$ rpki-client -vvf repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/3130332e3134322e3235342e302f32342d3234203d3e20313339333831.roa File: 3130332e3134322e3235342e302f32342d3234203d3e20313339333831.roa (raw, json) Hash identifier: dqH/h3KP8VbL1imk1+sCwLW1Fbde9SEkgS3WsJD6a4Q= Subject key identifier: 0B:19:76:2B:45:AC:94:D2:0F:9F:4A:6E:A2:B6:41:3D:1C:96:AA:5B Certificate issuer: /CN=D68CA7C6F514D7168C00790717FB869AF68B125E Certificate serial: 1C9ADE96D9C6A1E255A1E8FB47796D1ACE0B1FDB Authority key identifier: D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/3130332e3134322e3235342e302f32342d3234203d3e20313339333831.roa Signing time: Wed 04 Sep 2024 11:00:00 +0000 ROA not before: Wed 04 Sep 2024 10:55:00 +0000 ROA not after: Wed 03 Sep 2025 11:00:00 +0000 asID: 139381 IP address blocks: 103.142.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:9a:de:96:d9:c6:a1:e2:55:a1:e8:fb:47:79:6d:1a:ce:0b:1f:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D68CA7C6F514D7168C00790717FB869AF68B125E Validity Not Before: Sep 4 10:55:00 2024 GMT Not After : Sep 3 11:00:00 2025 GMT Subject: CN=0B19762B45AC94D20F9F4A6EA2B6413D1C96AA5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f4:0e:c7:24:df:ac:6b:66:ee:db:5a:95:af: 97:1a:30:9f:ab:c8:98:2a:7c:4c:21:d9:c1:2b:03: b3:f5:3f:9d:48:b9:32:ea:28:02:86:3c:86:fb:37: 23:ba:df:0a:29:14:d6:e2:24:14:b8:7b:54:24:63: 6d:19:f2:c7:91:0d:fa:16:a0:25:ee:67:50:de:95: d4:00:e4:e9:d1:b4:63:e1:4c:3d:62:a6:df:05:d9: cf:14:7f:e4:4d:3e:fe:80:a7:73:e6:e9:a7:18:53: 24:a5:c1:1f:07:2f:7e:17:df:26:2e:40:52:af:21: a9:e6:0e:69:62:43:7d:a9:f4:01:67:0a:80:eb:80: cc:f5:cd:58:a9:fd:58:78:79:23:07:ba:c4:83:7a: 11:02:6f:9c:9b:f5:31:75:e8:89:e1:78:e6:0a:42: 04:00:1b:75:8e:3b:3d:f0:cd:61:c0:10:3f:f2:63: 9e:b4:35:6f:c4:e2:5b:79:2b:c8:66:79:78:04:d9: f9:8b:99:56:ca:7e:f1:e2:36:fc:02:b1:9d:53:11: 58:ad:32:91:18:90:ac:a8:89:8c:36:32:53:e8:45: ce:9a:63:6a:85:09:27:d9:10:6f:b8:01:a9:02:fd: 83:c8:1b:a7:eb:c1:c5:09:9b:b6:22:5f:6a:de:de: 81:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:19:76:2B:45:AC:94:D2:0F:9F:4A:6E:A2:B6:41:3D:1C:96:AA:5B X509v3 Authority Key Identifier: keyid:D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/3130332e3134322e3235342e302f32342d3234203d3e20313339333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.254.0/24 Signature Algorithm: sha256WithRSAEncryption 62:06:94:62:a6:33:76:15:83:e4:64:ad:50:1e:82:dc:85:bf: d7:89:86:f1:b0:7c:0a:42:e5:7e:93:03:b0:52:5a:53:02:4a: