$ rpki-client -vvf repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3137302e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3137302e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: i7DSEUxf3vpoFN2KGZ6wWe2hD4MWtMjIZiMNZZs7Rh8= Subject key identifier: 54:B4:3A:54:4D:12:E0:93:47:9A:AC:59:64:4F:31:92:FD:CD:41:14 Certificate issuer: /CN=87C7B4B7933266A0A09E2290B0934622DD072C9B Certificate serial: 3068A57C460C2621FCD90CF504CE36CA587740BC Authority key identifier: 87:C7:B4:B7:93:32:66:A0:A0:9E:22:90:B0:93:46:22:DD:07:2C:9B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87C7B4B7933266A0A09E2290B0934622DD072C9B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3137302e302f32332d3234203d3e20313335343738.roa Signing time: Wed 03 Jan 2024 08:02:02 +0000 ROA not before: Wed 03 Jan 2024 07:57:02 +0000 ROA not after: Wed 01 Jan 2025 08:02:02 +0000 asID: 135478 IP address blocks: 103.121.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/87C7B4B7933266A0A09E2290B0934622DD072C9B.crl rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/87C7B4B7933266A0A09E2290B0934622DD072C9B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87C7B4B7933266A0A09E2290B0934622DD072C9B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 02:13:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:68:a5:7c:46:0c:26:21:fc:d9:0c:f5:04:ce:36:ca:58:77:40:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87C7B4B7933266A0A09E2290B0934622DD072C9B Validity Not Before: Jan 3 07:57:02 2024 GMT Not After : Jan 1 08:02:02 2025 GMT Subject: CN=54B43A544D12E093479AAC59644F3192FDCD4114 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:de:7d:a8:53:e3:4c:17:0e:bc:23:f8:a2:4c: cb:f3:4a:27:43:b9:8e:ce:18:90:ee:25:b5:fb:41: ff:97:53:aa:75:60:5b:f8:36:67:2f:aa:2b:a5:ae: f3:6b:8b:56:62:cb:65:a7:9e:66:7b:3e:d2:1e:55: 7d:ac:0f:80:31:84:b2:09:cd:3b:56:1e:1f:99:3b: 8f:99:07:82:50:de:35:52:bc:15:5f:db:50:39:18: 74:ad:39:21:d9:4c:74:fe:cf:c2:51:02:60:a3:cf: 59:52:50:05:b5:ba:81:20:4d:7e:a6:a4:47:8e:2c: 19:d2:c0:60:35:99:9f:ee:f2:a8:46:a7:7d:28:06: 58:ea:86:db:d7:40:35:23:67:9f:ef:3e:b3:fa:01: 75:5d:c1:ba:c0:90:73:8b:fc:ab:3f:6b:28:35:4e: 72:18:62:ee:12:bf:d4:d8:18:0a:9f:fd:62:bb:88: c0:25:4c:0f:cd:5f:d9:73:8b:3a:3b:f2:77:9f:f1: a8:3a:b6:83:8d:5d:ae:28:97:84:e4:d5:d0:4a:4a: 2d:95:cb:be:10:b3:ae:78:4c:d4:5b:45:fd:d7:57: 76:83:6e:8b:0a:75:dd:68:a6:f8:7d:40:ae:3b:c8: 67:77:8d:c8:80:d3:a7:4f:e7:11:3c:01:cd:c2:08: 31:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:B4:3A:54:4D:12:E0:93:47:9A:AC:59:64:4F:31:92:FD:CD:41:14 X509v3 Authority Key Identifier: keyid:87:C7:B4:B7:93:32:66:A0:A0:9E:22:90:B0:93:46:22:DD:07:2C:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/87C7B4B7933266A0A09E2290B0934622DD072C9B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/87C7B4B7933266A0A09E2290B0934622DD072C9B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a58af24-463b-44d8-b6f0-39b82b458f75/0/3130332e3132312e3137302e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.170.0/23 