$ rpki-client -vvf repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233372e302f32342d3234203d3e20313531353836.roa File: 3130332e3131392e3233372e302f32342d3234203d3e20313531353836.roa (raw, json) Hash identifier: 18Hkz/XR+bc2+4hLanlNPrrmjy5COqEUY7Uy7tOHT7Q= Subject key identifier: 90:BD:C1:0E:A4:97:82:9C:DD:3B:36:73:19:5C:4E:EF:A5:6E:7A:FC Certificate issuer: /CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499 Certificate serial: 16D09D7465445588C9ED93692A6E267531A5EE34 Authority key identifier: 78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233372e302f32342d3234203d3e20313531353836.roa Signing time: Thu 03 Oct 2024 14:00:02 +0000 ROA not before: Thu 03 Oct 2024 13:55:02 +0000 ROA not after: Thu 02 Oct 2025 14:00:02 +0000 asID: 151586 IP address blocks: 103.119.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.crl rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:d0:9d:74:65:44:55:88:c9:ed:93:69:2a:6e:26:75:31:a5:ee:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499 Validity Not Before: Oct 3 13:55:02 2024 GMT Not After : Oct 2 14:00:02 2025 GMT Subject: CN=90BDC10EA497829CDD3B3673195C4EEFA56E7AFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b3:dd:3b:81:90:13:a4:5c:03:97:86:74:e0: 51:e2:56:4f:0d:b9:6f:df:9a:07:13:ac:35:c4:3f: 60:31:7a:53:03:0d:95:13:00:55:b6:0c:60:74:0a: cb:41:c2:c7:23:f9:2d:fe:30:51:ba:67:82:02:dc: ea:f0:5b:6f:4a:85:53:ea:e9:8f:00:96:26:e8:5f: 85:6e:de:b2:44:5d:98:d1:39:5a:16:62:62:00:64: 87:ab:bb:c6:62:53:cd:5c:b0:2d:e0:f8:55:15:9f: ec:2d:91:c0:f7:f2:80:e3:62:62:79:8f:f8:a5:a3: 61:4a:b7:03:ae:28:8b:85:1a:56:93:70:ac:fd:5c: 96:74:57:27:a5:b2:61:04:21:a1:1c:58:eb:a2:e3: 03:31:2c:11:5e:fa:2d:94:85:9e:55:36:02:9b:bb: 7e:ea:70:60:1c:2e:ed:a7:02:c4:f2:15:01:04:ae: 81:4b:9d:f0:86:65:36:1f:2f:ac:1e:cc:d7:f8:cd: 68:22:dc:10:1a:4a:9b:1e:70:60:93:ee:1d:72:d5: 3b:13:fd:9f:1b:b7:54:aa:8f:c1:01:1b:1a:2b:52: d9:8c:2c:17:66:98:39:2c:ed:2f:d2:3c:20:da:93: 03:f0:2f:61:6b:1c:17:23:8e:a6:8d:55:60:3a:f7: 37:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:BD:C1:0E:A4:97:82:9C:DD:3B:36:73:19:5C:4E:EF:A5:6E:7A:FC X509v3 Authority Key Identifier: keyid:78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/3130332e3131392e3233372e302f32342d3234203d3e20313531353836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.237.