$ rpki-client -vvf repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130362e302f32332d3233203d3e203633343937.roa File: 3130332e3133342e3130362e302f32332d3233203d3e203633343937.roa (raw, json) Hash identifier: IQUiR0JlPz/+uykrQRdA9C7xBIr9HwH3lFNNO16XUss= Subject key identifier: B8:9E:A4:BF:A2:43:1A:71:69:44:33:81:D0:9B:07:57:26:EA:FF:E5 Certificate issuer: /CN=95E800EBFF64709892CB5741D9EDC75EE74E2A6D Certificate serial: 34A9173D8EC353824E05203E54ABA2C8F9CA7C38 Authority key identifier: 95:E8:00:EB:FF:64:70:98:92:CB:57:41:D9:ED:C7:5E:E7:4E:2A:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130362e302f32332d3233203d3e203633343937.roa Signing time: Mon 01 Jul 2024 01:05:37 +0000 ROA not before: Mon 01 Jul 2024 01:00:37 +0000 ROA not after: Mon 30 Jun 2025 01:05:37 +0000 asID: 63497 IP address blocks: 103.134.106.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.crl rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:a9:17:3d:8e:c3:53:82:4e:05:20:3e:54:ab:a2:c8:f9:ca:7c:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95E800EBFF64709892CB5741D9EDC75EE74E2A6D Validity Not Before: Jul 1 01:00:37 2024 GMT Not After : Jun 30 01:05:37 2025 GMT Subject: CN=B89EA4BFA2431A7169443381D09B075726EAFFE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:92:44:24:ff:0a:7e:f7:d1:c1:1d:37:72:de: 09:76:8c:b0:be:d7:91:a4:f6:32:c4:f2:57:ab:b3: 1b:39:92:3d:c0:1a:e1:01:b1:e1:e7:6f:81:07:43: de:60:54:17:df:f0:ba:a7:63:80:0f:73:5b:45:62: 66:29:2a:05:66:a3:80:8a:21:7f:90:61:97:d8:57: 92:2e:78:14:46:91:92:a4:37:82:05:8c:07:76:ef: fc:ab:32:eb:2d:09:9c:74:01:28:4d:c3:f1:2e:a6: ad:3c:2c:78:a8:37:48:61:2f:18:88:04:0e:2e:59: 37:8b:b3:be:5f:19:1c:40:ec:b3:a6:e0:c2:c2:8a: a4:56:88:e3:71:cb:b6:44:e7:15:ba:78:14:94:15: ac:58:a7:dc:d0:55:81:4e:e8:09:0d:fb:cd:28:fd: b5:e1:ef:fd:61:5d:4f:45:6f:a7:8a:e0:15:f9:c3: 37:6a:92:9c:65:f8:02:a0:ca:e3:af:34:31:4e:14: 88:db:c8:8b:3a:d9:0c:d8:7b:a8:dd:2c:21:12:d7: f1:eb:3e:36:26:98:39:e1:6c:be:3c:04:17:d2:ee: d3:02:41:1d:55:f2:56:a0:27:d9:16:0e:d2:db:ec: c1:a8:39:b0:d4:55:64:fc:af:11:61:6e:18:b9:38: b9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:9E:A4:BF:A2:43:1A:71:69:44:33:81:D0:9B:07:57:26:EA:FF:E5 X509v3 Authority Key Identifier: keyid:95:E8:00:EB:FF:64:70:98:92:CB:57:41:D9:ED:C7:5E:E7:4E:2A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/3130332e3133342e3130362e302f32332d3233203d3e203633343937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.106.