$ rpki-client -vvf repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/3130332e3134322e3235342e302f32332d3234203d3e203435333035.roa File: 3130332e3134322e3235342e302f32332d3234203d3e203435333035.roa (raw, json) Hash identifier: 7O8N58po+0JxePzNZclEQ2AJgxG8+dzNwmbyqc3JseQ= Subject key identifier: 94:ED:88:7D:C2:06:8E:24:A6:B6:49:B5:54:5E:11:63:95:EB:60:A1 Certificate issuer: /CN=D68CA7C6F514D7168C00790717FB869AF68B125E Certificate serial: 4895469E575FC5799280C13F22F25F00C4FC8692 Authority key identifier: D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/3130332e3134322e3235342e302f32332d3234203d3e203435333035.roa Signing time: Mon 03 Jun 2024 06:00:00 +0000 ROA not before: Mon 03 Jun 2024 05:55:00 +0000 ROA not after: Mon 02 Jun 2025 06:00:00 +0000 asID: 45305 IP address blocks: 103.142.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:95:46:9e:57:5f:c5:79:92:80:c1:3f:22:f2:5f:00:c4:fc:86:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D68CA7C6F514D7168C00790717FB869AF68B125E Validity Not Before: Jun 3 05:55:00 2024 GMT Not After : Jun 2 06:00:00 2025 GMT Subject: CN=94ED887DC2068E24A6B649B5545E116395EB60A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:31:c0:22:c7:4d:c2:08:30:6d:70:ec:10:d1: 0f:6d:48:ad:7b:61:6a:cf:bd:ce:4c:a5:c4:30:8e: d6:14:ed:ea:e7:ef:5d:b0:e9:5f:1b:f8:80:b2:27: 9b:da:36:62:47:1c:83:66:2c:de:d3:9b:df:c5:bc: 92:92:cf:29:f3:e5:93:0d:12:af:9c:c7:6a:c6:10: 67:64:e2:68:d2:0e:61:8f:9b:55:65:8c:6f:8b:a3: aa:d0:60:da:d7:d9:6d:77:4d:2b:61:d2:30:df:28: f2:09:94:51:dc:d4:a9:bd:71:8d:af:13:06:78:66: aa:bd:7e:29:34:7d:fe:60:c9:a5:79:b0:f5:e1:57: c0:60:74:48:e9:91:de:a6:36:fd:2f:27:43:74:03: 54:23:83:2f:03:20:37:f3:40:2c:2d:70:13:31:d8: f5:71:f8:26:4d:4a:ae:1d:e9:bc:8a:b4:d2:3e:75: ab:e7:e3:9a:92:38:34:a8:c8:51:fa:fd:2f:23:c0: 2c:07:c0:97:6b:91:13:fc:6f:e2:b8:dc:de:60:07: b0:05:f6:4b:5a:41:2b:4e:3a:6d:88:eb:a0:3e:2d: a9:55:01:bb:70:46:b8:2d:c6:a5:4b:91:9e:b4:25: ad:a4:4a:ae:62:60:d2:81:fe:fc:1a:53:28:9e:16: 39:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:ED:88:7D:C2:06:8E:24:A6:B6:49:B5:54:5E:11:63:95:EB:60:A1 X509v3 Authority Key Identifier: keyid:D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/3130332e3134322e3235342e302f32332d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.254.0/23 Signature Algorithm: sha256WithRSAEncryption 67:b8:72:f3:6b:93:d2:97:38:02:d1:cd:10:d1:f5:b0:c4:2e: ce:70:36:bf:71:af:e2:2a:48:d8:00:f7:9f:3f:aa:e0:60:c8: a1:a0:8d:0b:a6:76:d2:71:8c:98:4e:0c:f6:fc:a4:ce:5a:b8: 2b:44:c7:bf:1f:b0:d1:00:4f:25:00:04:00:0b:02:9c:c5:28: 06:2f:aa:79:2a:f3:57:9a:33:20:a7:24:05:e3:34:e1:0c:c8: 8f:74:44:60:cf:d2:08:fb:e2:3a:ec:9a:ef:7b:a2:1d:77:51: 21:cf:ac:bf:03:94:70:b7:ff:f8:e3:83:a1:78:97:8a:84:23: d8:a2:b6:5d:c7:f6:00:61:2a:59:fb:05:58:75:c2:77:82:26: 4c:1c:85:e2:d6:a4:04:53:db:e9:3e:d9:7e:b3:85:0d:de:ce: 87:c4:65:d4:b4:9a:a8:44:ac:d8:f4:3d:b6:96:29:cd:e4:54: e1:ee:2d:c2:b6:6d:c4:c1:59:48:3a:5a:c7:21:af:4b:bd:0f: bf:47:3f:2f:61:05:29:8e:9c:1e:0f:a4:a3:6e:6b:50:e2:fd: fc:4d:45:87:80:cc:32:61:fa:e1:a1:46:05:1f:c1:42:69:b2: 13:b8:dd:ae:dc:48:3c:ba:8d:10:57:59:e4:a7:ae:f2:ea:99: 17:c2:d1:37 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSJVGnldfxXmSgME/IvJfAMT8hpIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFG NjhCMTI1RTAeFw0yNDA2MDMwNTU1MDBaFw0yNTA2MDIwNjAwMDBaMDMxMTAvBgNV BAMTKDk0RUQ4ODdEQzIwNjhFMjRBNkI2NDlCNTU0NUUxMTYzOTVFQjYwQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4McAix03CCDBtcOwQ0Q9tSK17 YWrPvc5MpcQwjtYU7ern712w6V8b+ICyJ5vaNmJHHINmLN7Tm9/FvJKSzynz5ZMN Eq+cx2rGEGdk4mjSDmGPm1VljG+Lo6rQYNrX2W13TSth0jDfKPIJlFHc1Km9cY2v EwZ4Zqq9fik0ff5gyaV5sPXhV8BgdEjpkd6mNv0vJ0N0A1Qjgy8DIDfzQCwtcBMx 2PVx+CZNSq4d6byKtNI+davn45qSODSoyFH6/S8jwCwHwJdrkRP8b+K43N5gB7AF 9ktaQStOOm2I66A+LalVAbtwRrgtxqVLkZ60Ja2kSq5iYNKB/vwaUyieFjnbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlO2IfcIGjiSmtkm1VF4RY5XrYKEwHwYDVR0j BBgwFoAU1oynxvUU1xaMAHkHF/uGmvaLEl4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGRjMWRkOC02ZDI1LTQ3YzctYWFhNC1iZGRmMWI5ZDY3N2UvMC9ENjhDQTdDNkY1 MTRENzE2OEMwMDc5MDcxN0ZCODY5QUY2OEIxMjVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFGNjhC MTI1RS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZGMxZGQ4LTZkMjUtNDdjNy1h YWE0LWJkZGYxYjlkNjc3ZS8wLzMxMzAzMzJlMzEzNDMyMmUzMjM1MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNDM1MzMzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ47+MA0GCSqG SIb3DQEBCwUAA4IBAQBnuHLza5PSlzgC0c0Q0fWwxC7OcDa/ca/iKkjYAPefP6rg YMihoI0LpnbScYyYTgz2/KTOWrgrRMe/H7DRAE8lAAQACwKcxSgGL6p5KvNXmjMg pyQF4zThDMiPdERgz9II++I67Jrve6Idd1Ehz6y/A5Rwt//444OheJeKhCPYorZd x/YAYSpZ+wVYdcJ3giZMHIXi1qQEU9vpPtl+s4UN3s6HxGXUtJqoRKzY9D22linN 5FTh7i3Ctm3EwVlIOlrHIa9LvQ+/Rz8vYQUpjpweD6SjbmtQ4v38TUWHgMwyYfrh oUYFH8FCabITuN2u3Eg8uo0QV1nkp67y6pkXwtE3 -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:05 2024 by rpki-client on console-fra.rpki-client.org