$ rpki-client -vvf repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230362e302f32342d3234203d3e20313336383639.roa File: 3130332e3130342e3230362e302f32342d3234203d3e20313336383639.roa (raw, json) Hash identifier: 5DrcuSL2kj2578vfxL+VIIRLyXGA+oCNPnvjmoU21cs= Subject key identifier: B6:8A:5C:5A:B8:CD:B6:C7:3C:38:1E:B6:89:05:81:C5:4E:EC:82:D6 Certificate issuer: /CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Certificate serial: 5544FBA47D3ECF6FF2C348743311AF93CF4B6C4C Authority key identifier: D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230362e302f32342d3234203d3e20313336383639.roa Signing time: Mon 01 Jul 2024 01:04:50 +0000 ROA not before: Mon 01 Jul 2024 00:59:50 +0000 ROA not after: Mon 30 Jun 2025 01:04:50 +0000 asID: 136869 IP address blocks: 103.104.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 04:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:44:fb:a4:7d:3e:cf:6f:f2:c3:48:74:33:11:af:93:cf:4b:6c:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Validity Not Before: Jul 1 00:59:50 2024 GMT Not After : Jun 30 01:04:50 2025 GMT Subject: CN=B68A5C5AB8CDB6C73C381EB6890581C54EEC82D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8f:dc:ae:9a:81:4d:fb:e4:61:98:ba:ab:49: a5:cc:87:18:7b:b9:77:c6:69:84:f6:10:ce:7b:e0: 8d:49:95:a6:32:e9:10:17:f8:84:8d:69:2d:4a:ae: 77:7a:98:fe:3b:d7:0a:0d:23:93:ad:c0:95:1f:c7: c8:cb:8e:d2:22:48:96:af:2b:cb:1b:98:18:17:98: 00:28:63:6a:00:f1:f4:b4:ef:38:bc:5c:bf:cd:ed: 8f:e3:d9:9e:2e:44:ff:2a:4a:f1:b8:52:b5:78:31: b6:88:0b:d0:5f:45:b6:b5:e3:51:5d:ed:5e:fb:40: e9:b1:d3:8c:3c:2e:4f:d0:28:59:97:44:90:9f:44: 0f:f2:35:3a:a4:a2:5b:2a:5e:b9:12:88:76:92:7d: c3:9e:84:22:81:c1:5f:c8:c8:99:95:b2:de:fe:46: 8e:ab:30:4e:35:76:16:bb:7c:e9:b0:17:0a:aa:91: 17:3f:09:0a:87:42:ed:4e:74:bb:5c:82:b7:a4:c8: 0e:e0:43:b8:7c:39:93:7d:23:a1:58:30:d4:24:37: a6:93:93:1d:d2:21:e3:a5:51:98:09:32:2e:96:a0: 70:9d:e2:5e:45:5e:ca:a0:ba:85:eb:e6:7a:66:7e: f7:94:c4:d8:1f:5c:73:79:88:35:7b:cf:b5:84:fe: e1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:8A:5C:5A:B8:CD:B6:C7:3C:38:1E:B6:89:05:81:C5:4E:EC:82:D6 X509v3 Authority Key Identifier: keyid:D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/3130332e3130342e3230362e302f32342d3234203d3e20313336383639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.104.206.