$ rpki-client -vvf repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3130332e3132332e39362e302f32322d3234203d3e20313338303734.roa File: 3130332e3132332e39362e302f32322d3234203d3e20313338303734.roa (raw, json) Hash identifier: C3I03bKwqahoZs1vLJC2P0W/gVIIwRIvwhkzt1QShKA= Subject key identifier: FB:97:14:16:FB:78:C2:DD:36:DA:CA:B5:F4:27:81:86:E9:C2:5B:87 Certificate issuer: /CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Certificate serial: 3CF7A7B4436EAD1846E53C2297EEFF16DAA1A853 Authority key identifier: C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3130332e3132332e39362e302f32322d3234203d3e20313338303734.roa Signing time: Mon 01 Jul 2024 01:05:39 +0000 ROA not before: Mon 01 Jul 2024 01:00:39 +0000 ROA not after: Mon 30 Jun 2025 01:05:39 +0000 asID: 138074 IP address blocks: 103.123.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:08:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:f7:a7:b4:43:6e:ad:18:46:e5:3c:22:97:ee:ff:16:da:a1:a8:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8EC18E027639B05BC58A2228D126486BEFB3ABB Validity Not Before: Jul 1 01:00:39 2024 GMT Not After : Jun 30 01:05:39 2025 GMT Subject: CN=FB971416FB78C2DD36DACAB5F4278186E9C25B87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:1b:bc:09:ad:d4:81:44:38:bd:97:10:5d:cd: 62:2c:32:b5:05:ee:fb:76:7f:7c:a4:b8:2c:12:c6: 94:86:3b:b2:67:dd:d3:3d:08:e3:e0:e9:8a:bb:2b: 4e:ea:e4:53:7c:8b:f1:0a:34:b0:8d:43:89:5d:a1: 6d:9d:86:61:bb:1f:3c:56:e6:f6:b3:23:9f:74:31: b0:5b:bf:d6:cd:4c:2f:9f:66:83:c6:af:a9:98:79: d5:5c:e2:71:b1:45:37:cf:87:ef:46:2e:86:85:51: 88:c9:3d:3f:d9:2d:47:75:79:be:a2:a9:bc:60:f9: 93:e3:b6:9a:c8:40:21:e6:23:90:23:67:d2:5f:d1: 58:46:27:7c:bd:ac:f6:21:7d:50:c2:bb:ba:a7:7c: c0:06:c2:c0:7f:18:f8:d4:b6:3b:5f:5b:05:f1:62: f0:66:54:27:2c:b3:f1:6d:1f:06:62:99:a4:01:8b: c7:16:75:59:21:9a:59:5a:7b:45:62:8b:d3:26:aa: ef:2a:78:c9:05:15:b2:a8:d6:f2:7c:e4:35:35:e9: ed:55:6f:44:00:3f:68:b5:20:3c:a9:3a:01:7c:2d: bd:4c:74:1f:a3:b0:c3:fb:b4:5e:1a:70:9b:8c:2e: c3:4a:18:7d:c9:11:65:8c:7b:12:16:f3:2a:c9:49: 9c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:97:14:16:FB:78:C2:DD:36:DA:CA:B5:F4:27:81:86:E9:C2:5B:87 X509v3 Authority Key Identifier: keyid:C8:EC:18:E0:27:63:9B:05:BC:58:A2:22:8D:12:64:86:BE:FB:3A:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/C8EC18E027639B05BC58A2228D126486BEFB3ABB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8EC18E027639B05BC58A2228D126486BEFB3ABB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1c289706-a4f4-4e1f-9a6e-01c9c53cd8f9/0/3130332e3132332e39362e302f32322d3234203d3e20313338303734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.96.0/22 