$ rpki-client -vvf repo-rpki.idnic.net/repo/0546183c-d9ef-4c33-be99-e84bedb10b68/0/3130332e3133372e3134342e302f32332d3234203d3e20313338383439.roa File: 3130332e3133372e3134342e302f32332d3234203d3e20313338383439.roa (raw, json) Hash identifier: +/gEu2QMKYb7XuWKuWysnxgqlIQgDLaK15195REh8qc= Subject key identifier: 9A:14:99:59:1B:11:59:05:AB:A8:0C:3E:69:E8:A1:A9:59:52:E2:EC Certificate issuer: /CN=FC4A38DAAF15E8284373FD82AE59B27383D4A68F Certificate serial: 3AD6175DA8BE5A3F443344AE0BCF01E1F94924D9 Authority key identifier: FC:4A:38:DA:AF:15:E8:28:43:73:FD:82:AE:59:B2:73:83:D4:A6:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC4A38DAAF15E8284373FD82AE59B27383D4A68F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0546183c-d9ef-4c33-be99-e84bedb10b68/0/3130332e3133372e3134342e302f32332d3234203d3e20313338383439.roa Signing time: Mon 01 Jul 2024 01:05:11 +0000 ROA not before: Mon 01 Jul 2024 01:00:11 +0000 ROA not after: Mon 30 Jun 2025 01:05:11 +0000 asID: 138849 IP address blocks: 103.137.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0546183c-d9ef-4c33-be99-e84bedb10b68/0/FC4A38DAAF15E8284373FD82AE59B27383D4A68F.crl rsync://repo-rpki.idnic.net/repo/0546183c-d9ef-4c33-be99-e84bedb10b68/0/FC4A38DAAF15E8284373FD82AE59B27383D4A68F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC4A38DAAF15E8284373FD82AE59B27383D4A68F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:d6:17:5d:a8:be:5a:3f:44:33:44:ae:0b:cf:01:e1:f9:49:24:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC4A38DAAF15E8284373FD82AE59B27383D4A68F Validity Not Before: Jul 1 01:00:11 2024 GMT Not After : Jun 30 01:05:11 2025 GMT Subject: CN=9A1499591B115905ABA80C3E69E8A1A95952E2EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:6a:5a:3d:07:14:30:2a:32:eb:77:e0:19:25: bd:ae:30:51:44:59:4d:09:02:1c:fa:ae:fd:e2:57: 23:ce:bc:46:bc:4e:88:60:07:1f:3e:77:21:16:16: ba:35:68:8a:52:e7:c4:15:66:dc:6b:69:70:95:18: 7d:be:0e:c4:8c:55:37:40:96:49:c8:66:b6:c0:d5: 61:73:43:2c:e4:f1:2a:56:09:25:ac:6a:ef:6b:28: 7e:a0:ff:7f:fc:06:1c:83:d0:1b:1f:3d:ac:c2:e9: c1:2e:e5:bb:f7:3c:87:c2:a2:28:29:24:81:59:05: 5a:86:63:4b:b4:a0:e3:cd:87:2d:c1:62:16:4b:60: 8c:6d:6a:78:e9:4c:bf:a8:c8:58:9b:b7:f8:f2:03: 36:f7:92:e4:d4:04:99:a3:73:7e:14:fc:6e:5d:67: 5f:59:b8:b2:50:47:dc:d2:f0:fc:ab:71:d4:03:c2: be:7b:e3:65:f6:d7:41:f1:63:89:e3:e5:92:48:9b: f5:fd:cf:a8:70:84:42:df:24:13:3c:f8:6a:9b:da: ee:8b:e9:d9:f8:6b:fa:0e:fe:9b:5a:d1:1e:77:68: 93:0c:4f:8e:01:a7:55:65:01:43:23:30:e7:62:9b: c2:f7:2e:77:f9:c9:65:08:7a:17:fb:1f:1b:9d:8e: 6c:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:14:99:59:1B:11:59:05:AB:A8:0C:3E:69:E8:A1:A9:59:52:E2:EC X509v3 Authority Key Identifier: