$ rpki-client -vvf repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/3130332e3132302e3132342e302f32332d3234203d3e20313338313137.roa File: 3130332e3132302e3132342e302f32332d3234203d3e20313338313137.roa (raw, json) Hash identifier: eb7haQ80VO6GiMtqcegs9ObpRWuup+b23vRuFcKC+WU= Subject key identifier: CA:2D:F6:FC:62:7D:D0:5F:08:28:81:AF:D8:EB:8E:C2:EE:13:4E:DD Certificate issuer: /CN=989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748 Certificate serial: 784C695197CF3781D58A050CD95078EF1F55D5A4 Authority key identifier: 98:9B:87:D4:0F:7C:9F:1B:A5:4A:BC:AE:9B:C7:97:A3:E6:B2:57:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/3130332e3132302e3132342e302f32332d3234203d3e20313338313137.roa Signing time: Mon 31 Jul 2023 00:08:20 +0000 ROA not before: Mon 31 Jul 2023 00:03:20 +0000 ROA not after: Mon 29 Jul 2024 00:08:20 +0000 asID: 138117 IP address blocks: 103.120.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.crl rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Apr 2024 18:38:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:4c:69:51:97:cf:37:81:d5:8a:05:0c:d9:50:78:ef:1f:55:d5:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748 Validity Not Before: Jul 31 00:03:20 2023 GMT Not After : Jul 29 00:08:20 2024 GMT Subject: CN=CA2DF6FC627DD05F082881AFD8EB8EC2EE134EDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a8:75:ff:a6:96:66:b0:77:cb:32:c3:20:6e: c2:cc:f4:86:66:3c:74:da:6b:0d:88:10:f3:80:39: 5d:b4:43:54:f5:b5:c9:67:57:9f:f0:e6:ec:38:89: 00:8e:dd:18:f0:76:d5:fb:e4:49:09:1c:63:ca:96: 5f:8e:53:23:13:38:81:f4:29:e0:35:1b:a2:9d:bf: f0:83:ef:6f:90:ef:88:83:0a:51:19:1f:d1:cc:72: 15:03:2c:2e:44:d6:bd:b4:86:38:43:c3:f7:d7:fe: fa:98:1b:e9:4d:4a:29:78:37:d8:fa:d5:73:79:2d: c4:62:b4:17:02:83:b3:a9:55:1a:45:27:2c:13:17: ea:73:df:1a:b0:07:b4:55:e7:23:2e:81:ca:97:74: fe:25:b2:e7:11:5c:9a:27:d4:66:e5:eb:8f:72:c9: 63:29:e0:91:3b:db:80:78:1b:7d:bf:32:b2:9a:83: 04:ce:fd:74:c0:d9:3c:8c:19:cc:63:e3:0e:0e:89: fa:1d:15:5d:03:a0:95:06:76:1f:73:4b:a6:44:80: 32:37:c7:26:cc:64:05:82:ae:b6:e8:1d:2f:38:cb: 7f:a5:b9:4b:c9:32:f1:59:cd:c8:6f:0b:14:0e:a4: 52:5b:f0:20:37:03:ec:ec:c4:36:b2:c3:33:f2:02: 47:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:2D:F6:FC:62:7D:D0:5F:08:28:81:AF:D8:EB:8E:C2:EE:13:4E:DD X509v3 Authority Key Identifier: keyid:98:9B:87:D4:0F:7C:9F:1B:A5:4A:BC:AE:9B:C7:97:A3:E6:B2:57:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/3130332e3132302e3132342e302f32332d3234203d3e20313338313137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.124.0/23 Signature Algorithm: sha256WithRSAEncryption 