$ rpki-client -vvf repo-rpki.idnic.net/repo/21cbc927-f4e2-4153-b66b-ce1ec02d7410/0/3130332e3134322e31342e302f32332d3234203d3e20313339333735.roa File: 3130332e3134322e31342e302f32332d3234203d3e20313339333735.roa (raw, json) Hash identifier: 3EhYP5MSs4/lH/1jgs15OsXzjJMrCIK1YXQ3U8OD8SQ= Subject key identifier: 24:C7:BF:FB:00:14:23:75:5C:66:DA:C9:EB:EF:A0:81:AF:C2:C8:7E Certificate issuer: /CN=91E7E283422E38A6A6EDB38593EE074DF8FA29C6 Certificate serial: 07F842BCB91A436891579B18D308FEFA94FA1B31 Authority key identifier: 91:E7:E2:83:42:2E:38:A6:A6:ED:B3:85:93:EE:07:4D:F8:FA:29:C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/91E7E283422E38A6A6EDB38593EE074DF8FA29C6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/21cbc927-f4e2-4153-b66b-ce1ec02d7410/0/3130332e3134322e31342e302f32332d3234203d3e20313339333735.roa Signing time: Mon 01 Jul 2024 01:05:03 +0000 ROA not before: Mon 01 Jul 2024 01:00:03 +0000 ROA not after: Mon 30 Jun 2025 01:05:03 +0000 asID: 139375 IP address blocks: 103.142.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/21cbc927-f4e2-4153-b66b-ce1ec02d7410/0/91E7E283422E38A6A6EDB38593EE074DF8FA29C6.crl rsync://repo-rpki.idnic.net/repo/21cbc927-f4e2-4153-b66b-ce1ec02d7410/0/91E7E283422E38A6A6EDB38593EE074DF8FA29C6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/91E7E283422E38A6A6EDB38593EE074DF8FA29C6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:f8:42:bc:b9:1a:43:68:91:57:9b:18:d3:08:fe:fa:94:fa:1b:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91E7E283422E38A6A6EDB38593EE074DF8FA29C6 Validity Not Before: Jul 1 01:00:03 2024 GMT Not After : Jun 30 01:05:03 2025 GMT Subject: CN=24C7BFFB001423755C66DAC9EBEFA081AFC2C87E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7d:55:aa:3b:38:40:f5:4f:f6:77:dd:31:99: 3a:94:11:d1:36:7b:be:0b:02:4a:e3:33:01:d3:fd: 66:d4:5b:61:13:34:11:26:09:5a:c8:42:c9:af:b3: df:0f:a0:4b:a1:9e:d1:f9:5a:53:a0:a7:2e:80:b4: f9:73:bf:1e:3f:1f:9f:a5:c6:2c:32:6c:44:cd:fa: 0e:f8:8f:61:72:2a:0c:8b:f0:00:d9:11:19:a3:1b: 36:81:1d:f1:a6:cc:6b:7b:d2:07:a0:09:b5:e7:17: 2b:c0:4d:bf:bc:41:01:99:a9:e0:30:cd:ca:e2:59: ba:95:39:03:83:ee:a0:ac:d4:5c:4b:d2:b1:51:48: 3d:5a:e0:7b:c0:3b:24:21:d1:42:8c:c5:e6:1f:76: e0:2e:0a:a8:ed:dc:29:cc:fc:a1:6c:83:d5:15:06: 01:1d:22:26:36:e6:72:f5:60:d6:a9:f9:8c:b3:fb: 28:0a:80:f3:0b:a0:6f:97:1c:82:1a:66:19:82:19: b0:23:e7:60:84:60:49:c2:0d:bb:c8:b1:10:43:0b: 24:4c:a3:f0:c2:27:85:96:fa:f5:71:b3:71:b9:73: 31:ae:1b:a5:1e:cc:14:33:e4:54:cc:2c:a8:f9:f6: 31:5d:22:e4:2d:aa:51:b8:90:44:4c:c1:43:95:f9: 1c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:C7:BF:FB:00:14:23:75:5C:66:DA:C9:EB:EF:A0:81:AF:C2:C8:7E X509v3 Authority Key Identifier: keyid:91:E7:E2:83:42:2E:38:A6:A6:ED:B3:85:93:EE:07:4D:F8:FA:29:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/21cbc927-f4e2-4153-b66b-ce1ec02d7410/0/91E7E283422E38A6A6EDB38593EE074DF8FA29C6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/91E7E283422E38A6A6EDB38593EE074DF8FA29C6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/21cbc927-f4e2-4153-b66b-ce1ec02d7410/0/3130332e3134322e31342e302f32332d3234203d3e20313339333735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.14.0/23 Signature Algorithm: sha256WithRSAEncryption b2:e6:a6:ce:15:28:1b:9d:2b:8c:e3:fd:84:19:37:d9:0e:61: b1:28:90:58:35:91:62:a8:ba:af:e5:43:d4:e7:96:9c:16:2a: cc:83:e6:3d:18:38:12:bf:63:96:2b:64:f9:0d:6e:7f:29:fb: 4d:1f:de:ef:f7:5e:07:c0:4c:59:e4:d7:16:3e:d5:9f:86:0e: e3:17:1d:c3:6b:2e:9e:86:f8:66:b0:1f:b9:ce:e4:35:7b:dd: 8f:da:d1:8d:c5:aa:ae:ad:33:81:d5:ff:38:91:01:12:28:51: 30:b9:7f:c6:c0:ce:e2:1b:aa:93:84:8a:02:7c:72:4a:6e:03: 4b:51:44:5d:b7:c2:31:47:46:13:28:10:24:62:f2:5f:8a:f5: ad:2a:06:0a:ba:53:d5:ee:1e:62:0e:02:9d:f2:2e:1a:4f:82: 55:ba:0e:d9:e1:85:02:a0:8b:56:00:6a:e5:ff:00:a5:17:0d: a4:fb:b8:37:09:45:12:01:05:fb:94:a5:bf:70:d1:ed:bd:23: 83:c3:a4:a4:95:ca:aa:c3:48:ea:ce:79:25:df:46:e7:d7:c6: 47:d3:ae:5a:07:31:92:c4:36:4e:e4:a3:2b:b7:20:91:a1:02: a9:62:6d:5c:79:78:4e:b2:a9:f2:50:98:10:dc:f9:1e:eb:78: e4:1d:9e:f4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUB/hCvLkaQ2iRV5sY0wj++pT6GzEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTFFN0UyODM0MjJFMzhBNkE2RURCMzg1OTNFRTA3NERG OEZBMjlDNjAeFw0yNDA3MDEwMTAwMDNaFw0yNTA2MzAwMTA1MDNaMDMxMTAvBgNV BAMTKDI0QzdCRkZCMDAxNDIzNzU1QzY2REFDOUVCRUZBMDgxQUZDMkM4N0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNfVWqOzhA9U/2d90xmTqUEdE2 e74LAkrjMwHT/WbUW2ETNBEmCVrIQsmvs98PoEuhntH5WlOgpy6AtPlzvx4/H5+l xiwybETN+g74j2FyKgyL8ADZERmjGzaBHfGmzGt70gegCbXnFyvATb+8QQGZqeAw zcriWbqVOQOD7qCs1FxL0rFRSD1a4HvAOyQh0UKMxeYfduAuCqjt3CnM/KFsg9UV BgEdIiY25nL1YNap+Yyz+ygKgPMLoG+XHIIaZhmCGbAj52CEYEnCDbvIsRBDCyRM o/DCJ4WW+vVxs3G5czGuG6UezBQz5FTMLKj59jFdIuQtqlG4kERMwUOV+RwFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUJMe/+wAUI3VcZtrJ6++gga/CyH4wHwYDVR0j BBgwFoAUkefig0IuOKam7bOFk+4HTfj6KcYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MWNiYzkyNy1mNGUyLTQxNTMtYjY2Yi1jZTFlYzAyZDc0MTAvMC85MUU3RTI4MzQy MkUzOEE2QTZFREIzODU5M0VFMDc0REY4RkEyOUM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTFFN0UyODM0MjJFMzhBNkE2RURCMzg1OTNFRTA3NERGOEZB MjlDNi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIxY2JjOTI3LWY0ZTItNDE1My1i NjZiLWNlMWVjMDJkNzQxMC8wLzMxMzAzMzJlMzEzNDMyMmUzMTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzMzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ44OMA0GCSqG SIb3DQEBCwUAA4IBAQCy5qbOFSgbnSuM4/2EGTfZDmGxKJBYNZFiqLqv5UPU55ac FirMg+Y9GDgSv2OWK2T5DW5/KftNH97v914HwExZ5NcWPtWfhg7jFx3Day6ehvhm sB+5zuQ1e92P2tGNxaqurTOB1f84kQESKFEwuX/GwM7iG6qThIoCfHJKbgNLUURd t8IxR0YTKBAkYvJfivWtKgYKulPV7h5iDgKd8i4aT4JVug7Z4YUCoItWAGrl/wCl Fw2k+7g3CUUSAQX7lKW/cNHtvSODw6Sklcqqw0jqznkl30bn18ZH065aBzGSxDZO 5KMrtyCRoQKpYm1ceXhOsqnyUJgQ3Pke63jkHZ70 -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:40 2024 by rpki-client on console-fra.rpki-client.org