$ rpki-client -vvf repo-rpki.idnic.net/repo/07deded1-d14e-4123-b5c9-c93a5997fc30/0/3130332e3132312e3132332e302f32342d3234203d3e20313338303539.roa File: 3130332e3132312e3132332e302f32342d3234203d3e20313338303539.roa (raw, json) Hash identifier: l1fPLAUFtTJNdU6bqE1PdelWpd2VBBi10WlrLYglW7I= Subject key identifier: 91:4F:71:78:70:9A:62:85:D7:F1:09:AC:47:8D:18:C2:0E:73:9C:B6 Certificate issuer: /CN=B6847B928C30800282D7BA8E337482DFF4DEC8A5 Certificate serial: 15A2BF6997AF5B2D34FB910C6B230A8E86088767 Authority key identifier: B6:84:7B:92:8C:30:80:02:82:D7:BA:8E:33:74:82:DF:F4:DE:C8:A5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6847B928C30800282D7BA8E337482DFF4DEC8A5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07deded1-d14e-4123-b5c9-c93a5997fc30/0/3130332e3132312e3132332e302f32342d3234203d3e20313338303539.roa Signing time: Mon 01 Jul 2024 01:06:04 +0000 ROA not before: Mon 01 Jul 2024 01:01:04 +0000 ROA not after: Mon 30 Jun 2025 01:06:04 +0000 asID: 138059 IP address blocks: 103.121.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07deded1-d14e-4123-b5c9-c93a5997fc30/0/B6847B928C30800282D7BA8E337482DFF4DEC8A5.crl rsync://repo-rpki.idnic.net/repo/07deded1-d14e-4123-b5c9-c93a5997fc30/0/B6847B928C30800282D7BA8E337482DFF4DEC8A5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6847B928C30800282D7BA8E337482DFF4DEC8A5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:a2:bf:69:97:af:5b:2d:34:fb:91:0c:6b:23:0a:8e:86:08:87:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6847B928C30800282D7BA8E337482DFF4DEC8A5 Validity Not Before: Jul 1 01:01:04 2024 GMT Not After : Jun 30 01:06:04 2025 GMT Subject: CN=914F7178709A6285D7F109AC478D18C20E739CB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2c:e3:92:28:62:0f:d1:46:8e:b2:b3:20:4d: db:2d:41:c5:eb:61:77:cf:6e:6c:7f:56:79:d1:32: 23:e9:ef:3d:f5:ba:a2:fe:70:77:58:2e:e1:18:43: 01:52:ba:7c:f8:e5:fe:31:7a:52:3b:fc:c5:0e:c0: d8:5a:85:77:85:53:0c:8c:c5:12:d7:ca:92:e0:8f: e7:5c:bd:66:72:c6:74:49:d8:bd:0d:54:12:7e:92: 34:a8:36:05:cd:fa:9d:12:c4:fd:d7:28:af:59:ab: fb:0e:84:b3:52:b2:3f:1e:24:a8:ed:fa:88:e2:d7: 28:5d:62:bf:f3:b6:90:e1:83:ab:7a:9f:a4:25:6b: 5f:ed:38:e0:35:50:bb:88:e0:0b:3c:c6:f9:94:f0: f3:1d:23:9b:88:58:0f:b2:d2:11:a0:d7:51:39:71: f4:5d:0a:e6:a5:17:53:99:6c:14:54:62:b3:ac:b2: ba:e0:a0:3a:d1:3c:0b:cc:3a:cb:e1:cb:7c:3a:28: d1:5c:2a:30:48:82:3f:58:f9:75:cd:17:64:30:88: da:0f:74:89:aa:8f:1a:a3:f8:43:05:ec:ed:7c:bd: e2:15:e7:4e:c1:71:54:3e:a8:17:d1:4e:3c:bd:9b: fe:d1:cd:d0:24:9e:30:6d:04:30:e3:9d:9c:6f:6c: be:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:4F:71:78:70:9A:62:85:D7:F1:09:AC:47:8D:18:C2:0E:73:9C:B6 X509v3 Authority Key Identifier: keyid:B6:84:7B:92:8C:30:80:02:82:D7:BA:8E:33:74:82:DF:F4:DE:C8:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07deded1-d14e-4123-b5c9-c93a5997fc30/0/B6847B928C30800282D7BA8E337482DFF4DEC8A5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6847B928C30800282D7BA8E337482DFF4DEC8A5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07deded1-d14e-4123-b5c9-c93a5997fc30/0/3130332e3132312e3132332e302f32342d3234203d3e20313338303539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.123.