$ rpki-client -vvf repo-rpki.idnic.net/repo/ec51e7ab-a638-4fa0-bbcc-b0f856a8a157/0/3130332e35332e302e302f32322d3234203d3e203633383733.roa File: 3130332e35332e302e302f32322d3234203d3e203633383733.roa (raw, json) Hash identifier: 1OYhgXww5bNB+8/cWw9O21qiwWkNOr5Rgvj6fdvAgCs= Subject key identifier: 88:28:3F:09:10:3B:E1:97:39:4B:4F:6E:87:AA:53:F5:17:55:E0:D9 Certificate issuer: /CN=6E740E0191A423D6D9A0908C8B778DD2416F842E Certificate serial: 699E41CB040651205EA264CE01FC08D07FC177A3 Authority key identifier: 6E:74:0E:01:91:A4:23:D6:D9:A0:90:8C:8B:77:8D:D2:41:6F:84:2E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E740E0191A423D6D9A0908C8B778DD2416F842E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec51e7ab-a638-4fa0-bbcc-b0f856a8a157/0/3130332e35332e302e302f32322d3234203d3e203633383733.roa Signing time: Mon 01 Jul 2024 01:05:42 +0000 ROA not before: Mon 01 Jul 2024 01:00:42 +0000 ROA not after: Mon 30 Jun 2025 01:05:42 +0000 asID: 63873 IP address blocks: 103.53.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec51e7ab-a638-4fa0-bbcc-b0f856a8a157/0/6E740E0191A423D6D9A0908C8B778DD2416F842E.crl rsync://repo-rpki.idnic.net/repo/ec51e7ab-a638-4fa0-bbcc-b0f856a8a157/0/6E740E0191A423D6D9A0908C8B778DD2416F842E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E740E0191A423D6D9A0908C8B778DD2416F842E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 02:52:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:9e:41:cb:04:06:51:20:5e:a2:64:ce:01:fc:08:d0:7f:c1:77:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E740E0191A423D6D9A0908C8B778DD2416F842E Validity Not Before: Jul 1 01:00:42 2024 GMT Not After : Jun 30 01:05:42 2025 GMT Subject: CN=88283F09103BE197394B4F6E87AA53F51755E0D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d7:e1:6a:ce:2f:d4:04:88:b0:83:1a:15:3e: 5f:a3:38:25:ad:62:4b:74:1f:ba:98:e4:b8:ed:df: 30:f1:08:e9:d9:8c:df:d9:9c:fc:37:f7:b3:59:4c: c8:12:c9:67:e0:bc:5e:7e:32:3d:0d:41:fb:eb:d4: 75:ea:7e:8c:e6:c6:37:b7:59:71:b7:32:20:48:8e: ad:30:a1:23:ac:92:25:76:c0:eb:e8:07:84:79:a9: a8:69:e3:ec:73:dc:e8:f1:4d:9c:9f:3b:66:71:40: 19:39:c9:14:3c:64:93:09:24:a4:3e:65:f7:61:34: bb:2d:87:c2:ba:a9:74:a1:ea:3d:8a:fa:81:01:b7: b8:83:a8:cb:5b:a0:6a:93:02:6d:13:f9:b5:4c:97: 03:f9:41:66:31:b2:19:cd:f2:2c:2b:93:d4:87:67: db:51:0f:e5:8b:e6:69:be:6e:b6:bb:9c:bc:2f:44: a3:8f:bd:40:26:b1:93:a5:06:76:bc:55:c5:24:7f: ae:a4:a8:b1:12:87:8d:30:45:24:ad:78:b9:5e:6f: 0a:20:48:b2:4e:b1:2d:1d:e2:40:4f:0c:c2:5a:4d: 73:63:f3:15:23:4d:21:c4:86:2d:da:de:61:f4:c1: 98:ca:98:e9:fd:52:fc:a7:c4:7b:a9:00:36:a1:e1: da:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:28:3F:09:10:3B:E1:97:39:4B:4F:6E:87:AA:53:F5:17:55:E0:D9 X509v3 Authority Key Identifier: