$ rpki-client -vvf repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e32382e3130362e302f32342d3234203d3e203538343736.roa File: 3130332e32382e3130362e302f32342d3234203d3e203538343736.roa (raw, json) Hash identifier: 7J0oFyysipA3qHhTtoXbnDFHuiZkIxXPeZGfLnkl0e4= Subject key identifier: F3:D7:9A:EA:AC:95:0B:46:B8:A3:CD:51:8A:BB:5C:20:86:D0:63:29 Certificate issuer: /CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Certificate serial: 60CDAB44C2C48F0783F66F8AD54EF2F8E189C057 Authority key identifier: B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e32382e3130362e302f32342d3234203d3e203538343736.roa Signing time: Mon 01 Jul 2024 01:05:21 +0000 ROA not before: Mon 01 Jul 2024 01:00:21 +0000 ROA not after: Mon 30 Jun 2025 01:05:21 +0000 asID: 58476 IP address blocks: 103.28.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:cd:ab:44:c2:c4:8f:07:83:f6:6f:8a:d5:4e:f2:f8:e1:89:c0:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E Validity Not Before: Jul 1 01:00:21 2024 GMT Not After : Jun 30 01:05:21 2025 GMT Subject: CN=F3D79AEAAC950B46B8A3CD518ABB5C2086D06329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:3a:2b:4c:3b:c4:f6:20:07:cb:ab:26:7e:7d: 36:c2:28:0e:11:23:94:43:f9:54:d5:e6:7f:19:24: 52:05:89:cc:f8:d0:89:2c:99:7e:ba:a3:c9:31:38: 9c:5f:9b:49:f9:30:e4:69:2e:5c:4b:c2:56:72:b9: 22:2b:35:2e:5e:7a:85:8e:70:cf:e3:7b:0d:e9:25: 1c:76:0f:7e:60:2b:d9:47:cb:03:54:b1:69:22:fd: d8:e6:08:75:97:db:7b:f5:f6:d5:1e:d4:02:98:d4: e0:82:dd:3a:f6:fe:3a:f1:5e:6a:65:48:1a:1c:a1: 7d:7e:c4:4a:c4:72:fb:fa:dc:07:f8:18:2a:46:4d: f7:f2:56:be:66:a8:1c:f5:6e:85:37:b1:cf:2c:3d: 8b:a9:43:7e:c2:cf:bc:41:4f:c7:e7:d9:bd:df:18: dd:14:a5:31:9a:07:c7:7a:93:11:65:a6:f1:e8:d6: c8:8a:3e:d1:57:d5:12:bd:1c:07:89:d5:4e:fe:e0: 61:79:03:c2:a6:52:e6:87:5e:9f:a7:20:0b:a3:f4: 6a:73:88:8d:d9:8d:ed:70:b3:14:40:b9:85:30:35: a3:67:95:79:10:32:e1:c5:c2:57:59:23:aa:e9:da: df:95:86:e2:fc:35:d0:b2:d4:0e:87:e7:44:77:56: 74:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:D7:9A:EA:AC:95:0B:46:B8:A3:CD:51:8A:BB:5C:20:86:D0:63:29 X509v3 Authority Key Identifier: keyid:B1:44:E4:EB:28:F6:9D:9B:76:C0:C2:49:9B:FD:7B:3E:C5:03:EF:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B144E4EB28F69D9B76C0C2499BFD7B3EC503EF3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f7f49068-c0ca-4a21-9a8a-eed26fcdd1aa/0/3130332e32382e3130362e302f32342d3234203d3e203538343736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.28.106.0/24 Signature Algorithm: sha256WithRSAEncryption a6:e1:a3:10:01:8a:26:ba:6a:89:41:f8:f1:13:ca:7d:32:75: 