo-rpki.idnic.net/repo/c9f3c769-cfb1-4206-9f54-c0587e63ba5b/0/3130332e39302e36362e302f32342d3234203d3e20313530323635.roa File: 3130332e39302e36362e302f32342d3234203d3e20313530323635.roa (raw, json) Hash identifier: 5zPk4MUiirpmEj5/W53RgTUlrb96XIX+LjZrPDV2UMA= Subject key identifier: 60:A8:45:D8:B8:C7:46:08:9F:16:C9:6F:AB:E5:5F:D4:56:FA:49:90 Certificate issuer: /CN=5B8C3A29E90C25CBF4615124B117BE7FC013C61E Certificate serial: 47ABE0591225568BAFD991CF9EC11004FD1DC4A2 Authority key identifier: 5B:8C:3A:29:E9:0C:25:CB:F4:61:51:24:B1:17:BE:7F:C0:13:C6:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B8C3A29E90C25CBF4615124B117BE7FC013C61E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c9f3c769-cfb1-4206-9f54-c0587e63ba5b/0/3130332e39302e36362e302f32342d3234203d3e20313530323635.roa Signing time: Thu 17 Oct 2024 15:00:00 +0000 ROA not before: Thu 17 Oct 2024 14:55:00 +0000 ROA not after: Thu 16 Oct 2025 15:00:00 +0000 asID: 150265 IP address blocks: 103.90.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c9f3c769-cfb1-4206-9f54-c0587e63ba5b/0/5B8C3A29E90C25CBF4615124B117BE7FC013C61E.crl rsync://repo-rpki.idnic.net/repo/c9f3c769-cfb1-4206-9f54-c0587e63ba5b/0/5B8C3A29E90C25CBF4615124B117BE7FC013C61E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B8C3A29E90C25CBF4615124B117BE7FC013C61E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:ab:e0:59:12:25:56:8b:af:d9:91:cf:9e:c1:10:04:fd:1d:c4:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B8C3A29E90C25CBF4615124B117BE7FC013C61E Validity Not Before: Oct 17 14:55:00 2024 GMT Not After : Oct 16 15:00:00 2025 GMT Subject: CN=60A845D8B8C746089F16C96FABE55FD456FA4990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:45:3d:35:77:3b:65:20:29:89:7c:f1:97:5b: 52:dc:31:63:f0:95:ef:a7:b8:25:01:43:bc:e6:81: 9c:aa:01:12:1f:83:e9:18:b3:b9:ab:4f:bf:7a:ea: 13:36:3c:5d:85:18:e8:16:b4:d4:ee:7b:fb:4b:88: 3f:35:fc:d6:52:52:04:d9:6b:cf:5e:b8:2f:0d:9a: 04:8f:8f:48:42:0d:4c:ee:c4:b1:a1:ca:2b:fb:5b: 1b:69:06:1b:93:9e:94:68:68:8e:ab:b5:2c:da:17: 76:06:54:6d:f3:09:81:32:a1:37:53:25:2e:70:1f: f7:64:01:60:aa:4b:f0:23:f0:ac:75:24:27:61:4b: e3:90:ff:c5:36:af:e3:49:f8:3f:70:66:ca:95:79: 17:c8:8c:e2:68:78:67:94:20:a2:2f:91:f2:b4:be: 72:f4:56:74:de:55:7b:f4:05:65:f7:3c:fa:1d:6f: 4d:bc:1d:85:71:82:c9:5f:d3:fc:e3:24:ba:1a:79: 93:c5:2a:be:8a:34:cb:58:85:44:b4:58:eb:0e:e6: 30:a0:67:87:77:1f:a5:15:1d:1a:0d:60:e2:54:8c: 4b:f1:55:4f:73:b1:e2:3b:13:ed:6e:f9:03:ec:69: 69:a0:07:9e:11:31:4f:23:42:fb:97:89:3f:73:65: 3d:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:A8:45:D8:B8:C7:46:08:9F:16:C9:6F:AB:E5:5F:D4:56:FA:49:90 X509v3 Authority Key Identifier: keyid:5B:8C:3A:29:E9:0C:25:CB:F4:61:51:24:B1:17:BE:7F:C0:13:C6:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c9f3c769-cfb1-4206-9f54-c0587e63ba5b/0/5B8C3A29E90C25CBF4615124B117BE7FC013C61E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B8C3A29E90C25CBF4615124B117BE7FC013C61E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c9f3c769-cfb1-4206-9f54-c0587e63ba5b/0/3130332e39302e36362e302f32342d3234203d3e20313530323635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.90.66.0/24 