$ rpki-client -vvf repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130342e302f32322d3232203d3e203633343937.roa File: 3130332e3133342e3130342e302f32322d3232203d3e203633343937.roa (raw, json) Hash identifier: sLu7RqiRGzYnQBrSMZHIelJFjQSR1Hs3pZgdklGokNI= Subject key identifier: 68:6B:3C:AD:97:4A:01:C3:4D:EF:09:FE:F9:54:BA:E7:C2:B9:4C:DA Certificate issuer: /CN=95E800EBFF64709892CB5741D9EDC75EE74E2A6D Certificate serial: 723E5F2CCF8508D385759BD4EE9274161C5EBFEA Authority key identifier: 95:E8:00:EB:FF:64:70:98:92:CB:57:41:D9:ED:C7:5E:E7:4E:2A:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130342e302f32322d3232203d3e203633343937.roa Signing time: Mon 01 Jul 2024 01:05:38 +0000 ROA not before: Mon 01 Jul 2024 01:00:38 +0000 ROA not after: Mon 30 Jun 2025 01:05:38 +0000 asID: 63497 IP address blocks: 103.134.104.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.crl rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:3e:5f:2c:cf:85:08:d3:85:75:9b:d4:ee:92:74:16:1c:5e:bf:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95E800EBFF64709892CB5741D9EDC75EE74E2A6D Validity Not Before: Jul 1 01:00:38 2024 GMT Not After : Jun 30 01:05:38 2025 GMT Subject: CN=686B3CAD974A01C34DEF09FEF954BAE7C2B94CDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:95:b2:d6:0b:c8:cf:45:c1:66:a8:57:52:dc: 16:ef:96:c8:41:b6:74:f4:9c:1c:27:f1:16:4c:42: e2:22:41:34:9e:d5:1c:5d:4a:62:d2:a0:49:2d:2d: a3:89:7f:1f:87:7e:83:81:55:b5:c9:0d:ff:d2:de: 05:ec:ae:47:50:65:5d:70:67:74:9b:aa:14:63:71: 3b:0f:36:56:d2:c1:a7:55:8b:c3:11:ba:ed:2f:09: d8:06:05:ed:51:b4:37:85:20:ed:4f:84:78:67:5b: eb:00:6f:da:d5:e0:65:e4:ca:cb:8f:d4:47:33:80: cf:06:2a:bc:f3:c5:7b:3b:d4:95:f2:e5:b0:0c:ed: 51:df:30:14:ad:02:82:29:b6:2a:e7:ef:96:00:2e: 7a:5b:8c:20:2c:b3:ff:4c:84:52:ec:df:96:b1:7c: 37:da:2d:8f:8a:f1:73:7f:d4:98:d7:8b:68:20:20: 20:79:77:21:16:86:ba:3e:cb:32:b7:44:18:d3:c5: 78:df:58:b1:59:1d:e3:7f:13:c6:6a:c4:8b:c4:4f: 59:93:83:6f:41:f5:74:94:0c:09:e3:3d:ef:9d:9d: b7:fc:64:e4:d7:4e:92:8b:fa:4a:7d:3b:1e:2b:8b: ac:c6:bb:cd:a2:0e:a2:ac:1b:97:34:4c:a1:82:3f: 83:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:6B:3C:AD:97:4A:01:C3:4D:EF:09:FE:F9:54:BA:E7:C2:B9:4C:DA X509v3 Authority Key Identifier: keyid:95:E8:00:EB:FF:64:70:98:92:CB:57:41:D9:ED:C7:5E:E7:4E:2A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130342e302f32322d3232203d3e203633343937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.104.0/22 Signature Algorithm: sha256WithRSAEncryption 48:24:ba:df:48:4f:28:d4:ca:cc:13:79:c1:0c:c6:bb:d2:d7: 