$ rpki-client -vvf repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230372e302f32342d3234203d3e2036393339.roa File: 3130332e3132302e3230372e302f32342d3234203d3e2036393339.roa (raw, json) Hash identifier: SOWGEkFY9bnPX+Ae5PlXM9qybBOs8zD006nU0iUd2qg= Subject key identifier: 27:37:C4:31:D1:61:24:E8:E0:61:10:57:5A:5B:2E:2C:91:D3:17:20 Certificate issuer: /CN=60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE Certificate serial: 1B8EBB40577FDE7F29570E7119EEB4991F4B9624 Authority key identifier: 60:EB:C7:6B:67:AB:68:E5:A9:85:28:7D:E1:EB:DB:DB:28:96:E6:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230372e302f32342d3234203d3e2036393339.roa Signing time: Mon 01 Jul 2024 01:04:29 +0000 ROA not before: Mon 01 Jul 2024 00:59:29 +0000 ROA not after: Mon 30 Jun 2025 01:04:29 +0000 asID: 6939 IP address blocks: 103.120.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.crl rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 11:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:8e:bb:40:57:7f:de:7f:29:57:0e:71:19:ee:b4:99:1f:4b:96:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE Validity Not Before: Jul 1 00:59:29 2024 GMT Not After : Jun 30 01:04:29 2025 GMT Subject: CN=2737C431D16124E8E06110575A5B2E2C91D31720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:24:ec:3b:4c:44:aa:a0:73:84:5c:58:b5:1b: d7:6e:39:e9:35:7a:6c:12:ad:aa:ee:b4:f3:6d:19: 85:e8:22:c3:a6:32:1a:70:42:3c:13:6c:12:09:bb: 66:ff:68:8e:61:91:fb:ee:11:e3:29:3e:51:08:62: 3d:f6:ef:79:07:83:11:67:db:fc:b8:76:a6:d7:aa: 53:78:4d:6d:9e:75:10:a8:77:69:12:f3:10:a9:2a: 1c:10:d4:3b:48:87:13:66:4c:89:16:38:63:b5:d0: 59:9c:af:45:c1:2e:86:0a:ea:cc:4e:5b:50:6c:ae: c4:74:74:ab:d4:eb:48:8d:eb:32:5e:83:7d:bc:30: 39:b7:a7:cf:fe:d3:b4:d0:5e:ce:6b:09:ac:8f:b2: 47:a3:4b:22:40:dd:03:32:72:9f:b3:72:da:b0:f9: 15:c1:26:09:56:1c:e6:1b:e1:77:06:f1:6c:40:cc: bd:c7:e1:9b:1e:d5:34:6d:fd:61:42:2d:84:91:89: b8:38:18:9a:5f:2e:f1:9e:d4:a4:bf:91:b7:5b:18: 99:6b:56:97:35:63:07:a3:a2:60:c5:ec:2c:f9:04: 70:b6:1c:e2:88:e4:c0:4b:f0:0d:29:f6:bc:96:c6: ac:4b:e3:36:0a:e0:d4:67:95:6c:4f:81:8b:c1:3e: 4c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:37:C4:31:D1:61:24:E8:E0:61:10:57:5A:5B:2E:2C:91:D3:17:20 X509v3 Authority Key Identifier: keyid:60:EB:C7:6B:67:AB:68:E5:A9:85:28:7D:E1:EB:DB:DB:28:96:E6:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/60EBC76B67AB68E5A985287DE1EBDBDB2896E6DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/140f37c0-380c-4053-b3ba-b32ef035c28f/0/3130332e3132302e3230372e302f32342d3234203d3e2036393339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.207.0/24 Signature Algorithm: