$ rpki-client -vvf repo-rpki.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/3130332e3138392e3132332e302f32342d3234203d3e20313430343537.roa File: 3130332e3138392e3132332e302f32342d3234203d3e20313430343537.roa (raw, json) Hash identifier: XoL0ZPngBP0byGwDlhB4lXxaaXcnR74YfmodJijlChw= Subject key identifier: 5A:00:37:76:0C:B5:F7:DF:A1:A4:37:35:A7:2B:AC:9A:AB:C4:F0:6E Certificate issuer: /CN=C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728 Certificate serial: 6983A3F3D9152AC95467DAF3F6F91C4671B61AD7 Authority key identifier: C9:F4:4E:61:DD:69:59:AC:A8:B0:B0:BE:9C:51:6F:5B:68:3E:D7:28 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/3130332e3138392e3132332e302f32342d3234203d3e20313430343537.roa Signing time: Fri 29 Dec 2023 14:04:37 +0000 ROA not before: Fri 29 Dec 2023 13:59:37 +0000 ROA not after: Fri 27 Dec 2024 14:04:37 +0000 asID: 140457 IP address blocks: 103.189.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728.crl rsync://repo-rpki.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:83:a3:f3:d9:15:2a:c9:54:67:da:f3:f6:f9:1c:46:71:b6:1a:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728 Validity Not Before: Dec 29 13:59:37 2023 GMT Not After : Dec 27 14:04:37 2024 GMT Subject: CN=5A0037760CB5F7DFA1A43735A72BAC9AABC4F06E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f2:59:ee:59:d2:25:48:66:b3:ad:9c:2d:49: c8:bd:7e:46:e4:ee:18:3a:2d:e2:8a:19:da:89:1f: e4:23:ac:e7:f3:f3:6b:f4:2a:b3:84:6f:9e:9a:93: fd:b5:21:18:fb:89:ec:c5:28:9f:7a:12:92:49:53: e7:25:6c:03:6a:8b:34:6a:32:21:05:95:1a:09:c5: 09:01:fc:78:1a:f8:7e:4a:33:dd:32:a3:a1:05:88: 97:5c:42:fd:1d:8c:15:09:d3:7e:21:2a:37:50:ea: 19:f5:e8:fe:e2:3d:d4:15:0b:49:04:15:9b:7a:38: b5:4a:1d:94:52:72:57:14:92:b8:a2:d2:6a:76:61: 79:7b:25:a7:11:7f:22:bb:83:5b:aa:aa:f0:3a:a9: 43:81:35:ac:95:82:ba:03:6a:b2:37:c9:2b:bc:ca: 1e:36:3c:10:a9:1d:60:ee:c4:82:28:54:f4:a2:5e: 7a:b9:79:00:cd:8a:2c:ab:3b:a2:79:53:da:1e:be: 0b:d4:2b:72:7c:a1:f8:34:37:69:fe:24:41:3c:c4: 1b:53:ee:f2:a1:7e:32:45:49:a1:0e:65:a4:cc:93: d7:e5:52:ff:b2:9b:3b:4e:5e:96:eb:fb:71:6b:e6: ec:33:b2:be:dc:94:b1:43:7d:c7:a3:1b:53:17:05: be:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:00:37:76:0C:B5:F7:DF:A1:A4:37:35:A7:2B:AC:9A:AB:C4:F0:6E X509v3 Authority Key Identifier: keyid:C9:F4:4E:61:DD:69:59:AC:A8:B0:B0:BE:9C:51:6F:5B:68:3E:D7:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/3130332e3138392e3132332e302f32342d3234203d3e20313430343537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.123.0/24 Signature Algorithm: sha256WithRSAEncryption 57:e5:3e:04:59:66:92:98:66:ba:6e:39:75:d1:90:4d:dc:9d: