$ rpki-client -vvf repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230372e302f32342d3234203d3e20313333323130.roa File: 3130332e3132302e3230372e302f32342d3234203d3e20313333323130.roa (raw, json) Hash identifier: qM2kxE4q5UQrBccbNY1O6ebEV5oWPEzBK2gVPgFfWIQ= Subject key identifier: DD:8F:81:23:A7:3D:1D:E3:67:8E:87:0E:E5:54:28:94:C6:CF:7B:93 Certificate issuer: /CN=60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE Certificate serial: 5E8D842198C56B9E590A5522A66420190AD61AB9 Authority key identifier: 60:EB:C7:6B:67:AB:68:E5:A9:85:28:7D:E1:EB:DB:DB:28:96:E6:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230372e302f32342d3234203d3e20313333323130.roa Signing time: Sat 16 Nov 2024 07:08:24 +0000 ROA not before: Sat 16 Nov 2024 07:03:24 +0000 ROA not after: Sat 15 Nov 2025 07:08:24 +0000 asID: 133210 IP address blocks: 103.120.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.crl rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 11:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:8d:84:21:98:c5:6b:9e:59:0a:55:22:a6:64:20:19:0a:d6:1a:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE Validity Not Before: Nov 16 07:03:24 2024 GMT Not After : Nov 15 07:08:24 2025 GMT Subject: CN=DD8F8123A73D1DE3678E870EE5542894C6CF7B93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:24:15:14:b2:be:4a:8a:ef:34:0a:8f:5a:a5: 7a:52:90:84:b8:5b:c8:7e:81:2b:e4:18:27:96:16: de:51:cb:9d:3a:8a:3f:37:a6:82:5a:95:dd:73:5b: c5:b6:a4:3c:bf:58:8f:ff:53:0d:8d:1b:ee:d8:01: 05:2d:5e:52:06:53:79:d3:62:b1:63:7f:68:ec:54: cb:1d:d5:7d:36:be:61:18:80:0e:c7:a1:2c:ad:31: 8b:a6:c2:42:a9:0a:ea:31:aa:1f:3a:fe:5b:db:fc: fd:a5:ed:cd:c7:a6:e3:81:dc:db:88:90:4d:e2:f3: df:77:5d:02:69:cb:fa:22:3e:1c:e0:9b:64:58:25: 68:78:be:f7:0a:8d:6d:62:cd:a1:ad:4a:25:bd:ae: 8c:a4:22:bd:a3:a9:5b:40:0a:a8:60:df:c8:b9:3f: 21:9c:c2:58:1d:2a:02:c1:6b:46:01:2a:9b:db:f6: e3:c4:43:cf:d0:09:1b:f5:d6:75:13:bc:87:31:7e: 03:96:61:95:a8:df:5c:e7:18:e8:8f:38:1a:e6:a5: 50:a5:19:2d:69:68:57:f5:46:56:94:c3:a6:79:e7: a3:0d:91:cc:9e:5e:66:ed:0c:01:49:97:20:87:07: 88:85:f5:68:32:5a:f1:2b:5e:68:af:39:24:cf:d8: 1c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:8F:81:23:A7:3D:1D:E3:67:8E:87:0E:E5:54:28:94:C6:CF:7B:93 X509v3 Authority Key Identifier: keyid:60:EB:C7:6B:67:AB:68:E5:A9:85:28:7D:E1:EB:DB:DB:28:96:E6:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230372e302f32342d3234203d3e20313333323130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.207.0/24 Signature Algorithm: sha256WithRSAEncryption a8:ff:2d:ac:c7:14:57:51:37:08:05:bc:97:92:1b:cc:c8:b1: