$ rpki-client -vvf repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/3130332e3134312e3233382e302f32332d3234203d3e20313339333637.roa File: 3130332e3134312e3233382e302f32332d3234203d3e20313339333637.roa (raw, json) Hash identifier: ptFcyErEiJ1JYS1a1G9a9k9pSg8MxBcsAnCveu1OYpY= Subject key identifier: E3:33:8B:D9:22:F1:53:66:CC:B4:38:82:CC:6C:CD:D1:9D:BA:0A:27 Certificate issuer: /CN=E7D91E7B841DB274E77E823084312F8B78A5C951 Certificate serial: 1754304060D77D295D25946E3420FEA85E37F853 Authority key identifier: E7:D9:1E:7B:84:1D:B2:74:E7:7E:82:30:84:31:2F:8B:78:A5:C9:51 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7D91E7B841DB274E77E823084312F8B78A5C951.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/3130332e3134312e3233382e302f32332d3234203d3e20313339333637.roa Signing time: Tue 13 Aug 2024 14:00:02 +0000 ROA not before: Tue 13 Aug 2024 13:55:02 +0000 ROA not after: Tue 12 Aug 2025 14:00:02 +0000 asID: 139367 IP address blocks: 103.141.238.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/E7D91E7B841DB274E77E823084312F8B78A5C951.crl rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/E7D91E7B841DB274E77E823084312F8B78A5C951.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7D91E7B841DB274E77E823084312F8B78A5C951.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:54:30:40:60:d7:7d:29:5d:25:94:6e:34:20:fe:a8:5e:37:f8:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E7D91E7B841DB274E77E823084312F8B78A5C951 Validity Not Before: Aug 13 13:55:02 2024 GMT Not After : Aug 12 14:00:02 2025 GMT Subject: CN=E3338BD922F15366CCB43882CC6CCDD19DBA0A27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f5:69:f7:4d:7c:f0:fa:01:cf:4b:bc:55:1c: e3:79:b4:9c:bd:be:11:5f:9d:e2:c5:45:d9:1f:41: 94:cd:37:ad:36:c4:10:ae:8a:53:2e:e9:b8:28:7d: 37:b2:3f:3a:7c:2d:64:66:b3:79:6e:51:25:67:e0: ac:2d:51:7b:24:56:45:ab:df:42:3f:37:47:66:2f: 29:9c:52:ba:90:a0:89:96:41:a3:7d:b5:57:81:6d: 45:a4:b3:09:41:4c:55:5a:86:e2:e4:d1:7c:01:b0: be:04:1f:af:ea:7c:17:43:6d:f8:6e:a2:d8:ef:e0: c2:9c:0b:dd:0a:0e:37:20:5e:d3:60:54:73:1c:3e: 72:75:64:cb:98:15:c8:ad:c2:f0:b5:35:e2:80:c2: f7:69:9d:c2:7c:29:f7:fa:7e:82:62:fe:ed:57:0c: 59:57:22:76:30:13:41:8c:a9:7a:ce:f4:a1:46:bd: 72:bd:b0:20:0a:72:12:cf:15:dd:12:dd:2c:6a:03: c9:5e:cb:e0:f3:a1:44:9a:cd:1c:aa:90:a3:0f:f5: 43:57:eb:71:bd:8c:0a:55:7d:98:03:60:52:de:7e: c3:45:1f:26:18:0d:b1:66:9e:41:af:98:69:24:7b: 58:73:f9:d6:34:a5:73:3f:75:29:e5:35:1f:75:ae: 26:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:33:8B:D9:22:F1:53:66:CC:B4:38:82:CC:6C:CD:D1:9D:BA:0A:27 X509v3 Authority Key Identifier: keyid:E7:D9:1E:7B:84:1D:B2:74:E7:7E:82:30:84:31:2F:8B:78:A5:C9:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/E7D91E7B841DB274E77E823084312F8B78A5C951.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E7D91E7B841DB274E77E823084312F8B78A5C951.