$ rpki-client -vvf repo-rpki.idnic.net/repo/0f09cbb9-1aad-4b1a-bd4e-06fd84472fd7/0/3130332e38302e3234302e302f32322d3234203d3e20313336303534.roa File: 3130332e38302e3234302e302f32322d3234203d3e20313336303534.roa (raw, json) Hash identifier: nJikAEl2lf/R6p9ao4rOP9zrE5+9FWcIDa/gJtdaUzc= Subject key identifier: A3:12:92:4A:82:23:95:C0:D5:45:C4:68:EA:95:52:DE:C1:B1:93:CE Certificate issuer: /CN=DE76C61173801CDB718BA58B1A4A40B5C94E9C70 Certificate serial: 3765088B9E687FDB8A0B66FB713110ACD46BC3D0 Authority key identifier: DE:76:C6:11:73:80:1C:DB:71:8B:A5:8B:1A:4A:40:B5:C9:4E:9C:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE76C61173801CDB718BA58B1A4A40B5C94E9C70.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0f09cbb9-1aad-4b1a-bd4e-06fd84472fd7/0/3130332e38302e3234302e302f32322d3234203d3e20313336303534.roa Signing time: Tue 05 Mar 2024 14:02:26 +0000 ROA not before: Tue 05 Mar 2024 13:57:26 +0000 ROA not after: Tue 04 Mar 2025 14:02:26 +0000 asID: 136054 IP address blocks: 103.80.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0f09cbb9-1aad-4b1a-bd4e-06fd84472fd7/0/DE76C61173801CDB718BA58B1A4A40B5C94E9C70.crl rsync://repo-rpki.idnic.net/repo/0f09cbb9-1aad-4b1a-bd4e-06fd84472fd7/0/DE76C61173801CDB718BA58B1A4A40B5C94E9C70.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE76C61173801CDB718BA58B1A4A40B5C94E9C70.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:65:08:8b:9e:68:7f:db:8a:0b:66:fb:71:31:10:ac:d4:6b:c3:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE76C61173801CDB718BA58B1A4A40B5C94E9C70 Validity Not Before: Mar 5 13:57:26 2024 GMT Not After : Mar 4 14:02:26 2025 GMT Subject: CN=A312924A822395C0D545C468EA9552DEC1B193CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:14:e9:df:77:fc:26:4f:69:37:a9:2d:24:e5: 1b:ed:66:32:a9:da:07:0c:bd:9b:19:ac:6b:1b:77: f9:23:75:18:b1:3a:07:58:a5:2c:48:a7:13:d1:24: 94:17:b2:96:99:80:c7:55:38:70:fd:55:82:08:e5: 00:b8:91:88:41:e7:10:ac:10:c8:d0:09:cf:52:03: 18:06:69:f7:e1:f4:27:03:5b:44:a0:51:2b:56:40: c4:b5:0c:f5:18:f4:1e:74:5a:1f:48:42:f2:bc:29: 4e:56:d9:7f:8e:5e:26:18:70:89:65:a6:ab:02:fa: fe:e4:42:65:c5:45:bc:c9:5d:80:6a:18:c2:70:f6: 9e:ef:cc:80:75:e9:9a:bf:67:70:00:1b:78:99:01: ac:4e:11:be:4b:f7:c1:9b:6f:4e:1c:cf:21:39:f2: cf:6e:db:21:90:0d:20:c5:17:e5:db:53:b8:f1:be: 24:9c:8c:36:8e:92:b6:cc:fc:00:14:05:f9:53:03: e5:51:97:b1:41:5d:56:10:d4:c3:5a:75:e1:60:36: 3b:9a:8a:c3:74:a3:fb:45:9e:05:fe:c6:cc:26:07: 4b:3d:31:be:83:8e:e5:ff:65:1e:e4:e4:e8:dd:3c: ea:f0:17:c2:08:3f:fd:22:dd:3f:b3:b3:d7:43:d7: 99:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:12:92:4A:82:23:95:C0:D5:45:C4:68:EA:95:52:DE:C1:B1:93:CE X509v3 Authority Key Identifier: keyid:DE:76:C6:11:73:80:1C:DB:71:8B:A5:8B:1A:4A:40:B5:C9:4E:9C:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0f09cbb9-1aad-4b1a-bd4e-06fd84472fd7/0/DE76C61173801CDB718BA58B1A4A40B5C94E9C70.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE76C61173801CDB718BA58B1A4A40B5C94E9C70.