$ rpki-client -vvf repo-rpki.idnic.net/repo/060744b1-2529-4ae2-b5d5-5d499d3f52c2/0/3130332e3130342e3133302e302f32342d3234203d3e20313336383731.roa File: 3130332e3130342e3133302e302f32342d3234203d3e20313336383731.roa (raw, json) Hash identifier: LgwwS+fgDKg25QWDtuUlSa123O0j3oTaPddVCPibVQw= Subject key identifier: 26:96:0E:01:B7:61:B5:A5:DE:DA:3A:74:6B:94:ED:31:D5:0A:B3:E0 Certificate issuer: /CN=D3BDA2123144839640DA280D6B971C12D0C9C929 Certificate serial: 5760680B079F6F6BCCAA0A6EE3DFD7C9756AE80A Authority key identifier: D3:BD:A2:12:31:44:83:96:40:DA:28:0D:6B:97:1C:12:D0:C9:C9:29 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3BDA2123144839640DA280D6B971C12D0C9C929.cer Subject info access: rsync://repo-rpki.idnic.net/repo/060744b1-2529-4ae2-b5d5-5d499d3f52c2/0/3130332e3130342e3133302e302f32342d3234203d3e20313336383731.roa Signing time: Mon 16 Sep 2024 04:00:02 +0000 ROA not before: Mon 16 Sep 2024 03:55:02 +0000 ROA not after: Mon 15 Sep 2025 04:00:02 +0000 asID: 136871 IP address blocks: 103.104.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/060744b1-2529-4ae2-b5d5-5d499d3f52c2/0/D3BDA2123144839640DA280D6B971C12D0C9C929.crl rsync://repo-rpki.idnic.net/repo/060744b1-2529-4ae2-b5d5-5d499d3f52c2/0/D3BDA2123144839640DA280D6B971C12D0C9C929.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3BDA2123144839640DA280D6B971C12D0C9C929.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:60:68:0b:07:9f:6f:6b:cc:aa:0a:6e:e3:df:d7:c9:75:6a:e8:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D3BDA2123144839640DA280D6B971C12D0C9C929 Validity Not Before: Sep 16 03:55:02 2024 GMT Not After : Sep 15 04:00:02 2025 GMT Subject: CN=26960E01B761B5A5DEDA3A746B94ED31D50AB3E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:12:87:45:24:d8:8c:c3:a2:a6:67:4a:58:8e: 6f:2a:d0:2a:0e:37:5a:c2:e2:a2:35:4a:9b:79:f0: 59:5c:45:3e:73:60:e2:1b:3e:c0:50:51:0d:ea:56: e9:38:bf:7d:57:da:b8:e1:60:dc:c0:0e:52:67:07: 3c:2c:55:f3:b0:37:d2:96:ec:f9:1e:ff:72:e6:5a: 1d:03:8c:bc:2b:b0:77:df:76:a8:a0:c7:26:4c:6c: ce:64:03:67:92:de:b8:d6:5f:ef:f1:a0:e1:af:e7: 9e:ce:1d:cb:73:a9:ca:13:ad:a3:8b:8b:0d:a6:11: 04:97:6a:6c:f0:27:15:d9:31:b2:c3:42:86:6b:37: e7:cf:58:65:42:55:c3:1b:d5:f4:b1:b6:a7:1a:64: a0:8e:e7:e9:a3:2f:88:fa:d5:60:71:01:0d:d6:d0: b7:95:7d:53:28:d2:07:5d:ef:46:83:ce:23:4e:1f: 1b:1f:0f:46:77:6b:85:da:81:47:ff:24:bf:5d:75: 52:9b:53:90:81:e8:f7:07:e5:d9:97:a9:b0:54:03: 9f:e6:d4:36:18:76:2d:70:82:71:33:63:d0:41:85: 46:3d:6e:d8:c0:b3:51:33:b5:f3:fc:48:f6:cf:39: 4d:44:86:33:6c:94:88:39:d9:68:30:08:1f:f1:e0: e2:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:96:0E:01:B7:61:B5:A5:DE:DA:3A:74:6B:94:ED:31:D5:0A:B3:E0 X509v3 Authority Key Identifier: keyid:D3:BD:A2:12:31:44:83:96:40:DA:28:0D:6B:97:1C:12:D0:C9:C9:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/060744b1-2529-4ae2-b5d5-5d499d3f52c2/0/D3BDA2123144839640DA280D6B971C12D0C9C929.