$ rpki-client -vvf repo-rpki.idnic.net/repo/e87aee7f-d65b-46ec-a781-7cbef5aaeb80/0/3130332e32302e3139362e302f32332d3234203d3e203538353536.roa File: 3130332e32302e3139362e302f32332d3234203d3e203538353536.roa (raw, json) Hash identifier: uhFXD5HucnvLa577o/lzdkI4bHtpnmfQ2EHjnkZ6ZlU= Subject key identifier: 21:A8:A1:E6:80:9C:D8:8C:0D:A0:44:28:00:B8:04:D4:DD:87:72:40 Certificate issuer: /CN=1A0FC4695466F0034FDC7BD35D97BF935042446D Certificate serial: 177C514E48DF07EBAAC0C0D1D0BB2D2B53EA3743 Authority key identifier: 1A:0F:C4:69:54:66:F0:03:4F:DC:7B:D3:5D:97:BF:93:50:42:44:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1A0FC4695466F0034FDC7BD35D97BF935042446D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e87aee7f-d65b-46ec-a781-7cbef5aaeb80/0/3130332e32302e3139362e302f32332d3234203d3e203538353536.roa Signing time: Mon 01 Jul 2024 01:03:25 +0000 ROA not before: Mon 01 Jul 2024 00:58:25 +0000 ROA not after: Mon 30 Jun 2025 01:03:25 +0000 asID: 58556 IP address blocks: 103.20.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e87aee7f-d65b-46ec-a781-7cbef5aaeb80/0/1A0FC4695466F0034FDC7BD35D97BF935042446D.crl rsync://repo-rpki.idnic.net/repo/e87aee7f-d65b-46ec-a781-7cbef5aaeb80/0/1A0FC4695466F0034FDC7BD35D97BF935042446D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1A0FC4695466F0034FDC7BD35D97BF935042446D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:7c:51:4e:48:df:07:eb:aa:c0:c0:d1:d0:bb:2d:2b:53:ea:37:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A0FC4695466F0034FDC7BD35D97BF935042446D Validity Not Before: Jul 1 00:58:25 2024 GMT Not After : Jun 30 01:03:25 2025 GMT Subject: CN=21A8A1E6809CD88C0DA0442800B804D4DD877240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:d9:f9:cd:2e:e2:01:ea:80:48:6b:c3:4f:58: 63:a2:c7:e5:9c:38:da:16:83:ba:76:91:c6:8a:2f: e2:93:33:6a:7b:d3:39:43:df:52:13:16:c7:70:a2: 91:93:c8:dc:34:2c:ba:8e:d4:23:21:c7:ca:82:07: 38:c3:4a:5f:ae:f9:94:d2:02:b6:78:e7:95:42:a5: 37:91:0d:8e:34:1f:21:b9:11:66:d1:11:37:c0:03: f4:0f:bc:e6:9b:a7:da:96:5e:fc:e5:82:29:19:8c: 48:94:ac:c4:fa:08:27:32:1b:a2:4c:be:57:53:36: d3:b4:a7:ca:96:d6:e6:85:01:46:99:84:bf:cb:7a: 96:48:11:6f:25:db:1b:29:93:9e:b6:1b:a8:f6:0f: 95:c2:7e:0b:4a:f1:3c:50:aa:4a:63:d2:7a:5f:9b: 2d:91:d9:76:f7:8e:f0:18:7a:3c:ae:9d:6e:b8:6a: 48:d7:3f:17:a3:20:0a:f7:a3:e9:7e:04:8d:c0:e8: e2:6e:16:fe:8e:aa:17:5f:0d:3c:5c:43:a7:3e:4c: d3:2c:c7:26:51:66:3a:63:1b:f3:0b:b2:be:db:95: 92:40:b8:cf:e5:57:6b:cf:da:21:83:81:60:17:9b: 96:fa:d1:09:49:8e:f8:a2:44:b6:6c:c4:b8:90:df: b5:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:A8:A1:E6:80:9C:D8:8C:0D:A0:44:28:00:B8:04:D4:DD:87:72:40 X509v3 Authority Key Identifier: keyid:1A:0F:C4:69:54:66:F0:03:4F:DC:7B:D3:5D:97:BF:93:50:42:44:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e87aee7f-d65b-46ec-a781-7cbef5aaeb80/0/1A0FC4695466F0034FDC7BD35D97BF935042446D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1A0FC4695466F0034FDC7BD35D97BF935042446D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87aee7f-d65b-46ec-a781-7cbef5aaeb80/0/3130332e32302e3139362e302f32332d3234203d3e203538353536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.196.0/23 