$ rpki-client -vvf repo-rpki.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/3130332e3131312e3134302e302f32342d3234203d3e20313431343631.roa File: 3130332e3131312e3134302e302f32342d3234203d3e20313431343631.roa (raw, json) Hash identifier: QxaX29t3xWsvrxzUc9KZP0vfZV3yJi9iJK7O+Mg8IY0= Subject key identifier: 68:8E:BC:D9:C7:DC:1D:93:DC:40:96:92:CC:7A:FF:D5:70:96:C9:7D Certificate issuer: /CN=EBA04070CA27E646C332039E07557734C6732ED2 Certificate serial: 6DB48491C7F97721031D849693D570CE64349E2A Authority key identifier: EB:A0:40:70:CA:27:E6:46:C3:32:03:9E:07:55:77:34:C6:73:2E:D2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EBA04070CA27E646C332039E07557734C6732ED2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/3130332e3131312e3134302e302f32342d3234203d3e20313431343631.roa Signing time: Sun 22 Sep 2024 03:00:01 +0000 ROA not before: Sun 22 Sep 2024 02:55:01 +0000 ROA not after: Sun 21 Sep 2025 03:00:01 +0000 asID: 141461 IP address blocks: 103.111.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/EBA04070CA27E646C332039E07557734C6732ED2.crl rsync://repo-rpki.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/EBA04070CA27E646C332039E07557734C6732ED2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EBA04070CA27E646C332039E07557734C6732ED2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:40:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:b4:84:91:c7:f9:77:21:03:1d:84:96:93:d5:70:ce:64:34:9e:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EBA04070CA27E646C332039E07557734C6732ED2 Validity Not Before: Sep 22 02:55:01 2024 GMT Not After : Sep 21 03:00:01 2025 GMT Subject: CN=688EBCD9C7DC1D93DC409692CC7AFFD57096C97D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ae:55:49:7d:ad:91:41:d6:4b:01:82:82:34: 73:dc:f2:65:a4:cd:65:b6:aa:9b:64:fa:a3:45:1e: 15:38:c5:e1:1b:f2:f3:2c:d2:12:a7:19:30:2e:e0: d0:0a:23:25:86:f8:30:00:dc:51:65:f1:97:d7:3b: 9a:9b:c3:7c:6b:bb:93:cc:f4:08:b0:86:37:db:8e: 8a:1c:e3:64:83:17:68:2d:74:f0:36:92:4a:59:30: 2d:1e:f9:04:38:44:4b:03:59:f3:ec:25:83:f5:f0: aa:8b:af:c9:9e:06:fb:87:ac:cc:f2:d5:5b:13:0c: db:6b:d6:96:a6:ca:15:b4:23:50:b5:9b:a9:4e:fa: 84:d1:4d:ee:9c:2b:68:f9:31:15:5c:43:8e:17:b2: 7f:df:18:e0:fb:3e:7f:7e:dc:1b:1b:40:cc:27:95: 27:5b:a1:8b:a2:c7:d5:88:75:76:7c:bd:05:21:c4: 01:ec:3e:41:c0:57:6a:a0:02:a4:1a:e1:8b:3e:8e: b7:b1:ad:93:61:df:d4:49:6f:77:9a:38:fa:9f:89: 8c:d2:17:7e:68:63:ba:57:e0:ca:c0:bd:e2:44:05: 36:0a:d9:34:a1:0f:9d:0f:4a:21:05:cf:6d:2d:9e: ee:20:cc:a5:f5:4a:b6:fc:16:0f:f4:5e:4f:bf:c1: 70:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:8E:BC:D9:C7:DC:1D:93:DC:40:96:92:CC:7A:FF:D5:70:96:C9:7D X509v3 Authority Key Identifier: keyid:EB:A0:40:70:CA:27:E6:46:C3:32:03:9E:07:55:77:34:C6:73:2E:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/EBA04070CA27E646C332039E07557734C6732ED2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EBA04070CA27E646C332039E07557734C6732ED2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1127eafd-a674-4437-abf1-e550dec137fa/0/3130332e3131312e3134302e302f32342d3234203d3e20313431343631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.111.140.0/24 