Signature Algorithm: sha256WithRSAEncryption 61:8f:f5:d0:fd:1d:bd:41:70:87:ba:92:fa:0a:d0:60:bd:77: 57:c3:a9:26:c8:b1:62:ef:7a:8e:c3:0f:3f:95:da:29:73:15: 50:46:d7:de:f4:ec:54:a2:47:9c:79:94:e6:6e:e2:ae:54:6f: ef:0f:81:d3:a8:92:f7:15:71:81:01:f6:de:9d:3e:65:59:8f: c3:39:60:a2:cf:5a:13:1b:35:7a:9f:86:a0:bc:8c:02:cf:a7: 48:f7:9a:ea:29:3e:f8:1b:4b:ec:8c:b1:07:ba:a9:58:5e:8f: 51:bb:21:25:9a:a8:14:dd:2a:17:fa:a2:3c:25:f7:60:e9:8b: 62:f9:ed:33:b5:b0:c6:b6:e2:8e:6d:6b:e4:66:1a:d8:46:c6: 4e:0b:ac:56:12:44:ed:8c:27:e1:1f:54:50:d8:53:a7:ae:23: b9:60:9d:73:96:ef:00:6d:7e:cb:60:1f:7a:b0:57:d3:ff:08: 43:91:25:f8:73:a9:62:ac:7a:17:79:c6:2f:ab:e4:f4:10:a0: 09:b1:f1:e0:69:9e:ea:db:28:be:77:dd:0a:14:19:5c:da:e6: 83:91:85:bd:7e:0f:62:5e:6a:e6:ce:a3:a3:28:b5:b1:52:a7: d6:81:f4:d7:f2:6d:2a:7b:7f:7c:13:f2:9f:c2:43:7e:54:de: d0:61:ba:f0 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUR6vgWRIlVouv2ZHPnsEQBP0dxKIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUI4QzNBMjlFOTBDMjVDQkY0NjE1MTI0QjExN0JFN0ZD MDEzQzYxRTAeFw0yNDEwMTcxNDU1MDBaFw0yNTEwMTYxNTAwMDBaMDMxMTAvBgNV BAMTKDYwQTg0NUQ4QjhDNzQ2MDg5RjE2Qzk2RkFCRTU1RkQ0NTZGQTQ5OTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuRT01dztlICmJfPGXW1LcMWPw le+nuCUBQ7zmgZyqARIfg+kYs7mrT7966hM2PF2FGOgWtNTue/tLiD81/NZSUgTZ a89euC8NmgSPj0hCDUzuxLGhyiv7WxtpBhuTnpRoaI6rtSzaF3YGVG3zCYEyoTdT JS5wH/dkAWCqS/Aj8Kx1JCdhS+OQ/8U2r+NJ+D9wZsqVeRfIjOJoeGeUIKIvkfK0 vnL0VnTeVXv0BWX3PPodb028HYVxgslf0/zjJLoaeZPFKr6KNMtYhUS0WOsO5jCg Z4d3H6UVHRoNYOJUjEvxVU9zseI7E+1u+QPsaWmgB54RMU8jQvuXiT9zZT2jAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYKhF2LjHRgifFslvq+Vf1Fb6SZAwHwYDVR0j BBgwFoAUW4w6KekMJcv0YVEksRe+f8ATxh4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OWYzYzc2OS1jZmIxLTQyMDYtOWY1NC1jMDU4N2U2M2JhNWIvMC81QjhDM0EyOUU5 MEMyNUNCRjQ2MTUxMjRCMTE3QkU3RkMwMTNDNjFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUI4QzNBMjlFOTBDMjVDQkY0NjE1MTI0QjExN0JFN0ZDMDEz QzYxRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5ZjNjNzY5LWNmYjEtNDIwNi05 ZjU0LWMwNTg3ZTYzYmE1Yi8wLzMxMzAzMzJlMzkzMDJlMzYzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzYzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdaQjANBgkqhkiG 9w0BAQsFAAOCAQEAYY/10P0dvUFwh7qS+grQYL13V8OpJsixYu96jsMPP5XaKXMV UEbX3vTsVKJHnHmU5m7irlRv7w+B06iS9xVxgQH23p0+ZVmPwzlgos9aExs1ep+G oLyMAs+nSPea6ik++BtL7IyxB7qpWF6PUbshJZqoFN0qF/qiPCX3YOmLYvntM7Ww xrbijm1r5GYa2EbGTgusVhJE7Ywn4R9UUNhTp64juWCdc5bvAG1+y2AferBX0/8I Q5El+HOpYqx6F3nGL6vk9BCgCbHx4Gme6tsovnfdChQZXNrmg5GFvX4PYl5q5s6j oyi1sVKn1oH01/JtKnt/fBPyn8JDflTe0GG68A== -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:03 2024 by rpki-client on console-ams.rpki-client.org