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:a0:6f:bf:cf:fd:06:85:b4:c9:70:2c:9e:df:6e:f2:9e:99: 0c:b2:f0:ce:12:e8:27:a9:ce:63:6c:26:53:48:0a:c7:d0:20: f7:fa:61:6f:57:3d:46:20:5d:e1:1c:c4:8d:1e:9d:e5:8e:9f: f7:ff:30:20:9c:a3:52:49:62:49:e9:60:36:7c:ab:f9:51:a9: b5:c9:10:06:f3:98:33:57:42:1a:0b:fd:ab:19:59:d8:01:47: 85:7b:93:ef:33:f7:98:0c:73:69:56:1c:d7:3f:c0:47:a1:c0: 3b:86:46:40:c0:d0:41:42:45:01:35:8d:55:c6:ec:16:8c:b9: 32:e0:df:87:f9:5f:b8:9a:7b:75:ff:1e:1e:5f:c8:6d:8e:8f: be:ac:e6:d3:7f:a8:22:e8:0d:3f:ba:db:41:95:35:87:c5:9d: e9:53:af:79:92:84:6f:ee:75:2e:55:5b:17:a5:18:74:41:42: 37:15:89:e9:ca:cd:fa:f0:0d:1e:b6:e2:6e:80:19:0f:aa:0d: 54:2f:7b:c4:e6:53:72:68:bc:10:6e:d8:2d:f5:c3:a8:e4:9d: f1:9c:d6:79:ce:88:ce:dc:e0:77:f1:47:de:e3:53:c1:af:5b: 0c:cd:fa:2f:28:4a:b9:50:45:dd:b7:6d:1e:16:f5:b2:95:75: 0b:5e:09:62 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVUT7pH0+z2/yw0h0MxGvk89LbEwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRB M0UxMkQyMzAeFw0yNDA3MDEwMDU5NTBaFw0yNTA2MzAwMTA0NTBaMDMxMTAvBgNV BAMTKEI2OEE1QzVBQjhDREI2QzczQzM4MUVCNjg5MDU4MUM1NEVFQzgyRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuj9yumoFN++RhmLqrSaXMhxh7 uXfGaYT2EM574I1JlaYy6RAX+ISNaS1Krnd6mP471woNI5OtwJUfx8jLjtIiSJav K8sbmBgXmAAoY2oA8fS07zi8XL/N7Y/j2Z4uRP8qSvG4UrV4MbaIC9BfRba141Fd 7V77QOmx04w8Lk/QKFmXRJCfRA/yNTqkolsqXrkSiHaSfcOehCKBwV/IyJmVst7+ Ro6rME41dha7fOmwFwqqkRc/CQqHQu1OdLtcgrekyA7gQ7h8OZN9I6FYMNQkN6aT kx3SIeOlUZgJMi6WoHCd4l5FXsqguoXr5npmfveUxNgfXHN5iDV7z7WE/uFfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUtopcWrjNtsc8OB62iQWBxU7sgtYwHwYDVR0j BBgwFoAU0u8h29VFJVvtMO7DRiPyBKPhLSMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjMxZTZiMS0xODQxLTQ3NmQtYjQ2Yi1iNDRiOWNiOTY4YjAvMC9EMkVGMjFEQkQ1 NDUyNTVCRUQzMEVFQzM0NjIzRjIwNEEzRTEyRDIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRBM0Ux MkQyMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyMzFlNmIxLTE4NDEtNDc2ZC1i NDZiLWI0NGI5Y2I5NjhiMC8wLzMxMzAzMzJlMzEzMDM0MmUzMjMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnaM4wDQYJ KoZIhvcNAQELBQADggEBAJqgb7/P/QaFtMlwLJ7fbvKemQyy8M4S6CepzmNsJlNI CsfQIPf6YW9XPUYgXeEcxI0eneWOn/f/MCCco1JJYknpYDZ8q/lRqbXJEAbzmDNX QhoL/asZWdgBR4V7k+8z95gMc2lWHNc/wEehwDuGRkDA0EFCRQE1jVXG7BaMuTLg 34f5X7iae3X/Hh5fyG2Oj76s5tN/qCLoDT+620GVNYfFnelTr3mShG/udS5VWxel GHRBQjcVienKzfrwDR624m6AGQ+qDVQve8TmU3JovBBu2C31w6jknfGc1nnOiM7c 4HfxR97jU8GvWwzN+i8oSrlQRd23bR4W9bKVdQteCWI= -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:49 2024 by rpki-client on console-ams.rpki-client.org