sha256WithRSAEncryption 66:b1:ad:15:9d:a0:2d:52:42:c2:90:8b:93:ef:0c:48:87:61: 00:82:92:ec:9e:98:ae:94:0b:e1:44:ee:89:ff:b2:6a:dd:c2: 4d:5c:a6:b7:83:e5:34:84:fc:b1:ec:a5:3e:91:c0:56:83:45: d0:9c:d7:e4:b0:bf:ba:d6:bc:9e:82:05:88:b8:42:32:10:20: 3a:c9:ee:e5:48:69:89:08:44:ad:86:35:49:f2:27:a0:6f:37: 81:53:08:8b:ac:a6:cb:45:6a:29:27:b7:09:22:56:e6:37:d4: 98:4f:38:1b:87:f9:e2:58:b5:88:03:4e:a4:38:b3:f7:b0:5b: 21:67:cf:95:c5:25:8b:cb:b0:dd:b4:3d:6f:02:ed:c6:1f:91: b2:f6:0d:51:3c:7c:43:c7:6d:aa:b7:c4:30:17:61:88:c4:de: 80:6c:79:e7:0b:d3:8d:8f:63:92:b8:bb:de:63:c6:75:3a:09: a0:8d:81:3c:07:74:9d:75:89:03:2f:88:ac:42:ff:b9:7a:a2: 42:30:7b:54:2a:e4:97:7c:24:16:92:78:9c:a7:71:62:51:55: 62:72:8f:7f:19:7e:6e:75:41:62:63:09:4c:1d:99:1d:f0:93: 97:2d:a3:a7:07:79:35:8b:20:bd:3e:5b:e5:39:10:14:ff:ea: 1c:45:79:5c -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUG467QFd/3n8pVw5xGe60mR9LliQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjBFQkM3NkI2N0FCNjhFNUE5ODUyODdERTFFQkRCREIy ODk2RTZERTAeFw0yNDA3MDEwMDU5MjlaFw0yNTA2MzAwMTA0MjlaMDMxMTAvBgNV BAMTKDI3MzdDNDMxRDE2MTI0RThFMDYxMTA1NzVBNUIyRTJDOTFEMzE3MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiJOw7TESqoHOEXFi1G9duOek1 emwSrarutPNtGYXoIsOmMhpwQjwTbBIJu2b/aI5hkfvuEeMpPlEIYj3273kHgxFn 2/y4dqbXqlN4TW2edRCod2kS8xCpKhwQ1DtIhxNmTIkWOGO10Fmcr0XBLoYK6sxO W1BsrsR0dKvU60iN6zJeg328MDm3p8/+07TQXs5rCayPskejSyJA3QMycp+zctqw +RXBJglWHOYb4XcG8WxAzL3H4Zse1TRt/WFCLYSRibg4GJpfLvGe1KS/kbdbGJlr Vpc1YwejomDF7Cz5BHC2HOKI5MBL8A0p9ryWxqxL4zYK4NRnlWxPgYvBPkzvAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUJzfEMdFhJOjgYRBXWlsuLJHTFyAwHwYDVR0j BBgwFoAUYOvHa2eraOWphSh94evb2yiW5t4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDBmMzdjMC0zODBjLTQwNTMtYjNiYS1iMzJlZjAzNWMyOGYvMC82MEVCQzc2QjY3 QUI2OEU1QTk4NTI4N0RFMUVCREJEQjI4OTZFNkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjBFQkM3NkI2N0FCNjhFNUE5ODUyODdERTFFQkRCREIyODk2 RTZERS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0MGYzN2MwLTM4MGMtNDA1My1i M2JhLWIzMmVmMDM1YzI4Zi8wLzMxMzAzMzJlMzEzMjMwMmUzMjMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNjM5MzMzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGd4zzANBgkqhkiG 9w0BAQsFAAOCAQEAZrGtFZ2gLVJCwpCLk+8MSIdhAIKS7J6YrpQL4UTuif+yat3C TVymt4PlNIT8seylPpHAVoNF0JzX5LC/uta8noIFiLhCMhAgOsnu5UhpiQhErYY1 SfInoG83gVMIi6ymy0VqKSe3CSJW5jfUmE84G4f54li1iANOpDiz97BbIWfPlcUl i8uw3bQ9bwLtxh+RsvYNUTx8Q8dtqrfEMBdhiMTegGx55wvTjY9jkri73mPGdToJ oI2BPAd0nXWJAy+IrEL/uXqiQjB7VCrkl3wkFpJ4nKdxYlFVYnKPfxl+bnVBYmMJ TB2ZHfCTly2jpwd5NYsgvT5b5TkQFP/qHEV5XA== -----END CERTIFICATE-----Generated at Mon Nov 25 09:01:49 2024 by rpki-client on console-ams.rpki-client.org