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f09cbb9-1aad-4b1a-bd4e-06fd84472fd7/0/3130332e38302e3234302e302f32322d3234203d3e20313336303534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.80.240.0/22 Signature Algorithm: sha256WithRSAEncryption c6:e1:53:ef:11:94:9c:fe:7d:67:c3:92:7d:19:c2:bb:dd:19: 17:df:f8:93:99:88:d8:8f:2d:40:bd:b0:ed:4a:49:25:6b:6c: 12:9b:2d:45:46:a2:18:bc:50:5b:ad:76:2b:e1:d9:09:96:da: ae:c3:cb:60:71:46:f0:fe:53:a2:84:db:b8:fa:f4:b0:f9:ab: eb:04:71:fd:ab:64:1e:65:ce:fe:c9:99:a4:d6:c4:33:d7:76: 41:99:e5:0a:a2:5a:1c:59:0b:bd:48:84:43:16:c9:e7:0d:0a: a4:66:07:51:f0:78:34:03:5f:00:d7:da:53:57:17:e2:f0:14: 3c:fd:54:59:3a:5c:61:8c:67:4d:68:6b:ea:3b:c5:68:d9:39: 1d:8f:b5:2a:23:43:ce:42:4a:fc:a0:a7:53:f7:87:8f:42:60: 6e:e3:09:5c:61:c3:5c:b5:5b:80:2d:f7:19:06:44:b4:ff:df: fe:74:6c:5e:35:a7:d6:e0:f7:51:d8:48:8b:c3:fa:63:be:ff: d1:0d:7c:b4:2d:a5:46:60:63:11:52:f9:eb:c2:13:29:bf:bf: ed:60:84:02:0e:a4:9f:ff:11:03:91:03:95:4f:09:7a:d3:01: c6:ea:93:5d:56:1d:b8:35:cc:90:a1:12:fc:ed:dd:d2:11:65: 17:6c:1e:b2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUN2UIi55of9uKC2b7cTEQrNRrw9AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREU3NkM2MTE3MzgwMUNEQjcxOEJBNThCMUE0QTQwQjVD OTRFOUM3MDAeFw0yNDAzMDUxMzU3MjZaFw0yNTAzMDQxNDAyMjZaMDMxMTAvBgNV BAMTKEEzMTI5MjRBODIyMzk1QzBENTQ1QzQ2OEVBOTU1MkRFQzFCMTkzQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLFOnfd/wmT2k3qS0k5RvtZjKp 2gcMvZsZrGsbd/kjdRixOgdYpSxIpxPRJJQXspaZgMdVOHD9VYII5QC4kYhB5xCs EMjQCc9SAxgGaffh9CcDW0SgUStWQMS1DPUY9B50Wh9IQvK8KU5W2X+OXiYYcIll pqsC+v7kQmXFRbzJXYBqGMJw9p7vzIB16Zq/Z3AAG3iZAaxOEb5L98Gbb04czyE5 8s9u2yGQDSDFF+XbU7jxviScjDaOkrbM/AAUBflTA+VRl7FBXVYQ1MNadeFgNjua isN0o/tFngX+xswmB0s9Mb6DjuX/ZR7k5OjdPOrwF8IIP/0i3T+zs9dD15mHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUoxKSSoIjlcDVRcRo6pVS3sGxk84wHwYDVR0j BBgwFoAU3nbGEXOAHNtxi6WLGkpAtclOnHAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZjA5Y2JiOS0xYWFkLTRiMWEtYmQ0ZS0wNmZkODQ0NzJmZDcvMC9ERTc2QzYxMTcz ODAxQ0RCNzE4QkE1OEIxQTRBNDBCNUM5NEU5QzcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREU3NkM2MTE3MzgwMUNEQjcxOEJBNThCMUE0QTQwQjVDOTRF OUM3MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmMDljYmI5LTFhYWQtNGIxYS1i ZDRlLTA2ZmQ4NDQ3MmZkNy8wLzMxMzAzMzJlMzgzMDJlMzIzNDMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNTM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ1DwMA0GCSqG SIb3DQEBCwUAA4IBAQDG4VPvEZSc/n1nw5J9GcK73RkX3/iTmYjYjy1AvbDtSkkl a2wSmy1FRqIYvFBbrXYr4dkJltquw8tgcUbw/lOihNu4+vSw+avrBHH9q2QeZc7+ yZmk1sQz13ZBmeUKolocWQu9SIRDFsnnDQqkZgdR8Hg0A18A19pTVxfi8BQ8/VRZ OlxhjGdNaGvqO8Vo2Tkdj7UqI0POQkr8oKdT94ePQmBu4wlcYcNctVuALfcZBkS0 /9/+dGxeNafW4PdR2EiLw/pjvv/RDXy0LaVGYGMRUvnrwhMpv7/tYIQCDqSf/xED kQOVTwl60wHG6pNdVh24NcyQoRL87d3SEWUXbB6y -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:54 2024 by rpki-client on console-fra.rpki-client.org