Signature Algorithm: sha256WithRSAEncryption b4:9f:d7:ba:00:97:56:10:4a:ec:c9:c5:64:1d:19:d2:94:18: f3:ac:f1:cb:b4:50:a6:e1:cc:da:8a:e6:0b:02:ea:df:9c:59: f8:01:3b:5e:c2:de:bd:25:37:53:4f:ff:0a:4d:50:b2:9c:14: 80:2c:ea:7a:55:b6:95:07:79:17:40:d0:c5:84:9a:83:81:0f: 4f:39:e7:ec:73:de:09:bf:d2:90:53:52:0b:d8:03:3a:f9:e7: 62:c5:8a:48:37:d2:68:b6:df:21:5a:35:98:fd:9d:b6:00:5c: 6c:53:d4:54:47:56:4e:33:27:20:63:91:cc:07:67:43:98:1c: a9:7b:da:ba:98:f5:7d:40:cf:d8:94:34:2c:30:12:8c:be:0d: 0f:eb:2d:9a:28:44:1d:3b:36:18:79:de:dc:d0:d4:e0:cd:db: d7:cd:39:e7:20:96:31:7f:7c:b3:42:4b:f1:f4:e1:2c:5f:e5: d7:8f:1b:82:0f:f8:4c:85:07:47:e0:8b:26:bc:44:fc:95:a2: 21:32:21:89:30:d5:74:08:e6:dc:c4:a6:59:76:98:d1:dc:a3: 48:0c:8c:d7:82:7e:15:f0:00:03:2f:96:16:71:f5:6f:28:cc: b3:dd:c0:3c:a4:d4:d0:7e:15:f8:35:eb:68:be:88:91:8f:9a: b3:5c:29:c6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPPentENurRhG5Twil+7/FtqhqFMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZC RUZCM0FCQjAeFw0yNDA3MDEwMTAwMzlaFw0yNTA2MzAwMTA1MzlaMDMxMTAvBgNV BAMTKEZCOTcxNDE2RkI3OEMyREQzNkRBQ0FCNUY0Mjc4MTg2RTlDMjVCODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyG7wJrdSBRDi9lxBdzWIsMrUF 7vt2f3ykuCwSxpSGO7Jn3dM9COPg6Yq7K07q5FN8i/EKNLCNQ4ldoW2dhmG7HzxW 5vazI590MbBbv9bNTC+fZoPGr6mYedVc4nGxRTfPh+9GLoaFUYjJPT/ZLUd1eb6i qbxg+ZPjtprIQCHmI5AjZ9Jf0VhGJ3y9rPYhfVDCu7qnfMAGwsB/GPjUtjtfWwXx YvBmVCcss/FtHwZimaQBi8cWdVkhmllae0Vii9Mmqu8qeMkFFbKo1vJ85DU16e1V b0QAP2i1IDypOgF8Lb1MdB+jsMP7tF4acJuMLsNKGH3JEWWMexIW8yrJSZxvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+5cUFvt4wt022sq19CeBhunCW4cwHwYDVR0j BBgwFoAUyOwY4CdjmwW8WKIijRJkhr77OrswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YzI4OTcwNi1hNGY0LTRlMWYtOWE2ZS0wMWM5YzUzY2Q4ZjkvMC9DOEVDMThFMDI3 NjM5QjA1QkM1OEEyMjI4RDEyNjQ4NkJFRkIzQUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhFQzE4RTAyNzYzOUIwNUJDNThBMjIyOEQxMjY0ODZCRUZC M0FCQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFjMjg5NzA2LWE0ZjQtNGUxZi05 YTZlLTAxYzljNTNjZDhmOS8wLzMxMzAzMzJlMzEzMjMzMmUzOTM2MmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ3tgMA0GCSqG SIb3DQEBCwUAA4IBAQC0n9e6AJdWEErsycVkHRnSlBjzrPHLtFCm4czaiuYLAurf nFn4ATtewt69JTdTT/8KTVCynBSALOp6VbaVB3kXQNDFhJqDgQ9POefsc94Jv9KQ U1IL2AM6+edixYpIN9Jott8hWjWY/Z22AFxsU9RUR1ZOMycgY5HMB2dDmBype9q6 mPV9QM/YlDQsMBKMvg0P6y2aKEQdOzYYed7c0NTgzdvXzTnnIJYxf3yzQkvx9OEs X+XXjxuCD/hMhQdH4IsmvET8laIhMiGJMNV0CObcxKZZdpjR3KNIDIzXgn4V8AAD L5YWcfVvKMyz3cA8pNTQfhX4NetovoiRj5qzXCnG -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:32 2024 by rpki-client on console-fra.rpki-client.org