42:f2:e9:b4:10:b7:a7:c0:45:04:dc:92:23:08:8b:f6:36:d1: 26:94:6b:c9:10:e5:8c:57:2e:4c:93:7b:9d:be:9e:9b:f4:e4: 16:1d:06:1e:e3:a9:02:3b:8f:e8:8b:36:f2:77:82:0a:f3:8c: b6:ca:95:66:f1:f4:19:d1:50:10:09:b2:5d:ce:2f:08:be:d0: fe:01:12:31:cd:24:6b:f8:85:87:f8:ff:79:8b:4c:fa:16:f4: 24:f4:ea:79:87:2e:b1:9d:ad:06:8f:2d:b1:ae:c6:39:bf:4e: 5a:0c:a8:48:57:71:5f:3b:2b:d3:ea:ba:a7:20:fd:ea:2b:4c: ff:05:8c:8a:2e:e5:8c:9d:cc:2c:30:fd:f0:53:1d:db:10:de: ec:98:e2:b6:b7:f6:7a:4f:ad:fe:8e:d5:f9:fe:74:4b:c7:61: 53:21:7a:be:c9:b9:dc:da:90:1b:30:2a:f7:2f:93:94:a6:cf: 15:f5:42:74:fd:02:04:70:06:5c:f7:0e:a5:32:1e:8a:8a:91: 67:83:e0:ff:3e:57:75:84:bb:d9:bb:ca:fe:94:ca:55:bb:26: 89:86:19:80:08:eb:c7:3a:ff:76:b8:9b:f1:fc:a6:48:60:c8: 06:5a:f8:d8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYM2rRMLEjweD9m+K1U7y+OGJwFcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VD NTAzRUYzRTAeFw0yNDA3MDEwMTAwMjFaFw0yNTA2MzAwMTA1MjFaMDMxMTAvBgNV BAMTKEYzRDc5QUVBQUM5NTBCNDZCOEEzQ0Q1MThBQkI1QzIwODZEMDYzMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmOitMO8T2IAfLqyZ+fTbCKA4R I5RD+VTV5n8ZJFIFicz40IksmX66o8kxOJxfm0n5MORpLlxLwlZyuSIrNS5eeoWO cM/jew3pJRx2D35gK9lHywNUsWki/djmCHWX23v19tUe1AKY1OCC3Tr2/jrxXmpl SBocoX1+xErEcvv63Af4GCpGTffyVr5mqBz1boU3sc8sPYupQ37Cz7xBT8fn2b3f GN0UpTGaB8d6kxFlpvHo1siKPtFX1RK9HAeJ1U7+4GF5A8KmUuaHXp+nIAuj9Gpz iI3Zje1wsxRAuYUwNaNnlXkQMuHFwldZI6rp2t+VhuL8NdCy1A6H50R3VnQHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU89ea6qyVC0a4o81RirtcIIbQYykwHwYDVR0j BBgwFoAUsUTk6yj2nZt2wMJJm/17PsUD7z4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m N2Y0OTA2OC1jMGNhLTRhMjEtOWE4YS1lZWQyNmZjZGQxYWEvMC9CMTQ0RTRFQjI4 RjY5RDlCNzZDMEMyNDk5QkZEN0IzRUM1MDNFRjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjE0NEU0RUIyOEY2OUQ5Qjc2QzBDMjQ5OUJGRDdCM0VDNTAz RUYzRS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3ZjQ5MDY4LWMwY2EtNGEyMS05 YThhLWVlZDI2ZmNkZDFhYS8wLzMxMzAzMzJlMzIzODJlMzEzMDM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODM0MzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGccajANBgkqhkiG 9w0BAQsFAAOCAQEApuGjEAGKJrpqiUH48RPKfTJ1QvLptBC3p8BFBNySIwiL9jbR JpRryRDljFcuTJN7nb6em/TkFh0GHuOpAjuP6Is28neCCvOMtsqVZvH0GdFQEAmy Xc4vCL7Q/gESMc0ka/iFh/j/eYtM+hb0JPTqeYcusZ2tBo8tsa7GOb9OWgyoSFdx Xzsr0+q6pyD96itM/wWMii7ljJ3MLDD98FMd2xDe7Jjitrf2ek+t/o7V+f50S8dh UyF6vsm53NqQGzAq9y+TlKbPFfVCdP0CBHAGXPcOpTIeioqRZ4Pg/z5XdYS72bvK /pTKVbsmiYYZgAjrxzr/drib8fymSGDIBlr42A== -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:44 2024 by rpki-client on console-fra.rpki-client.org