$ rpki-client -vvf repo-rpki.idnic.net/repo/3404bad1-2b3e-4141-9fc5-df99b2bd0a22/0/3130332e3134302e33362e302f32342d3234203d3e20313338383832.roa File: 3130332e3134302e33362e302f32342d3234203d3e20313338383832.roa (raw, json) Hash identifier: XBcMKvqKnHxV1D5bbi11pDPW6SLy98RnzJVn5qbJXc0= Subject key identifier: 68:4F:07:83:BD:DC:21:CD:4C:65:81:7A:C0:1F:AF:A7:A6:34:60:15 Certificate issuer: /CN=9D6C92F2A768B42C165992C6E76B882F559231B7 Certificate serial: 01607996F3B2CDED008C05363144CD9751B5111B Authority key identifier: 9D:6C:92:F2:A7:68:B4:2C:16:59:92:C6:E7:6B:88:2F:55:92:31:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9D6C92F2A768B42C165992C6E76B882F559231B7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3404bad1-2b3e-4141-9fc5-df99b2bd0a22/0/3130332e3134302e33362e302f32342d3234203d3e20313338383832.roa Signing time: Wed 04 Sep 2024 08:02:09 +0000 ROA not before: Wed 04 Sep 2024 07:57:09 +0000 ROA not after: Wed 03 Sep 2025 08:02:09 +0000 asID: 138882 IP address blocks: 103.140.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3404bad1-2b3e-4141-9fc5-df99b2bd0a22/0/9D6C92F2A768B42C165992C6E76B882F559231B7.crl rsync://repo-rpki.idnic.net/repo/3404bad1-2b3e-4141-9fc5-df99b2bd0a22/0/9D6C92F2A768B42C165992C6E76B882F559231B7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9D6C92F2A768B42C165992C6E76B882F559231B7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:18:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:60:79:96:f3:b2:cd:ed:00:8c:05:36:31:44:cd:97:51:b5:11:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D6C92F2A768B42C165992C6E76B882F559231B7 Validity Not Before: Sep 4 07:57:09 2024 GMT Not After : Sep 3 08:02:09 2025 GMT Subject: CN=684F0783BDDC21CD4C65817AC01FAFA7A6346015 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:30:a7:97:2e:63:f3:87:56:78:2b:3c:38:d8: 47:f0:18:bc:b1:9b:86:61:38:e1:fb:82:f1:05:97: 8a:60:d8:2f:38:90:ef:87:0c:db:f6:f3:63:8c:8a: 9a:b5:48:76:05:39:b0:8e:0c:46:06:29:3c:13:5f: 72:80:54:45:be:81:8a:0a:e2:84:ca:0b:46:e3:35: d2:78:08:25:f8:e8:1f:33:53:a9:4b:c5:79:48:b1: f9:6b:c1:53:f1:c0:ca:1f:f4:89:30:d0:14:ae:20: ec:f9:b8:3c:33:36:a6:18:3a:d0:8b:e2:83:8f:05: bf:fd:f8:24:5d:96:7c:e8:5e:a7:07:44:4f:a7:df: f2:ba:84:bb:75:2c:73:71:0f:83:09:60:3d:15:ca: a9:6c:98:6f:73:1b:9f:87:23:dc:d1:ff:0d:51:b7: 8e:8a:0a:51:d4:b5:03:b1:4d:06:9d:6b:93:25:ce: 4d:9b:fe:f4:f4:0c:45:3e:ac:fe:77:49:7b:0c:95: ef:ce:b5:95:48:97:e4:c4:51:f8:bc:6a:94:78:6d: d9:70:d4:03:78:c6:18:2f:2f:1c:13:e3:24:3d:ca: c3:ff:58:c7:ab:b5:02:90:e0:55:5c:de:e1:9a:aa: 4f:07:ea:b6:7f:fc:f8:7e:5d:f9:40:d0:aa:84:fd: cb:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:4F:07:83:BD:DC:21:CD:4C:65:81:7A:C0:1F:AF:A7:A6:34:60:15 X509v3 Authority Key Identifier: