$ rpki-client -vvf repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/3130332e3132302e36362e302f32342d3234203d3e20313337333733.roa File: 3130332e3132302e36362e302f32342d3234203d3e20313337333733.roa (raw, json) Hash identifier: g5uWXYuebVzp+2yy5H6yE8nWdkYAu1M9Gt2ERf3sioA= Subject key identifier: 83:1F:6A:01:DE:90:BD:0A:A1:94:DD:16:15:AE:37:08:5B:D3:E8:88 Certificate issuer: /CN=6B647F696A9BB5C718605E8922BEF1BEE566F94E Certificate serial: 40E9B2543CE89C6EFDCBF799D94AD0D24AF1ADDC Authority key identifier: 6B:64:7F:69:6A:9B:B5:C7:18:60:5E:89:22:BE:F1:BE:E5:66:F9:4E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B647F696A9BB5C718605E8922BEF1BEE566F94E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/3130332e3132302e36362e302f32342d3234203d3e20313337333733.roa Signing time: Tue 05 Mar 2024 17:00:01 +0000 ROA not before: Tue 05 Mar 2024 16:55:01 +0000 ROA not after: Tue 04 Mar 2025 17:00:01 +0000 asID: 137373 IP address blocks: 103.120.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/6B647F696A9BB5C718605E8922BEF1BEE566F94E.crl rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/6B647F696A9BB5C718605E8922BEF1BEE566F94E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B647F696A9BB5C718605E8922BEF1BEE566F94E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:e9:b2:54:3c:e8:9c:6e:fd:cb:f7:99:d9:4a:d0:d2:4a:f1:ad:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B647F696A9BB5C718605E8922BEF1BEE566F94E Validity Not Before: Mar 5 16:55:01 2024 GMT Not After : Mar 4 17:00:01 2025 GMT Subject: CN=831F6A01DE90BD0AA194DD1615AE37085BD3E888 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:5d:cf:0c:0a:85:c9:30:b6:bc:00:7f:17:ed: e0:50:10:7f:31:23:c5:42:6e:e5:08:fb:1e:0e:7c: 7a:a8:44:1d:60:1d:63:76:5e:f8:1c:c5:e7:24:df: 2b:ab:9c:6e:2e:90:3c:4d:71:b6:f5:5c:4f:e2:8e: 5f:c0:2b:6a:87:da:12:5c:af:67:f3:e1:3f:9e:e4: f2:ef:8b:fc:de:37:66:f5:b5:f0:e8:90:9d:56:40: 00:47:ed:f2:e6:ea:39:0b:39:ef:79:59:19:e4:05: 64:58:24:5d:47:64:64:68:b6:af:21:a0:32:1b:ce: 9c:40:e0:15:b2:c1:9e:f8:24:76:95:d6:e2:0d:17: 56:48:e7:4f:42:16:11:d3:ed:b5:a9:48:a9:37:cd: 78:ff:81:3f:66:98:f3:7d:27:a8:26:0c:f7:4b:9f: 6f:97:7a:04:6f:ae:93:ec:ae:8e:4b:a1:79:85:19: 17:b2:75:a7:f9:bb:40:7e:ad:5d:65:0b:88:f7:db: 95:c7:e5:ba:e9:9d:fc:d5:45:be:18:2c:4e:94:a0: 04:39:49:54:47:6d:21:ff:e6:54:12:09:ca:55:43: e9:f4:d2:a3:d7:bc:87:6a:bd:3b:7c:ea:01:5b:a1: c9:2b:f3:82:77:2e:f1:a4:8c:09:a4:ac:90:5e:ec: c8:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:1F:6A:01:DE:90:BD:0A:A1:94:DD:16:15:AE:37:08:5B:D3:E8:88 X509v3 Authority Key Identifier: keyid:6B:64:7F:69:6A:9B:B5:C7:18:60:5E:89:22:BE:F1:BE:E5:66:F9:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/6B647F696A9BB5C718605E8922BEF1BEE566F94E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6B647F696A9BB5C718605E8922BEF1BEE566F94E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e86e46ec-df5c-4b4d-a30e-10b2c688c2fc/0/3130332e3132302e36362e302f32342d3234203d3e20313337333733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.66.0/24 