$ rpki-client -vvf repo-rpki.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/3130332e3232392e3136332e302f32342d3234203d3e203539323838.roa File: 3130332e3232392e3136332e302f32342d3234203d3e203539323838.roa (raw, json) Hash identifier: 9t5jaF/sUgSbxY8Cz9RpcIzWHBkh738wIm0sYN9Y18E= Subject key identifier: 2A:AC:61:E2:FF:42:D0:C6:CB:5B:10:40:8E:CD:CF:16:2C:BF:58:85 Certificate issuer: /CN=B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D Certificate serial: 067F3E774A0FF5CDB759E344DBD0416248DA489E Authority key identifier: B1:1A:6E:BA:7C:0F:02:09:30:47:3F:B7:FA:FC:2D:9C:97:E4:98:2D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/3130332e3232392e3136332e302f32342d3234203d3e203539323838.roa Signing time: Wed 10 Jul 2024 19:00:00 +0000 ROA not before: Wed 10 Jul 2024 18:55:00 +0000 ROA not after: Wed 09 Jul 2025 19:00:00 +0000 asID: 59288 IP address blocks: 103.229.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D.crl rsync://repo-rpki.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:43:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:7f:3e:77:4a:0f:f5:cd:b7:59:e3:44:db:d0:41:62:48:da:48:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D Validity Not Before: Jul 10 18:55:00 2024 GMT Not After : Jul 9 19:00:00 2025 GMT Subject: CN=2AAC61E2FF42D0C6CB5B10408ECDCF162CBF5885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:db:6b:95:67:9e:9a:00:89:c8:8e:d4:a7:92: f3:93:2c:2a:09:e9:1f:36:4a:9a:27:c3:98:e4:17: 81:bb:f5:5b:a0:75:d7:e2:4e:09:a6:5a:a5:1b:06: a7:1f:a6:57:88:9b:cf:d1:55:a0:8c:e6:6a:00:35: cf:11:58:26:af:70:72:11:c9:11:ad:e2:fc:62:5c: 60:22:e3:8e:7d:ea:77:d4:26:d7:ac:f3:87:89:cc: dd:b5:b9:d8:53:60:a9:75:78:f0:57:c4:61:dc:41: 95:9a:40:85:b8:be:66:1c:0e:f4:dc:d5:77:a8:aa: 7a:2a:80:76:32:7b:08:c2:f8:d2:c4:65:d8:68:5c: 9a:e2:4c:b5:39:8d:63:2e:b1:74:73:27:57:29:a0: d1:c2:a2:a4:e5:24:41:41:3a:f1:f4:2a:61:db:6e: c6:a9:9c:9a:79:ed:1e:a6:31:8a:55:92:1b:91:69: ec:b9:65:77:43:c0:c1:45:3e:d9:8d:e2:d1:27:52: 26:d2:b2:4f:ed:03:8b:19:d9:e9:08:53:10:6a:cc: 70:d2:d1:c4:2d:aa:ea:b9:fa:1a:f8:d6:a3:c9:00: 20:2f:61:3b:1b:22:10:36:d0:1b:5f:e2:eb:e7:fa: 2c:f7:d7:f7:c9:12:34:c0:bc:5e:43:83:dd:a5:93: 36:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:AC:61:E2:FF:42:D0:C6:CB:5B:10:40:8E:CD:CF:16:2C:BF:58:85 X509v3 Authority Key Identifier: keyid:B1:1A:6E:BA:7C:0F:02:09:30:47:3F:B7:FA:FC:2D:9C:97:E4:98:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/3130332e3232392e3136332e302f32342d3234203d3e203539323838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.229.163.0/24 Signature Algorithm: sha256WithRSAEncryption 