de:2e:91:3c:22:01:bc:13:f2:78:98:d4:a6:58:28:cc:3f:6b: 95:8f:42:64:84:a8:ab:1f:98:dc:2a:36:86:ea:56:d3:33:ce: b8:02:d5:1d:2d:06:38:f4:ab:3f:1d:14:1f:33:ca:8e:80:66: 3e:0c:30:60:d7:39:eb:0f:4b:a5:9d:54:03:26:83:6f:d6:37: 20:ca:87:13:68:4a:52:0c:90:0f:60:bb:42:26:66:8d:3a:f0: 4f:2a:db:bf:06:24:77:19:61:78:df:cd:f6:c4:4b:cf:d1:14: 84:02:86:6e:88:ea:c5:36:fe:8f:bb:3e:74:94:06:b8:9b:63: 8c:d6:be:7c:bb:76:ab:87:61:4a:43:c0:08:37:fa:64:91:44: 48:13:0f:de:ed:51:51:9c:ba:f9:ec:12:ca:50:83:4e:54:bd: b5:3e:92:e6:ef:b9:15:40:a7:e3:eb:bc:bf:97:a3:78:a8:0b: 12:46:cf:ed:e4:ce:34:be:25:77:bc:50:4c:58:f4:44:58:2a: 51:72:e2:71:cf:26:c5:d1:01:6a:d4:56:66:9c:88:bf:b2:ea: a8:5e:a6:52:67:5a:e6:33:d2:b4:45:5c:3e:06:ad:9f:70:ac: b0:eb:58:ab -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUaYOj89kVKslUZ9rz9vkcRnG2GtcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzlGNDRFNjFERDY5NTlBQ0E4QjBCMEJFOUM1MTZGNUI2 ODNFRDcyODAeFw0yMzEyMjkxMzU5MzdaFw0yNDEyMjcxNDA0MzdaMDMxMTAvBgNV BAMTKDVBMDAzNzc2MENCNUY3REZBMUE0MzczNUE3MkJBQzlBQUJDNEYwNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC18lnuWdIlSGazrZwtSci9fkbk 7hg6LeKKGdqJH+QjrOfz82v0KrOEb56ak/21IRj7iezFKJ96EpJJU+clbANqizRq MiEFlRoJxQkB/Hga+H5KM90yo6EFiJdcQv0djBUJ034hKjdQ6hn16P7iPdQVC0kE FZt6OLVKHZRSclcUkrii0mp2YXl7JacRfyK7g1uqqvA6qUOBNayVgroDarI3ySu8 yh42PBCpHWDuxIIoVPSiXnq5eQDNiiyrO6J5U9oevgvUK3J8ofg0N2n+JEE8xBtT 7vKhfjJFSaEOZaTMk9flUv+ymztOXpbr+3Fr5uwzsr7clLFDfcejG1MXBb6vAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWgA3dgy199+hpDc1pyusmqvE8G4wHwYDVR0j BBgwFoAUyfROYd1pWayosLC+nFFvW2g+1ygwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YmEwYjhmOC00ZmNmLTRiOWItOTc5NC1jZDNiNGU0MDZlYWIvMC9DOUY0NEU2MURE Njk1OUFDQThCMEIwQkU5QzUxNkY1QjY4M0VENzI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzlGNDRFNjFERDY5NTlBQ0E4QjBCMEJFOUM1MTZGNUI2ODNF RDcyOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBiYTBiOGY4LTRmY2YtNGI5Yi05 Nzk0LWNkM2I0ZTQwNmVhYi8wLzMxMzAzMzJlMzEzODM5MmUzMTMyMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM1Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvXswDQYJ KoZIhvcNAQELBQADggEBAFflPgRZZpKYZrpuOXXRkE3cnd4ukTwiAbwT8niY1KZY KMw/a5WPQmSEqKsfmNwqNobqVtMzzrgC1R0tBjj0qz8dFB8zyo6AZj4MMGDXOesP S6WdVAMmg2/WNyDKhxNoSlIMkA9gu0ImZo068E8q278GJHcZYXjfzfbES8/RFIQC hm6I6sU2/o+7PnSUBribY4zWvny7dquHYUpDwAg3+mSRREgTD97tUVGcuvnsEspQ g05UvbU+kubvuRVAp+PrvL+Xo3ioCxJGz+3kzjS+JXe8UExY9ERYKlFy4nHPJsXR AWrUVmaciL+y6qheplJnWuYz0rRFXD4GrZ9wrLDrWKs= -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:56 2024 by rpki-client on console-fra.rpki-client.org