$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3130332e3233342e3231362e302f32342d3234203d3e203338373638.roa File: 3130332e3233342e3231362e302f32342d3234203d3e203338373638.roa (raw, json) Hash identifier: tgrgVwKrhbiIiNzoefe58zZv7M7I69P43kJ0AgFdQv4= Subject key identifier: EA:4E:D0:5A:94:EB:80:F3:9E:58:EA:C9:AF:19:92:B5:61:A4:9E:57 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 64FB5E3D71B5878B76BA6E40ECB7251F268793EF Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3130332e3233342e3231362e302f32342d3234203d3e203338373638.roa Signing time: Fri 25 Oct 2024 09:00:02 +0000 ROA not before: Fri 25 Oct 2024 08:55:02 +0000 ROA not after: Fri 24 Oct 2025 09:00:02 +0000 asID: 38768 IP address blocks: 103.234.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:fb:5e:3d:71:b5:87:8b:76:ba:6e:40:ec:b7:25:1f:26:87:93:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Oct 25 08:55:02 2024 GMT Not After : Oct 24 09:00:02 2025 GMT Subject: CN=EA4ED05A94EB80F39E58EAC9AF1992B561A49E57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:57:17:9c:3d:d5:6a:1c:12:81:3d:7e:ff:d8: 57:48:2b:d4:0b:d1:6b:b1:91:f1:fc:4f:dc:76:ca: 8f:5e:dd:11:b6:c5:77:f6:69:ea:3b:27:d9:7c:98: 50:02:55:92:04:69:da:13:5a:1e:f6:3f:51:8f:05: 8c:52:96:f2:e9:b1:ff:20:6d:58:f8:76:dc:ba:f6: 57:51:5c:15:99:08:a9:6b:30:1d:cf:1a:05:0e:eb: 89:15:25:da:ba:5e:fa:24:3c:c7:dd:d7:8e:55:74: 15:5e:8e:1f:80:09:6e:c7:39:aa:9d:3b:00:8d:8a: 98:51:05:eb:d4:7f:8c:ac:44:1d:14:91:11:ac:03: d3:42:d0:40:16:de:b4:ec:6f:9f:f5:2c:91:c9:3f: 88:1c:19:c1:b1:c1:a6:65:cd:ef:54:a7:26:8e:81: 70:cf:3d:b0:20:28:c2:55:8a:ab:95:41:47:a2:a0: 90:76:56:1a:c9:6a:e3:df:f6:7d:39:43:c3:37:f9: 43:09:47:42:10:93:15:87:e3:dd:3f:e5:39:b3:df: c5:8c:e5:11:c5:8d:ea:44:db:cd:96:3f:96:28:0d: 56:7a:33:55:15:f5:70:0f:86:5c:2b:e6:32:2b:06: 3c:b0:3d:f5:a2:74:e6:5a:32:45:0a:ef:1c:eb:18: 2f:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:4E:D0:5A:94:EB:80:F3:9E:58:EA:C9:AF:19:92:B5:61:A4:9E:57 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3130332e3233342e3231362e302f32342d3234203d3e203338373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.216.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:ae:72:ae:2b:2b:60:5f:d7:34:99:85:85:bc:df:c8:90:04: d0:a6:fa:de:d1:f1:e2:8a:a0:7f:a3:8c:5d:8e:3f:68:ca:b5: 27:36:0a:08:6b:ea:85:71:38:1b:03:ca:ea:b5:62:da:bf:a5: 75:f9:97:06:6b:4d:8a:ea:9d:e8:15:e0:bb:52:aa:c1:0b:02: 5d:72:7b:f7:37:55:06:e4:a6:06:32:74:fc:49:43:ff:1a:13: d9:f2:d5:4c:54:3f:2f:1d:e8:4c:e0:fe:e1:2f:b1:4d:84:09: 91:56:ca:ee:d9:4f:7f:97:5f:d2:cb:32:39:9e:96:8c:b2:d2: 4c:ce:d0:1e:52:fb:63:c5:13:7f:c1:ba:14:c4:5a:7f:bc:45: 35:48:cc:80:07:74:1c:9a:62:e2:d1:e7:05:1d:e7:b9:47:80: 8a:93:cd:69:75:77:da:a9:9a:71:fa:b0:3a:cd:4d:d0:93:37: 5b:e3:e6:3a:1d:8b:00:9c:d3:4d:0a:ef:a7:d9:b2:c4:27:09: 8f:72:11:3e:9f:1e:e4:0f:81:f7:56:1f:65:cf:50:5b:12:f4: 2c:c0:e0:77:0f:4b:c8:cc:f4:f0:17:d6:8c:bd:d9:60:1a:0b: 88:8a:3b:58:dd:58:e2:1e:fd:8d:73:d4:8b:47:20:16:54:23: 9e:1f:af:7e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZPtePXG1h4t2um5A7LclHyaHk+8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNDEwMjUwODU1MDJaFw0yNTEwMjQwOTAwMDJaMDMxMTAvBgNV BAMTKEVBNEVEMDVBOTRFQjgwRjM5RTU4RUFDOUFGMTk5MkI1NjFBNDlFNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdVxecPdVqHBKBPX7/2FdIK9QL 0WuxkfH8T9x2yo9e3RG2xXf2aeo7J9l8mFACVZIEadoTWh72P1GPBYxSlvLpsf8g bVj4dty69ldRXBWZCKlrMB3PGgUO64kVJdq6XvokPMfd145VdBVejh+ACW7HOaqd OwCNiphRBevUf4ysRB0UkRGsA9NC0EAW3rTsb5/1LJHJP4gcGcGxwaZlze9UpyaO gXDPPbAgKMJViquVQUeioJB2VhrJauPf9n05Q8M3+UMJR0IQkxWH490/5Tmz38WM 5RHFjepE282WP5YoDVZ6M1UV9XAPhlwr5jIrBjywPfWidOZaMkUK7xzrGC8nAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6k7QWpTrgPOeWOrJrxmStWGknlcwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzAzMzJlMzIzMzM0MmUzMjMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+rYMA0GCSqG SIb3DQEBCwUAA4IBAQBcrnKuKytgX9c0mYWFvN/IkATQpvre0fHiiqB/o4xdjj9o yrUnNgoIa+qFcTgbA8rqtWLav6V1+ZcGa02K6p3oFeC7UqrBCwJdcnv3N1UG5KYG MnT8SUP/GhPZ8tVMVD8vHehM4P7hL7FNhAmRVsru2U9/l1/SyzI5npaMstJMztAe UvtjxRN/wboUxFp/vEU1SMyAB3QcmmLi0ecFHee5R4CKk81pdXfaqZpx+rA6zU3Q kzdb4+Y6HYsAnNNNCu+n2bLEJwmPchE+nx7kD4H3Vh9lz1BbEvQswOB3D0vIzPTw F9aMvdlgGguIijtY3VjiHv2Nc9SLRyAWVCOeH69+ -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org