$ rpki-client -vvf repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/3130332e35362e3230372e302f32342d3234203d3e203538343737.roa File: 3130332e35362e3230372e302f32342d3234203d3e203538343737.roa (raw, json) Hash identifier: aK01biYenKLezQd1JYxPRvNKJKDZxGCWS84l0P9T/2k= Subject key identifier: C4:D0:D8:83:BB:E6:C4:47:C0:8D:64:02:78:CC:8A:EE:98:67:EE:C7 Certificate issuer: /CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Certificate serial: 60CD1C1128F7BF40CE3D50D728FCCBE29E6F4CE7 Authority key identifier: BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/3130332e35362e3230372e302f32342d3234203d3e203538343737.roa Signing time: Mon 01 Jul 2024 01:06:09 +0000 ROA not before: Mon 01 Jul 2024 01:01:09 +0000 ROA not after: Mon 30 Jun 2025 01:06:09 +0000 asID: 58477 IP address blocks: 103.56.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:cd:1c:11:28:f7:bf:40:ce:3d:50:d7:28:fc:cb:e2:9e:6f:4c:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Validity Not Before: Jul 1 01:01:09 2024 GMT Not After : Jun 30 01:06:09 2025 GMT Subject: CN=C4D0D883BBE6C447C08D640278CC8AEE9867EEC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ec:e6:ce:c1:53:d1:0a:ca:eb:9c:9f:3d:41: 91:bb:f1:b0:53:c9:05:e0:30:4d:7f:c3:8f:66:68: ac:a9:ff:19:cb:f0:e4:07:01:ec:8f:95:9a:3a:3e: 49:75:21:b0:76:a7:dd:58:ae:d8:d0:6a:57:d3:fa: a2:8d:d0:74:40:f7:2b:4a:ce:c6:5e:2f:4d:31:60: 8d:d3:90:ef:51:89:c8:37:fc:70:68:12:88:d0:47: 9d:be:8e:22:ee:2e:f1:9f:31:84:b1:5b:99:4d:f2: e5:e5:c6:20:d8:a6:66:6e:2a:58:9a:c4:a2:e2:0c: 83:1f:0e:a8:af:36:ab:59:17:62:5f:b0:c3:59:ca: cb:4c:6c:62:97:5d:2c:35:01:08:44:4e:2f:c9:ed: 01:01:2e:80:29:de:92:44:b6:69:a6:f5:0b:2e:49: c6:8a:9a:8d:c0:85:00:fb:82:e6:9e:ce:ee:16:b4: 2f:b1:8c:b7:1e:a4:94:5e:b6:5e:2e:d3:f9:c1:0d: 2d:62:a1:f4:9a:5e:4f:42:ea:b3:94:89:ac:e4:8e: 5b:73:b9:9c:a6:02:a0:07:ad:da:df:88:d2:57:9f: 33:4a:3e:83:4e:20:68:7c:2a:e3:e9:be:03:5f:8c: 82:fb:6d:82:8b:b9:69:d0:b7:1a:2d:36:b7:68:16: 39:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:D0:D8:83:BB:E6:C4:47:C0:8D:64:02:78:CC:8A:EE:98:67:EE:C7 X509v3 Authority Key Identifier: keyid:BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/3130332e35362e3230372e302f32342d3234203d3e203538343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.56.207.0/24 Signature Algorithm: sha256WithRSAEncryption df:11:cf:59:12:d7:16:20:a6:03:02:3a:38:5a:0a:76:ce:6e: bd:bf:92:15:f7:9e:5a:bd:fb:14:f4:97:96:6e:10:10:d5:11: f3:20:08:0e:35:06:f0:51:29:ae:89:60:1f:f2:e5:8c:7e:bd: 8b:6b:8f:cf:a0:bc:20:f9:91:1a:00:c0:d2:1b:78:6e:b0:f1: d7:48:58:99:68:c0:4e:91:f5:ea:d8:ce:1a:03:1e:88:a9:ff: 53:bb:9a:5d:3e:fe:24:95:54:af:c2:5c:13:b1:17:17:62:f1: d0:d2:ef:27:43:f9:19:5c:af:71:a4:eb:5b:77:1f:41:28:5b: 0f:1f:f2:f2:8c:f1:08:84:4b:43:e1:f3:6d:ea:75:a5:04:6d: 4f:10:82:b3:e2:c9:d6:a5:58:0d:ed:42:ca:0b:e4:29:d2:8b: 6b:aa:96:23:c8:a4:cf:c8:88:90:f2:b6:56:77:44:5d:ee:8a: a1:93:b3:43:23:99:98:a8:3e:a0:2f:3b:b6:b0:d1:53:ba:c2: ab:31:40:91:66:65:fd:c5:2a:ae:0b:36:eb:03:f7:65:27:38: 6d:bc:2f:dd:51:c6:6d:f2:72:d5:ca:8d:f8:e2:9e:af:7b:41: 87:63:a9:91:e2:d9:a0:69:f0:ce:f4:cc:06:ae:f0:26:3d:cf: 7b:89:ba:ee -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYM0cESj3v0DOPVDXKPzL4p5vTOcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0 QTk2QjI2NzAeFw0yNDA3MDEwMTAxMDlaFw0yNTA2MzAwMTA2MDlaMDMxMTAvBgNV BAMTKEM0RDBEODgzQkJFNkM0NDdDMDhENjQwMjc4Q0M4QUVFOTg2N0VFQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY7ObOwVPRCsrrnJ89QZG78bBT yQXgME1/w49maKyp/xnL8OQHAeyPlZo6Pkl1IbB2p91YrtjQalfT+qKN0HRA9ytK zsZeL00xYI3TkO9Ricg3/HBoEojQR52+jiLuLvGfMYSxW5lN8uXlxiDYpmZuKlia xKLiDIMfDqivNqtZF2JfsMNZystMbGKXXSw1AQhETi/J7QEBLoAp3pJEtmmm9Qsu ScaKmo3AhQD7guaezu4WtC+xjLcepJRetl4u0/nBDS1iofSaXk9C6rOUiazkjltz uZymAqAHrdrfiNJXnzNKPoNOIGh8KuPpvgNfjIL7bYKLuWnQtxotNrdoFjlRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUxNDYg7vmxEfAjWQCeMyK7phn7scwHwYDVR0j BBgwFoAUvYCdigZdtZXcBpODc2oanEqWsmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2Y4ZjU1Yy05ZTM1LTRjZTItODkwZi0wZGUzZTI0MDQ2MTEvMC9CRDgwOUQ4QTA2 NURCNTk1REMwNjkzODM3MzZBMUE5QzRBOTZCMjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0QTk2 QjI2Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzZjhmNTVjLTllMzUtNGNlMi04 OTBmLTBkZTNlMjQwNDYxMS8wLzMxMzAzMzJlMzUzNjJlMzIzMDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc4zzANBgkqhkiG 9w0BAQsFAAOCAQEA3xHPWRLXFiCmAwI6OFoKds5uvb+SFfeeWr37FPSXlm4QENUR 8yAIDjUG8FEprolgH/LljH69i2uPz6C8IPmRGgDA0ht4brDx10hYmWjATpH16tjO GgMeiKn/U7uaXT7+JJVUr8JcE7EXF2Lx0NLvJ0P5GVyvcaTrW3cfQShbDx/y8ozx CIRLQ+Hzbep1pQRtTxCCs+LJ1qVYDe1CygvkKdKLa6qWI8ikz8iIkPK2VndEXe6K oZOzQyOZmKg+oC87trDRU7rCqzFAkWZl/cUqrgs26wP3ZSc4bbwv3VHGbfJy1cqN +OKer3tBh2OpkeLZoGnwzvTMBq7wJj3Pe4m67g== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org