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a7083ab-270a-4b0a-8e55-a45e1cf1afd5/0/3130332e3134312e3233382e302f32332d3234203d3e20313339333637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.141.238.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:2a:8f:44:ba:2a:10:71:a6:66:1b:b2:f3:a9:2d:dd:83:d7: e1:57:46:a6:83:96:51:4f:25:33:c3:bb:02:a7:8e:da:f7:a1: ac:45:36:b8:49:2e:58:d2:61:52:05:71:b2:fc:02:80:10:3d: e8:b7:f7:e6:47:49:be:e6:b5:aa:dd:80:28:ef:95:17:5a:3f: 8b:6b:c4:7e:0b:37:b6:d9:72:ae:fd:8b:a7:d2:d0:26:68:7e: 52:4f:20:c9:ae:26:a8:68:6c:d8:bc:47:ff:4c:5b:38:a9:60: 5d:dc:27:6e:7d:94:56:25:40:3b:6b:c7:fb:8f:57:11:52:52: aa:4d:2a:27:98:dd:12:9c:5f:e0:70:2c:12:4a:d0:60:ac:e7: fe:eb:fb:d1:4e:b5:52:a4:d0:59:1c:83:12:37:63:56:04:0d: b6:16:3f:69:ce:cc:47:5f:0d:7d:43:ae:18:b4:28:a8:c5:bc: 90:ca:8f:e7:cf:e2:67:56:28:f1:b4:5f:a1:d2:6d:7a:8c:de: 6b:af:06:70:c6:67:af:70:87:12:b7:a3:eb:dd:0e:8c:fb:4b: b7:c6:b9:9a:12:f1:cb:8a:9e:ca:0e:c9:eb:c8:08:0d:dd:af: dd:d6:f2:66:56:fd:7f:4e:b9:2d:56:46:3d:f5:b6:fb:f8:5a: 59:19:96:01 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUF1QwQGDXfSldJZRuNCD+qF43+FMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTdEOTFFN0I4NDFEQjI3NEU3N0U4MjMwODQzMTJGOEI3 OEE1Qzk1MTAeFw0yNDA4MTMxMzU1MDJaFw0yNTA4MTIxNDAwMDJaMDMxMTAvBgNV BAMTKEUzMzM4QkQ5MjJGMTUzNjZDQ0I0Mzg4MkNDNkNDREQxOURCQTBBMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw9Wn3TXzw+gHPS7xVHON5tJy9 vhFfneLFRdkfQZTNN602xBCuilMu6bgofTeyPzp8LWRms3luUSVn4KwtUXskVkWr 30I/N0dmLymcUrqQoImWQaN9tVeBbUWkswlBTFVahuLk0XwBsL4EH6/qfBdDbfhu otjv4MKcC90KDjcgXtNgVHMcPnJ1ZMuYFcitwvC1NeKAwvdpncJ8Kff6foJi/u1X DFlXInYwE0GMqXrO9KFGvXK9sCAKchLPFd0S3SxqA8ley+DzoUSazRyqkKMP9UNX 63G9jApVfZgDYFLefsNFHyYYDbFmnkGvmGkke1hz+dY0pXM/dSnlNR91riZBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU4zOL2SLxU2bMtDiCzGzN0Z26CicwHwYDVR0j BBgwFoAU59kee4QdsnTnfoIwhDEvi3ilyVEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YTcwODNhYi0yNzBhLTRiMGEtOGU1NS1hNDVlMWNmMWFmZDUvMC9FN0Q5MUU3Qjg0 MURCMjc0RTc3RTgyMzA4NDMxMkY4Qjc4QTVDOTUxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTdEOTFFN0I4NDFEQjI3NEU3N0U4MjMwODQzMTJGOEI3OEE1 Qzk1MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhNzA4M2FiLTI3MGEtNGIwYS04 ZTU1LWE0NWUxY2YxYWZkNS8wLzMxMzAzMzJlMzEzNDMxMmUzMjMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM2Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnje4wDQYJ KoZIhvcNAQELBQADggEBAAwqj0S6KhBxpmYbsvOpLd2D1+FXRqaDllFPJTPDuwKn jtr3oaxFNrhJLljSYVIFcbL8AoAQPei39+ZHSb7mtardgCjvlRdaP4trxH4LN7bZ cq79i6fS0CZoflJPIMmuJqhobNi8R/9MWzipYF3cJ259lFYlQDtrx/uPVxFSUqpN KieY3RKcX+BwLBJK0GCs5/7r+9FOtVKk0FkcgxI3Y1YEDbYWP2nOzEdfDX1Drhi0 KKjFvJDKj+fP4mdWKPG0X6HSbXqM3muvBnDGZ69whxK3o+vdDoz7S7fGuZoS8cuK nsoOyevICA3dr93W8mZW/X9OuS1WRj31tvv4WlkZlgE= -----END CERTIFICATE-----Generated at Mon Nov 25 19:46:14 2024 by rpki-client on console-fra.rpki-client.org