keyid:FC:4A:38:DA:AF:15:E8:28:43:73:FD:82:AE:59:B2:73:83:D4:A6:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0546183c-d9ef-4c33-be99-e84bedb10b68/0/FC4A38DAAF15E8284373FD82AE59B27383D4A68F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FC4A38DAAF15E8284373FD82AE59B27383D4A68F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0546183c-d9ef-4c33-be99-e84bedb10b68/0/3130332e3133372e3134342e302f32332d3234203d3e20313338383439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.137.144.0/23 Signature Algorithm: sha256WithRSAEncryption aa:fd:8a:38:2f:78:97:f3:fe:8f:f7:63:f0:50:de:dd:3c:3d: 50:f0:b3:8d:33:15:8b:41:fc:c4:9a:b8:cf:16:5e:ad:42:a0: 59:dc:e7:31:55:c1:28:3c:98:a2:89:cf:bd:41:ba:5d:e5:81: 43:c7:16:9d:31:d2:ee:79:13:59:cb:e2:57:e7:26:c9:ce:af: 19:bd:37:a8:cf:1e:2e:fd:de:d3:9d:eb:d7:99:e7:90:64:e8: 93:f7:24:5c:f8:1a:7e:72:d0:40:da:7b:c6:31:c9:9f:46:9d: 18:fa:c9:6e:9c:47:60:aa:f7:0a:ca:63:dc:ac:52:5a:75:f4: 75:3d:5a:4d:76:dc:1f:29:d1:f0:32:95:8a:2e:60:51:a5:02: af:0e:47:75:18:03:1d:72:69:3e:89:63:5e:1a:86:d2:fe:40: 1e:e6:ee:57:db:e7:6c:42:32:bf:7b:3d:a6:90:15:44:34:34: f7:78:61:f7:91:2b:6e:e6:c1:a7:ab:de:6a:ae:16:1c:3c:25: 44:73:64:f3:0d:e2:88:4c:8e:20:f8:8c:b7:f2:34:ec:c9:9a: 7a:f6:9a:3b:cf:bc:38:7e:3c:73:da:a1:f1:b0:67:98:c3:55: fc:bc:f7:10:1d:8a:67:54:10:cf:a7:5b:4a:29:05:fe:29:34: e0:e9:4f:33 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOtYXXai+Wj9EM0SuC88B4flJJNkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkM0QTM4REFBRjE1RTgyODQzNzNGRDgyQUU1OUIyNzM4 M0Q0QTY4RjAeFw0yNDA3MDEwMTAwMTFaFw0yNTA2MzAwMTA1MTFaMDMxMTAvBgNV BAMTKDlBMTQ5OTU5MUIxMTU5MDVBQkE4MEMzRTY5RThBMUE5NTk1MkUyRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhalo9BxQwKjLrd+AZJb2uMFFE WU0JAhz6rv3iVyPOvEa8TohgBx8+dyEWFro1aIpS58QVZtxraXCVGH2+DsSMVTdA lknIZrbA1WFzQyzk8SpWCSWsau9rKH6g/3/8BhyD0BsfPazC6cEu5bv3PIfCoigp JIFZBVqGY0u0oOPNhy3BYhZLYIxtanjpTL+oyFibt/jyAzb3kuTUBJmjc34U/G5d Z19ZuLJQR9zS8PyrcdQDwr5742X210HxY4nj5ZJIm/X9z6hwhELfJBM8+Gqb2u6L 6dn4a/oO/pta0R53aJMMT44Bp1VlAUMjMOdim8L3Lnf5yWUIehf7HxudjmxdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUmhSZWRsRWQWrqAw+aeihqVlS4uwwHwYDVR0j BBgwFoAU/Eo42q8V6ChDc/2Crlmyc4PUpo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTQ2MTgzYy1kOWVmLTRjMzMtYmU5OS1lODRiZWRiMTBiNjgvMC9GQzRBMzhEQUFG MTVFODI4NDM3M0ZEODJBRTU5QjI3MzgzRDRBNjhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkM0QTM4REFBRjE1RTgyODQzNzNGRDgyQUU1OUIyNzM4M0Q0 QTY4Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1NDYxODNjLWQ5ZWYtNGMzMy1i ZTk5LWU4NGJlZGIxMGI2OC8wLzMxMzAzMzJlMzEzMzM3MmUzMTM0MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzODM0Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFniZAwDQYJ KoZIhvcNAQELBQADggEBAKr9ijgveJfz/o/3Y/BQ3t08PVDws40zFYtB/MSauM8W Xq1CoFnc5zFVwSg8mKKJz71Bul3lgUPHFp0x0u55E1nL4lfnJsnOrxm9N6jPHi79 3tOd69eZ55Bk6JP3JFz4Gn5y0EDae8YxyZ9GnRj6yW6cR2Cq9wrKY9ysUlp19HU9 Wk123B8p0fAylYouYFGlAq8OR3UYAx1yaT6JY14ahtL+QB7m7lfb52xCMr97PaaQ FUQ0NPd4YfeRK27mwaer3mquFhw8JURzZPMN4ohMjiD4jLfyNOzJmnr2mjvPvDh+ PHPaofGwZ5jDVfy89xAdimdUEM+nW0opBf4pNODpTzM= -----END CERTIFICATE-----Generated at Thu Nov 21 15:45:24 2024 by rpki-client on console-ams.rpki-client.org