keyid:9D:6C:92:F2:A7:68:B4:2C:16:59:92:C6:E7:6B:88:2F:55:92:31:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3404bad1-2b3e-4141-9fc5-df99b2bd0a22/0/9D6C92F2A768B42C165992C6E76B882F559231B7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9D6C92F2A768B42C165992C6E76B882F559231B7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3404bad1-2b3e-4141-9fc5-df99b2bd0a22/0/3130332e3134302e33362e302f32342d3234203d3e20313338383832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.36.0/24 Signature Algorithm: sha256WithRSAEncryption b8:4f:66:65:8d:a0:be:a5:5c:81:bc:0a:51:4c:85:06:1e:24: bd:f6:d6:1f:72:e4:1a:3e:ce:b6:44:5d:5e:06:95:b3:05:26: 4a:b2:68:26:7a:9e:12:75:85:83:cb:f4:2d:62:8b:e0:8a:fd: 11:05:05:c2:6d:cf:31:1a:5f:f9:7b:8f:ea:f0:72:80:a4:55: a4:40:e3:49:14:9e:19:1e:62:7e:0e:70:bb:77:fb:86:fc:9d: 65:65:2a:7d:9d:22:d1:10:fb:db:d6:23:2b:9a:7b:6e:a8:9f: b0:cd:d6:ff:bd:9a:a6:a3:57:f6:87:13:01:62:8f:95:5b:70: f2:fa:cf:ae:ce:41:82:e9:32:7d:31:6a:d5:21:3f:d9:14:00: 78:15:d3:cd:f2:c0:af:df:8b:1b:a3:20:b8:db:a0:2d:f2:e7: 32:9f:c7:f7:e5:50:84:c5:10:b7:78:af:62:1b:b1:d9:8d:c5: f5:fb:61:b4:94:5e:06:8d:5f:9d:99:14:93:39:03:0a:7d:4d: 9c:f5:ac:89:fe:5e:0b:01:8b:67:3b:35:a5:bc:68:12:42:b1: a1:dc:df:7e:61:98:00:92:6b:e5:0a:2f:b1:75:75:1c:9f:ce: 22:6d:86:d3:8e:0c:66:02:9a:93:6a:b4:bf:d0:c8:4e:1d:d8: bf:1d:21:d5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAWB5lvOyze0AjAU2MUTNl1G1ERswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQ2QzkyRjJBNzY4QjQyQzE2NTk5MkM2RTc2Qjg4MkY1 NTkyMzFCNzAeFw0yNDA5MDQwNzU3MDlaFw0yNTA5MDMwODAyMDlaMDMxMTAvBgNV BAMTKDY4NEYwNzgzQkREQzIxQ0Q0QzY1ODE3QUMwMUZBRkE3QTYzNDYwMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXMKeXLmPzh1Z4Kzw42EfwGLyx m4ZhOOH7gvEFl4pg2C84kO+HDNv282OMipq1SHYFObCODEYGKTwTX3KAVEW+gYoK 4oTKC0bjNdJ4CCX46B8zU6lLxXlIsflrwVPxwMof9Ikw0BSuIOz5uDwzNqYYOtCL 4oOPBb/9+CRdlnzoXqcHRE+n3/K6hLt1LHNxD4MJYD0VyqlsmG9zG5+HI9zR/w1R t46KClHUtQOxTQada5Mlzk2b/vT0DEU+rP53SXsMle/OtZVIl+TEUfi8apR4bdlw 1AN4xhgvLxwT4yQ9ysP/WMertQKQ4FVc3uGaqk8H6rZ//Ph+XflA0KqE/ctDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaE8Hg73cIc1MZYF6wB+vp6Y0YBUwHwYDVR0j BBgwFoAUnWyS8qdotCwWWZLG52uIL1WSMbcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NDA0YmFkMS0yYjNlLTQxNDEtOWZjNS1kZjk5YjJiZDBhMjIvMC85RDZDOTJGMkE3 NjhCNDJDMTY1OTkyQzZFNzZCODgyRjU1OTIzMUI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUQ2QzkyRjJBNzY4QjQyQzE2NTk5MkM2RTc2Qjg4MkY1NTky MzFCNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM0MDRiYWQxLTJiM2UtNDE0MS05 ZmM1LWRmOTliMmJkMGEyMi8wLzMxMzAzMzJlMzEzNDMwMmUzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4wkMA0GCSqG SIb3DQEBCwUAA4IBAQC4T2ZljaC+pVyBvApRTIUGHiS99tYfcuQaPs62RF1eBpWz BSZKsmgmep4SdYWDy/QtYovgiv0RBQXCbc8xGl/5e4/q8HKApFWkQONJFJ4ZHmJ+ DnC7d/uG/J1lZSp9nSLREPvb1iMrmntuqJ+wzdb/vZqmo1f2hxMBYo+VW3Dy+s+u zkGC6TJ9MWrVIT/ZFAB4FdPN8sCv34sboyC426At8ucyn8f35VCExRC3eK9iG7HZ jcX1+2G0lF4GjV+dmRSTOQMKfU2c9ayJ/l4LAYtnOzWlvGgSQrGh3N9+YZgAkmvl Ci+xdXUcn84ibYbTjgxmApqTarS/0MhOHdi/HSHV -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:26 2024 by rpki-client on console-ams.rpki-client.org