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:15:73:15:92:4d:61:3f:40:88:cd:ff:b0:82:f0:45:b3:8e: 91:c1:ab:ee:7c:f9:5c:fb:57:fa:b9:71:30:a5:11:0e:bd:06: d4:30:17:c2:5d:fa:e7:0f:00:44:98:1d:39:54:50:58:2f:af: d3:20:48:1b:69:c9:3a:cb:7e:ca:58:dd:6f:81:74:30:54:ea: 23:de:7e:68:9b:4e:17:5d:c7:ca:71:59:f9:90:2c:88:66:d0: 1f:7c:b2:5a:3a:be:0b:13:6f:f8:3f:e2:30:4f:d3:83:79:df: 20:ad:07:62:02:e0:8c:78:ce:2d:15:c0:9d:08:47:00:20:6e: 43:40:34:7f:c1:be:3d:ae:d3:8f:ab:d0:fc:8d:b4:68:6e:78: bd:81:20:a6:79:c7:7e:35:dc:3a:bf:c9:d8:2f:7b:00:cd:1e: b5:90:a6:e4:ef:c0:41:d1:7a:b7:90:95:f6:81:53:3d:e6:16: 96:e7:db:2f:87:3a:5c:3b:5f:de:b5:e9:ec:b4:4d:3a:76:15: 33:7c:a6:41:5f:7b:04:71:31:14:30:a6:21:ef:3c:2d:33:42: 7b:09:77:73:ef:6e:27:3f:bc:e6:4f:24:8c:4a:f9:6c:78:d5: 2e:57:81:fd:ff:2e:5c:cf:f8:95:85:63:6e:a6:70:ee:f8:ea: 09:02:ba:43 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFtCddGVEVYjJ7ZNpKm4mdTGl7jQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2 MEU3MzQ5OTAeFw0yNDEwMDMxMzU1MDJaFw0yNTEwMDIxNDAwMDJaMDMxMTAvBgNV BAMTKDkwQkRDMTBFQTQ5NzgyOUNERDNCMzY3MzE5NUM0RUVGQTU2RTdBRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKs907gZATpFwDl4Z04FHiVk8N uW/fmgcTrDXEP2AxelMDDZUTAFW2DGB0CstBwscj+S3+MFG6Z4IC3OrwW29KhVPq 6Y8AliboX4Vu3rJEXZjROVoWYmIAZIeru8ZiU81csC3g+FUVn+wtkcD38oDjYmJ5 j/ilo2FKtwOuKIuFGlaTcKz9XJZ0VyelsmEEIaEcWOui4wMxLBFe+i2UhZ5VNgKb u37qcGAcLu2nAsTyFQEEroFLnfCGZTYfL6wezNf4zWgi3BAaSpsecGCT7h1y1TsT /Z8bt1Sqj8EBGxorUtmMLBdmmDks7S/SPCDakwPwL2FrHBcjjqaNVWA69zdTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUkL3BDqSXgpzdOzZzGVxO76VuevwwHwYDVR0j BBgwFoAUeCWpww1a6kFEdA6bEqPAvGDnNJkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w MDAwYjBjMi03ZWZkLTQyNzgtOThlNC1kNGY3YzI3M2VlYzIvMC83ODI1QTlDMzBE NUFFQTQxNDQ3NDBFOUIxMkEzQzBCQzYwRTczNDk5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzgyNUE5QzMwRDVBRUE0MTQ0NzQwRTlCMTJBM0MwQkM2MEU3 MzQ5OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwMDBiMGMyLTdlZmQtNDI3OC05 OGU0LWQ0ZjdjMjczZWVjMi8wLzMxMzAzMzJlMzEzMTM5MmUzMjMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzNTM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnd+0wDQYJ KoZIhvcNAQELBQADggEBAC0VcxWSTWE/QIjN/7CC8EWzjpHBq+58+Vz7V/q5cTCl EQ69BtQwF8Jd+ucPAESYHTlUUFgvr9MgSBtpyTrLfspY3W+BdDBU6iPefmibThdd x8pxWfmQLIhm0B98slo6vgsTb/g/4jBP04N53yCtB2IC4Ix4zi0VwJ0IRwAgbkNA NH/Bvj2u04+r0PyNtGhueL2BIKZ5x3413Dq/ydgvewDNHrWQpuTvwEHRereQlfaB Uz3mFpbn2y+HOlw7X9616ey0TTp2FTN8pkFfewRxMRQwpiHvPC0zQnsJd3Pvbic/ vOZPJIxK+Wx41S5Xgf3/LlzP+JWFY26mcO746gkCukM= -----END CERTIFICATE-----Generated at Sun Nov 24 18:33:15 2024 by rpki-client on console-fra.rpki-client.org