$ rpki-client -vvf repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230342e302f32342d3234203d3e20313336383639.roa File: 3130332e3130342e3230342e302f32342d3234203d3e20313336383639.roa (raw, json) Hash identifier: hQDC9v2yWbYZiHxog5fWu9s3/ZtDVdDk75QTAxXB7es= Subject key identifier: A1:6E:A1:F4:30:68:2C:A7:7E:09:A2:D9:88:BA:C5:31:6F:C0:39:51 Certificate issuer: /CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Certificate serial: 057AD7D3F719B0F139E5BAE2488DA26E2DD9DEC6 Authority key identifier: D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230342e302f32342d3234203d3e20313336383639.roa Signing time: Mon 01 Jul 2024 01:04:50 +0000 ROA not before: Mon 01 Jul 2024 00:59:50 +0000 ROA not after: Mon 30 Jun 2025 01:04:50 +0000 asID: 136869 IP address blocks: 103.104.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 04:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:7a:d7:d3:f7:19:b0:f1:39:e5:ba:e2:48:8d:a2:6e:2d:d9:de:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Validity Not Before: Jul 1 00:59:50 2024 GMT Not After : Jun 30 01:04:50 2025 GMT Subject: CN=A16EA1F430682CA77E09A2D988BAC5316FC03951 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:6b:e9:76:f2:8b:86:f5:3c:eb:ac:3c:a8:66: c8:ad:ff:39:44:d5:6d:f9:e3:88:97:41:51:9b:f0: e2:21:d7:a5:8b:86:7d:e1:47:f6:99:dd:89:7b:c8: 9d:19:5a:45:a2:84:8d:26:fb:05:94:34:40:d5:56: ed:23:8e:52:f3:ac:9d:ce:2b:df:cd:75:49:a2:2d: ee:d6:90:0e:c0:ed:03:40:6f:e7:4f:ee:10:ee:27: b6:1b:27:ec:8c:60:3b:45:94:d8:f3:51:d3:03:f2: f4:71:f1:10:d5:4f:50:56:f4:0e:49:43:34:09:6a: de:1c:0b:9d:cd:77:e7:d2:53:a6:de:4d:12:e5:ec: 20:52:e0:65:6c:85:97:dc:87:c7:1b:88:39:3b:ee: b5:46:db:32:12:75:62:22:47:ca:a9:21:da:ba:08: 5e:f7:e6:4c:b7:f9:7b:ba:6e:c0:44:3b:20:84:2a: d0:a0:52:d2:b9:5a:e1:80:38:63:ad:bc:ed:34:5a: 36:90:23:18:0c:4a:c5:50:7e:99:98:1c:b2:94:1e: 0e:c4:60:8a:0e:7c:78:67:96:bf:e0:9f:e4:5f:a8: 2a:43:06:5b:3b:d1:49:08:6a:70:ce:89:af:68:8c: bc:0b:83:7d:13:82:67:50:67:79:21:e3:53:8e:d7: 72:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:6E:A1:F4:30:68:2C:A7:7E:09:A2:D9:88:BA:C5:31:6F:C0:39:51 X509v3 Authority Key Identifier: keyid:D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230342e302f32342d3234203d3e20313336383639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.104.204.0/24 Signature Algorithm: sha256WithRSAEncryption 41:b4:37:4e:9e:5c:fe:e2:89:7e:b4:0b:4f:47:9e:b7:fe:b0: 