$ rpki-client -vvf repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233362e302f32332d3233203d3e20313531353836.roa File: 3130332e3131392e3233362e302f32332d3233203d3e20313531353836.roa (raw, json) Hash identifier: ORKr4ha8P6tv9X5zA4ht6mjFvslVRbnM+gzBN7aD/Sw= Subject key identifier: CC:08:54:29:8A:64:F3:E6:7C:FB:C4:0D:A1:94:27:F2:12:DC:A0:11 Certificate issuer: /CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499 Certificate serial: 2FEF01B3DF43E04632209A356C03BF59654D3421 Authority key identifier: 78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233362e302f32332d3233203d3e20313531353836.roa Signing time: Thu 03 Oct 2024 14:00:02 +0000 ROA not before: Thu 03 Oct 2024 13:55:02 +0000 ROA not after: Thu 02 Oct 2025 14:00:02 +0000 asID: 151586 IP address blocks: 103.119.236.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.crl rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:ef:01:b3:df:43:e0:46:32:20:9a:35:6c:03:bf:59:65:4d:34:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499 Validity Not Before: Oct 3 13:55:02 2024 GMT Not After : Oct 2 14:00:02 2025 GMT Subject: CN=CC0854298A64F3E67CFBC40DA19427F212DCA011 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:70:1a:4b:b2:5c:03:18:af:33:4b:e8:6e:4f: 75:7b:45:6f:4e:92:f6:91:2a:e0:4d:50:d6:36:bd: 98:25:0a:ab:e2:49:2e:fc:57:01:0a:37:00:cf:d3: f4:8b:f9:0e:65:0a:97:15:55:cb:c0:6e:33:7c:6f: e4:39:c2:3b:11:25:a2:37:f1:ce:31:eb:8f:db:45: 14:0f:52:54:42:ab:34:c5:a0:f7:3f:22:1b:b7:27: af:1c:55:80:21:6b:78:7a:2a:cc:80:01:cc:f7:32: 5c:01:aa:c3:3f:1c:23:82:36:1e:5f:47:d7:f1:9c: 26:99:d6:35:7a:46:0e:35:f1:8e:16:92:33:e4:8d: a8:2f:ba:cb:e5:45:ec:af:a0:92:06:44:8b:bd:1e: 44:c7:84:a4:95:9f:36:cd:3c:b6:d5:a3:96:d9:b2: b0:f7:e7:7d:20:49:00:44:9f:06:05:ea:ea:ce:68: 12:59:41:ed:85:bb:04:9a:c4:53:cc:2a:21:ed:4c: 72:c3:51:c3:99:37:6f:70:e0:b9:75:99:5b:af:ff: 56:1a:5b:07:b4:44:f2:eb:e0:e1:8d:c5:91:27:9b: 05:d9:a6:86:82:34:e4:7c:cf:7f:68:b4:12:fe:27: ab:5b:9f:a0:86:dd:a7:e6:f1:4e:da:02:83:ae:b1: d1:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:08:54:29:8A:64:F3:E6:7C:FB:C4:0D:A1:94:27:F2:12:DC:A0:11 X509v3 Authority Key Identifier: keyid:78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233362e302f32332d3233203d3e20313531353836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.236.0/23 Signature Algorithm: sha256WithRSAEncryption 45:45:7d:10:23:2e:38:46:82:06:51:85:29:3c:42:d0:dd:0e: 95:65:68:b9:d4:11:7a:18:1d:3c:63:e1:86:88:44:ea:38:d0: c0:26:fb:20:3b:fd:49:61:c1:d3:cd:bc:c1:49:b1:fc:8c:7a: d8:2f:48:15:0d:38:15:a5:be:13:e7:15:b7:03:44:2d:c3:4b: 6d:d8:5b:f6:5b:a9:ad:ba:6e:f1:f4:7b:46:61:d1:b9:11:de: 5c:4c:fb:21:a0:18:5e:19:b4:71:ea:a9:26:ec:28:34:78:0e: cb:a9:ef:21:6c:47:7d:99:d4:e3:a9:aa:20:c5:44:74:c2:c0: db:46:1b:a0:cd:ef:0b:4c:59:21:16:04:50:e2:fb:dc:fd:69: a8:95:e2:0e:c7:86:49:25:10:d7:40:79:da:7c:c2:04:5e:07: ae:ac:9d:0a:19:c2:bb:98:3d:9b:e3:f4:0d:82:a5:65:fe:22: c7:f3:ee:e1:fb:49:88:55:7b:53:ed:7b:fa:12:40:5d:de:d8: 9d:38:94:3d:ce:4b:d6:2a:68:5a:15:e2:8a:23:e3:6d:63:9a: 35:7b:ae:d8:ad:84:e7:aa:2b:91:5a:a3:a1:75:21:de:57:4a: 5b:09:fb:c9:5f:c6:0e:eb:43:44:44:88:10:ca:12:b9:f6:37: 5c:71:08:5a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUL+8Bs99D4EYyIJo1bAO/WWVNNCEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2 MEU3MzQ5OTAeFw0yNDEwMDMxMzU1MDJaFw0yNTEwMDIxNDAwMDJaMDMxMTAvBgNV BAMTKENDMDg1NDI5OEE2NEYzRTY3Q0ZCQzQwREExOTQyN0YyMTJEQ0EwMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1cBpLslwDGK8zS+huT3V7RW9O kvaRKuBNUNY2vZglCqviSS78VwEKNwDP0/SL+Q5lCpcVVcvAbjN8b+Q5wjsRJaI3 8c4x64/bRRQPUlRCqzTFoPc/Ihu3J68cVYAha3h6KsyAAcz3MlwBqsM/HCOCNh5f R9fxnCaZ1jV6Rg418Y4WkjPkjagvusvlReyvoJIGRIu9HkTHhKSVnzbNPLbVo5bZ srD3530gSQBEnwYF6urOaBJZQe2FuwSaxFPMKiHtTHLDUcOZN29w4Ll1mVuv/1Ya Wwe0RPLr4OGNxZEnmwXZpoaCNOR8z39otBL+J6tbn6CG3afm8U7aAoOusdH1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUzAhUKYpk8+Z8+8QNoZQn8hLcoBEwHwYDVR0j BBgwFoAUeCWpww1a6kFEdA6bEqPAvGDnNJkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDAwYjBjMi03ZWZkLTQyNzgtOThlNC1kNGY3YzI3M2VlYzIvMC83ODI1QTlDMzBE NUFFQTQxNDQ3NDBFOUIxMkEzQzBCQzYwRTczNDk5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2MEU3 MzQ5OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwMDBiMGMyLTdlZmQtNDI3OC05 OGU0LWQ0ZjdjMjczZWVjMi8wLzMxMzAzMzJlMzEzMTM5MmUzMjMzMzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM1MzEzNTM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnd+wwDQYJ KoZIhvcNAQELBQADggEBAEVFfRAjLjhGggZRhSk8QtDdDpVlaLnUEXoYHTxj4YaI ROo40MAm+yA7/UlhwdPNvMFJsfyMetgvSBUNOBWlvhPnFbcDRC3DS23YW/Zbqa26 bvH0e0Zh0bkR3lxM+yGgGF4ZtHHqqSbsKDR4Dsup7yFsR32Z1OOpqiDFRHTCwNtG G6DN7wtMWSEWBFDi+9z9aaiV4g7HhkklENdAedp8wgReB66snQoZwruYPZvj9A2C pWX+Isfz7uH7SYhVe1Pte/oSQF3e2J04lD3OS9YqaFoV4ooj421jmjV7rtithOeq K5Fao6F1Id5XSlsJ+8lfxg7rQ0REiBDKErn2N1xxCFo= -----END CERTIFICATE-----Generated at Sun Nov 24 20:07:39 2024 by rpki-client on console-ams.rpki-client.org