$ rpki-client -vvf repo-rpki.idnic.net/repo/04358b00-31cd-41a3-9536-dbb193e7f4d0/0/3130332e3133392e3138362e302f32342d3234203d3e20313338383634.roa File: 3130332e3133392e3138362e302f32342d3234203d3e20313338383634.roa (raw, json) Hash identifier: DoOOyUoa2urhEQnU2nkw2nuMVM/frvBM41YZ8gZsp2M= Subject key identifier: 96:C0:F8:31:FA:D0:DD:D3:5E:05:04:67:9B:D8:DD:EC:3D:63:21:FA Certificate issuer: /CN=E7DCBB5E912C56ABC89CBBC8FA42B5E63D152AF4 Certificate serial: 4E5454B6BE54FE63C1D11C3C119BF9CB18193AA3 Authority key identifier: E7:DC:BB:5E:91:2C:56:AB:C8:9C:BB:C8:FA:42:B5:E6:3D:15:2A:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7DCBB5E912C56ABC89CBBC8FA42B5E63D152AF4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/04358b00-31cd-41a3-9536-dbb193e7f4d0/0/3130332e3133392e3138362e302f32342d3234203d3e20313338383634.roa Signing time: Mon 01 Jul 2024 01:01:57 +0000 ROA not before: Mon 01 Jul 2024 00:56:57 +0000 ROA not after: Mon 30 Jun 2025 01:01:57 +0000 asID: 138864 IP address blocks: 103.139.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/04358b00-31cd-41a3-9536-dbb193e7f4d0/0/E7DCBB5E912C56ABC89CBBC8FA42B5E63D152AF4.crl rsync://repo-rpki.idnic.net/repo/04358b00-31cd-41a3-9536-dbb193e7f4d0/0/E7DCBB5E912C56ABC89CBBC8FA42B5E63D152AF4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7DCBB5E912C56ABC89CBBC8FA42B5E63D152AF4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:54:54:b6:be:54:fe:63:c1:d1:1c:3c:11:9b:f9:cb:18:19:3a:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E7DCBB5E912C56ABC89CBBC8FA42B5E63D152AF4 Validity Not Before: Jul 1 00:56:57 2024 GMT Not After : Jun 30 01:01:57 2025 GMT Subject: CN=96C0F831FAD0DDD35E0504679BD8DDEC3D6321FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:fa:77:83:ad:c8:5d:3c:17:f7:0b:0c:89:eb: e8:92:f5:4a:ce:8f:81:59:75:b0:b6:57:20:97:70: 43:88:d8:b3:44:e6:c0:e3:15:b8:c6:d8:2a:1f:14: c8:dc:70:ec:f9:ad:0d:bb:3f:e3:28:11:63:37:07: 76:6b:32:05:96:b0:ea:bc:8d:01:16:0d:26:b8:68: 73:c5:b9:52:48:c0:d5:a9:6e:12:ff:e6:63:7b:d9: 18:65:24:f9:ed:99:62:ff:89:b3:60:de:7d:ed:11: b0:60:b1:f4:68:e1:41:2b:0b:82:92:1d:29:71:13: 3b:94:81:f9:87:7f:d2:6c:9e:90:6d:e3:47:68:10: 5f:1c:b9:63:d7:b7:70:3e:4f:39:fb:15:d7:c9:7e: dc:42:f9:75:1d:f3:36:df:30:0d:98:50:2f:0a:e5: c7:12:65:fb:8c:6c:d1:1a:03:52:f1:b1:32:8c:f1: 9e:95:41:58:e0:32:78:ad:1c:bd:0d:57:55:9a:df: 8a:35:8c:7c:53:21:5a:1f:69:36:30:5b:cc:17:53: f8:23:93:6e:11:ee:4b:fa:a2:4e:ca:ff:16:9f:c7: cb:3c:b2:e9:82:00:76:1b:43:a7:fc:8b:7b:cf:ae: 09:4b:08:72:84:cd:fa:fb:81:21:19:95:bb:25:62: 95:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:C0:F8:31:FA:D0:DD:D3:5E:05:04:67:9B:D8:DD:EC:3D:63:21:FA X509v3 Authority Key Identifier: keyid:E7:DC:BB:5E:91:2C:56:AB:C8:9C:BB:C8:FA:42:B5:E6:3D:15:2A:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/04358b00-31cd-41a3-9536-dbb193e7f4d0/0/E7DCBB5E912C56ABC89CBBC8FA42B5E63D152AF4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7DCBB5E912C56ABC89CBBC8FA42B5E63D152AF4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/04358b00-31cd-41a3-9536-dbb193e7f4d0/0/3130332e3133392e3138362e302f32342d3234203d3e20313338383634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.186.0/24 Signature Algorithm: sha256WithRSAEncryption 98:65:c4:fa:a4:39:6b:f0:2f:2b:b1:23:16:8c:c4:39:4f:f7: 28:8e:a6:dc:b1:58:f4:52:8e:87:2f:33:06:d4:da:01:9c:e4: cd:38:87:e2:87:a8:18:2d:f0:e9:c0:5e:e1:60:ef:3a:ee:72: 13:8b:b6:3e:e3:a8:6b:7c:c4:b3:b1:35:db:3d:e3:79:24:74: f5:63:ea:f0:45:91:06:51:be:45:43:28:e2:6f:dd:b0:1b:e6: 5d:cd:ad:00:63:11:22:b3:b3:2a:bb:4b:37:d1:b1:aa:bd:f1: 45:42:30:1c:fd:11:44:91:2d:8e:8a:b0:96:04:c1:ca:77:42: 50:57:37:70:d7:c1:21:c4:99:e9:8a:41:f1:50:b5:db:37:bc: 27:f1:a3:71:d5:96:ba:27:77:62:04:53:ef:71:4e:bc:02:ab: 0f:20:34:6f:d9:4f:ce:55:81:5f:f2:63:d1:6a:28:59:d5:25: c6:24:c9:16:e0:fa:52:d7:39:6d:35:2c:bc:d6:50:b5:4e:a5: d2:fe:cb:f1:3b:43:91:ce:22:53:04:da:51:ff:cc:de:53:aa: af:87:e5:dc:c8:3b:72:a6:04:17:62:2c:75:15:b9:9f:d5:fd: 3c:ec:be:3a:3e:d6:b7:c7:88:2f:82:fc:b4:a4:86:54:86:02: d0:1b:07:60 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTlRUtr5U/mPB0Rw8EZv5yxgZOqMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTdEQ0JCNUU5MTJDNTZBQkM4OUNCQkM4RkE0MkI1RTYz RDE1MkFGNDAeFw0yNDA3MDEwMDU2NTdaFw0yNTA2MzAwMTAxNTdaMDMxMTAvBgNV BAMTKDk2QzBGODMxRkFEMERERDM1RTA1MDQ2NzlCRDhEREVDM0Q2MzIxRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ+neDrchdPBf3CwyJ6+iS9UrO j4FZdbC2VyCXcEOI2LNE5sDjFbjG2CofFMjccOz5rQ27P+MoEWM3B3ZrMgWWsOq8 jQEWDSa4aHPFuVJIwNWpbhL/5mN72RhlJPntmWL/ibNg3n3tEbBgsfRo4UErC4KS HSlxEzuUgfmHf9JsnpBt40doEF8cuWPXt3A+Tzn7FdfJftxC+XUd8zbfMA2YUC8K 5ccSZfuMbNEaA1LxsTKM8Z6VQVjgMnitHL0NV1Wa34o1jHxTIVofaTYwW8wXU/gj k24R7kv6ok7K/xafx8s8sumCAHYbQ6f8i3vPrglLCHKEzfr7gSEZlbslYpXtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUlsD4MfrQ3dNeBQRnm9jd7D1jIfowHwYDVR0j BBgwFoAU59y7XpEsVqvInLvI+kK15j0VKvQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDM1OGIwMC0zMWNkLTQxYTMtOTUzNi1kYmIxOTNlN2Y0ZDAvMC9FN0RDQkI1RTkx MkM1NkFCQzg5Q0JCQzhGQTQyQjVFNjNEMTUyQUY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTdEQ0JCNUU5MTJDNTZBQkM4OUNCQkM4RkE0MkI1RTYzRDE1 MkFGNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0MzU4YjAwLTMxY2QtNDFhMy05 NTM2LWRiYjE5M2U3ZjRkMC8wLzMxMzAzMzJlMzEzMzM5MmUzMTM4MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzODM2MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABni7owDQYJ KoZIhvcNAQELBQADggEBAJhlxPqkOWvwLyuxIxaMxDlP9yiOptyxWPRSjocvMwbU 2gGc5M04h+KHqBgt8OnAXuFg7zruchOLtj7jqGt8xLOxNds943kkdPVj6vBFkQZR vkVDKOJv3bAb5l3NrQBjESKzsyq7SzfRsaq98UVCMBz9EUSRLY6KsJYEwcp3QlBX N3DXwSHEmemKQfFQtds3vCfxo3HVlrond2IEU+9xTrwCqw8gNG/ZT85VgV/yY9Fq KFnVJcYkyRbg+lLXOW01LLzWULVOpdL+y/E7Q5HOIlME2lH/zN5Tqq+H5dzIO3Km BBdiLHUVuZ/V/Tzsvjo+1rfHiC+C/LSkhlSGAtAbB2A= -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:32 2024 by rpki-client on console-ams.rpki-client.org