$ rpki-client -vvf repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130392e302f32342d3234203d3e203538333639.roa File: 3130332e3134302e3130392e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: jPEdG1cLq2gj/WNKOIPtFa6M4hu2Ul5X/bflKXX2AsU= Subject key identifier: 37:25:64:CE:3F:24:DE:71:82:B1:3B:0B:D0:CF:35:D9:33:BC:83:33 Certificate issuer: /CN=0D5DCD544694BBE8DB99D2D8DAB98314745CD97F Certificate serial: 33860290ADC4F6238BBD50DE8F9A523500CBD4BC Authority key identifier: 0D:5D:CD:54:46:94:BB:E8:DB:99:D2:D8:DA:B9:83:14:74:5C:D9:7F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130392e302f32342d3234203d3e203538333639.roa Signing time: Mon 01 Jul 2024 01:05:40 +0000 ROA not before: Mon 01 Jul 2024 01:00:40 +0000 ROA not after: Mon 30 Jun 2025 01:05:40 +0000 asID: 58369 IP address blocks: 103.140.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.crl rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:86:02:90:ad:c4:f6:23:8b:bd:50:de:8f:9a:52:35:00:cb:d4:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D5DCD544694BBE8DB99D2D8DAB98314745CD97F Validity Not Before: Jul 1 01:00:40 2024 GMT Not After : Jun 30 01:05:40 2025 GMT Subject: CN=372564CE3F24DE7182B13B0BD0CF35D933BC8333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:79:65:b0:77:db:2b:8a:be:01:9c:d5:69:c9: 04:13:2f:f1:18:59:b5:ef:af:73:4e:aa:af:be:a6: a6:96:1d:99:98:20:4a:d1:d7:ba:bb:4f:4b:dc:32: bf:f7:cf:6a:37:b2:9c:eb:9f:1e:e4:18:02:b7:9a: 6c:f6:b7:42:22:10:cc:93:8c:71:49:dd:05:7f:c2: 94:34:40:9d:fd:c0:8d:6a:e4:1d:76:b1:c1:50:e6: f2:5d:0d:97:a9:60:24:fa:d8:b8:e9:d8:71:cf:f6: 46:bc:fd:55:7e:39:66:0b:b6:df:ad:51:8d:1b:ed: 46:09:3d:df:6c:6d:4c:65:50:90:52:8e:68:0b:03: cd:b5:3b:70:83:02:43:df:51:80:04:9f:43:c9:92: 00:56:21:ab:fd:54:73:26:ec:40:00:26:ae:b0:88: a7:f2:0f:f7:ac:d7:db:45:44:04:bc:6c:56:80:c1: c3:5a:f6:8e:8d:cd:4f:c2:b4:10:72:33:88:03:17: d2:29:dd:41:d5:4b:71:03:7c:ba:87:5c:02:05:39: 50:a5:3f:5d:db:cc:88:86:f2:a4:0c:0b:82:4b:1c: a3:5f:c9:40:d2:32:50:1e:a7:6e:5e:62:54:2a:b2: 7f:84:10:ae:85:67:d7:7d:48:4f:c2:ae:c7:16:82: 65:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:25:64:CE:3F:24:DE:71:82:B1:3B:0B:D0:CF:35:D9:33:BC:83:33 X509v3 Authority Key Identifier: keyid:0D:5D:CD:54:46:94:BB:E8:DB:99:D2:D8:DA:B9:83:14:74:5C:D9:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130392e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.109.0/24 Signature Algorithm: sha256WithRSAEncryption c2:1b:66:29:15:f7:a6:fd:80:23:d5:52:f3:22:5a:27:60:58: 