37:61:9f:9a:97:e6:18:09:af:78:08:88:f2:d6:f1:5e:af:c7: 3c:6a:a2:82:af:78:36:38:13:16:f3:12:f2:dc:ec:18:43:32: e6:e0:37:7b:32:8f:8e:21:38:3a:4a:4e:3b:16:e9:a2:9d:c3: 2e:49:f4:e4:64:0a:03:04:84:e1:44:54:57:52:44:13:14:da: 65:28:bf:3f:54:f9:0d:0b:37:84:ea:fc:66:38:a5:ea:0c:c0: 70:1d:24:6b:a3:ec:f0:05:79:af:a4:f7:32:b3:66:ac:d3:fc: d4:97:1b:9a:4a:51:c4:f7:4e:ae:18:8e:69:41:0c:96:ea:da: 16:a8:1c:51:06:67:e2:9e:ca:29:9e:98:82:33:74:f7:44:d4: e5:48:01:cf:39:7b:1d:6e:e6:9a:d4:b5:80:62:d6:eb:a4:99: 05:8b:e3:47:b7:64:6b:46:df:3b:38:4e:18:36:8b:e4:42:c0: 3a:05:36:4c:5d:ae:86:1b:58:51:01:4c:09:6e:91:db:f4:ca: 35:18:ab:bc:45:9d:c5:63:8c:ab:6b:41:d4:41:8f:8d:1b:07: 72:8a:d7:5e:72:75:ad:49:59:a0:e4:13:4b:01:fc:8b:a0:6f: 2e:66:49:04:bc:b0:97:08:de:58:88:f4:ec:a6:45:ba:e5:8c: b3:99:36:75 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeExpUZfPN4HVigUM2VB47x9V1aQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTg5Qjg3RDQwRjdDOUYxQkE1NEFCQ0FFOUJDNzk3QTNF NkIyNTc0ODAeFw0yMzA3MzEwMDAzMjBaFw0yNDA3MjkwMDA4MjBaMDMxMTAvBgNV BAMTKENBMkRGNkZDNjI3REQwNUYwODI4ODFBRkQ4RUI4RUMyRUUxMzRFREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbqHX/ppZmsHfLMsMgbsLM9IZm PHTaaw2IEPOAOV20Q1T1tclnV5/w5uw4iQCO3RjwdtX75EkJHGPKll+OUyMTOIH0 KeA1G6Kdv/CD72+Q74iDClEZH9HMchUDLC5E1r20hjhDw/fX/vqYG+lNSil4N9j6 1XN5LcRitBcCg7OpVRpFJywTF+pz3xqwB7RV5yMugcqXdP4lsucRXJon1Gbl649y yWMp4JE724B4G32/MrKagwTO/XTA2TyMGcxj4w4OifodFV0DoJUGdh9zS6ZEgDI3 xybMZAWCrrboHS84y3+luUvJMvFZzchvCxQOpFJb8CA3A+zsxDaywzPyAkfnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUyi32/GJ90F8IKIGv2OuOwu4TTt0wHwYDVR0j BBgwFoAUmJuH1A98nxulSryum8eXo+ayV0gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZTUwNjBiOC1mNTcwLTQyZDYtODZmZi0zM2VhN2ZkZjI1MTUvMC85ODlCODdENDBG N0M5RjFCQTU0QUJDQUU5QkM3OTdBM0U2QjI1NzQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTg5Qjg3RDQwRjdDOUYxQkE1NEFCQ0FFOUJDNzk3QTNFNkIy NTc0OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllNTA2MGI4LWY1NzAtNDJkNi04 NmZmLTMzZWE3ZmRmMjUxNS8wLzMxMzAzMzJlMzEzMjMwMmUzMTMyMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMxMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneHwwDQYJ KoZIhvcNAQELBQADggEBADdhn5qX5hgJr3gIiPLW8V6vxzxqooKveDY4ExbzEvLc 7BhDMubgN3syj44hODpKTjsW6aKdwy5J9ORkCgMEhOFEVFdSRBMU2mUovz9U+Q0L N4Tq/GY4peoMwHAdJGuj7PAFea+k9zKzZqzT/NSXG5pKUcT3Tq4YjmlBDJbq2hao HFEGZ+KeyimemIIzdPdE1OVIAc85ex1u5prUtYBi1uukmQWL40e3ZGtG3zs4Thg2 i+RCwDoFNkxdroYbWFEBTAlukdv0yjUYq7xFncVjjKtrQdRBj40bB3KK115yda1J WaDkE0sB/Iugby5mSQS8sJcI3liI9OymRbrljLOZNnU= -----END CERTIFICATE-----Generated at Tue Apr 16 20:11:06 2024 by rpki-client on console-ams.rpki-client.org