$ rpki-client -vvf repo-rpki.idnic.net/repo/d20fa14a-aaac-40f4-9c84-69257868f2cb/0/3130332e3135392e3230342e302f32332d3234203d3e20313331313131.roa File: 3130332e3135392e3230342e302f32332d3234203d3e20313331313131.roa (raw, json) Hash identifier: 9aPbQ3zHPjKBoV/XvCw86zX5nSWoIsEdjkOG9WtKCO8= Subject key identifier: 2F:03:B2:C0:3E:C7:04:A1:55:A4:99:55:3F:E7:75:39:05:D3:B5:B6 Certificate issuer: /CN=1762D22131EE967D86536D2B475A9A8C08CE6003 Certificate serial: 6F29BA2EC49BDC2A92A5BEC82933BBBB7E14AEE6 Authority key identifier: 17:62:D2:21:31:EE:96:7D:86:53:6D:2B:47:5A:9A:8C:08:CE:60:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1762D22131EE967D86536D2B475A9A8C08CE6003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d20fa14a-aaac-40f4-9c84-69257868f2cb/0/3130332e3135392e3230342e302f32332d3234203d3e20313331313131.roa Signing time: Wed 19 Jun 2024 05:00:00 +0000 ROA not before: Wed 19 Jun 2024 04:55:00 +0000 ROA not after: Wed 18 Jun 2025 05:00:00 +0000 asID: 131111 IP address blocks: 103.159.204.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d20fa14a-aaac-40f4-9c84-69257868f2cb/0/1762D22131EE967D86536D2B475A9A8C08CE6003.crl rsync://repo-rpki.idnic.net/repo/d20fa14a-aaac-40f4-9c84-69257868f2cb/0/1762D22131EE967D86536D2B475A9A8C08CE6003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1762D22131EE967D86536D2B475A9A8C08CE6003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:29:ba:2e:c4:9b:dc:2a:92:a5:be:c8:29:33:bb:bb:7e:14:ae:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1762D22131EE967D86536D2B475A9A8C08CE6003 Validity Not Before: Jun 19 04:55:00 2024 GMT Not After : Jun 18 05:00:00 2025 GMT Subject: CN=2F03B2C03EC704A155A499553FE7753905D3B5B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:45:44:b1:0d:52:7e:95:e2:b4:aa:44:9c:d2: b7:c4:a3:b6:bf:93:e9:c2:c9:7b:ee:bf:b3:6a:d3: a9:35:e8:93:a4:38:8e:50:6e:a7:fa:37:9d:46:03: e6:15:9e:66:a0:f2:0c:2e:39:87:6b:0e:f6:93:a2: 06:89:7d:ac:36:95:76:d2:7f:2c:7c:ed:6c:d8:53: ef:37:25:ad:32:d1:3f:20:b0:fd:6e:14:6b:a1:8a: 61:2c:a5:74:64:1b:46:97:2d:e6:96:1e:b7:17:1b: 2e:60:cd:e0:0e:a5:b1:92:33:97:59:a3:ee:79:3f: de:8e:f5:6e:e7:6e:fd:70:fa:d9:71:f9:05:80:73: 82:56:0b:3f:70:57:f2:52:ba:9d:1b:9a:fd:f4:3d: 73:90:ed:ab:70:24:49:67:c8:d7:53:9d:29:89:23: 5d:05:c1:e4:ea:92:0b:54:05:5e:08:79:35:e0:9b: f3:5a:8f:77:e1:5a:2c:ea:1a:84:23:9e:82:d1:7d: 4f:9b:ea:69:fa:3f:24:6f:cf:36:71:4e:ed:8c:d4: ae:ea:af:3f:d1:f8:8c:f5:a6:61:33:3b:e6:58:61: f1:69:1d:29:12:9c:ea:5b:1f:34:11:bb:a0:56:22: 40:d2:72:63:33:5e:dc:97:6f:8f:df:65:9d:0d:55: 1a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:03:B2:C0:3E:C7:04:A1:55:A4:99:55:3F:E7:75:39:05:D3:B5:B6 X509v3 Authority Key Identifier: keyid:17:62:D2:21:31:EE:96:7D:86:53:6D:2B:47:5A:9A:8C:08:CE:60:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d20fa14a-aaac-40f4-9c84-69257868f2cb/0/1762D22131EE967D86536D2B475A9A8C08CE6003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1762D22131EE967D86536D2B475A9A8C08CE6003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d20fa14a-aaac-40f4-9c84-69257868f2cb/0/3130332e3135392e3230342e302f32332d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.204.0/23 Signature Algorithm: sha256WithRSAEncryption 26:87:73:70:14:a5:37:28:2d:f3:e4:7f:5e:b7:98:1e:54:a7: c2:ad:cc:1e:1a:92:6c:1c:a2:c8:84:8d:18:62:3f:1a:17:ed: 95:39:06:0e:1f:8a:54:f1:2f:d3:80:d3:0f:b7:c8:1d:6f:db: d8:6f:e3:57:79:95:44:d2:23:82:bc:17:97:f6:b3:8c:54:b3: 3e:ef:40:11:e4:90:50:46:1b:b0:95:1e:9e:ee:24:d5:7e:71: 36:ad:6b:90:bd:94:21:e0:46:bd:0b:19:7b:d5:03:3e:f9:44: 54:2a:34:95:18:d4:9f:bc:77:4d:0c:30:43:97:be:98:20:ed: 41:44:dd:45:73:f1:5f:6d:3d:a9:c7:9e:f6:ff:2c:ca:54:b4: 50:de:4b:99:f1:6e:2c:76:2f:7b:17:a4:f3:45:ea:60:7b:89: 72:2e:79:1b:f2:9d:50:f8:ca:cf:81:41:95:f9:79:24:aa:cc: c8:e2:62:85:13:d4:ff:30:4e:06:54:8d:e2:5e:d4:77:c8:44: 2c:3a:1c:c1:f5:ab:bd:2b:a9:6d:7a:90:92:c8:57:35:d1:92: 8d:50:67:92:5f:4c:b7:74:b4:0e:7e:c9:ff:f1:44:25:7b:bf: b0:8f:48:30:f3:5f:8e:19:84:82:f7:0c:4a:ac:d5:05:ec:9e: 3a:be:59:62 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbym6LsSb3CqSpb7IKTO7u34UruYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTc2MkQyMjEzMUVFOTY3RDg2NTM2RDJCNDc1QTlBOEMw OENFNjAwMzAeFw0yNDA2MTkwNDU1MDBaFw0yNTA2MTgwNTAwMDBaMDMxMTAvBgNV BAMTKDJGMDNCMkMwM0VDNzA0QTE1NUE0OTk1NTNGRTc3NTM5MDVEM0I1QjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPRUSxDVJ+leK0qkSc0rfEo7a/ k+nCyXvuv7Nq06k16JOkOI5Qbqf6N51GA+YVnmag8gwuOYdrDvaTogaJfaw2lXbS fyx87WzYU+83Ja0y0T8gsP1uFGuhimEspXRkG0aXLeaWHrcXGy5gzeAOpbGSM5dZ o+55P96O9W7nbv1w+tlx+QWAc4JWCz9wV/JSup0bmv30PXOQ7atwJElnyNdTnSmJ I10FweTqkgtUBV4IeTXgm/Naj3fhWizqGoQjnoLRfU+b6mn6PyRvzzZxTu2M1K7q rz/R+Iz1pmEzO+ZYYfFpHSkSnOpbHzQRu6BWIkDScmMzXtyXb4/fZZ0NVRqDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQULwOywD7HBKFVpJlVP+d1OQXTtbYwHwYDVR0j BBgwFoAUF2LSITHuln2GU20rR1qajAjOYAMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjBmYTE0YS1hYWFjLTQwZjQtOWM4NC02OTI1Nzg2OGYyY2IvMC8xNzYyRDIyMTMx RUU5NjdEODY1MzZEMkI0NzVBOUE4QzA4Q0U2MDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTc2MkQyMjEzMUVFOTY3RDg2NTM2RDJCNDc1QTlBOEMwOENF NjAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyMGZhMTRhLWFhYWMtNDBmNC05 Yzg0LTY5MjU3ODY4ZjJjYi8wLzMxMzAzMzJlMzEzNTM5MmUzMjMwMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzEzMTMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnn8wwDQYJ KoZIhvcNAQELBQADggEBACaHc3AUpTcoLfPkf163mB5Up8KtzB4akmwcosiEjRhi PxoX7ZU5Bg4filTxL9OA0w+3yB1v29hv41d5lUTSI4K8F5f2s4xUsz7vQBHkkFBG G7CVHp7uJNV+cTata5C9lCHgRr0LGXvVAz75RFQqNJUY1J+8d00MMEOXvpgg7UFE 3UVz8V9tPanHnvb/LMpUtFDeS5nxbix2L3sXpPNF6mB7iXIueRvynVD4ys+BQZX5 eSSqzMjiYoUT1P8wTgZUjeJe1HfIRCw6HMH1q70rqW16kJLIVzXRko1QZ5JfTLd0 tA5+yf/xRCV7v7CPSDDzX44ZhIL3DEqs1QXsnjq+WWI= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:48 2024 by rpki-client on console-fra.rpki-client.org