$ rpki-client -vvf repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131372e302f32342d3234203d3e20313337333738.roa File: 3130332e3131392e3131372e302f32342d3234203d3e20313337333738.roa (raw, json) Hash identifier: ii+HEOYSI26ONdCQzTSyl9DTOtWXGw12f4RUOO1wwl4= Subject key identifier: C3:7D:82:A6:B0:A5:79:8B:D0:19:BC:EC:FA:8C:EE:5B:2B:44:88:DA Certificate issuer: /CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Certificate serial: 71A3BEA5596BDE083F3D35E65B539BBA44DA1F35 Authority key identifier: 00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131372e302f32342d3234203d3e20313337333738.roa Signing time: Mon 01 Jul 2024 01:03:26 +0000 ROA not before: Mon 01 Jul 2024 00:58:26 +0000 ROA not after: Mon 30 Jun 2025 01:03:26 +0000 asID: 137378 IP address blocks: 103.119.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:a3:be:a5:59:6b:de:08:3f:3d:35:e6:5b:53:9b:ba:44:da:1f:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Validity Not Before: Jul 1 00:58:26 2024 GMT Not After : Jun 30 01:03:26 2025 GMT Subject: CN=C37D82A6B0A5798BD019BCECFA8CEE5B2B4488DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:9c:c0:df:4c:5c:8d:3d:54:35:3a:ca:69:28: 0a:01:c1:d2:68:97:58:d1:b4:fa:8b:7d:e8:3d:22: 58:f4:34:3b:25:d6:5d:0a:15:80:b0:34:70:4b:65: 4a:8f:69:34:31:2f:fb:2d:1d:17:34:45:8c:75:94: 2b:8c:c4:41:74:77:47:86:40:f0:69:63:43:c9:e6: ef:57:53:4e:ae:c5:48:cd:8e:c7:4a:6c:6b:53:08: 97:e3:bc:7f:4e:d5:95:cb:ea:76:00:28:ed:4e:c4: a1:c6:05:a4:19:d0:0c:c4:36:38:71:2a:f0:65:2a: 55:d0:7b:75:98:a4:7e:96:69:60:1e:6e:94:70:d3: af:a9:df:c4:4d:54:4f:48:7b:41:51:c6:9f:59:54: f9:ba:9e:8e:af:54:2d:04:9d:5b:a3:52:6a:47:86: c8:ff:6b:8b:a6:64:eb:5b:ee:f1:a1:a3:0c:78:b6: 02:63:56:6c:cf:c8:a4:b7:5b:36:8b:c8:28:ca:65: ea:69:d0:95:d0:5d:5d:65:58:5b:b6:bf:2a:d8:e9: a9:22:70:d6:60:73:68:51:7e:7c:c4:ec:0f:de:2d: 9d:1b:32:d5:c4:79:2a:79:76:9a:98:17:91:83:a3: c5:43:e8:c0:9c:f1:73:0a:4f:48:df:fc:bb:b7:ee: 9c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:7D:82:A6:B0:A5:79:8B:D0:19:BC:EC:FA:8C:EE:5B:2B:44:88:DA X509v3 Authority Key Identifier: keyid:00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131372e302f32342d3234203d3e20313337333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.117.0/24 Signature Algorithm: sha256WithRSAEncryption 74:64:4f:65:23:db:8a:77:02:b7:1c:e0:b8:f1:3d:fc:8f:1d: 39:ed:4d:46:58:e7:ac:41:77:b9:5a:e0:fb:55:cd:49:5b:46: fc:16:ea:9c:98:03:5e:05:29:98:c7:2e:c6:73:d6:74:10:5e: 45:44:4b:4b:cd:c0:35:43:aa:5d:1f:0a:88:7b:94:99:97:2b: 7b:c8:ab:bf:d4:81:e9:29:59:3a:90:0f:bd:d8:37:12:07:14: d9:6a:b8:c9:63:36:27:eb:23:c6:f9:4b:5d:07:1d:d4:58:61: 10:ef:7c:05:65:76:60:40:45:93:d6:1c:4f:f8:dc:2f:bd:bb: 12:a9:cf:1b:dd:e8:9d:3a:58:bc:b6:1b:8f:82:4c:4e:0b:b1: 35:85:5f:ea:be:8f:26:b1:60:e7:2d:48:60:0c:5f:85:ba:0c: eb:4f:69:60:67:c9:cc:e6:a5:cf:f2:df:15:ef:08:e2:0f:af: b2:15:ac:aa:b5:db:85:b1:69:0e:a5:6b:26:f2:89:a3:41:42: 2e:3c:b7:6d:67:f0:d5:aa:d6:a3:10:b5:8c:a9:fc:c4:8d:e5: 06:51:41:0f:bb:73:00:fa:5e:87:7b:ec:29:66:1f:86:98:aa: 99:86:44:29:83:22:bf:e6:4d:43:4b:49:a2:fc:28:3c:9b:91: 6f:f7:0a:3d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcaO+pVlr3gg/PTXmW1ObukTaHzUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBBQzY1RTYxRTQ5MTMyNjhDNUQwQjhBRkU4QzdEOTEz QjY4NkQ5RjAeFw0yNDA3MDEwMDU4MjZaFw0yNTA2MzAwMTAzMjZaMDMxMTAvBgNV BAMTKEMzN0Q4MkE2QjBBNTc5OEJEMDE5QkNFQ0ZBOENFRTVCMkI0NDg4REEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWnMDfTFyNPVQ1OsppKAoBwdJo l1jRtPqLfeg9Ilj0NDsl1l0KFYCwNHBLZUqPaTQxL/stHRc0RYx1lCuMxEF0d0eG QPBpY0PJ5u9XU06uxUjNjsdKbGtTCJfjvH9O1ZXL6nYAKO1OxKHGBaQZ0AzENjhx KvBlKlXQe3WYpH6WaWAebpRw06+p38RNVE9Ie0FRxp9ZVPm6no6vVC0EnVujUmpH hsj/a4umZOtb7vGhowx4tgJjVmzPyKS3WzaLyCjKZepp0JXQXV1lWFu2vyrY6aki cNZgc2hRfnzE7A/eLZ0bMtXEeSp5dpqYF5GDo8VD6MCc8XMKT0jf/Lu37pwPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUw32CprCleYvQGbzs+ozuWytEiNowHwYDVR0j BBgwFoAUAKxl5h5JEyaMXQuK/ox9kTtobZ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTg5NTBmMC0zYjE0LTRhNmQtYjMwZi03NTM3OWNiMmViY2UvMC8wMEFDNjVFNjFF NDkxMzI2OEM1RDBCOEFGRThDN0Q5MTNCNjg2RDlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBBQzY1RTYxRTQ5MTMyNjhDNUQwQjhBRkU4QzdEOTEzQjY4 NkQ5Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlODk1MGYwLTNiMTQtNGE2ZC1i MzBmLTc1Mzc5Y2IyZWJjZS8wLzMxMzAzMzJlMzEzMTM5MmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnd3UwDQYJ KoZIhvcNAQELBQADggEBAHRkT2Uj24p3Arcc4LjxPfyPHTntTUZY56xBd7la4PtV zUlbRvwW6pyYA14FKZjHLsZz1nQQXkVES0vNwDVDql0fCoh7lJmXK3vIq7/Ugekp WTqQD73YNxIHFNlquMljNifrI8b5S10HHdRYYRDvfAVldmBARZPWHE/43C+9uxKp zxvd6J06WLy2G4+CTE4LsTWFX+q+jyaxYOctSGAMX4W6DOtPaWBnyczmpc/y3xXv COIPr7IVrKq124WxaQ6laybyiaNBQi48t21n8NWq1qMQtYyp/MSN5QZRQQ+7cwD6 Xod77ClmH4aYqpmGRCmDIr/mTUNLSaL8KDybkW/3Cj0= -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:03 2024 by rpki-client on console-fra.rpki-client.org