$ rpki-client -vvf repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233362e302f32342d3234203d3e20313531353836.roa File: 3130332e3131392e3233362e302f32342d3234203d3e20313531353836.roa (raw, json) Hash identifier: smWnJtZ/R67U2ULFGK7Jk8VcGNSJ3hQ7lt79pWbaLFY= Subject key identifier: DB:E9:E9:AF:07:3F:4F:FE:7E:83:83:44:7C:E1:6F:FB:AC:74:B1:EC Certificate issuer: /CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499 Certificate serial: 49EB0CA1AC64CD88DD311206B091306631D61BC6 Authority key identifier: 78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233362e302f32342d3234203d3e20313531353836.roa Signing time: Thu 03 Oct 2024 14:00:02 +0000 ROA not before: Thu 03 Oct 2024 13:55:02 +0000 ROA not after: Thu 02 Oct 2025 14:00:02 +0000 asID: 151586 IP address blocks: 103.119.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.crl rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:eb:0c:a1:ac:64:cd:88:dd:31:12:06:b0:91:30:66:31:d6:1b:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499 Validity Not Before: Oct 3 13:55:02 2024 GMT Not After : Oct 2 14:00:02 2025 GMT Subject: CN=DBE9E9AF073F4FFE7E8383447CE16FFBAC74B1EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:2e:95:6c:51:d8:f9:5c:ff:58:7d:78:aa:24: 7c:e3:ae:30:cc:dc:f7:de:1c:1d:9b:b4:f9:a2:d5: 8b:e9:1b:82:70:5e:34:24:26:6a:2f:39:4b:6f:9d: 4a:bf:8b:d1:95:a3:12:da:3e:61:4b:de:f4:4e:5d: 54:28:f1:40:8d:1a:30:44:83:a9:e4:21:5b:02:1c: fb:92:e2:6c:10:21:bb:01:61:9e:6f:5b:06:89:31: 14:00:ea:e9:f7:01:33:93:28:d6:a1:cc:0b:c6:72: 5a:2b:5f:91:00:e1:f6:22:cb:0b:98:7a:96:cc:b2: 0b:64:6f:b8:05:ab:21:a3:d5:6e:14:95:87:b4:d8: 72:b6:0f:99:26:3d:18:59:0c:72:d9:7d:81:32:d2: f2:fc:b7:37:20:11:68:a1:5c:58:9e:e6:8c:0a:46: 4e:ce:8c:45:87:59:58:67:b7:3d:ce:4c:95:a4:13: a5:b4:8d:f6:7c:f5:dd:9b:d8:a1:2b:98:94:7a:0b: 6d:de:35:70:90:5d:65:05:c7:e4:16:db:bd:ea:6f: 39:cf:f9:18:94:12:50:bb:d5:15:a7:0c:65:74:dd: e7:5f:ab:75:d6:1d:84:68:89:4e:63:a3:9b:d1:09: 08:d8:8d:e6:54:8d:80:e0:43:35:9a:8f:f5:9b:c2: d1:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E9:E9:AF:07:3F:4F:FE:7E:83:83:44:7C:E1:6F:FB:AC:74:B1:EC X509v3 Authority Key Identifier: keyid:78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233362e302f32342d3234203d3e20313531353836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.236.0/24 Signature Algorithm: sha256WithRSAEncryption c3:a8:1c:4f:4f:e9:39:cf:07:8a:6b:d2:ae:47:86:aa:37:28: c8:74:7a:f4:81:04:02:4f:74:f0:7a:42:39:41:f0:2d:50:ea: 