$ rpki-client -vvf repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/3130332e3134322e3235342e302f32332d3234203d3e20313339333831.roa File: 3130332e3134322e3235342e302f32332d3234203d3e20313339333831.roa (raw, json) Hash identifier: ouXIX9GF2bsN7u33KTbYLbJVbRNSQKEsMqHEdl/mkaw= Subject key identifier: EE:66:64:1A:C4:A0:68:60:F7:CE:3B:7A:6F:47:A7:5B:06:DA:13:0D Certificate issuer: /CN=D68CA7C6F514D7168C00790717FB869AF68B125E Certificate serial: 60506333EED451E015B520A1CA80B796A66B2EE8 Authority key identifier: D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/3130332e3134322e3235342e302f32332d3234203d3e20313339333831.roa Signing time: Wed 04 Sep 2024 12:00:00 +0000 ROA not before: Wed 04 Sep 2024 11:55:00 +0000 ROA not after: Wed 03 Sep 2025 12:00:00 +0000 asID: 139381 IP address blocks: 103.142.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:50:63:33:ee:d4:51:e0:15:b5:20:a1:ca:80:b7:96:a6:6b:2e:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D68CA7C6F514D7168C00790717FB869AF68B125E Validity Not Before: Sep 4 11:55:00 2024 GMT Not After : Sep 3 12:00:00 2025 GMT Subject: CN=EE66641AC4A06860F7CE3B7A6F47A75B06DA130D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:42:2d:ab:76:e3:95:49:99:d8:b4:25:e7:94: 23:ed:6d:a1:76:7c:7c:f5:c6:00:39:1f:bb:8b:2a: 96:e6:5d:64:72:49:3a:1c:da:24:f6:48:17:4b:78: 6d:25:c2:dc:66:f2:59:7a:39:2a:5d:15:2d:ed:1f: e0:0a:3d:c6:25:13:99:d2:52:91:78:10:0b:35:39: fe:c4:9d:a2:37:86:57:28:7b:90:5a:63:ee:06:ab: 15:f5:b6:fe:9e:71:c8:90:16:e7:fc:f1:b0:e4:1f: 02:1d:29:01:84:14:b8:27:52:7d:3b:90:79:99:a4: ae:d4:7d:17:e3:4f:4c:02:05:ee:8a:09:aa:a2:56: 96:27:46:7f:80:bb:8f:47:57:08:64:8f:a8:0d:5c: 13:4a:f6:68:7c:c4:63:94:18:37:c4:c6:b9:65:27: 4b:0f:b5:79:21:3c:cf:f8:0d:9a:73:26:a8:6d:f9: 43:fc:df:84:2a:47:22:19:f0:de:82:8d:2d:23:f8: e0:5d:a1:70:dc:c5:14:dd:ff:06:b1:8b:9f:09:e2: 3f:e2:99:19:f8:db:f6:a9:34:00:43:94:11:a8:c2: c1:cf:bb:6a:d4:7e:82:6f:b9:5b:19:00:fe:28:56: 6e:6d:96:e8:d9:76:3d:ec:f3:c6:03:53:94:09:93: c5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:66:64:1A:C4:A0:68:60:F7:CE:3B:7A:6F:47:A7:5B:06:DA:13:0D X509v3 Authority Key Identifier: keyid:D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/3130332e3134322e3235342e302f32332d3234203d3e20313339333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.254.0/23 Signature Algorithm: sha256WithRSAEncryption 96:56:a1:a3:b0:35:93:a2:a9:c4:1d:fe:6a:a6:ec:fc:4e:a6: f7:b8:43:ea:fb:4b:c4:f8:08:5b:d3:68:91:f8:cb:d8:a1:2f: 