$ rpki-client -vvf repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/3130332e3134362e36322e302f32332d3234203d3e20313339343537.roa File: 3130332e3134362e36322e302f32332d3234203d3e20313339343537.roa (raw, json) Hash identifier: YNIKXhCu96zFsrQV6czIyxi/s+xy0qZdKsnevhNw6GY= Subject key identifier: E9:AE:26:F8:5B:68:8F:60:02:44:84:94:3E:B1:CB:4A:C5:32:AC:D5 Certificate issuer: /CN=B89398BA603C43BDF711A2B31FADC8CDFFC9CC16 Certificate serial: 3DF0BAA0C480018C05491839F6CAA33717C554E1 Authority key identifier: B8:93:98:BA:60:3C:43:BD:F7:11:A2:B3:1F:AD:C8:CD:FF:C9:CC:16 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/3130332e3134362e36322e302f32332d3234203d3e20313339343537.roa Signing time: Mon 01 Jul 2024 01:05:19 +0000 ROA not before: Mon 01 Jul 2024 01:00:19 +0000 ROA not after: Mon 30 Jun 2025 01:05:19 +0000 asID: 139457 IP address blocks: 103.146.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.crl rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 08:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:f0:ba:a0:c4:80:01:8c:05:49:18:39:f6:ca:a3:37:17:c5:54:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B89398BA603C43BDF711A2B31FADC8CDFFC9CC16 Validity Not Before: Jul 1 01:00:19 2024 GMT Not After : Jun 30 01:05:19 2025 GMT Subject: CN=E9AE26F85B688F60024484943EB1CB4AC532ACD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:73:a3:69:25:cc:bc:83:6b:c7:c2:cd:a7:13: ca:88:e8:3b:fc:28:e1:a4:ea:14:f2:17:01:14:2a: 02:e7:33:a4:fb:e9:94:be:b3:10:cb:5f:76:fe:b6: a3:dc:a3:12:ae:bd:c7:22:c7:b6:86:e9:43:62:32: 0a:fe:30:82:8f:c0:5e:2c:99:e0:4f:e2:ea:35:ed: 25:5c:fe:4c:24:70:38:cc:62:78:67:0c:86:6e:2a: 23:0b:16:49:83:c1:32:08:63:ba:e1:46:94:10:61: 1b:63:53:50:60:eb:e3:38:2a:5d:c2:2f:90:de:41: b9:57:5b:8a:94:24:71:27:eb:7b:df:77:f9:9f:3e: 85:9f:39:a1:bb:0f:71:33:46:a8:62:bc:08:23:70: 87:86:04:95:74:ae:4d:61:4f:94:7a:29:2c:fd:98: a8:fb:e6:c3:da:f5:f5:54:69:ef:de:57:78:0d:4b: aa:84:ad:2e:c0:3b:86:d9:11:5e:d3:cd:44:9e:d2: 8a:0a:08:63:02:0f:e4:42:29:c7:b5:dd:4d:9e:e9: fc:54:49:f2:90:8e:f8:15:bd:5c:19:a0:24:5c:41: 3a:0e:95:76:15:32:ff:d9:20:d4:c2:9a:2e:99:99: a5:d1:a7:7b:77:1a:d6:16:d4:a2:ae:5c:ec:41:d1: 4f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:AE:26:F8:5B:68:8F:60:02:44:84:94:3E:B1:CB:4A:C5:32:AC:D5 X509v3 Authority Key Identifier: keyid:B8:93:98:BA:60:3C:43:BD:F7:11:A2:B3:1F:AD:C8:CD:FF:C9:CC:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/3130332e3134362e36322e302f32332d3234203d3e20313339343537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.62.0/23 Signature Algorithm: sha256WithRSAEncryption 