06:29:1e:70:09:de:1d:3c:2b:59:36:a8:25:1a:68:76:96:84: fc:78:28:3e:97:dc:07:bf:c3:82:45:e3:5b:45:58:72:74:8e: 08:f9:22:1d:02:43:32:b4:07:2e:d2:65:1f:64:19:0f:53:ca: b1:f9:d3:25:ad:7c:e3:75:88:c8:3e:18:2c:b8:f7:96:14:7c: 39:6b:06:8f:3b:f6:5f:9d:3b:c8:01:a3:09:89:60:da:9d:8e: 49:19:e5:28:af:fc:7d:65:8b:2a:ba:be:50:58:00:cd:b8:7d: 94:c4:ce:05:cf:5e:ca:05:f7:d9:84:b4:f4:f6:37:44:d1:b1: 17:e2:72:46:54:ad:a3:36:91:6a:58:41:e6:f0:c8:7f:07:81: f9:bf:35:90:d3:ab:e2:d9:a8:3e:85:b6:f9:a6:d3:73:80:fc: 97:1d:4e:00:aa:1b:d5:c7:d5:89:de:49:e9:0d:10:3f:d5:ea: 17:d5:38:c7:56:c9:3b:78:cd:9c:28:e4:61:87:a9:24:a5:b0: 5f:9b:35:88:14:aa:df:87:8d:fb:3a:04:76:81:e3:6c:cf:89: e9:3f:76:6f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSesMoaxkzYjdMRIGsJEwZjHWG8YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2 MEU3MzQ5OTAeFw0yNDEwMDMxMzU1MDJaFw0yNTEwMDIxNDAwMDJaMDMxMTAvBgNV BAMTKERCRTlFOUFGMDczRjRGRkU3RTgzODM0NDdDRTE2RkZCQUM3NEIxRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdLpVsUdj5XP9YfXiqJHzjrjDM 3PfeHB2btPmi1YvpG4JwXjQkJmovOUtvnUq/i9GVoxLaPmFL3vROXVQo8UCNGjBE g6nkIVsCHPuS4mwQIbsBYZ5vWwaJMRQA6un3ATOTKNahzAvGclorX5EA4fYiywuY epbMsgtkb7gFqyGj1W4UlYe02HK2D5kmPRhZDHLZfYEy0vL8tzcgEWihXFie5owK Rk7OjEWHWVhntz3OTJWkE6W0jfZ89d2b2KErmJR6C23eNXCQXWUFx+QW273qbznP +RiUElC71RWnDGV03edfq3XWHYRoiU5jo5vRCQjYjeZUjYDgQzWaj/WbwtEJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU2+nprwc/T/5+g4NEfOFv+6x0sewwHwYDVR0j BBgwFoAUeCWpww1a6kFEdA6bEqPAvGDnNJkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDAwYjBjMi03ZWZkLTQyNzgtOThlNC1kNGY3YzI3M2VlYzIvMC83ODI1QTlDMzBE NUFFQTQxNDQ3NDBFOUIxMkEzQzBCQzYwRTczNDk5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2MEU3 MzQ5OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwMDBiMGMyLTdlZmQtNDI3OC05 OGU0LWQ0ZjdjMjczZWVjMi8wLzMxMzAzMzJlMzEzMTM5MmUzMjMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzNTM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnd+wwDQYJ KoZIhvcNAQELBQADggEBAMOoHE9P6TnPB4pr0q5Hhqo3KMh0evSBBAJPdPB6QjlB 8C1Q6gYpHnAJ3h08K1k2qCUaaHaWhPx4KD6X3Ae/w4JF41tFWHJ0jgj5Ih0CQzK0 By7SZR9kGQ9TyrH50yWtfON1iMg+GCy495YUfDlrBo879l+dO8gBowmJYNqdjkkZ 5Siv/H1liyq6vlBYAM24fZTEzgXPXsoF99mEtPT2N0TRsRfickZUraM2kWpYQebw yH8Hgfm/NZDTq+LZqD6Ftvmm03OA/JcdTgCqG9XH1YneSekNED/V6hfVOMdWyTt4 zZwo5GGHqSSlsF+bNYgUqt+Hjfs6BHaB42zPiek/dm8= -----END CERTIFICATE-----Generated at Sun Nov 24 18:33:15 2024 by rpki-client on console-fra.rpki-client.org