$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3130332e3233342e3231392e302f32342d3234203d3e203338373638.roa File: 3130332e3233342e3231392e302f32342d3234203d3e203338373638.roa (raw, json) Hash identifier: UCfgFFaDoSG2x/Gu+SBu9dMnMUt+5DTobuQHFuVWOEo= Subject key identifier: 37:01:9D:CA:63:1D:CC:19:4E:8D:9F:ED:A9:C1:7A:E6:DF:17:44:D6 Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 5AF044B8A55B68C48262899374191356E1FF6F7C Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3130332e3233342e3231392e302f32342d3234203d3e203338373638.roa Signing time: Wed 18 Sep 2024 06:00:02 +0000 ROA not before: Wed 18 Sep 2024 05:55:02 +0000 ROA not after: Wed 17 Sep 2025 06:00:02 +0000 asID: 38768 IP address blocks: 103.234.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:f0:44:b8:a5:5b:68:c4:82:62:89:93:74:19:13:56:e1:ff:6f:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: Sep 18 05:55:02 2024 GMT Not After : Sep 17 06:00:02 2025 GMT Subject: CN=37019DCA631DCC194E8D9FEDA9C17AE6DF1744D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:49:eb:e0:cb:11:63:04:1f:b1:89:9d:8e:b8: 8c:cf:b9:6d:2e:f4:88:98:8a:08:3f:9f:d9:39:8e: fa:6a:2b:30:28:11:13:12:43:fb:46:ea:46:92:10: 86:0c:e4:50:fe:a3:01:a5:b6:cb:22:33:8c:98:f6: d7:6e:20:a2:f6:6a:1d:3f:98:b1:8c:54:40:1f:58: 94:2f:f3:b7:02:9a:dc:b9:3d:55:9d:b1:5a:18:16: 0c:1d:46:c0:5e:61:96:df:8c:33:e7:eb:91:a5:cc: 05:9f:eb:a8:de:58:7a:d8:11:c3:c6:31:3b:84:83: 3c:f8:6e:72:af:fb:21:69:4c:f7:6c:ea:51:fa:8d: 6c:b2:84:d2:99:06:cb:9d:fb:b4:3f:d2:ba:b3:a2: 64:fb:4f:62:65:ab:4c:51:2d:52:ee:07:2d:72:d6: 3d:33:7b:b7:c9:90:a6:9b:4e:79:79:dd:1e:3f:be: 11:4d:c1:06:c4:cf:ef:db:56:25:a4:c2:72:3a:61: 7a:95:06:1e:07:1c:5f:7e:5d:aa:58:70:86:4c:c4: 6f:2d:2d:f3:5f:7b:01:ef:bd:d7:39:4a:fb:b0:d8: 71:29:d0:1a:b2:17:90:cb:1b:19:83:b3:25:54:d3: 65:77:59:5f:9b:ac:60:4f:1b:db:e5:55:5d:e6:98: b6:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:01:9D:CA:63:1D:CC:19:4E:8D:9F:ED:A9:C1:7A:E6:DF:17:44:D6 X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3130332e3233342e3231392e302f32342d3234203d3e203338373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.234.219.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:f6:f3:82:4b:b6:8b:2d:d3:8b:1f:e3:6d:82:8a:e7:2b:54: bc:06:74:c9:69:92:38:c6:58:af:44:65:2d:73:0f:b5:2f:90: e5:c7:1e:fa:49:a7:39:4d:32:64:9b:76:3d:8e:80:0e:e5:24: ac:85:67:32:ec:17:50:b8:51:83:3f:2b:8f:da:a8:02:d3:a7: 4c:c6:18:3c:4a:b2:d5:23:23:1e:d9:84:f7:df:ad:c4:a8:72: 80:ad:cf:89:f4:d7:6a:23:77:fa:4a:22:b7:58:b4:59:28:53: ac:64:71:5d:30:e6:a3:08:4e:1a:4f:8f:81:43:60:a0:9b:3f: ee:c3:e2:89:e8:74:b2:0b:0e:51:a5:0d:41:f7:a8:f0:4b:17: 0d:3a:2a:34:30:24:8a:3c:f0:88:5a:ba:bf:90:1f:7c:b5:79: 86:54:4b:33:3a:a5:e9:fc:e6:42:85:43:3a:8e:3f:0d:64:6a: c2:d3:07:82:c7:4d:3a:b1:06:e9:3c:fe:1b:bb:e5:2e:04:a4: c3:3d:10:30:13:56:e9:6e:75:5a:b6:0c:cd:58:cc:ed:54:c0: 9b:a4:5d:5a:2f:82:66:13:03:db:f2:d1:0f:28:d4:8b:72:54: b2:b3:cf:da:5b:9b:27:fd:7f:4b:35:f2:3d:13:c6:7f:8a:3c: dd:78:00:d4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWvBEuKVbaMSCYomTdBkTVuH/b3wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNDA5MTgwNTU1MDJaFw0yNTA5MTcwNjAwMDJaMDMxMTAvBgNV BAMTKDM3MDE5RENBNjMxRENDMTk0RThEOUZFREE5QzE3QUU2REYxNzQ0RDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDESevgyxFjBB+xiZ2OuIzPuW0u 9IiYigg/n9k5jvpqKzAoERMSQ/tG6kaSEIYM5FD+owGltssiM4yY9tduIKL2ah0/ mLGMVEAfWJQv87cCmty5PVWdsVoYFgwdRsBeYZbfjDPn65GlzAWf66jeWHrYEcPG MTuEgzz4bnKv+yFpTPds6lH6jWyyhNKZBsud+7Q/0rqzomT7T2Jlq0xRLVLuBy1y 1j0ze7fJkKabTnl53R4/vhFNwQbEz+/bViWkwnI6YXqVBh4HHF9+XapYcIZMxG8t LfNfewHvvdc5Svuw2HEp0BqyF5DLGxmDsyVU02V3WV+brGBPG9vlVV3mmLY1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNwGdymMdzBlOjZ/tqcF65t8XRNYwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzAzMzJlMzIzMzM0MmUzMjMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzczNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+rbMA0GCSqG SIb3DQEBCwUAA4IBAQAr9vOCS7aLLdOLH+NtgornK1S8BnTJaZI4xlivRGUtcw+1 L5Dlxx76Sac5TTJkm3Y9joAO5SSshWcy7BdQuFGDPyuP2qgC06dMxhg8SrLVIyMe 2YT3363EqHKArc+J9NdqI3f6SiK3WLRZKFOsZHFdMOajCE4aT4+BQ2Cgmz/uw+KJ 6HSyCw5RpQ1B96jwSxcNOio0MCSKPPCIWrq/kB98tXmGVEszOqXp/OZChUM6jj8N ZGrC0weCx006sQbpPP4bu+UuBKTDPRAwE1bpbnVatgzNWMztVMCbpF1aL4JmEwPb 8tEPKNSLclSys8/aW5sn/X9LNfI9E8Z/ijzdeADU -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org