1a:02:cc:59:64:08:04:e3:0d:7c:0c:aa:64:99:05:d9:91:2f: 6e:7c:4c:14:7a:76:af:46:bb:0c:21:8f:fb:08:c2:7d:2c:58: fd:ad:2d:b1:7f:d8:fe:40:0a:ca:18:98:17:80:54:3a:cc:f1: 07:33:e9:6a:4d:ab:5b:5b:34:5d:dd:1c:dc:6b:c4:80:ac:2f: e9:52:6c:d1:f1:1d:d6:9d:3a:42:da:2a:96:aa:0d:f9:50:75: 4d:d4:34:25:a9:bd:94:3c:7f:d4:26:41:88:1f:b2:82:79:f8: ab:be:57:80:79:a7:e6:19:18:cf:a9:39:a3:84:13:ff:0d:36: e3:03:5a:60:04:6f:bd:3d:7f:0a:8b:de:08:3b:eb:17:c5:06: 74:8c:7c:15:82:d4:ed:5c:1a:0f:97:53:5b:8d:01:5b:d0:8f: f2:93:20:0e:79:bd:6f:76:b6:88:09:6e:95:3e:db:60:a8:8d: 7d:3c:6e:0e:45:7a:23:34:8f:f2:42:e4:a2:c6:e9:9c:8f:c1: 7b:6b:17:53:7e:c5:b0:b4:5b:59:fb:4d:aa:ef:23:22:c5:d3: 73:12:50:6a:ab:34:48:d0:6f:49:08:33:fe:6d:36:1d:e9:db: 88:76:f3:92 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUM4YCkK3E9iOLvVDej5pSNQDL1LwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEQ1RENENTQ0Njk0QkJFOERCOTlEMkQ4REFCOTgzMTQ3 NDVDRDk3RjAeFw0yNDA3MDEwMTAwNDBaFw0yNTA2MzAwMTA1NDBaMDMxMTAvBgNV BAMTKDM3MjU2NENFM0YyNERFNzE4MkIxM0IwQkQwQ0YzNUQ5MzNCQzgzMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDheWWwd9srir4BnNVpyQQTL/EY WbXvr3NOqq++pqaWHZmYIErR17q7T0vcMr/3z2o3spzrnx7kGAK3mmz2t0IiEMyT jHFJ3QV/wpQ0QJ39wI1q5B12scFQ5vJdDZepYCT62Ljp2HHP9ka8/VV+OWYLtt+t UY0b7UYJPd9sbUxlUJBSjmgLA821O3CDAkPfUYAEn0PJkgBWIav9VHMm7EAAJq6w iKfyD/es19tFRAS8bFaAwcNa9o6NzU/CtBByM4gDF9Ip3UHVS3EDfLqHXAIFOVCl P13bzIiG8qQMC4JLHKNfyUDSMlAep25eYlQqsn+EEK6FZ9d9SE/CrscWgmUjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNyVkzj8k3nGCsTsL0M812TO8gzMwHwYDVR0j BBgwFoAUDV3NVEaUu+jbmdLY2rmDFHRc2X8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YTRhMjFiOS1mOTEyLTQxZjMtYjYyYy0xMjE3NTgxYzk0OGEvMC8wRDVEQ0Q1NDQ2 OTRCQkU4REI5OUQyRDhEQUI5ODMxNDc0NUNEOTdGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEQ1RENENTQ0Njk0QkJFOERCOTlEMkQ4REFCOTgzMTQ3NDVD RDk3Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhNGEyMWI5LWY5MTItNDFmMy1i NjJjLTEyMTc1ODFjOTQ4YS8wLzMxMzAzMzJlMzEzNDMwMmUzMTMwMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4xtMA0GCSqG SIb3DQEBCwUAA4IBAQDCG2YpFfem/YAj1VLzIlonYFgaAsxZZAgE4w18DKpkmQXZ kS9ufEwUenavRrsMIY/7CMJ9LFj9rS2xf9j+QArKGJgXgFQ6zPEHM+lqTatbWzRd 3Rzca8SArC/pUmzR8R3WnTpC2iqWqg35UHVN1DQlqb2UPH/UJkGIH7KCefirvleA eafmGRjPqTmjhBP/DTbjA1pgBG+9PX8Ki94IO+sXxQZ0jHwVgtTtXBoPl1NbjQFb 0I/ykyAOeb1vdraICW6VPttgqI19PG4ORXojNI/yQuSixumcj8F7axdTfsWwtFtZ +02q7yMixdNzElBqqzRI0G9JCDP+bTYd6duIdvOS -----END CERTIFICATE-----Generated at Thu Nov 21 09:07:03 2024 by rpki-client on console-ams.rpki-client.org