Signature Algorithm: sha256WithRSAEncryption 33:f6:b7:5a:a7:4f:0e:3d:b9:25:eb:e5:b4:08:bc:68:08:60: ca:c1:b2:1b:75:e0:f6:b6:bb:c3:b2:b8:00:4c:23:f0:38:bc: a1:88:89:54:df:45:53:d4:97:fd:d1:5b:a1:fe:bd:f8:57:07: 49:9a:c1:a0:fb:fc:20:bd:08:30:3a:a0:b7:af:ad:8f:47:33: be:52:34:1c:ec:62:2c:b2:73:bd:69:83:94:86:c7:02:21:ac: e3:90:07:3c:70:6a:8f:4a:42:27:a4:1c:16:31:69:72:35:6e: 18:ca:75:ca:46:2f:0c:6d:ee:45:0c:a2:85:f6:5c:15:f0:4d: 55:f1:2a:2f:e2:c2:ec:24:27:22:16:ea:cd:ba:a6:f2:6f:47: 90:05:84:8f:43:55:53:60:71:b1:13:56:d4:22:6e:75:3c:4e: 74:8b:a5:36:07:4f:3f:94:3a:d9:68:7f:c3:c2:50:c8:7a:f6: 45:b4:1b:7d:a1:01:52:ad:f6:e8:c5:20:6d:2d:19:de:20:9d: c8:1c:ec:63:21:9d:be:0c:70:82:87:ff:a0:68:74:43:05:64: b3:66:94:32:5c:a3:e6:c7:67:bc:64:a2:5c:94:6b:78:e2:61: 03:f3:4f:0d:6d:ed:0d:83:9a:84:a9:3c:fe:b8:e3:df:f1:2a: ad:cc:86:b0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMGilfEYMJiH82Qz1BM42ylh3QLwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdDN0I0Qjc5MzMyNjZBMEEwOUUyMjkwQjA5MzQ2MjJE RDA3MkM5QjAeFw0yNDAxMDMwNzU3MDJaFw0yNTAxMDEwODAyMDJaMDMxMTAvBgNV BAMTKDU0QjQzQTU0NEQxMkUwOTM0NzlBQUM1OTY0NEYzMTkyRkRDRDQxMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt3n2oU+NMFw68I/iiTMvzSidD uY7OGJDuJbX7Qf+XU6p1YFv4NmcvqiulrvNri1Ziy2WnnmZ7PtIeVX2sD4AxhLIJ zTtWHh+ZO4+ZB4JQ3jVSvBVf21A5GHStOSHZTHT+z8JRAmCjz1lSUAW1uoEgTX6m pEeOLBnSwGA1mZ/u8qhGp30oBljqhtvXQDUjZ5/vPrP6AXVdwbrAkHOL/Ks/ayg1 TnIYYu4Sv9TYGAqf/WK7iMAlTA/NX9lzizo78nef8ag6toONXa4ol4Tk1dBKSi2V y74Qs654TNRbRf3XV3aDbosKdd1opvh9QK47yGd3jciA06dP5xE8Ac3CCDFDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUVLQ6VE0S4JNHmqxZZE8xkv3NQRQwHwYDVR0j BBgwFoAUh8e0t5MyZqCgniKQsJNGIt0HLJswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTU4YWYyNC00NjNiLTQ0ZDgtYjZmMC0zOWI4MmI0NThmNzUvMC84N0M3QjRCNzkz MzI2NkEwQTA5RTIyOTBCMDkzNDYyMkREMDcyQzlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODdDN0I0Qjc5MzMyNjZBMEEwOUUyMjkwQjA5MzQ2MjJERDA3 MkM5Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhNThhZjI0LTQ2M2ItNDRkOC1i NmYwLTM5YjgyYjQ1OGY3NS8wLzMxMzAzMzJlMzEzMjMxMmUzMTM3MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneaowDQYJ KoZIhvcNAQELBQADggEBADP2t1qnTw49uSXr5bQIvGgIYMrBsht14Pa2u8OyuABM I/A4vKGIiVTfRVPUl/3RW6H+vfhXB0mawaD7/CC9CDA6oLevrY9HM75SNBzsYiyy c71pg5SGxwIhrOOQBzxwao9KQiekHBYxaXI1bhjKdcpGLwxt7kUMooX2XBXwTVXx Ki/iwuwkJyIW6s26pvJvR5AFhI9DVVNgcbETVtQibnU8TnSLpTYHTz+UOtlof8PC UMh69kW0G32hAVKt9ujFIG0tGd4gncgc7GMhnb4McIKH/6BodEMFZLNmlDJco+bH Z7xkolyUa3jiYQPzTw1t7Q2DmoSpPP6449/xKq3MhrA= -----END CERTIFICATE-----Generated at Fri Nov 22 03:50:41 2024 by rpki-client on console-fra.rpki-client.org