87:52:da:19:9c:ca:5e:d4:16:b4:e5:3c:2b:33:b0:f1:c3:14: 6d:f6:17:bc:70:10:bc:a4:e9:e5:90:bc:f5:8e:1e:9b:c1:62: bb:66:fe:ba:b2:3e:0d:05:45:1b:28:24:9e:d4:f5:26:e7:0b: 80:53:de:04:40:1c:13:a6:e1:32:04:cc:40:9a:31:44:1c:a3: 00:76:0d:7a:0e:b9:66:1a:e0:5e:9c:e3:09:90:bc:9f:b3:d0: 58:a0:39:be:03:ae:94:bd:66:9b:b5:ee:81:25:dc:fe:fe:dc: 37:79:01:95:96:07:a2:e6:c8:9a:73:1c:af:94:00:1a:6c:6e: 8a:01:4d:62:75:48:e6:51:6d:9a:8e:87:bc:52:54:85:de:09: ce:fb:60:dd:cd:e3:55:5b:e5:81:70:d8:76:69:6c:9c:63:fc: 35:8d:6d:fe:76:80:2b:bf:08:3f:13:4d:56:9f:6d:68:ba:94: 25:d9:44:ab:88:26:a5:50:3f:30:ac:4e:4c:42:ac:2e:1e:64: 14:50:2a:ac:01:0c:c5:87:31:ba:da:f6:b9:1d:e8:64:7c:f3: 76:f5:2d:52:7d:c7:4c:1e:c9:12:06:9d:d2:dd:a0:1f:10:1c: 83:e3:78:0f:d3:15:ea:cc:79:be:2f:11:34:2a:d6:3d:8a:e9: 8f:8e:c9:fe -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPfC6oMSAAYwFSRg59sqjNxfFVOEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg5Mzk4QkE2MDNDNDNCREY3MTFBMkIzMUZBREM4Q0RG RkM5Q0MxNjAeFw0yNDA3MDEwMTAwMTlaFw0yNTA2MzAwMTA1MTlaMDMxMTAvBgNV BAMTKEU5QUUyNkY4NUI2ODhGNjAwMjQ0ODQ5NDNFQjFDQjRBQzUzMkFDRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGc6NpJcy8g2vHws2nE8qI6Dv8 KOGk6hTyFwEUKgLnM6T76ZS+sxDLX3b+tqPcoxKuvccix7aG6UNiMgr+MIKPwF4s meBP4uo17SVc/kwkcDjMYnhnDIZuKiMLFkmDwTIIY7rhRpQQYRtjU1Bg6+M4Kl3C L5DeQblXW4qUJHEn63vfd/mfPoWfOaG7D3EzRqhivAgjcIeGBJV0rk1hT5R6KSz9 mKj75sPa9fVUae/eV3gNS6qErS7AO4bZEV7TzUSe0ooKCGMCD+RCKce13U2e6fxU SfKQjvgVvVwZoCRcQToOlXYVMv/ZINTCmi6ZmaXRp3t3GtYW1KKuXOxB0U/rAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6a4m+Ftoj2ACRISUPrHLSsUyrNUwHwYDVR0j BBgwFoAUuJOYumA8Q733EaKzH63Izf/JzBYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZWE3OTM0MC00ZGIyLTQ1OGQtOTVkZC1hZjIwYjRmY2RiM2QvMC9CODkzOThCQTYw M0M0M0JERjcxMUEyQjMxRkFEQzhDREZGQzlDQzE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg5Mzk4QkE2MDNDNDNCREY3MTFBMkIzMUZBREM4Q0RGRkM5 Q0MxNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlYTc5MzQwLTRkYjItNDU4ZC05 NWRkLWFmMjBiNGZjZGIzZC8wLzMxMzAzMzJlMzEzNDM2MmUzNjMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzNTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5I+MA0GCSqG SIb3DQEBCwUAA4IBAQCHUtoZnMpe1Ba05TwrM7DxwxRt9he8cBC8pOnlkLz1jh6b wWK7Zv66sj4NBUUbKCSe1PUm5wuAU94EQBwTpuEyBMxAmjFEHKMAdg16DrlmGuBe nOMJkLyfs9BYoDm+A66UvWabte6BJdz+/tw3eQGVlgei5siacxyvlAAabG6KAU1i dUjmUW2ajoe8UlSF3gnO+2DdzeNVW+WBcNh2aWycY/w1jW3+doArvwg/E01Wn21o upQl2USriCalUD8wrE5MQqwuHmQUUCqsAQzFhzG62va5HehkfPN29S1SfcdMHskS Bp3S3aAfEByD43gP0xXqzHm+LxE0KtY9iumPjsn+ -----END CERTIFICATE-----Generated at Fri Nov 22 03:51:02 2024 by rpki-client on console-fra.rpki-client.org