$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133392e302f32342d3234203d3e203535373031.roa File: 3130332e3131322e3133392e302f32342d3234203d3e203535373031.roa (raw, json) Hash identifier: CpzM+132Mdd3sT2ikka6T6ZIOzo9cPs9M0vsLY9AeJk= Subject key identifier: 7B:CC:E4:15:1A:BE:EB:2A:E6:3B:DD:8D:3C:5A:1C:4F:90:C2:B1:7C Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 5ACBF45CA66EB254873870989E7325963A5BE920 Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133392e302f32342d3234203d3e203535373031.roa Signing time: Fri 26 Jul 2024 01:00:00 +0000 ROA not before: Fri 26 Jul 2024 00:55:00 +0000 ROA not after: Fri 25 Jul 2025 01:00:00 +0000 asID: 55701 IP address blocks: 103.112.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:cb:f4:5c:a6:6e:b2:54:87:38:70:98:9e:73:25:96:3a:5b:e9:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Jul 26 00:55:00 2024 GMT Not After : Jul 25 01:00:00 2025 GMT Subject: CN=7BCCE4151ABEEB2AE63BDD8D3C5A1C4F90C2B17C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ad:c6:1b:15:ff:91:7b:07:a3:ea:e2:c6:fd: 4d:77:5c:40:25:97:e5:c5:a2:7f:bc:08:de:5b:7b: 87:b7:f8:3e:c5:08:e1:a5:e5:fd:70:f4:25:77:7f: c4:1c:1e:e1:b5:50:62:13:5e:7a:90:c9:d3:e2:a8: ea:77:71:2b:ba:39:ea:87:5f:b2:82:24:df:3e:bb: 01:a9:40:97:b2:45:a7:dc:94:66:e1:0b:10:d6:ad: 17:37:db:25:cb:0c:40:02:e6:c8:3a:2f:95:2f:05: 0f:c7:fa:88:8f:58:f5:a2:e8:fa:d0:62:6a:6e:df: 6c:d0:54:14:c0:7a:b0:37:a6:c7:0a:45:23:07:c2: c0:91:a9:42:eb:e5:e7:a5:46:7c:73:02:ff:cb:ac: b7:d9:a7:ae:65:dd:7a:21:9a:39:24:0d:e6:a8:36: b5:11:c5:0d:cd:86:dc:58:05:45:12:ea:57:7f:55: 33:a5:79:9e:d3:ae:c8:42:fa:10:fe:57:12:a5:2d: 7f:da:cd:ba:44:1f:0a:f6:af:00:47:0b:84:d4:33: e4:30:5d:0f:35:bf:b4:df:aa:2a:e1:68:49:ec:17: 3a:7e:c7:cd:b6:5c:0a:70:d0:0b:37:89:94:b4:5c: 42:74:8a:10:cb:a2:31:80:be:80:e5:0f:d7:e5:6f: af:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:CC:E4:15:1A:BE:EB:2A:E6:3B:DD:8D:3C:5A:1C:4F:90:C2:B1:7C X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133392e302f32342d3234203d3e203535373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.139.0/24 Signature Algorithm: sha256WithRSAEncryption 19:93:68:d4:b6:a4:9c:44:55:41:08:2c:04:2c:22:8e:3e:6c: 09:b8:9a:36:f2:cb:0a:b8:f4:27:96:a6:53:1f:0d:26:a7:7b: 73:df:15:1f:a3:e1:73:49:a5:7c:f0:21:e4:9e:a3:1d:54:e3: 73:eb:6e:c9:d9:51:bf:eb:50:d8:94:14:d1:41:13:25:2d:7e: ba:98:8d:5d:00:1a:9f:4a:6f:c5:99:f7:1a:79:34:0c:33:40: a7:0f:74:aa:7d:66:eb:86:67:70:ea:c1:f7:50:70:9a:f9:66: 7d:2e:e5:5d:9b:9e:ea:55:37:b8:9e:39:52:4e:49:76:0d:d2: ab:44:2c:1e:b6:e8:87:ae:d4:7b:4c:86:c8:af:2d:ab:36:44: 73:47:22:a8:87:c2:53:31:db:3d:da:2c:0c:84:62:59:5b:01: 8a:bd:fe:49:cc:38:20:ff:3e:31:3d:22:4e:78:30:8e:f5:7a: 3a:03:53:e1:e2:60:46:69:6c:e3:53:8b:be:ff:97:27:50:68: 2c:6d:85:3a:db:80:49:8e:9a:92:15:79:0f:13:4b:54:cf:84: 05:5a:62:30:06:51:f8:00:ca:cd:e2:d1:42:32:ab:57:20:9e: 4a:e1:cf:a4:80:1e:b5:50:eb:92:95:5d:c9:4c:cc:9c:b8:9e: 7b:00:d3:7a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWsv0XKZuslSHOHCYnnMlljpb6SAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNDA3MjYwMDU1MDBaFw0yNTA3MjUwMTAwMDBaMDMxMTAvBgNV BAMTKDdCQ0NFNDE1MUFCRUVCMkFFNjNCREQ4RDNDNUExQzRGOTBDMkIxN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7rcYbFf+Rewej6uLG/U13XEAl l+XFon+8CN5be4e3+D7FCOGl5f1w9CV3f8QcHuG1UGITXnqQydPiqOp3cSu6OeqH X7KCJN8+uwGpQJeyRafclGbhCxDWrRc32yXLDEAC5sg6L5UvBQ/H+oiPWPWi6PrQ Ympu32zQVBTAerA3pscKRSMHwsCRqULr5eelRnxzAv/LrLfZp65l3XohmjkkDeao NrURxQ3NhtxYBUUS6ld/VTOleZ7TrshC+hD+VxKlLX/azbpEHwr2rwBHC4TUM+Qw XQ81v7TfqirhaEnsFzp+x822XApw0As3iZS0XEJ0ihDLojGAvoDlD9flb6/1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUe8zkFRq+6yrmO92NPFocT5DCsXwwHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMxMzAzMzJlMzEzMTMyMmUzMTMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzczMDMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3CLMA0GCSqG SIb3DQEBCwUAA4IBAQAZk2jUtqScRFVBCCwELCKOPmwJuJo28ssKuPQnlqZTHw0m p3tz3xUfo+FzSaV88CHknqMdVONz627J2VG/61DYlBTRQRMlLX66mI1dABqfSm/F mfcaeTQMM0CnD3SqfWbrhmdw6sH3UHCa+WZ9LuVdm57qVTe4njlSTkl2DdKrRCwe tuiHrtR7TIbIry2rNkRzRyKoh8JTMds92iwMhGJZWwGKvf5JzDgg/z4xPSJOeDCO 9Xo6A1Ph4mBGaWzjU4u+/5cnUGgsbYU624BJjpqSFXkPE0tUz4QFWmIwBlH4AMrN 4tFCMqtXIJ5K4c+kgB61UOuSlV3JTMycuJ57ANN6 -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:01 2024 by rpki-client on console-fra.rpki-client.org