Signature Algorithm: sha256WithRSAEncryption 58:ab:ae:2e:50:7b:07:7c:48:37:a2:6d:a5:2a:54:d8:19:d4: 13:f2:2b:f6:ed:c5:52:20:f7:8c:5a:49:ba:c8:ff:3b:c3:ac: e4:96:ad:d2:96:8a:c9:7f:4e:71:c1:dc:a2:ed:cc:af:00:25: ce:e0:4c:28:48:9b:71:aa:4e:40:f9:b7:cd:b6:4a:c4:97:74: 2c:90:62:4a:92:db:e7:1c:84:d7:01:b9:7b:92:2c:7d:d5:50: a0:ce:49:1a:2d:c2:98:19:f2:67:f6:93:a9:0c:bd:94:d6:98: 4e:54:3b:df:93:3c:26:98:63:d7:29:58:ed:e3:b2:1f:ef:b3: 22:b6:aa:ac:6f:08:91:5c:17:e9:1d:e8:eb:b4:ed:61:5d:9f: fe:70:98:b0:63:fa:9f:80:82:47:29:ad:e5:58:b9:04:72:d1: 28:23:08:52:e5:de:a2:7a:34:46:9b:ab:46:1a:6e:17:28:eb: 53:54:47:37:c1:99:b1:7d:3b:5a:d8:ae:89:2a:97:fc:81:6b: 7a:ea:01:87:26:ed:b0:06:21:37:9d:2e:11:05:9b:18:4c:37: 7b:b8:5e:59:52:18:57:17:61:83:e8:5d:6e:56:8c:a1:2a:4e: 4f:17:46:a6:84:19:2e:24:a8:20:ee:da:f2:f7:28:6e:64:83: a5:b6:45:59 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbbSEkcf5dyEDHYSWk9VwzmQ0niowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUJBMDQwNzBDQTI3RTY0NkMzMzIwMzlFMDc1NTc3MzRD NjczMkVEMjAeFw0yNDA5MjIwMjU1MDFaFw0yNTA5MjEwMzAwMDFaMDMxMTAvBgNV BAMTKDY4OEVCQ0Q5QzdEQzFEOTNEQzQwOTY5MkNDN0FGRkQ1NzA5NkM5N0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSrlVJfa2RQdZLAYKCNHPc8mWk zWW2qptk+qNFHhU4xeEb8vMs0hKnGTAu4NAKIyWG+DAA3FFl8ZfXO5qbw3xru5PM 9Aiwhjfbjooc42SDF2gtdPA2kkpZMC0e+QQ4REsDWfPsJYP18KqLr8meBvuHrMzy 1VsTDNtr1pamyhW0I1C1m6lO+oTRTe6cK2j5MRVcQ44Xsn/fGOD7Pn9+3BsbQMwn lSdboYuix9WIdXZ8vQUhxAHsPkHAV2qgAqQa4Ys+jrexrZNh39RJb3eaOPqfiYzS F35oY7pX4MrAveJEBTYK2TShD50PSiEFz20tnu4gzKX1Srb8Fg/0Xk+/wXA/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUaI682cfcHZPcQJaSzHr/1XCWyX0wHwYDVR0j BBgwFoAU66BAcMon5kbDMgOeB1V3NMZzLtIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MTI3ZWFmZC1hNjc0LTQ0MzctYWJmMS1lNTUwZGVjMTM3ZmEvMC9FQkEwNDA3MENB MjdFNjQ2QzMzMjAzOUUwNzU1NzczNEM2NzMyRUQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUJBMDQwNzBDQTI3RTY0NkMzMzIwMzlFMDc1NTc3MzRDNjcz MkVEMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzExMjdlYWZkLWE2NzQtNDQzNy1h YmYxLWU1NTBkZWMxMzdmYS8wLzMxMzAzMzJlMzEzMTMxMmUzMTM0MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNDM2MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnb4wwDQYJ KoZIhvcNAQELBQADggEBAFirri5Qewd8SDeibaUqVNgZ1BPyK/btxVIg94xaSbrI /zvDrOSWrdKWisl/TnHB3KLtzK8AJc7gTChIm3GqTkD5t822SsSXdCyQYkqS2+cc hNcBuXuSLH3VUKDOSRotwpgZ8mf2k6kMvZTWmE5UO9+TPCaYY9cpWO3jsh/vsyK2 qqxvCJFcF+kd6Ou07WFdn/5wmLBj+p+AgkcpreVYuQRy0SgjCFLl3qJ6NEabq0Ya bhco61NURzfBmbF9O1rYrokql/yBa3rqAYcm7bAGITedLhEFmxhMN3u4XllSGFcX YYPoXW5WjKEqTk8XRqaEGS4kqCDu2vL3KG5kg6W2RVk= -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:26 2024 by rpki-client on console-ams.rpki-client.org