91:fa:ba:67:fb:dc:6e:c0:66:02:6f:71:61:33:50:3d:1e:d7: fa:9f:84:8e:f4:5a:86:cf:6e:96:6e:43:3f:04:2e:d2:10:01: 93:83:0c:ad:70:7c:5e:8d:72:45:7c:67:30:24:45:5d:7e:41: 77:6f:be:d7:79:8e:54:b5:30:cf:35:ed:37:1e:c8:88:8c:28: e2:15:00:b3:11:e9:14:8a:e1:53:98:7c:85:44:62:01:4f:cf: 90:28:57:c8:87:93:14:3e:0d:bd:23:a6:81:72:15:74:49:c3: 02:5b:14:da:f1:fa:c6:5c:0c:94:09:62:8c:43:53:27:a7:c3: 5c:3c:41:0b:27:b8:9e:40:ef:37:cb:c7:93:55:ee:ca:b2:da: 13:72:1f:3b:5b:aa:2f:a3:76:05:4c:5d:c0:5a:8b:08:61:e6: 1c:81:ff:bd:74:62:97:d7:5b:88:58:35:d5:04:80:73:cc:5f: 2d:0d:e5:9b:4b:0c:f4:14:16:b3:db:bb:05:a3:d7:0a:5c:4a: b0:50:f3:29:56:81:6d:73:33:d8:a7:24:60:8e:e6:7f:67:05: 2a:18:93:ea:0d:bf:4b:71:75:38:a6:5f:9d:e9:d6:3b:00:a2: 14:91:98:ef:c5:99:69:85:f8:63:8e:7c:2f:85:d8:dc:a3:ab: 69:20:53:56 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBn8+d0oP9c23WeNE29BBYkjaSJ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjExQTZFQkE3QzBGMDIwOTMwNDczRkI3RkFGQzJEOUM5 N0U0OTgyRDAeFw0yNDA3MTAxODU1MDBaFw0yNTA3MDkxOTAwMDBaMDMxMTAvBgNV BAMTKDJBQUM2MUUyRkY0MkQwQzZDQjVCMTA0MDhFQ0RDRjE2MkNCRjU4ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC522uVZ56aAInIjtSnkvOTLCoJ 6R82Sponw5jkF4G79VugddfiTgmmWqUbBqcfpleIm8/RVaCM5moANc8RWCavcHIR yRGt4vxiXGAi44596nfUJtes84eJzN21udhTYKl1ePBXxGHcQZWaQIW4vmYcDvTc 1XeoqnoqgHYyewjC+NLEZdhoXJriTLU5jWMusXRzJ1cpoNHCoqTlJEFBOvH0KmHb bsapnJp57R6mMYpVkhuRaey5ZXdDwMFFPtmN4tEnUibSsk/tA4sZ2ekIUxBqzHDS 0cQtquq5+hr41qPJACAvYTsbIhA20Btf4uvn+iz31/fJEjTAvF5Dg92lkzaFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKqxh4v9C0MbLWxBAjs3PFiy/WIUwHwYDVR0j BBgwFoAUsRpuunwPAgkwRz+3+vwtnJfkmC0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OTNlYjhmNi1iYjZjLTRlYTctODZkZi1iMjQzYzUxNjRkMjIvMC9CMTFBNkVCQTdD MEYwMjA5MzA0NzNGQjdGQUZDMkQ5Qzk3RTQ5ODJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjExQTZFQkE3QzBGMDIwOTMwNDczRkI3RkFGQzJEOUM5N0U0 OTgyRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5M2ViOGY2LWJiNmMtNGVhNy04 NmRmLWIyNDNjNTE2NGQyMi8wLzMxMzAzMzJlMzIzMjM5MmUzMTM2MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzIzODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+WjMA0GCSqG SIb3DQEBCwUAA4IBAQCR+rpn+9xuwGYCb3FhM1A9Htf6n4SO9FqGz26WbkM/BC7S EAGTgwytcHxejXJFfGcwJEVdfkF3b77XeY5UtTDPNe03HsiIjCjiFQCzEekUiuFT mHyFRGIBT8+QKFfIh5MUPg29I6aBchV0ScMCWxTa8frGXAyUCWKMQ1Mnp8NcPEEL J7ieQO83y8eTVe7KstoTch87W6ovo3YFTF3AWosIYeYcgf+9dGKX11uIWDXVBIBz zF8tDeWbSwz0FBaz27sFo9cKXEqwUPMpVoFtczPYpyRgjuZ/ZwUqGJPqDb9LcXU4 pl+d6dY7AKIUkZjvxZlphfhjjnwvhdjco6tpIFNW -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:33 2024 by rpki-client on console-fra.rpki-client.org