keyid:6E:74:0E:01:91:A4:23:D6:D9:A0:90:8C:8B:77:8D:D2:41:6F:84:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec51e7ab-a638-4fa0-bbcc-b0f856a8a157/0/6E740E0191A423D6D9A0908C8B778DD2416F842E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6E740E0191A423D6D9A0908C8B778DD2416F842E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec51e7ab-a638-4fa0-bbcc-b0f856a8a157/0/3130332e35332e302e302f32322d3234203d3e203633383733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.53.0.0/22 Signature Algorithm: sha256WithRSAEncryption cb:53:d3:0e:62:08:42:ea:d9:15:d9:a1:9d:42:91:6c:e8:0f: 0b:92:ef:51:58:0b:b6:65:d5:da:be:2e:5a:3b:9d:a3:2a:9e: 3d:56:8d:fb:b1:c0:80:98:58:d1:b4:e6:3f:7a:e2:12:31:c4: f4:5d:56:c8:a0:03:e4:3f:32:c6:5b:a7:29:e9:25:76:67:8a: 36:3c:3d:6e:f6:d6:ff:b8:73:00:cc:ab:5c:9b:93:5e:69:ce: 24:39:b8:20:b3:de:57:58:2c:eb:0a:56:f2:7a:2a:af:9d:e4: b5:bd:e7:c1:a2:ee:18:a9:31:a1:85:fb:cb:4c:e2:d0:c2:0d: 47:b1:05:8a:14:15:79:b3:15:ed:94:c0:f0:62:e3:3c:38:29: 1e:3b:d9:ce:23:d5:3c:8d:76:3d:09:07:f7:29:bd:30:dd:f1: ca:7f:37:a7:64:d5:f2:2e:ff:00:16:93:25:c8:52:53:8d:16: 57:66:9e:d8:85:c5:6c:ce:67:c8:22:86:d8:9c:4a:dd:41:9e: 86:c5:71:e4:4a:a8:d0:10:24:fe:a1:e9:f8:d0:cd:da:6a:95: 91:87:7d:4e:30:22:f1:cd:a9:2f:59:51:04:cf:8e:f1:19:ab: 6a:3e:02:44:c8:37:0b:eb:f8:c5:06:d3:ff:0a:1a:88:ee:f7: c7:57:29:b1 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUaZ5BywQGUSBeomTOAfwI0H/Bd6MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkU3NDBFMDE5MUE0MjNENkQ5QTA5MDhDOEI3NzhERDI0 MTZGODQyRTAeFw0yNDA3MDEwMTAwNDJaFw0yNTA2MzAwMTA1NDJaMDMxMTAvBgNV BAMTKDg4MjgzRjA5MTAzQkUxOTczOTRCNEY2RTg3QUE1M0Y1MTc1NUUwRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA1+Fqzi/UBIiwgxoVPl+jOCWt Ykt0H7qY5Ljt3zDxCOnZjN/ZnPw397NZTMgSyWfgvF5+Mj0NQfvr1HXqfozmxje3 WXG3MiBIjq0woSOskiV2wOvoB4R5qahp4+xz3OjxTZyfO2ZxQBk5yRQ8ZJMJJKQ+ ZfdhNLsth8K6qXSh6j2K+oEBt7iDqMtboGqTAm0T+bVMlwP5QWYxshnN8iwrk9SH Z9tRD+WL5mm+bra7nLwvRKOPvUAmsZOlBna8VcUkf66kqLESh40wRSSteLlebwog SLJOsS0d4kBPDMJaTXNj8xUjTSHEhi3a3mH0wZjKmOn9UvynxHupADah4dorAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUiCg/CRA74Zc5S09uh6pT9RdV4NkwHwYDVR0j BBgwFoAUbnQOAZGkI9bZoJCMi3eN0kFvhC4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzUxZTdhYi1hNjM4LTRmYTAtYmJjYy1iMGY4NTZhOGExNTcvMC82RTc0MEUwMTkx QTQyM0Q2RDlBMDkwOEM4Qjc3OEREMjQxNkY4NDJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkU3NDBFMDE5MUE0MjNENkQ5QTA5MDhDOEI3NzhERDI0MTZG ODQyRS5jZXIwgZ0GCCsGAQUFBwELBIGQMIGNMIGKBggrBgEFBQcwC4Z+cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWM1MWU3YWItYTYzOC00ZmEwLWJi Y2MtYjBmODU2YThhMTU3LzAvMzEzMDMzMmUzNTMzMmUzMDJlMzAyZjMyMzIyZDMy MzQyMDNkM2UyMDM2MzMzODM3MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnNQAwDQYJKoZIhvcNAQEL BQADggEBAMtT0w5iCELq2RXZoZ1CkWzoDwuS71FYC7Zl1dq+Llo7naMqnj1Wjfux wICYWNG05j964hIxxPRdVsigA+Q/MsZbpynpJXZnijY8PW721v+4cwDMq1ybk15p ziQ5uCCz3ldYLOsKVvJ6Kq+d5LW958Gi7hipMaGF+8tM4tDCDUexBYoUFXmzFe2U wPBi4zw4KR472c4j1TyNdj0JB/cpvTDd8cp/N6dk1fIu/wAWkyXIUlONFldmntiF xWzOZ8gihticSt1BnobFceRKqNAQJP6h6fjQzdpqlZGHfU4wIvHNqS9ZUQTPjvEZ q2o+AkTINwvr+MUG0/8KGoju98dXKbE= -----END CERTIFICATE-----Generated at Sun Feb 16 22:24:12 2025 by rpki-client