b3:6c:2d:42:ff:43:e8:c1:50:31:9c:f8:ad:3e:20:30:c7:ce: 38:0a:c4:7b:17:61:d4:45:6e:7e:4f:76:be:d7:93:16:98:07: 80:0a:5c:05:62:4c:30:f0:05:91:01:3c:f1:60:c3:3d:de:b1: 75:a3:88:3e:c0:f6:62:02:b9:7d:21:6c:86:23:84:e3:5f:32: 80:8d:e7:e4:01:ac:6b:d9:6d:2a:a2:c6:b4:2c:1d:d6:c9:f4: 88:29:e6:52:d4:41:5e:3a:ab:44:99:49:ba:d0:4d:ba:ad:3c: 52:24:6a:80:51:a4:ba:91:b0:29:af:05:d9:c5:b3:92:5e:f5: 0a:b4:7c:79:ad:fc:61:66:34:7d:20:22:98:1e:09:57:40:42: d4:c5:02:4f:41:a4:74:30:6e:aa:c0:45:fa:f4:bb:55:b5:eb: 79:a2:8a:c4:d7:45:b5:a1:3d:50:85:09:e9:db:03:d3:38:48: 36:4b:1b:0c:36:03:03:f7:b2:79:53:4e:ee:18:e5:56:f7:15: bd:8d:09:7a:2e:28:a6:2b:0e:b4:0a:e9:af:e1:b7:b0:e0:1a: f0:ce:35:4c:f2:23:c0:26:82:8b:2d:e4:eb:f0:1a:ea:4b:67: be:0c:d7:b5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXo2EIZjFa55ZClUipmQgGQrWGrkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjBFQkM3NkI2N0FCNjhFNUE5ODUyODdERTFFQkRCREIy ODk2RTZERTAeFw0yNDExMTYwNzAzMjRaFw0yNTExMTUwNzA4MjRaMDMxMTAvBgNV BAMTKEREOEY4MTIzQTczRDFERTM2NzhFODcwRUU1NTQyODk0QzZDRjdCOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDJBUUsr5Kiu80Co9apXpSkIS4 W8h+gSvkGCeWFt5Ry506ij83poJald1zW8W2pDy/WI//Uw2NG+7YAQUtXlIGU3nT YrFjf2jsVMsd1X02vmEYgA7HoSytMYumwkKpCuoxqh86/lvb/P2l7c3HpuOB3NuI kE3i8993XQJpy/oiPhzgm2RYJWh4vvcKjW1izaGtSiW9roykIr2jqVtACqhg38i5 PyGcwlgdKgLBa0YBKpvb9uPEQ8/QCRv11nUTvIcxfgOWYZWo31znGOiPOBrmpVCl GS1paFf1RlaUw6Z556MNkcyeXmbtDAFJlyCHB4iF9WgyWvErXmivOSTP2BzDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU3Y+BI6c9HeNnjocO5VQolMbPe5MwHwYDVR0j BBgwFoAUYOvHa2eraOWphSh94evb2yiW5t4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDBmMzdjMC0zODBjLTQwNTMtYjNiYS1iMzJlZjAzNWMyOGYvMC82MEVCQzc2QjY3 QUI2OEU1QTk4NTI4N0RFMUVCREJEQjI4OTZFNkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjBFQkM3NkI2N0FCNjhFNUE5ODUyODdERTFFQkRCREIyODk2 RTZERS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0MGYzN2MwLTM4MGMtNDA1My1i M2JhLWIzMmVmMDM1YzI4Zi8wLzMxMzAzMzJlMzEzMjMwMmUzMjMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzMzMjMxMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABneM8wDQYJ KoZIhvcNAQELBQADggEBAKj/LazHFFdRNwgFvJeSG8zIsbNsLUL/Q+jBUDGc+K0+ IDDHzjgKxHsXYdRFbn5Pdr7XkxaYB4AKXAViTDDwBZEBPPFgwz3esXWjiD7A9mIC uX0hbIYjhONfMoCN5+QBrGvZbSqixrQsHdbJ9Igp5lLUQV46q0SZSbrQTbqtPFIk aoBRpLqRsCmvBdnFs5Je9Qq0fHmt/GFmNH0gIpgeCVdAQtTFAk9BpHQwbqrARfr0 u1W163miisTXRbWhPVCFCenbA9M4SDZLGww2AwP3snlTTu4Y5Vb3Fb2NCXouKKYr DrQK6a/ht7DgGvDONUzyI8Amgost5OvwGupLZ74M17U= -----END CERTIFICATE-----Generated at Mon Nov 25 09:01:49 2024 by rpki-client on console-ams.rpki-client.org