Signature Algorithm: sha256WithRSAEncryption a1:d2:fa:2f:e8:2f:2e:54:6b:e2:0a:30:07:29:86:21:bf:d7: c8:a2:2c:3e:d9:43:fd:76:fa:72:a2:f8:e5:d2:3d:05:50:a3: c0:3d:52:b2:1b:7a:8f:de:0d:59:bf:7e:12:d3:d7:14:aa:f1: 31:9c:4a:b8:fa:6d:8e:18:8d:83:cd:e0:13:37:ff:3b:a0:90: 5b:2d:4c:25:27:50:f8:9f:e5:a0:f3:4e:7f:b3:49:72:e1:ce: f4:27:c4:fc:85:a6:14:7c:df:26:f0:8a:30:90:eb:ee:aa:99: 2b:e4:34:db:46:4f:09:86:aa:a0:48:cb:dc:d1:bd:32:fb:5c: 5e:1e:2d:af:e4:b6:15:c0:e5:dc:8d:12:fe:0f:5b:3c:9d:4b: ba:46:da:07:c9:34:d3:f3:11:91:aa:22:d6:75:af:1a:e1:ae: 8d:a5:e0:61:97:f4:62:76:b1:c4:47:ce:67:68:b7:ed:4c:71: 26:e6:5c:be:1d:26:94:0f:fd:3f:f6:7c:de:6c:57:16:b0:2d: b6:1a:f5:13:b5:ed:5a:e0:26:64:75:ec:06:c0:76:b2:47:56: b2:ae:08:47:fc:5b:22:52:0d:68:eb:a9:ed:da:bc:5c:c7:43: 21:65:cb:54:88:8e:be:09:2b:9b:6a:93:fb:ea:05:ca:e7:0e: 7a:ea:b8:53 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUF3xRTkjfB+uqwMDR0LstK1PqN0MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUEwRkM0Njk1NDY2RjAwMzRGREM3QkQzNUQ5N0JGOTM1 MDQyNDQ2RDAeFw0yNDA3MDEwMDU4MjVaFw0yNTA2MzAwMTAzMjVaMDMxMTAvBgNV BAMTKDIxQThBMUU2ODA5Q0Q4OEMwREEwNDQyODAwQjgwNEQ0REQ4NzcyNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd2fnNLuIB6oBIa8NPWGOix+Wc ONoWg7p2kcaKL+KTM2p70zlD31ITFsdwopGTyNw0LLqO1CMhx8qCBzjDSl+u+ZTS ArZ455VCpTeRDY40HyG5EWbRETfAA/QPvOabp9qWXvzlgikZjEiUrMT6CCcyG6JM vldTNtO0p8qW1uaFAUaZhL/LepZIEW8l2xspk562G6j2D5XCfgtK8TxQqkpj0npf my2R2Xb3jvAYejyunW64akjXPxejIAr3o+l+BI3A6OJuFv6OqhdfDTxcQ6c+TNMs xyZRZjpjG/MLsr7blZJAuM/lV2vP2iGDgWAXm5b60QlJjviiRLZsxLiQ37V3AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUIaih5oCc2IwNoEQoALgE1N2HckAwHwYDVR0j BBgwFoAUGg/EaVRm8ANP3HvTXZe/k1BCRG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ODdhZWU3Zi1kNjViLTQ2ZWMtYTc4MS03Y2JlZjVhYWViODAvMC8xQTBGQzQ2OTU0 NjZGMDAzNEZEQzdCRDM1RDk3QkY5MzUwNDI0NDZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUEwRkM0Njk1NDY2RjAwMzRGREM3QkQzNUQ5N0JGOTM1MDQy NDQ2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4N2FlZTdmLWQ2NWItNDZlYy1h NzgxLTdjYmVmNWFhZWI4MC8wLzMxMzAzMzJlMzIzMDJlMzEzOTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzUzODM1MzUzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcUxDANBgkqhkiG 9w0BAQsFAAOCAQEAodL6L+gvLlRr4gowBymGIb/XyKIsPtlD/Xb6cqL45dI9BVCj wD1Ssht6j94NWb9+EtPXFKrxMZxKuPptjhiNg83gEzf/O6CQWy1MJSdQ+J/loPNO f7NJcuHO9CfE/IWmFHzfJvCKMJDr7qqZK+Q020ZPCYaqoEjL3NG9MvtcXh4tr+S2 FcDl3I0S/g9bPJ1LukbaB8k00/MRkaoi1nWvGuGujaXgYZf0YnaxxEfOZ2i37Uxx JuZcvh0mlA/9P/Z83mxXFrAtthr1E7XtWuAmZHXsBsB2skdWsq4IR/xbIlINaOup 7dq8XMdDIWXLVIiOvgkrm2qT++oFyucOeuq4Uw== -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:40 2024 by rpki-client on console-fra.rpki-client.org