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:e7:16:b8:5f:48:a9:78:88:a0:c2:a7:99:77:96:f8:a3:06: 25:90:bf:1b:c9:7d:25:40:13:0a:da:48:f5:62:98:c8:10:b9: bd:23:e6:05:af:22:80:2b:a6:58:0f:08:62:f7:68:8c:53:24: 59:c4:2f:ef:31:5b:f9:e1:ec:9a:c7:77:5a:a0:69:dc:f0:cf: c7:94:ce:79:c5:c9:ae:8d:67:d8:29:a0:a2:2a:17:d9:8b:54: bb:13:f4:a8:03:08:8a:7a:73:17:38:fa:f5:37:90:94:fc:8b: 30:32:49:8b:5d:3f:4d:35:b4:6c:d0:b7:d6:10:17:f8:3f:b5: 93:72:27:3e:fd:c4:b2:50:43:53:2b:0f:71:18:e6:2c:24:d2: 66:fc:d5:81:f5:23:28:22:e1:1f:dd:e0:64:6d:8a:f9:f7:95: 35:f9:f0:d0:08:b2:1c:e7:4b:bc:11:e0:70:26:ac:96:f1:a3: 94:1e:eb:b3:e6:5f:34:a0:9a:42:f1:74:40:ee:3b:d2:42:69: 54:e9:d5:27:75:27:e1:4e:df:95:0c:02:7c:77:03:be:a0:90: 8f:f2:9f:83:16:35:d0:b2:0c:3d:5a:8b:31:bd:9a:50:43:36: 28:8b:f8:2c:4b:5e:04:11:2e:e2:98:4d:ca:79:b5:22:3d:fe: 96:ef:8f:89 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFaK/aZevWy00+5EMayMKjoYIh2cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY4NDdCOTI4QzMwODAwMjgyRDdCQThFMzM3NDgyREZG NERFQzhBNTAeFw0yNDA3MDEwMTAxMDRaFw0yNTA2MzAwMTA2MDRaMDMxMTAvBgNV BAMTKDkxNEY3MTc4NzA5QTYyODVEN0YxMDlBQzQ3OEQxOEMyMEU3MzlDQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTLOOSKGIP0UaOsrMgTdstQcXr YXfPbmx/VnnRMiPp7z31uqL+cHdYLuEYQwFSunz45f4xelI7/MUOwNhahXeFUwyM xRLXypLgj+dcvWZyxnRJ2L0NVBJ+kjSoNgXN+p0SxP3XKK9Zq/sOhLNSsj8eJKjt +oji1yhdYr/ztpDhg6t6n6Qla1/tOOA1ULuI4As8xvmU8PMdI5uIWA+y0hGg11E5 cfRdCualF1OZbBRUYrOssrrgoDrRPAvMOsvhy3w6KNFcKjBIgj9Y+XXNF2QwiNoP dImqjxqj+EMF7O18veIV507BcVQ+qBfRTjy9m/7RzdAknjBtBDDjnZxvbL5/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUkU9xeHCaYoXX8QmsR40Ywg5znLYwHwYDVR0j BBgwFoAUtoR7kowwgAKC17qOM3SC3/TeyKUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w N2RlZGVkMS1kMTRlLTQxMjMtYjVjOS1jOTNhNTk5N2ZjMzAvMC9CNjg0N0I5MjhD MzA4MDAyODJEN0JBOEUzMzc0ODJERkY0REVDOEE1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjY4NDdCOTI4QzMwODAwMjgyRDdCQThFMzM3NDgyREZGNERF QzhBNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA3ZGVkZWQxLWQxNGUtNDEyMy1i NWM5LWM5M2E1OTk3ZmMzMC8wLzMxMzAzMzJlMzEzMjMxMmUzMTMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM1Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABneXswDQYJ KoZIhvcNAQELBQADggEBAD/nFrhfSKl4iKDCp5l3lvijBiWQvxvJfSVAEwraSPVi mMgQub0j5gWvIoArplgPCGL3aIxTJFnEL+8xW/nh7JrHd1qgadzwz8eUznnFya6N Z9gpoKIqF9mLVLsT9KgDCIp6cxc4+vU3kJT8izAySYtdP001tGzQt9YQF/g/tZNy Jz79xLJQQ1MrD3EY5iwk0mb81YH1Iygi4R/d4GRtivn3lTX58NAIshznS7wR4HAm rJbxo5Qe67PmXzSgmkLxdEDuO9JCaVTp1Sd1J+FO35UMAnx3A76gkI/yn4MWNdCy DD1aizG9mlBDNiiL+CxLXgQRLuKYTcp5tSI9/pbvj4k= -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:45 2024 by rpki-client on console-ams.rpki-client.org