1b:3d:88:ec:c5:35:57:27:98:5d:70:92:4c:dc:53:d9:48:d2: 96:65:4f:58:58:6b:85:e1:d2:9f:74:9a:b2:9f:91:7f:49:3a: 68:21:82:75:91:de:fe:77:29:e6:3a:00:75:8b:49:eb:7d:ef: 21:ab:81:61:a9:0a:bc:b0:4a:d4:b4:28:f1:48:9d:cd:63:cd: 1e:f3:6e:c0:f1:73:9a:1d:0e:38:2c:12:fb:db:b7:2d:c3:be: fe:9f:b4:3f:b4:48:07:43:c0:51:6b:8e:06:88:59:06:9d:50: 16:0b:40:3a:60:c4:f4:cc:c9:f6:f9:0a:cb:b5:65:b5:27:b2: 62:24:c1:0a:43:f4:1f:5b:91:fe:97:12:40:d9:97:67:fb:d1: 2e:8a:79:bb:a1:e0:ff:73:49:15:0a:35:6e:36:a8:e0:f4:34: 6a:a8:8b:45:a4:cf:c2:0d:fc:e3:dc:2c:ae:c7:ad:d9:86:38: 1d:be:51:ed:b8:6d:91:89:68:6c:5b:3f:4a:f9:6c:f6:b3:a5: 4a:92:32:16:e4:eb:0e:17:81:79:9f:09:63:4e:7e:7a:1c:b7: 47:26:90:92:e1:bf:4e:3e:41:d6:54:47:c9:d1:90:26:12:ad: e1:a2:20:cf -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBXrX0/cZsPE55briSI2ibi3Z3sYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRB M0UxMkQyMzAeFw0yNDA3MDEwMDU5NTBaFw0yNTA2MzAwMTA0NTBaMDMxMTAvBgNV BAMTKEExNkVBMUY0MzA2ODJDQTc3RTA5QTJEOTg4QkFDNTMxNkZDMDM5NTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDda+l28ouG9TzrrDyoZsit/zlE 1W3544iXQVGb8OIh16WLhn3hR/aZ3Yl7yJ0ZWkWihI0m+wWUNEDVVu0jjlLzrJ3O K9/NdUmiLe7WkA7A7QNAb+dP7hDuJ7YbJ+yMYDtFlNjzUdMD8vRx8RDVT1BW9A5J QzQJat4cC53Nd+fSU6beTRLl7CBS4GVshZfch8cbiDk77rVG2zISdWIiR8qpIdq6 CF735ky3+Xu6bsBEOyCEKtCgUtK5WuGAOGOtvO00WjaQIxgMSsVQfpmYHLKUHg7E YIoOfHhnlr/gn+RfqCpDBls70UkIanDOia9ojLwLg30TgmdQZ3kh41OO13IzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUoW6h9DBoLKd+CaLZiLrFMW/AOVEwHwYDVR0j BBgwFoAU0u8h29VFJVvtMO7DRiPyBKPhLSMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjMxZTZiMS0xODQxLTQ3NmQtYjQ2Yi1iNDRiOWNiOTY4YjAvMC9EMkVGMjFEQkQ1 NDUyNTVCRUQzMEVFQzM0NjIzRjIwNEEzRTEyRDIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRBM0Ux MkQyMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyMzFlNmIxLTE4NDEtNDc2ZC1i NDZiLWI0NGI5Y2I5NjhiMC8wLzMxMzAzMzJlMzEzMDM0MmUzMjMwMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnaMwwDQYJ KoZIhvcNAQELBQADggEBAEG0N06eXP7iiX60C09Hnrf+sBs9iOzFNVcnmF1wkkzc U9lI0pZlT1hYa4Xh0p90mrKfkX9JOmghgnWR3v53KeY6AHWLSet97yGrgWGpCryw StS0KPFInc1jzR7zbsDxc5odDjgsEvvbty3Dvv6ftD+0SAdDwFFrjgaIWQadUBYL QDpgxPTMyfb5Csu1ZbUnsmIkwQpD9B9bkf6XEkDZl2f70S6Kebuh4P9zSRUKNW42 qOD0NGqoi0Wkz8IN/OPcLK7HrdmGOB2+Ue24bZGJaGxbP0r5bPazpUqSMhbk6w4X gXmfCWNOfnoct0cmkJLhv04+QdZUR8nRkCYSreGiIM8= -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:49 2024 by rpki-client on console-ams.rpki-client.org