77:46:57:11:90:d0:e2:a4:7c:03:e0:63:af:68:65:d6:3d:49: 98:78:25:ff:2f:f6:59:10:22:b8:e1:8d:bf:72:84:c5:01:fb: 59:16:f6:a8:c0:93:73:63:6a:6d:3a:94:e2:89:3c:45:ae:bd: e4:7a:16:3a:fe:48:db:6f:46:5b:67:8f:39:b0:4c:7e:5b:09: c1:b0:a4:54:b0:07:ad:d6:e1:30:eb:94:f7:bc:ed:d6:97:a6: 62:f3:89:89:d1:1e:b2:37:0c:12:9d:7c:b9:c7:27:82:de:b1: 8c:7d:fc:68:0d:37:4a:d3:f1:c9:73:aa:03:ec:4a:c6:b9:a0: d9:54:be:5b:0d:00:ab:9f:06:cc:61:6a:06:a4:16:90:ff:91: 17:9a:c1:21:1e:a5:63:41:20:4c:82:74:18:41:fa:d7:f6:74: c4:7b:75:f0:82:e8:91:5e:7a:54:49:fd:9d:eb:eb:db:b3:c4: c6:01:eb:b8:22:f3:d4:21:35:89:87:ab:d0:19:c7:fc:c5:e0: d9:97:c6:f9:e2:f1:4d:b7:19:8a:b6:cb:65:9c:af:98:55:b4: 32:ae:c3:c5:d3:7c:82:fa:78:73:31:a0:ff:dc:d7:2e:c9:7e: c5:8e:5f:35 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcj5fLM+FCNOFdZvU7pJ0Fhxev+owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVFODAwRUJGRjY0NzA5ODkyQ0I1NzQxRDlFREM3NUVF NzRFMkE2RDAeFw0yNDA3MDEwMTAwMzhaFw0yNTA2MzAwMTA1MzhaMDMxMTAvBgNV BAMTKDY4NkIzQ0FEOTc0QTAxQzM0REVGMDlGRUY5NTRCQUU3QzJCOTRDREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQlbLWC8jPRcFmqFdS3BbvlshB tnT0nBwn8RZMQuIiQTSe1RxdSmLSoEktLaOJfx+HfoOBVbXJDf/S3gXsrkdQZV1w Z3SbqhRjcTsPNlbSwadVi8MRuu0vCdgGBe1RtDeFIO1PhHhnW+sAb9rV4GXkysuP 1EczgM8GKrzzxXs71JXy5bAM7VHfMBStAoIptirn75YALnpbjCAss/9MhFLs35ax fDfaLY+K8XN/1JjXi2ggICB5dyEWhro+yzK3RBjTxXjfWLFZHeN/E8ZqxIvET1mT g29B9XSUDAnjPe+dnbf8ZOTXTpKL+kp9Ox4ri6zGu82iDqKsG5c0TKGCP4MdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaGs8rZdKAcNN7wn++VS658K5TNowHwYDVR0j BBgwFoAUlegA6/9kcJiSy1dB2e3HXudOKm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NmI1YWUxZS1iZTY2LTRhMzAtYTk0OC03ZDQ3OGMyMmVhMmIvMC85NUU4MDBFQkZG NjQ3MDk4OTJDQjU3NDFEOUVEQzc1RUU3NEUyQTZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVFODAwRUJGRjY0NzA5ODkyQ0I1NzQxRDlFREM3NUVFNzRF MkE2RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y2YjVhZTFlLWJlNjYtNGEzMC1h OTQ4LTdkNDc4YzIyZWEyYi8wLzMxMzAzMzJlMzEzMzM0MmUzMTMwMzQyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzNjMzMzQzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ4ZoMA0GCSqG SIb3DQEBCwUAA4IBAQBIJLrfSE8o1MrME3nBDMa70td3RlcRkNDipHwD4GOvaGXW PUmYeCX/L/ZZECK44Y2/coTFAftZFvaowJNzY2ptOpTiiTxFrr3kehY6/kjbb0Zb Z485sEx+WwnBsKRUsAet1uEw65T3vO3Wl6Zi84mJ0R6yNwwSnXy5xyeC3rGMffxo DTdK0/HJc6oD7ErGuaDZVL5bDQCrnwbMYWoGpBaQ/5EXmsEhHqVjQSBMgnQYQfrX 9nTEe3XwguiRXnpUSf2d6+vbs8TGAeu4IvPUITWJh6vQGcf8xeDZl8b54vFNtxmK tstlnK+YVbQyrsPF03yC+nhzMaD/3NcuyX7Fjl81 -----END CERTIFICATE-----Generated at Fri Nov 22 09:30:03 2024 by rpki-client on console-fra.rpki-client.org