$ rpki-client -vvf repo-rpki.idnic.net/repo/0bb8e612-7bb3-48de-969d-71b45f46a161/1/3130332e3132302e34302e302f32342d3234203d3e20313530343934.roa File: 3130332e3132302e34302e302f32342d3234203d3e20313530343934.roa (raw, json) Hash identifier: jaRZ4iiKoCwmf+W7WkzPojshFDB+U5bhvAZARb73ND0= Subject key identifier: 70:D5:FF:63:E3:71:61:25:CE:6C:FB:35:28:1F:B8:25:77:76:95:EA Certificate issuer: /CN=279F9ED4B08F2103C13392D95636C445577A6339 Certificate serial: 672A79CE3F16C827F2A72797CF1E150B65422909 Authority key identifier: 27:9F:9E:D4:B0:8F:21:03:C1:33:92:D9:56:36:C4:45:57:7A:63:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/279F9ED4B08F2103C13392D95636C445577A6339.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0bb8e612-7bb3-48de-969d-71b45f46a161/1/3130332e3132302e34302e302f32342d3234203d3e20313530343934.roa Signing time: Tue 06 Feb 2024 07:47:58 +0000 ROA not before: Tue 06 Feb 2024 07:42:58 +0000 ROA not after: Tue 04 Feb 2025 07:47:58 +0000 asID: 150494 IP address blocks: 103.120.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0bb8e612-7bb3-48de-969d-71b45f46a161/1/279F9ED4B08F2103C13392D95636C445577A6339.crl rsync://repo-rpki.idnic.net/repo/0bb8e612-7bb3-48de-969d-71b45f46a161/1/279F9ED4B08F2103C13392D95636C445577A6339.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/279F9ED4B08F2103C13392D95636C445577A6339.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:2a:79:ce:3f:16:c8:27:f2:a7:27:97:cf:1e:15:0b:65:42:29:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=279F9ED4B08F2103C13392D95636C445577A6339 Validity Not Before: Feb 6 07:42:58 2024 GMT Not After : Feb 4 07:47:58 2025 GMT Subject: CN=70D5FF63E3716125CE6CFB35281FB825777695EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:eb:ff:16:ed:aa:05:70:92:62:19:27:fd:41: 78:39:f1:02:21:26:24:51:0c:73:11:e2:bf:92:fc: 55:88:02:62:d3:32:c6:23:7d:d8:bf:8b:1e:49:5e: 2d:95:88:be:e0:67:4c:2b:8c:c5:80:a5:87:bc:06: 34:8f:77:3a:95:34:3d:59:13:c4:4c:2b:35:c7:6d: 72:47:18:89:33:3c:01:f9:47:a2:46:ee:b1:a2:31: 06:2a:e4:42:be:0a:0c:cf:9a:23:a5:9f:8e:11:46: 0c:76:51:01:a7:84:12:f2:72:d0:76:64:5f:46:33: df:92:f2:e7:2d:3f:a7:d2:7b:7d:c5:26:4f:03:bf: 38:07:08:6f:17:0e:04:fd:ed:ad:92:4a:af:ba:75: 6e:a8:03:dc:56:9f:59:02:55:68:cb:9b:8f:e8:85: 76:ca:50:13:75:0a:0d:1b:1f:39:a1:8c:76:dd:20: d6:2b:f0:a3:18:aa:29:99:e7:ec:ce:3a:13:92:33: 9d:3c:4d:54:79:2c:ba:86:da:42:35:16:97:93:eb: 7d:ca:23:09:b8:1a:c7:94:11:cb:de:43:e9:05:1c: 37:e8:45:ff:05:12:67:82:55:c5:67:38:8d:6f:5f: 1f:ff:55:99:b7:3d:47:d6:c9:1d:e7:5d:01:3f:90: 5c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:D5:FF:63:E3:71:61:25:CE:6C:FB:35:28:1F:B8:25:77:76:95:EA X509v3 Authority Key Identifier: keyid:27:9F:9E:D4:B0:8F:21:03:C1:33:92:D9:56:36:C4:45:57:7A:63:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0bb8e612-7bb3-48de-969d-71b45f46a161/1/279F9ED4B08F2103C13392D95636C445577A6339.