73:37:a9:fe:3d:d9:ef:9b:47:24:d5:ef:0b:ca:fd:01:3c:ea: ea:b7:a0:fc:02:81:7d:db:14:a3:d5:da:32:53:26:d7:3f:71: f9:75:ef:f9:6a:96:87:54:8f:d4:87:97:00:9f:11:a8:0b:de: 92:13:64:0e:b1:20:12:33:9b:0e:e3:7e:29:a9:b8:c2:d1:b9: 65:30:75:34:ee:a7:f3:47:b8:bb:ea:5f:4e:a6:c0:64:9e:4e: c8:5e:a2:63:82:94:1e:c5:3e:85:2a:87:27:7f:5d:ed:43:08: 17:cf:97:69:c9:54:37:9c:40:8b:b1:07:8e:bf:eb:73:76:53: d4:23:39:19:14:8e:ec:ca:f1:c9:b5:72:19:d7:5e:dd:70:e5: 19:3c:1e:45:84:76:cb:1c:3f:ff:cc:aa:6d:39:2d:94:52:7c: d1:b5:a7:41:f6:2e:52:22:26:33:cc:8a:2b:e3:b7:c4:55:57: e9:00:77:80:38:26:78:17:41:e1:7b:ff:64:c1:98:13:5f:b0: 72:c2:e1:ab:9b:57:6f:57:da:31:5d:50:dd:bd:a4:82:2f:f0: b8:22:e5:11 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYFBjM+7UUeAVtSChyoC3lqZrLugwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFG NjhCMTI1RTAeFw0yNDA5MDQxMTU1MDBaFw0yNTA5MDMxMjAwMDBaMDMxMTAvBgNV BAMTKEVFNjY2NDFBQzRBMDY4NjBGN0NFM0I3QTZGNDdBNzVCMDZEQTEzMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSQi2rduOVSZnYtCXnlCPtbaF2 fHz1xgA5H7uLKpbmXWRySToc2iT2SBdLeG0lwtxm8ll6OSpdFS3tH+AKPcYlE5nS UpF4EAs1Of7EnaI3hlcoe5BaY+4GqxX1tv6ecciQFuf88bDkHwIdKQGEFLgnUn07 kHmZpK7UfRfjT0wCBe6KCaqiVpYnRn+Au49HVwhkj6gNXBNK9mh8xGOUGDfExrll J0sPtXkhPM/4DZpzJqht+UP834QqRyIZ8N6CjS0j+OBdoXDcxRTd/waxi58J4j/i mRn42/apNABDlBGowsHPu2rUfoJvuVsZAP4oVm5tlujZdj3s88YDU5QJk8U/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU7mZkGsSgaGD3zjt6b0enWwbaEw0wHwYDVR0j BBgwFoAU1oynxvUU1xaMAHkHF/uGmvaLEl4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGRjMWRkOC02ZDI1LTQ3YzctYWFhNC1iZGRmMWI5ZDY3N2UvMC9ENjhDQTdDNkY1 MTRENzE2OEMwMDc5MDcxN0ZCODY5QUY2OEIxMjVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFGNjhC MTI1RS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZGMxZGQ4LTZkMjUtNDdjNy1h YWE0LWJkZGYxYjlkNjc3ZS8wLzMxMzAzMzJlMzEzNDMyMmUzMjM1MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM4MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnjv4wDQYJ KoZIhvcNAQELBQADggEBAJZWoaOwNZOiqcQd/mqm7PxOpve4Q+r7S8T4CFvTaJH4 y9ihL3M3qf492e+bRyTV7wvK/QE86uq3oPwCgX3bFKPV2jJTJtc/cfl17/lqlodU j9SHlwCfEagL3pITZA6xIBIzmw7jfimpuMLRuWUwdTTup/NHuLvqX06mwGSeTshe omOClB7FPoUqhyd/Xe1DCBfPl2nJVDecQIuxB46/63N2U9QjORkUjuzK8cm1chnX Xt1w5Rk8HkWEdsscP//Mqm05LZRSfNG1p0H2LlIiJjPMiivjt8RVV+kAd4A4JngX QeF7/2TBmBNfsHLC4aubV29X2jFdUN29pIIv8Lgi5RE= -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:50 2024 by rpki-client on console-ams.rpki-client.org