$ rpki-client -vvf repo-rpki.idnic.net/repo/2626639a-9a1c-4c0e-ba17-f679f0506cbc/0/3130332e3132332e3132312e302f32342d3234203d3e20313338303730.roa File: 3130332e3132332e3132312e302f32342d3234203d3e20313338303730.roa (raw, json) Hash identifier: 4GQdf+VZs7PPph0HlbP83daxKZbSIzab61P6GJVbBqM= Subject key identifier: AD:21:7D:DD:FF:A9:A4:01:6A:80:36:F4:F5:CD:DC:DB:F7:C9:9F:E6 Certificate issuer: /CN=579618DB6FFA608F5998FCD968B270AE61BDB97C Certificate serial: 69D1E3802BE1C7F6093F659044D74FF0F561D50F Authority key identifier: 57:96:18:DB:6F:FA:60:8F:59:98:FC:D9:68:B2:70:AE:61:BD:B9:7C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/579618DB6FFA608F5998FCD968B270AE61BDB97C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2626639a-9a1c-4c0e-ba17-f679f0506cbc/0/3130332e3132332e3132312e302f32342d3234203d3e20313338303730.roa Signing time: Thu 13 Jun 2024 14:00:00 +0000 ROA not before: Thu 13 Jun 2024 13:55:00 +0000 ROA not after: Thu 12 Jun 2025 14:00:00 +0000 asID: 138070 IP address blocks: 103.123.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2626639a-9a1c-4c0e-ba17-f679f0506cbc/0/579618DB6FFA608F5998FCD968B270AE61BDB97C.crl rsync://repo-rpki.idnic.net/repo/2626639a-9a1c-4c0e-ba17-f679f0506cbc/0/579618DB6FFA608F5998FCD968B270AE61BDB97C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/579618DB6FFA608F5998FCD968B270AE61BDB97C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:d1:e3:80:2b:e1:c7:f6:09:3f:65:90:44:d7:4f:f0:f5:61:d5:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=579618DB6FFA608F5998FCD968B270AE61BDB97C Validity Not Before: Jun 13 13:55:00 2024 GMT Not After : Jun 12 14:00:00 2025 GMT Subject: CN=AD217DDDFFA9A4016A8036F4F5CDDCDBF7C99FE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2e:e4:2c:f0:cd:25:eb:a0:a6:dd:7c:7b:a6: a7:e8:41:c4:4d:a3:f1:1f:15:a5:fc:09:e4:ed:be: 35:5a:3f:ee:7a:d8:98:53:32:40:08:2b:7d:15:1a: 11:22:77:85:07:61:ba:b6:82:ec:57:df:22:14:fc: 16:65:9d:48:05:71:60:91:cf:ed:ef:58:7b:61:b4: 71:24:b7:4d:dd:7d:10:25:b3:d0:40:84:6d:39:66: e1:80:97:b2:13:c8:98:c8:f2:fd:4e:d1:22:b1:49: 11:fb:f0:d2:10:38:97:c5:72:1a:a6:cb:1e:3d:a2: 26:55:c5:98:39:69:e2:3f:df:9e:51:d0:3e:0e:43: cb:e9:33:9b:14:79:65:ca:2a:bb:04:e4:55:c4:23: 39:03:98:60:b7:32:f5:9a:13:d8:45:f6:0f:d4:8e: 01:fb:8b:8e:46:ee:56:bc:ba:38:7c:33:20:bb:35: 6c:a0:d0:ec:61:85:6c:0d:87:43:22:52:46:8f:dc: 06:0d:06:0d:99:b2:75:18:fc:df:30:77:3a:60:f4: e6:40:95:e1:c0:1f:d6:7c:2e:fd:d4:8e:ea:44:77: b3:50:0d:58:19:0b:88:83:5f:d9:55:e7:54:03:4b: 3a:d2:32:d6:da:9f:8b:83:ef:0b:4b:0c:77:9d:ad: 63:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:21:7D:DD:FF:A9:A4:01:6A:80:36:F4:F5:CD:DC:DB:F7:C9:9F:E6 X509v3 Authority Key Identifier: keyid:57:96:18:DB:6F:FA:60:8F:59:98:FC:D9:68:B2:70:AE:61:BD:B9:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2626639a-9a1c-4c0e-ba17-f679f0506cbc/0/579618DB6FFA608F5998FCD968B270AE61BDB97C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/579618DB6FFA608F5998FCD968B270AE61BDB97C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2626639a-9a1c-4c0e-ba17-f679f0506cbc/0/3130332e3132332e3132312e302f32342d3234203d3e20313338303730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.121.