Signature Algorithm: sha256WithRSAEncryption 34:99:d6:c0:d5:8b:61:91:a9:ea:21:bb:f6:18:64:95:2d:9f: 8a:eb:03:2d:71:7b:ff:5e:d0:e7:65:12:b4:6a:29:aa:54:39: 44:8c:cf:70:dc:f7:d2:29:47:0d:e1:e7:98:d5:c8:a6:28:71: f0:6c:ed:0b:a6:c0:43:b0:13:e5:89:26:15:62:b2:b8:ee:00: ca:dc:a8:2b:08:21:81:61:7e:75:44:72:52:57:7d:7f:54:cf: ac:22:a7:1e:dd:7f:18:76:76:72:46:be:cc:66:da:7d:00:3d: 92:66:b5:71:35:ec:3b:3a:c6:55:c6:9e:e4:1a:a2:7d:ad:93: aa:ae:91:c2:59:04:17:c6:c7:5b:a8:85:09:93:a4:a1:c5:69: 65:ab:25:44:53:3b:60:22:95:3c:c0:eb:ec:00:46:22:38:3b: c2:12:73:26:84:d8:af:03:bc:3b:f7:a7:02:cc:c8:df:13:46: 58:11:e0:aa:a6:39:75:61:b5:bb:2d:bd:9e:1c:35:cf:82:f9: 8a:e3:d1:a8:64:c8:f6:48:d8:c2:58:f7:59:e6:30:f4:66:81: 8b:38:1e:ed:de:68:82:eb:2c:78:fb:ef:fa:de:fc:d8:90:67: ee:67:31:2b:59:1e:5a:98:b8:0d:b0:c6:e7:9a:aa:66:74:71: db:31:09:58 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQOmyVDzonG79y/eZ2UrQ0krxrdwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkI2NDdGNjk2QTlCQjVDNzE4NjA1RTg5MjJCRUYxQkVF NTY2Rjk0RTAeFw0yNDAzMDUxNjU1MDFaFw0yNTAzMDQxNzAwMDFaMDMxMTAvBgNV BAMTKDgzMUY2QTAxREU5MEJEMEFBMTk0REQxNjE1QUUzNzA4NUJEM0U4ODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfXc8MCoXJMLa8AH8X7eBQEH8x I8VCbuUI+x4OfHqoRB1gHWN2Xvgcxeck3yurnG4ukDxNcbb1XE/ijl/AK2qH2hJc r2fz4T+e5PLvi/zeN2b1tfDokJ1WQABH7fLm6jkLOe95WRnkBWRYJF1HZGRotq8h oDIbzpxA4BWywZ74JHaV1uINF1ZI509CFhHT7bWpSKk3zXj/gT9mmPN9J6gmDPdL n2+XegRvrpPsro5LoXmFGReydaf5u0B+rV1lC4j325XH5brpnfzVRb4YLE6UoAQ5 SVRHbSH/5lQSCcpVQ+n00qPXvIdqvTt86gFbockr84J3LvGkjAmkrJBe7MhXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgx9qAd6QvQqhlN0WFa43CFvT6IgwHwYDVR0j BBgwFoAUa2R/aWqbtccYYF6JIr7xvuVm+U4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODZlNDZlYy1kZjVjLTRiNGQtYTMwZS0xMGIyYzY4OGMyZmMvMC82QjY0N0Y2OTZB OUJCNUM3MTg2MDVFODkyMkJFRjFCRUU1NjZGOTRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkI2NDdGNjk2QTlCQjVDNzE4NjA1RTg5MjJCRUYxQkVFNTY2 Rjk0RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NmU0NmVjLWRmNWMtNGI0ZC1h MzBlLTEwYjJjNjg4YzJmYy8wLzMxMzAzMzJlMzEzMjMwMmUzNjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM3MzMzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3hCMA0GCSqG SIb3DQEBCwUAA4IBAQA0mdbA1YthkanqIbv2GGSVLZ+K6wMtcXv/XtDnZRK0aimq VDlEjM9w3PfSKUcN4eeY1cimKHHwbO0LpsBDsBPliSYVYrK47gDK3KgrCCGBYX51 RHJSV31/VM+sIqce3X8YdnZyRr7MZtp9AD2SZrVxNew7OsZVxp7kGqJ9rZOqrpHC WQQXxsdbqIUJk6ShxWllqyVEUztgIpU8wOvsAEYiODvCEnMmhNivA7w796cCzMjf E0ZYEeCqpjl1YbW7Lb2eHDXPgvmK49GoZMj2SNjCWPdZ5jD0ZoGLOB7t3miC6yx4 ++/63vzYkGfuZzErWR5amLgNsMbnmqpmdHHbMQlY -----END CERTIFICATE-----Generated at Sat Nov 23 15:35:15 2024 by rpki-client on console-fra.rpki-client.org