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D3BDA2123144839640DA280D6B971C12D0C9C929.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/060744b1-2529-4ae2-b5d5-5d499d3f52c2/0/3130332e3130342e3133302e302f32342d3234203d3e20313336383731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.104.130.0/24 Signature Algorithm: sha256WithRSAEncryption aa:6d:b1:a4:ee:e2:5a:1e:dc:43:ae:f7:e3:22:c9:69:1e:a1: ef:e2:76:d8:5d:48:66:e3:9b:99:03:cf:39:5a:6c:bc:17:21: 0c:62:09:f8:24:c2:4f:35:04:57:a3:e7:6e:f1:23:59:6a:34: e4:08:d7:00:33:1a:1b:9e:ce:3d:a0:c1:73:4f:05:67:9d:ee: 66:6c:18:8c:be:46:f5:0a:47:0b:4d:91:5e:f7:5c:95:48:77: d3:b1:cc:73:54:41:0d:65:a9:d9:ef:65:35:ba:42:55:31:13: b3:e4:5c:72:38:1c:8d:bf:9a:8c:e7:c4:4a:1f:20:8a:15:a2: e1:23:80:44:36:f3:0e:bd:73:6e:31:ee:a0:d1:e7:35:42:e2: 33:d0:41:0b:22:0a:fd:2b:60:2d:de:2d:be:a2:01:94:41:48: a1:6c:97:c4:89:53:bc:46:41:d2:3a:91:49:52:52:b3:42:cf: 5a:39:5c:ee:a2:11:df:f8:1d:9f:5d:83:5e:77:c4:d5:37:8d: 04:5e:be:da:3f:f2:31:cb:84:b8:13:e5:b2:90:9c:fb:b0:8a: 2d:00:15:8b:57:1d:bc:d6:c7:ce:1d:6d:d5:55:10:bc:69:41: 49:8d:ca:d3:ed:18:87:20:34:66:82:ec:48:aa:3d:24:91:e8: bd:1d:6f:fc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUV2BoCwefb2vMqgpu49/XyXVq6AowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDNCREEyMTIzMTQ0ODM5NjQwREEyODBENkI5NzFDMTJE MEM5QzkyOTAeFw0yNDA5MTYwMzU1MDJaFw0yNTA5MTUwNDAwMDJaMDMxMTAvBgNV BAMTKDI2OTYwRTAxQjc2MUI1QTVERURBM0E3NDZCOTRFRDMxRDUwQUIzRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/EodFJNiMw6KmZ0pYjm8q0CoO N1rC4qI1Spt58FlcRT5zYOIbPsBQUQ3qVuk4v31X2rjhYNzADlJnBzwsVfOwN9KW 7Pke/3LmWh0DjLwrsHffdqigxyZMbM5kA2eS3rjWX+/xoOGv557OHctzqcoTraOL iw2mEQSXamzwJxXZMbLDQoZrN+fPWGVCVcMb1fSxtqcaZKCO5+mjL4j61WBxAQ3W 0LeVfVMo0gdd70aDziNOHxsfD0Z3a4XagUf/JL9ddVKbU5CB6PcH5dmXqbBUA5/m 1DYYdi1wgnEzY9BBhUY9btjAs1EztfP8SPbPOU1EhjNslIg52WgwCB/x4OLbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJpYOAbdhtaXe2jp0a5TtMdUKs+AwHwYDVR0j BBgwFoAU072iEjFEg5ZA2igNa5ccEtDJySkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjA3NDRiMS0yNTI5LTRhZTItYjVkNS01ZDQ5OWQzZjUyYzIvMC9EM0JEQTIxMjMx NDQ4Mzk2NDBEQTI4MEQ2Qjk3MUMxMkQwQzlDOTI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDNCREEyMTIzMTQ0ODM5NjQwREEyODBENkI5NzFDMTJEMEM5 QzkyOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2MDc0NGIxLTI1MjktNGFlMi1i NWQ1LTVkNDk5ZDNmNTJjMi8wLzMxMzAzMzJlMzEzMDM0MmUzMTMzMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM3MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnaIIwDQYJ KoZIhvcNAQELBQADggEBAKptsaTu4loe3EOu9+MiyWkeoe/idthdSGbjm5kDzzla bLwXIQxiCfgkwk81BFej527xI1lqNOQI1wAzGhuezj2gwXNPBWed7mZsGIy+RvUK RwtNkV73XJVId9OxzHNUQQ1lqdnvZTW6QlUxE7PkXHI4HI2/moznxEofIIoVouEj gEQ28w69c24x7qDR5zVC4jPQQQsiCv0rYC3eLb6iAZRBSKFsl8SJU7xGQdI6kUlS UrNCz1o5XO6iEd/4HZ9dg153xNU3jQRevto/8jHLhLgT5bKQnPuwii0AFYtXHbzW x84dbdVVELxpQUmNytPtGIcgNGaC7EiqPSSR6L0db/w= -----END CERTIFICATE-----Generated at Fri Nov 22 23:37:26 2024 by rpki-client on console-fra.rpki-client.org