$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131362e36362e3230332e302f32342d3234203d3e203338343936.roa File: 3131362e36362e3230332e302f32342d3234203d3e203338343936.roa (raw, json) Hash identifier: /sAPn0P095J41HtA6R805ZFjnQ0xl7H5a6+tyHw0Lj4= Subject key identifier: 9D:80:2B:77:7B:B5:4E:3B:D6:FB:4A:2B:43:B5:B4:47:23:9A:87:0C Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Certificate serial: 5BD454CCC03F18A41DAA80B5DC1C25C15CE5D7F2 Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131362e36362e3230332e302f32342d3234203d3e203338343936.roa Signing time: Fri 24 May 2024 05:02:18 +0000 ROA not before: Fri 24 May 2024 04:57:18 +0000 ROA not after: Fri 23 May 2025 05:02:18 +0000 asID: 38496 IP address blocks: 116.66.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:d4:54:cc:c0:3f:18:a4:1d:aa:80:b5:dc:1c:25:c1:5c:e5:d7:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC Validity Not Before: May 24 04:57:18 2024 GMT Not After : May 23 05:02:18 2025 GMT Subject: CN=9D802B777BB54E3BD6FB4A2B43B5B447239A870C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:cd:cc:b2:cc:fb:44:30:df:46:32:d2:e7:49: 2c:32:60:15:26:93:3e:bf:90:fe:33:85:37:bf:2f: f9:8b:34:87:f3:28:5b:6b:33:ca:f1:a1:b2:1a:87: 52:d4:f6:db:1e:ee:d4:75:08:31:c3:df:b2:86:7e: 4a:eb:24:60:f0:a2:e7:a7:72:1b:0c:bb:1c:19:76: f6:6a:60:7d:2e:e8:f0:eb:6b:5c:15:cb:1f:ab:ad: 42:3d:3f:f4:ea:80:26:f3:5b:b9:13:83:11:db:2b: e6:aa:48:96:7e:5e:5e:3c:34:a3:f6:54:77:ea:8a: e6:5d:9f:e3:1c:c7:b9:66:47:41:60:b2:e4:ab:27: 15:e9:eb:a7:45:7a:81:ca:6c:fc:7f:8e:56:6d:1f: f4:f0:17:2d:10:4a:ab:83:47:99:fb:9b:9e:c4:47: a3:e7:9a:68:82:24:0f:be:20:27:56:97:7e:b6:8a: 87:9a:7b:2e:6e:6d:5f:d1:de:5b:89:fb:a3:6e:ac: 6e:56:6a:62:5a:bf:8f:5f:59:e6:1e:5b:08:0a:43: 11:98:03:a2:a4:1a:ef:0b:f6:b9:ca:09:68:1d:45: c3:69:8d:05:4a:0e:f8:cb:51:f3:8a:3a:25:88:40: 77:45:69:2a:5c:1a:7a:76:67:17:5f:bd:ab:de:70: 52:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:80:2B:77:7B:B5:4E:3B:D6:FB:4A:2B:43:B5:B4:47:23:9A:87:0C X509v3 Authority Key Identifier: keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/3131362e36362e3230332e302f32342d3234203d3e203338343936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.66.203.0/24 Signature Algorithm: sha256WithRSAEncryption 07:c3:02:30:a1:08:af:00:a2:09:e6:f0:cd:cc:75:2e:84:10: c9:18:b1:a8:ba:c0:da:06:5d:1c:06:2a:d7:0c:a8:af:0a:4d: 6d:27:c9:42:25:ec:aa:14:fb:c1:fa:55:5e:7a:8e:fa:bd:4a: e6:91:18:4f:d0:da:7a:b5:8f:8b:cf:d9:c7:87:bf:69:4a:01: 37:07:6a:5e:d2:4a:c1:7f:d8:ae:fc:16:6c:94:86:6b:4f:15: 2f:8b:2e:36:5e:7e:0f:6d:4e:05:12:36:dc:92:8a:11:a2:64: e2:33:a6:11:76:9e:d5:12:68:d7:41:b6:48:05:14:19:ac:50: b4:d3:78:4d:00:0d:ea:93:ea:2d:2a:6d:45:af:39:cc:37:c4: 99:a0:39:86:7d:e1:18:95:0a:3f:21:b8:e5:6c:ab:80:b6:ea: c5:ed:a3:d8:06:c3:d4:d8:05:64:3c:58:fb:7f:49:a1:09:0f: 34:ef:3c:46:33:31:ec:88:8a:b4:d8:59:22:cd:da:dd:87:05: f2:20:29:8c:b9:6a:40:79:09:f4:96:44:29:d6:16:07:41:a5: d9:ad:88:f2:87:51:4c:af:f9:2a:8c:d2:f6:1e:57:b6:62:cb: 7f:09:a6:db:10:d8:f4:77:c3:13:78:ae:b2:c6:18:a9:59:3d: 8a:e1:03:2a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUW9RUzMA/GKQdqoC13BwlwVzl1/IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG OEZDMDZFQzAeFw0yNDA1MjQwNDU3MThaFw0yNTA1MjMwNTAyMThaMDMxMTAvBgNV BAMTKDlEODAyQjc3N0JCNTRFM0JENkZCNEEyQjQzQjVCNDQ3MjM5QTg3MEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDozcyyzPtEMN9GMtLnSSwyYBUm kz6/kP4zhTe/L/mLNIfzKFtrM8rxobIah1LU9tse7tR1CDHD37KGfkrrJGDwouen chsMuxwZdvZqYH0u6PDra1wVyx+rrUI9P/TqgCbzW7kTgxHbK+aqSJZ+Xl48NKP2 VHfqiuZdn+Mcx7lmR0FgsuSrJxXp66dFeoHKbPx/jlZtH/TwFy0QSquDR5n7m57E R6PnmmiCJA++ICdWl362ioeaey5ubV/R3luJ+6NurG5WamJav49fWeYeWwgKQxGY A6KkGu8L9rnKCWgdRcNpjQVKDvjLUfOKOiWIQHdFaSpcGnp2ZxdfvavecFL/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUnYArd3u1TjvW+0orQ7W0RyOahwwwHwYDVR0j BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2 QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD MDZFQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h OTc0LTkwZTkzOWJjYjBmYi8wLzMxMzEzNjJlMzYzNjJlMzIzMDMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzMzODM0MzkzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHRCyzANBgkqhkiG 9w0BAQsFAAOCAQEAB8MCMKEIrwCiCebwzcx1LoQQyRixqLrA2gZdHAYq1wyorwpN bSfJQiXsqhT7wfpVXnqO+r1K5pEYT9DaerWPi8/Zx4e/aUoBNwdqXtJKwX/YrvwW bJSGa08VL4suNl5+D21OBRI23JKKEaJk4jOmEXae1RJo10G2SAUUGaxQtNN4TQAN 6pPqLSptRa85zDfEmaA5hn3hGJUKPyG45WyrgLbqxe2j2AbD1NgFZDxY+39JoQkP NO88RjMx7IiKtNhZIs3a3YcF8iApjLlqQHkJ9JZEKdYWB0Gl2a2I8odRTK/5KozS 9h5XtmLLfwmm2xDY9HfDE3iussYYqVk9iuEDKg== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:03 2024 by rpki-client on console-fra.rpki-client.org