$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3130332e3131362e3137322e302f32322d3234203d3e20313337333633.roa File: 3130332e3131362e3137322e302f32322d3234203d3e20313337333633.roa (raw, json) Hash identifier: 8fXa1f7300/W5Av08Qun2AqlD/GOx9dx833zFohML8Q= Subject key identifier: 30:80:D6:42:9C:C8:74:24:FE:DD:D5:73:F6:50:2E:70:A1:99:2E:C1 Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Certificate serial: 04F434991DE7495F8DF776071D9A95BB7DBCF563 Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3130332e3131362e3137322e302f32322d3234203d3e20313337333633.roa Signing time: Mon 01 Jul 2024 01:03:11 +0000 ROA not before: Mon 01 Jul 2024 00:58:11 +0000 ROA not after: Mon 30 Jun 2025 01:03:11 +0000 asID: 137363 IP address blocks: 103.116.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:f4:34:99:1d:e7:49:5f:8d:f7:76:07:1d:9a:95:bb:7d:bc:f5:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3 Validity Not Before: Jul 1 00:58:11 2024 GMT Not After : Jun 30 01:03:11 2025 GMT Subject: CN=3080D6429CC87424FEDDD573F6502E70A1992EC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:52:6d:95:16:90:86:56:44:69:44:4d:aa:62: df:36:9a:7a:60:23:49:1c:71:2e:fa:6f:e2:57:fe: 91:61:07:10:f9:55:b4:52:59:b9:64:4b:8b:79:23: 67:7f:ad:78:f8:94:d7:77:70:13:eb:b4:de:1e:50: bb:ad:82:87:e6:ea:d7:39:f2:79:1b:22:42:56:ce: 51:9e:e1:3a:26:25:ab:8a:fb:c4:63:b4:a0:4c:4f: ce:6f:35:02:10:ed:a6:5b:16:b6:19:57:39:47:ff: 41:9b:83:16:29:13:fc:3d:5d:4b:3a:07:65:44:fb: 08:da:ab:28:7e:74:ac:a0:9c:82:5c:fb:27:82:a3: 07:59:2b:22:f5:df:f1:5f:3d:bd:9a:a8:f1:62:1b: 1b:06:2e:7d:3d:5d:58:58:1c:fb:f2:d8:e9:cc:e9: 1f:73:33:52:64:83:83:6a:58:51:e5:1c:5c:58:a4: 39:58:fd:76:c4:59:74:06:a8:9e:28:60:57:fd:7d: 0c:9a:93:06:ce:64:7e:9d:b8:62:f4:e4:1e:ee:2d: d6:8b:dd:05:6b:97:e6:25:c4:cb:80:ce:2d:28:e1: 90:52:8d:21:e6:a4:87:80:fc:fc:f6:98:bd:7d:f0: c6:37:c0:08:9e:27:a3:1b:23:d4:71:0e:fa:5f:2a: d6:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:80:D6:42:9C:C8:74:24:FE:DD:D5:73:F6:50:2E:70:A1:99:2E:C1 X509v3 Authority Key Identifier: keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3130332e3131362e3137322e302f32322d3234203d3e20313337333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.116.172.0/22 Signature Algorithm: sha256WithRSAEncryption 13:97:e6:03:0f:4b:24:dd:6f:a5:93:a8:1a:54:2f:e6:79:3e: 35:a1:09:c8:13:c8:5b:dd:60:8d:47:c3:0d:db:8c:c0:9f:58: 79:e0:ef:ea:94:58:aa:2e:1b:8c:72:a6:ee:ab:0a:a1:9b:36: df:38:c2:3b:08:e3:82:6b:b2:14:16:24:98:5d:20:c0:69:c4: 40:73:14:55:0f:06:f0:76:78:8b:50:a9:0c:39:1c:0e:be:39: 36:85:35:61:02:b3:54:91:f9:09:da:8a:6d:a0:fb:03:05:bb: 51:5e:d9:07:6e:29:42:ef:f5:05:e8:f4:ce:0e:0e:11:ac:6f: 72:bb:ca:4b:6a:85:a3:56:a7:56:7c:01:85:78:48:56:62:6d: 9a:95:4a:a5:35:c2:fb:31:60:ad:9a:38:88:60:e7:9b:33:7e: f9:35:85:fd:5c:28:c5:c7:d8:ca:04:d6:9f:5f:cb:2c:4d:ee: eb:58:82:91:25:b3:a3:83:40:22:cf:69:ee:c3:97:dd:aa:74: 87:f0:8e:bf:9d:2d:94:bc:11:44:b9:69:3e:e8:b8:31:ae:6b: 9e:04:7f:ba:3e:dd:54:24:49:f6:38:a6:5f:b5:d1:37:b8:2f: 1f:04:a4:6e:3b:d5:c7:61:2e:3a:52:35:df:09:89:8a:0f:a5: 5d:65:bc:a4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBPQ0mR3nSV+N93YHHZqVu3289WMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEy NDk5M0NBMzAeFw0yNDA3MDEwMDU4MTFaFw0yNTA2MzAwMTAzMTFaMDMxMTAvBgNV BAMTKDMwODBENjQyOUNDODc0MjRGRURERDU3M0Y2NTAyRTcwQTE5OTJFQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgUm2VFpCGVkRpRE2qYt82mnpg I0kccS76b+JX/pFhBxD5VbRSWblkS4t5I2d/rXj4lNd3cBPrtN4eULutgofm6tc5 8nkbIkJWzlGe4TomJauK+8RjtKBMT85vNQIQ7aZbFrYZVzlH/0GbgxYpE/w9XUs6 B2VE+wjaqyh+dKygnIJc+yeCowdZKyL13/FfPb2aqPFiGxsGLn09XVhYHPvy2OnM 6R9zM1Jkg4NqWFHlHFxYpDlY/XbEWXQGqJ4oYFf9fQyakwbOZH6duGL05B7uLdaL 3QVrl+YlxMuAzi0o4ZBSjSHmpIeA/Pz2mL198MY3wAieJ6MbI9RxDvpfKtYjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUMIDWQpzIdCT+3dVz9lAucKGZLsEwHwYDVR0j BBgwFoAUtu4fYdbo6e7GQMzB15HboSSZPKMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTA4NWI0YS1mNTczLTQyZjMtODI1Yy0xY2YwYzg3MmIxNTIvMC9CNkVFMUY2MUQ2 RThFOUVFQzY0MENDQzFENzkxREJBMTI0OTkzQ0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjZFRTFGNjFENkU4RTlFRUM2NDBDQ0MxRDc5MURCQTEyNDk5 M0NBMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMxMzAzMzJlMzEzMTM2MmUzMTM3MzIyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzczMzM2MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJndKwwDQYJ KoZIhvcNAQELBQADggEBABOX5gMPSyTdb6WTqBpUL+Z5PjWhCcgTyFvdYI1Hww3b jMCfWHng7+qUWKouG4xypu6rCqGbNt84wjsI44JrshQWJJhdIMBpxEBzFFUPBvB2 eItQqQw5HA6+OTaFNWECs1SR+Qnaim2g+wMFu1Fe2QduKULv9QXo9M4ODhGsb3K7 yktqhaNWp1Z8AYV4SFZibZqVSqU1wvsxYK2aOIhg55szfvk1hf1cKMXH2MoE1p9f yyxN7utYgpEls6ODQCLPae7Dl92qdIfwjr+dLZS8EUS5aT7ouDGua54Ef7o+3VQk SfY4pl+10Te4Lx8EpG471cdhLjpSNd8JiYoPpV1lvKQ= -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:04 2024 by rpki-client on console-fra.rpki-client.org