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/279F9ED4B08F2103C13392D95636C445577A6339.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0bb8e612-7bb3-48de-969d-71b45f46a161/1/3130332e3132302e34302e302f32342d3234203d3e20313530343934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.40.0/24 Signature Algorithm: sha256WithRSAEncryption 41:ce:f9:be:f2:18:69:cc:7e:df:f7:17:24:0d:b3:fe:dd:ec: d2:d0:46:1b:4f:70:28:44:88:8f:7f:ba:1a:d0:91:73:fb:be: 35:e7:f5:a8:a3:eb:ed:be:dd:bb:b3:9e:ea:65:7d:8f:90:cd: e7:32:a5:62:f6:fc:c1:0c:a0:99:df:a1:09:5d:6e:12:7a:74: 41:fa:d5:1b:41:2a:37:6a:c7:af:e2:83:a0:ee:06:2a:8b:94: 1f:2c:9a:86:0f:ec:d3:de:d5:2e:32:ee:cb:26:6f:c9:e4:f6: 57:1a:d1:7b:b3:6f:da:43:a2:1c:f4:37:3b:68:03:f1:94:3a: f8:13:a1:90:fd:e5:9a:0d:fe:ef:52:e2:67:32:1c:ef:d9:e0: 2a:8d:b1:f1:27:e0:19:56:f4:37:a5:d4:9b:2f:19:f5:f1:f8: 49:00:8f:a9:4a:5e:ea:25:57:f8:df:4a:d9:ff:e5:7f:68:a2: d3:d0:2a:fe:f6:f2:6d:d3:fa:86:ff:37:08:8c:d8:d3:91:a2: 94:d8:29:e4:a7:0f:30:39:52:47:b5:e8:2f:b4:a2:63:12:b7: 23:68:98:a8:07:d3:98:2b:cc:b1:be:36:d8:c8:de:35:bc:52: 51:08:cf:77:71:7f:16:3d:69:d9:47:8d:25:ec:87:8a:a0:f1: 83:23:21:62 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZyp5zj8WyCfypyeXzx4VC2VCKQkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjc5RjlFRDRCMDhGMjEwM0MxMzM5MkQ5NTYzNkM0NDU1 NzdBNjMzOTAeFw0yNDAyMDYwNzQyNThaFw0yNTAyMDQwNzQ3NThaMDMxMTAvBgNV BAMTKDcwRDVGRjYzRTM3MTYxMjVDRTZDRkIzNTI4MUZCODI1Nzc3Njk1RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc6/8W7aoFcJJiGSf9QXg58QIh JiRRDHMR4r+S/FWIAmLTMsYjfdi/ix5JXi2ViL7gZ0wrjMWApYe8BjSPdzqVND1Z E8RMKzXHbXJHGIkzPAH5R6JG7rGiMQYq5EK+CgzPmiOln44RRgx2UQGnhBLyctB2 ZF9GM9+S8uctP6fSe33FJk8DvzgHCG8XDgT97a2SSq+6dW6oA9xWn1kCVWjLm4/o hXbKUBN1Cg0bHzmhjHbdINYr8KMYqimZ5+zOOhOSM508TVR5LLqG2kI1FpeT633K Iwm4GseUEcveQ+kFHDfoRf8FEmeCVcVnOI1vXx//VZm3PUfWyR3nXQE/kFyvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcNX/Y+NxYSXObPs1KB+4JXd2leowHwYDVR0j BBgwFoAUJ5+e1LCPIQPBM5LZVjbERVd6YzkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YmI4ZTYxMi03YmIzLTQ4ZGUtOTY5ZC03MWI0NWY0NmExNjEvMS8yNzlGOUVENEIw OEYyMTAzQzEzMzkyRDk1NjM2QzQ0NTU3N0E2MzM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjc5RjlFRDRCMDhGMjEwM0MxMzM5MkQ5NTYzNkM0NDU1NzdB NjMzOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBiYjhlNjEyLTdiYjMtNDhkZS05 NjlkLTcxYjQ1ZjQ2YTE2MS8xLzMxMzAzMzJlMzEzMjMwMmUzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzQzOTM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3goMA0GCSqG SIb3DQEBCwUAA4IBAQBBzvm+8hhpzH7f9xckDbP+3ezS0EYbT3AoRIiPf7oa0JFz +7415/Woo+vtvt27s57qZX2PkM3nMqVi9vzBDKCZ36EJXW4SenRB+tUbQSo3asev 4oOg7gYqi5QfLJqGD+zT3tUuMu7LJm/J5PZXGtF7s2/aQ6Ic9Dc7aAPxlDr4E6GQ /eWaDf7vUuJnMhzv2eAqjbHxJ+AZVvQ3pdSbLxn18fhJAI+pSl7qJVf430rZ/+V/ aKLT0Cr+9vJt0/qG/zcIjNjTkaKU2Cnkpw8wOVJHtegvtKJjErcjaJioB9OYK8yx vjbYyN41vFJRCM93cX8WPWnZR40l7IeKoPGDIyFi -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:50 2024 by rpki-client on console-fra.rpki-client.org