$ rpki-client -vvf repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/3130332e3131382e3132342e302f32322d3234203d3e20313337333736.roa File: 3130332e3131382e3132342e302f32322d3234203d3e20313337333736.roa (raw, json) Hash identifier: GgQGIVctlCvNlOfS2rEwMFV2kj5ohQAxfF74xcz3/1E= Subject key identifier: 20:9F:2C:DC:52:03:17:B6:A3:53:03:3A:B1:26:B5:B3:42:18:92:BE Certificate issuer: /CN=8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57 Certificate serial: 1E5A81B17EF1A0A6F633F7F363457E8ED556DBC0 Authority key identifier: 8C:5F:A2:EB:D7:AF:40:39:38:83:FB:08:E7:1B:DF:41:AA:E2:0F:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/3130332e3131382e3132342e302f32322d3234203d3e20313337333736.roa Signing time: Fri 22 Nov 2024 19:00:02 +0000 ROA not before: Fri 22 Nov 2024 18:55:02 +0000 ROA not after: Fri 21 Nov 2025 19:00:02 +0000 asID: 137376 IP address blocks: 103.118.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.crl rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:36:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:5a:81:b1:7e:f1:a0:a6:f6:33:f7:f3:63:45:7e:8e:d5:56:db:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57 Validity Not Before: Nov 22 18:55:02 2024 GMT Not After : Nov 21 19:00:02 2025 GMT Subject: CN=209F2CDC520317B6A353033AB126B5B3421892BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:5b:7b:52:6f:bb:ef:d8:77:f9:7b:92:ee:f7: 25:36:e4:ed:7b:ae:ba:c5:89:ae:f0:a7:3e:5b:24: a1:5f:c9:26:9d:08:1d:c5:aa:af:c7:aa:4c:b9:92: 09:79:49:17:33:6d:c1:3b:89:54:6b:73:63:5d:e6: e9:c0:30:08:f0:cb:9e:88:7a:32:b9:03:01:9e:06: e3:75:a5:7a:2e:b0:31:f5:12:bd:b1:bd:a8:de:b4: eb:dc:ec:cd:bd:4a:a0:9d:48:6f:16:72:07:63:ce: cf:74:d7:bd:25:0a:ab:e5:40:3b:ac:e7:76:03:4a: 4f:33:46:fb:21:95:d4:59:6c:35:53:b9:b5:50:e7: 3c:ea:8b:b4:a1:16:a0:80:c4:2d:84:2c:f9:6e:7b: 96:ae:84:34:70:91:4e:c2:20:13:05:23:9f:79:27: ba:3e:71:51:86:c3:22:d4:b5:63:e2:14:22:07:e4: 28:5d:e5:cd:50:02:02:17:2d:ba:20:a7:ba:c1:de: 15:38:ed:72:3f:e2:d8:a1:b1:12:08:1c:56:81:8e: 96:ae:f1:58:33:c0:f4:05:57:5f:cc:69:a5:c5:02: 20:2b:ec:21:91:b6:a2:aa:a0:2f:3c:60:6f:28:21: 85:1d:29:93:ef:81:06:50:74:65:47:1f:4a:52:74: 98:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:9F:2C:DC:52:03:17:B6:A3:53:03:3A:B1:26:B5:B3:42:18:92:BE X509v3 Authority Key Identifier: keyid:8C:5F:A2:EB:D7:AF:40:39:38:83:FB:08:E7:1B:DF:41:AA:E2:0F:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/3130332e3131382e3132342e302f32322d3234203d3e20313337333736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.118.124.0/22 Signature Algorithm: sha256WithRSAEncryption 