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:31:5f:35:17:2f:0e:37:3a:56:04:00:1a:f8:f0:0d:b1:03: be:21:37:8c:f1:7c:b2:68:d0:8b:c0:99:b8:79:7f:22:b2:3a: 2c:73:c2:ca:07:d7:00:ae:72:91:34:4d:5a:16:59:df:b6:b6: 2d:3b:e0:8a:45:06:c5:77:f5:56:04:9f:f7:fa:89:16:f2:ef: fc:43:28:39:60:14:6e:29:c2:d2:51:35:25:16:79:11:6b:f5: d6:aa:a6:e9:f7:66:94:a8:9b:04:be:9e:64:0b:97:ed:ee:7a: 97:62:80:87:5a:4d:e1:2b:d3:1e:d2:31:10:2f:67:6f:20:24: 33:84:3e:06:44:a9:f1:f2:4f:57:cf:5a:83:e9:7a:4c:22:29: 54:c8:ab:ad:7f:7e:3e:55:9b:93:22:7a:5b:09:a7:b1:0b:5a: 20:f7:80:c6:38:4e:54:ba:54:ca:fa:39:03:a9:4d:5d:6d:55: 73:56:91:d6:09:c3:52:8a:d2:81:f4:ad:af:bd:ba:22:4a:d3: 2e:b7:81:9a:4c:39:fa:91:42:38:97:6a:95:fc:c1:2a:e6:3e: 6e:c1:97:64:52:a1:26:81:e0:66:46:60:5e:99:4e:b2:5f:89: 65:14:f8:cd:16:34:d1:81:1e:3a:7a:79:c7:49:c6:97:80:60: 7f:3a:a1:70 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUadHjgCvhx/YJP2WQRNdP8PVh1Q8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc5NjE4REI2RkZBNjA4RjU5OThGQ0Q5NjhCMjcwQUU2 MUJEQjk3QzAeFw0yNDA2MTMxMzU1MDBaFw0yNTA2MTIxNDAwMDBaMDMxMTAvBgNV BAMTKEFEMjE3RERERkZBOUE0MDE2QTgwMzZGNEY1Q0REQ0RCRjdDOTlGRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMLuQs8M0l66Cm3Xx7pqfoQcRN o/EfFaX8CeTtvjVaP+562JhTMkAIK30VGhEid4UHYbq2guxX3yIU/BZlnUgFcWCR z+3vWHthtHEkt03dfRAls9BAhG05ZuGAl7ITyJjI8v1O0SKxSRH78NIQOJfFchqm yx49oiZVxZg5aeI/355R0D4OQ8vpM5sUeWXKKrsE5FXEIzkDmGC3MvWaE9hF9g/U jgH7i45G7la8ujh8MyC7NWyg0OxhhWwNh0MiUkaP3AYNBg2ZsnUY/N8wdzpg9OZA leHAH9Z8Lv3UjupEd7NQDVgZC4iDX9lV51QDSzrSMtban4uD7wtLDHedrWMpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUrSF93f+ppAFqgDb09c3c2/fJn+YwHwYDVR0j BBgwFoAUV5YY22/6YI9ZmPzZaLJwrmG9uXwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NjI2NjM5YS05YTFjLTRjMGUtYmExNy1mNjc5ZjA1MDZjYmMvMC81Nzk2MThEQjZG RkE2MDhGNTk5OEZDRDk2OEIyNzBBRTYxQkRCOTdDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTc5NjE4REI2RkZBNjA4RjU5OThGQ0Q5NjhCMjcwQUU2MUJE Qjk3Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI2MjY2MzlhLTlhMWMtNGMwZS1i YTE3LWY2NzlmMDUwNmNiYy8wLzMxMzAzMzJlMzEzMjMzMmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABne3kwDQYJ KoZIhvcNAQELBQADggEBAB4xXzUXLw43OlYEABr48A2xA74hN4zxfLJo0IvAmbh5 fyKyOixzwsoH1wCucpE0TVoWWd+2ti074IpFBsV39VYEn/f6iRby7/xDKDlgFG4p wtJRNSUWeRFr9daqpun3ZpSomwS+nmQLl+3uepdigIdaTeEr0x7SMRAvZ28gJDOE PgZEqfHyT1fPWoPpekwiKVTIq61/fj5Vm5MielsJp7ELWiD3gMY4TlS6VMr6OQOp TV1tVXNWkdYJw1KK0oH0ra+9uiJK0y63gZpMOfqRQjiXapX8wSrmPm7Bl2RSoSaB 4GZGYF6ZTrJfiWUU+M0WNNGBHjp6ecdJxpeAYH86oXA= -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:50 2024 by rpki-client on console-ams.rpki-client.org