d1:9f:0d:ee:fa:57:51:f1:b7:1d:ed:7a:c6:0e:a0:24:df:c9: 57:d1:f0:af:51:40:81:96:bb:0e:e3:f3:59:6e:3b:ea:6e:1e: 6a:ca:e8:13:0f:1c:ce:a5:b4:6f:4c:cc:14:9f:30:d6:3b:c6: 92:1e:61:d9:09:94:72:ae:76:e8:90:cf:21:ea:9d:7b:e3:34: fe:15:b5:46:b4:a1:d5:15:49:7c:3a:72:50:3f:3a:4c:7c:84: df:5a:dd:f0:26:04:1b:d3:3d:ae:e7:fe:5f:20:02:61:25:be: 03:bf:81:1f:0b:ee:88:3f:c5:55:ce:38:45:b7:b3:c5:50:b6: 22:93:62:ce:03:87:b3:3f:10:28:05:36:7a:bf:00:04:80:e8: 8c:e8:79:2a:c6:66:ca:ff:57:2c:57:dc:03:f7:8c:2b:86:e7: 63:0a:4a:90:ce:3b:25:37:a3:a4:42:37:02:01:b0:74:73:ce: 50:ef:4f:62:b3:b7:e7:07:01:25:2a:ad:27:19:2e:c5:3c:f4: 0f:c2:ce:6e:92:41:e6:69:66:d8:5c:98:8c:1a:36:ff:25:18: 8e:25:8b:de -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHJreltnGoeJVoej7R3ltGs4LH9swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFG NjhCMTI1RTAeFw0yNDA5MDQxMDU1MDBaFw0yNTA5MDMxMTAwMDBaMDMxMTAvBgNV BAMTKDBCMTk3NjJCNDVBQzk0RDIwRjlGNEE2RUEyQjY0MTNEMUM5NkFBNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDf9A7HJN+sa2bu21qVr5caMJ+r yJgqfEwh2cErA7P1P51IuTLqKAKGPIb7NyO63wopFNbiJBS4e1QkY20Z8seRDfoW oCXuZ1DeldQA5OnRtGPhTD1ipt8F2c8Uf+RNPv6Ap3Pm6acYUySlwR8HL34X3yYu QFKvIanmDmliQ32p9AFnCoDrgMz1zVip/Vh4eSMHusSDehECb5yb9TF16InheOYK QgQAG3WOOz3wzWHAED/yY560NW/E4lt5K8hmeXgE2fmLmVbKfvHiNvwCsZ1TEVit MpEYkKyoiYw2MlPoRc6aY2qFCSfZEG+4AakC/YPIG6frwcUJm7YiX2re3oG/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUCxl2K0WslNIPn0puorZBPRyWqlswHwYDVR0j BBgwFoAU1oynxvUU1xaMAHkHF/uGmvaLEl4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGRjMWRkOC02ZDI1LTQ3YzctYWFhNC1iZGRmMWI5ZDY3N2UvMC9ENjhDQTdDNkY1 MTRENzE2OEMwMDc5MDcxN0ZCODY5QUY2OEIxMjVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFGNjhC MTI1RS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFkZGMxZGQ4LTZkMjUtNDdjNy1h YWE0LWJkZGYxYjlkNjc3ZS8wLzMxMzAzMzJlMzEzNDMyMmUzMjM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM4MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnjv4wDQYJ KoZIhvcNAQELBQADggEBAGIGlGKmM3YVg+RkrVAegtyFv9eJhvGwfApC5X6TA7BS WlMCStGfDe76V1Hxtx3tesYOoCTfyVfR8K9RQIGWuw7j81luO+puHmrK6BMPHM6l tG9MzBSfMNY7xpIeYdkJlHKuduiQzyHqnXvjNP4VtUa0odUVSXw6clA/Okx8hN9a 3fAmBBvTPa7n/l8gAmElvgO/gR8L7og/xVXOOEW3s8VQtiKTYs4Dh7M/ECgFNnq/ AASA6IzoeSrGZsr/VyxX3AP3jCuG52MKSpDOOyU3o6RCNwIBsHRzzlDvT2Kzt+cH ASUqrScZLsU89A/Czm6SQeZpZthcmIwaNv8lGI4li94= -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:50 2024 by rpki-client on console-ams.rpki-client.org