6e:f9:1e:8d:dd:90:a6:ae:ac:b1:f9:11:3e:1a:fa:41:13:af: 38:eb:a8:b4:dc:3c:4a:59:41:ba:cd:2d:9a:76:6e:f6:1c:2d: 3c:54:9d:df:4a:ab:f5:b5:a7:94:a1:25:22:f4:a8:eb:b2:33: 3b:d7:75:59:6e:79:d0:04:b6:b8:f2:50:c7:6d:71:f2:2e:28: 91:55:34:ae:74:a9:5e:5e:d9:39:c4:85:5e:5f:f8:a6:1a:a3: 29:33:e5:96:09:ae:37:40:a0:47:1b:e0:52:05:44:31:09:06: e7:15:e3:3b:d5:77:14:9e:d1:04:50:63:25:f2:74:ef:a0:58: 4c:f2:26:ab:a6:2b:dd:1b:64:df:25:4f:71:27:7e:b1:fb:26: 8b:98:fc:b3:a2:9e:08:51:55:cc:bd:d3:f9:10:ef:e4:3b:13: 3e:d5:26:a7:92:dc:ba:8e:0c:6f:da:1e:1b:d6:11:da:c7:41: b2:51:61:bc:73:b3:57:53:76:01:ea:a8:88:9a:fd:d7:0f:89: 7b:4a:5d:63:9a:19:0d:cb:f7:6c:75:55:a8:1b:f9:62:3f:b7: ba:ca:0a:59:d8:41:fc:8b:4d:10:e3:ad:77:02:62:ef:a7:bf: 6f:57:64:00:ae:5c:f3:eb:a6:ae:3f:6f:f4:aa:99:19:b5:9b: 53:55:4b:57 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHlqBsX7xoKb2M/fzY0V+jtVW28AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEM1RkEyRUJEN0FGNDAzOTM4ODNGQjA4RTcxQkRGNDFB QUUyMEY1NzAeFw0yNDExMjIxODU1MDJaFw0yNTExMjExOTAwMDJaMDMxMTAvBgNV BAMTKDIwOUYyQ0RDNTIwMzE3QjZBMzUzMDMzQUIxMjZCNUIzNDIxODkyQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4W3tSb7vv2Hf5e5Lu9yU25O17 rrrFia7wpz5bJKFfySadCB3Fqq/Hqky5kgl5SRczbcE7iVRrc2Nd5unAMAjwy56I ejK5AwGeBuN1pXousDH1Er2xvajetOvc7M29SqCdSG8Wcgdjzs90170lCqvlQDus 53YDSk8zRvshldRZbDVTubVQ5zzqi7ShFqCAxC2ELPlue5auhDRwkU7CIBMFI595 J7o+cVGGwyLUtWPiFCIH5Chd5c1QAgIXLbogp7rB3hU47XI/4tihsRIIHFaBjpau 8VgzwPQFV1/MaaXFAiAr7CGRtqKqoC88YG8oIYUdKZPvgQZQdGVHH0pSdJjpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUIJ8s3FIDF7ajUwM6sSa1s0IYkr4wHwYDVR0j BBgwFoAUjF+i69evQDk4g/sI5xvfQariD1cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDJhNWI1MS1iYzAwLTRkNmItODc2MS1jN2QwZDNmNmRlMTIvMC84QzVGQTJFQkQ3 QUY0MDM5Mzg4M0ZCMDhFNzFCREY0MUFBRTIwRjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEM1RkEyRUJEN0FGNDAzOTM4ODNGQjA4RTcxQkRGNDFBQUUy MEY1Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkMmE1YjUxLWJjMDAtNGQ2Yi04 NzYxLWM3ZDBkM2Y2ZGUxMi8wLzMxMzAzMzJlMzEzMTM4MmUzMTMyMzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzczMzM3MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJndnwwDQYJ KoZIhvcNAQELBQADggEBAG75Ho3dkKaurLH5ET4a+kETrzjrqLTcPEpZQbrNLZp2 bvYcLTxUnd9Kq/W1p5ShJSL0qOuyMzvXdVluedAEtrjyUMdtcfIuKJFVNK50qV5e 2TnEhV5f+KYaoykz5ZYJrjdAoEcb4FIFRDEJBucV4zvVdxSe0QRQYyXydO+gWEzy JqumK90bZN8lT3EnfrH7JouY/LOinghRVcy90/kQ7+Q7Ez7VJqeS3LqODG/aHhvW EdrHQbJRYbxzs1dTdgHqqIia/dcPiXtKXWOaGQ3L92x1Vagb+WI/t7rKClnYQfyL TRDjrXcCYu+nv29XZACuXPPrpq4/b/SqmRm1m1NVS1c= -----END CERTIFICATE-----Generated at Mon Nov 25 07:18:15 2024 by rpki-client on console-ams.rpki-client.org