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:30:a2:bb:04:b3:45:cd:b6:51:b1:b4:73:f6:bc:d8:8b:86: df:26:d0:f6:7e:df:26:2f:82:17:81:c3:a3:86:f6:3a:12:24: 33:e8:59:c4:bd:ea:70:fa:b7:65:96:6f:a7:02:dd:d7:b3:1c: 7f:3e:e3:86:93:12:3c:3b:3d:42:b3:37:48:04:13:22:42:a6: d1:5f:61:5c:a5:88:c6:07:7c:9a:67:77:2c:79:2e:d5:21:11: b4:43:5e:70:88:78:c4:d9:2b:4e:24:a9:b4:d3:a5:e8:10:54: ef:86:fc:01:bd:e3:20:3a:df:5e:d0:bb:29:25:96:78:4b:53: 02:0f:31:54:a8:f7:a7:70:55:e0:e5:d4:d2:79:53:48:1e:e3: 13:33:09:9b:b5:80:0a:89:8d:4d:69:d3:8a:8a:72:63:24:c1: f0:83:1d:1d:38:a1:97:35:f9:71:d1:5c:0e:cc:4e:4b:f1:a1: ca:34:77:14:46:65:25:29:38:e9:dc:73:08:80:45:6b:e9:ee: 75:a5:61:f1:37:1f:5c:ec:16:d7:8d:1a:3c:ff:28:7d:0c:a4: af:f6:1d:15:26:57:f2:4d:e9:c2:4a:e6:5c:28:11:bb:af:9d: 01:52:de:5b:c1:4f:bb:74:07:55:73:07:56:df:d3:de:69:58: af:79:ed:22 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNKkXPY7DU4JOBSA+VKuiyPnKfDgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVFODAwRUJGRjY0NzA5ODkyQ0I1NzQxRDlFREM3NUVF NzRFMkE2RDAeFw0yNDA3MDEwMTAwMzdaFw0yNTA2MzAwMTA1MzdaMDMxMTAvBgNV BAMTKEI4OUVBNEJGQTI0MzFBNzE2OTQ0MzM4MUQwOUIwNzU3MjZFQUZGRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgkkQk/wp+99HBHTdy3gl2jLC+ 15Gk9jLE8lersxs5kj3AGuEBseHnb4EHQ95gVBff8LqnY4APc1tFYmYpKgVmo4CK IX+QYZfYV5IueBRGkZKkN4IFjAd27/yrMustCZx0AShNw/Eupq08LHioN0hhLxiI BA4uWTeLs75fGRxA7LOm4MLCiqRWiONxy7ZE5xW6eBSUFaxYp9zQVYFO6AkN+80o /bXh7/1hXU9Fb6eK4BX5wzdqkpxl+AKgyuOvNDFOFIjbyIs62QzYe6jdLCES1/Hr PjYmmDnhbL48BBfS7tMCQR1V8lagJ9kWDtLb7MGoObDUVWT8rxFhbhi5OLmDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUuJ6kv6JDGnFpRDOB0JsHVybq/+UwHwYDVR0j BBgwFoAUlegA6/9kcJiSy1dB2e3HXudOKm0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NmI1YWUxZS1iZTY2LTRhMzAtYTk0OC03ZDQ3OGMyMmVhMmIvMC85NUU4MDBFQkZG NjQ3MDk4OTJDQjU3NDFEOUVEQzc1RUU3NEUyQTZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVFODAwRUJGRjY0NzA5ODkyQ0I1NzQxRDlFREM3NUVFNzRF MkE2RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y2YjVhZTFlLWJlNjYtNGEzMC1h OTQ4LTdkNDc4YzIyZWEyYi8wLzMxMzAzMzJlMzEzMzM0MmUzMTMwMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNjMzMzQzOTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4ZqMA0GCSqG SIb3DQEBCwUAA4IBAQBKMKK7BLNFzbZRsbRz9rzYi4bfJtD2ft8mL4IXgcOjhvY6 EiQz6FnEvepw+rdllm+nAt3Xsxx/PuOGkxI8Oz1CszdIBBMiQqbRX2FcpYjGB3ya Z3cseS7VIRG0Q15wiHjE2StOJKm006XoEFTvhvwBveMgOt9e0LspJZZ4S1MCDzFU qPencFXg5dTSeVNIHuMTMwmbtYAKiY1NadOKinJjJMHwgx0dOKGXNflx0VwOzE5L 8aHKNHcURmUlKTjp3HMIgEVr6e51pWHxNx9c7BbXjRo8/yh9DKSv9h0VJlfyTenC SuZcKBG7r50BUt5bwU+7dAdVcwdW39PeaVivee0i -----END CERTIFICATE-----Generated at Fri Nov 22 09:30:03 2024 by rpki-client on console-fra.rpki-client.org