$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3130332e3233342e3231372e302f32342d3234203d3e203338373638.roa File: 3130332e3233342e3231372e302f32342d3234203d3e203338373638.roa (raw, json) Hash identifier: kF0jnqzPstfX3LTziUx/g5hH5/PI+WSVsapLI4b/CFI= Subject key identifier: 2A:FC:23:0F:18:CB:60:14:D6:DF:83:E0:7D:C2:E7:2E:6A:36:43:EB Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 07DAB58E639C9D81595682ED5300BC44632C2990 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3130332e3233342e3231372e302f32342d3234203d3e203338373638.roa Signing time: Wed 18 Sep 2024 04:00:02 +0000 ROA not before: Wed 18 Sep 2024 03:55:02 +0000 ROA not after: Wed 17 Sep 2025 04:00:02 +0000 asID: 38768 IP address blocks: 103.234.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:da:b5:8e:63:9c:9d:81:59:56:82:ed:53:00:bc:44:63:2c:29:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Sep 18 03:55:02 2024 GMT Not After : Sep 17 04:00:02 2025 GMT Subject: CN=2AFC230F18CB6014D6DF83E07DC2E72E6A3643EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:97:17:95:3c:b5:0e:74:b7:5a:47:2a:75:78: 36:c5:d5:45:ba:90:66:05:7f:74:a6:90:91:01:b1: 61:3e:d3:57:cc:82:55:fe:9d:86:6e:b1:46:dc:ee: 58:a7:73:c1:5c:26:ff:67:12:a5:85:0c:4d:8e:c9: ed:b5:93:73:b5:20:5d:29:e0:99:57:1c:62:c1:36: 7f:56:de:2c:70:ce:fc:3d:0e:70:d7:a8:68:9f:8f: 1d:b3:c7:e8:6f:3e:2d:b0:7d:08:6a:85:b2:79:40: 32:e9:d2:43:2e:30:18:4a:bd:66:59:b7:8c:44:08: 1f:0e:d7:f2:3b:f8:4e:fc:44:aa:b3:81:68:e0:78: f3:28:a0:37:e3:de:da:72:59:df:21:97:a3:b6:8c: 02:d8:6d:f8:5e:13:c8:a9:23:fb:2c:ed:de:00:6d: 42:27:02:82:61:41:e3:37:0f:98:d5:44:62:8e:19: c2:49:f8:c8:89:08:f8:33:17:d5:f1:61:ff:56:2f: c2:ea:f6:35:b8:6d:1e:5c:56:18:33:36:bd:47:c6: e9:fc:a6:3e:87:d0:7a:f1:ea:1e:67:96:89:14:3e: 85:85:19:9e:4a:c7:8a:e9:b4:cc:d8:44:3f:fd:8d: 86:b7:fe:c1:7a:00:f0:0f:ee:92:b9:5b:e2:eb:ec: 61:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:FC:23:0F:18:CB:60:14:D6:DF:83:E0:7D:C2:E7:2E:6A:36:43:EB X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3130332e3233342e3231372e302f32342d3234203d3e203338373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.217.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:27:56:08:3d:9f:84:86:8b:dc:aa:11:7f:d6:be:62:2a:71: 42:b1:d5:d0:a1:53:92:36:cb:4a:11:85:9f:a4:b3:8c:4a:32: b4:0a:3d:06:7d:84:45:cf:26:46:3c:ea:11:56:b5:10:45:8b: 5f:c3:33:93:9c:68:8d:7c:ef:89:3a:2a:76:5d:78:b2:0d:30: 8f:02:60:f6:d7:1b:13:de:2b:f0:e1:63:47:4a:7d:94:53:01: 52:17:20:65:2a:53:94:fa:1a:bc:05:55:bb:f7:e4:4f:65:77: f7:6f:1e:39:fd:97:82:6b:3d:1d:4d:5d:33:a8:e3:2f:d6:d3: f6:d8:9b:ba:ca:44:74:25:8f:a1:87:0e:6e:62:20:da:2c:1c: 51:ce:32:3d:51:6e:97:5e:93:b0:12:71:61:82:f1:11:f6:9c: 0e:b6:c3:e1:af:9d:52:21:57:11:22:4a:42:a3:76:06:bf:b4: 10:24:e2:72:eb:a8:b4:75:f9:34:19:fe:a8:64:c1:9f:5c:bd: e8:36:58:d2:4a:ed:61:aa:88:1f:00:e9:4a:8e:c8:75:cd:b2: 87:2c:7b:ee:b0:4d:1c:ab:61:50:1d:0c:f8:f1:1b:43:15:ea: bc:37:1f:a3:9e:e6:d3:90:1c:85:7a:08:b8:9f:9e:3f:12:aa: 4d:b0:7d:0f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUB9q1jmOcnYFZVoLtUwC8RGMsKZAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNDA5MTgwMzU1MDJaFw0yNTA5MTcwNDAwMDJaMDMxMTAvBgNV BAMTKDJBRkMyMzBGMThDQjYwMTRENkRGODNFMDdEQzJFNzJFNkEzNjQzRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDflxeVPLUOdLdaRyp1eDbF1UW6 kGYFf3SmkJEBsWE+01fMglX+nYZusUbc7linc8FcJv9nEqWFDE2Oye21k3O1IF0p 4JlXHGLBNn9W3ixwzvw9DnDXqGifjx2zx+hvPi2wfQhqhbJ5QDLp0kMuMBhKvWZZ t4xECB8O1/I7+E78RKqzgWjgePMooDfj3tpyWd8hl6O2jALYbfheE8ipI/ss7d4A bUInAoJhQeM3D5jVRGKOGcJJ+MiJCPgzF9XxYf9WL8Lq9jW4bR5cVhgzNr1Hxun8 pj6H0Hrx6h5nlokUPoWFGZ5Kx4rptMzYRD/9jYa3/sF6APAP7pK5W+Lr7GEBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKvwjDxjLYBTW34PgfcLnLmo2Q+swHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzAzMzJlMzIzMzM0MmUzMjMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+rZMA0GCSqG SIb3DQEBCwUAA4IBAQBfJ1YIPZ+EhovcqhF/1r5iKnFCsdXQoVOSNstKEYWfpLOM SjK0Cj0GfYRFzyZGPOoRVrUQRYtfwzOTnGiNfO+JOip2XXiyDTCPAmD21xsT3ivw 4WNHSn2UUwFSFyBlKlOU+hq8BVW79+RPZXf3bx45/ZeCaz0dTV0zqOMv1tP22Ju6 ykR0JY+hhw5uYiDaLBxRzjI9UW6XXpOwEnFhgvER9pwOtsPhr51SIVcRIkpCo3YG v7QQJOJy66i0dfk0Gf6oZMGfXL3oNljSSu1hqogfAOlKjsh1zbKHLHvusE0cq2FQ HQz48RtDFeq8Nx+jnubTkByFegi4n54/EqpNsH0P -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:47 2024 by rpki-client on console-ams.rpki-client.org