$ rpki-client -vvf repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131382e302f32342d3234203d3e20313337333738.roa File: 3130332e3131392e3131382e302f32342d3234203d3e20313337333738.roa (raw, json) Hash identifier: mIQL4Q5wnaduq+Smgc4E/2achiI+t5Z1BEbqpLX1tbs= Subject key identifier: D9:54:E9:20:C2:EC:B3:10:98:99:5F:12:C4:9B:50:27:04:A2:FC:11 Certificate issuer: /CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Certificate serial: 7210A5D635A12F7C293B634D99575E3778AD445F Authority key identifier: 00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131382e302f32342d3234203d3e20313337333738.roa Signing time: Mon 01 Jul 2024 01:03:26 +0000 ROA not before: Mon 01 Jul 2024 00:58:26 +0000 ROA not after: Mon 30 Jun 2025 01:03:26 +0000 asID: 137378 IP address blocks: 103.119.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:10:a5:d6:35:a1:2f:7c:29:3b:63:4d:99:57:5e:37:78:ad:44:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Validity Not Before: Jul 1 00:58:26 2024 GMT Not After : Jun 30 01:03:26 2025 GMT Subject: CN=D954E920C2ECB31098995F12C49B502704A2FC11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5b:11:36:ca:6d:e1:04:b4:c7:47:52:17:da: b3:3a:c3:9b:f8:ba:00:9b:dc:9a:70:07:d3:ac:14: bb:3e:25:cf:11:af:c2:03:9f:24:81:45:2f:05:49: 57:0d:9a:39:c6:74:46:0b:24:90:a0:83:87:8d:7c: 04:0b:ec:84:1e:65:da:5e:76:ca:09:9c:6d:96:e1: b5:7d:db:31:a5:6e:f0:6f:a9:2f:f8:55:f6:4e:67: ac:49:07:f8:2d:41:d6:57:9e:d8:c6:b6:7a:31:b0: d5:ab:c1:7f:b6:af:53:2d:59:10:2a:4f:e5:fc:03: 8f:3a:bc:88:59:4d:b5:8e:d9:38:25:4f:fa:27:d4: 18:71:85:31:ce:1d:b7:90:c8:b6:a2:56:79:a7:ba: e8:41:c7:a8:ab:56:99:83:82:5d:c8:35:ab:1d:e7: b0:32:cf:39:70:00:a0:fd:a2:07:60:1f:08:b9:d6: bf:a1:2a:2d:1d:c8:34:4e:ec:55:2e:0b:91:a0:f0: 07:ec:37:6a:12:24:7d:ce:8c:54:92:3e:b2:3d:29: c0:7f:87:68:ec:f7:b9:e3:54:33:cc:fe:5e:87:f7: af:7c:98:d6:b4:2d:1f:06:6a:54:e3:1d:6d:54:bd: 6c:d7:7c:32:aa:27:b1:49:6b:f8:da:f6:0e:c6:ab: 70:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:54:E9:20:C2:EC:B3:10:98:99:5F:12:C4:9B:50:27:04:A2:FC:11 X509v3 Authority Key Identifier: keyid:00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131382e302f32342d3234203d3e20313337333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.118.0/24 Signature Algorithm: sha256WithRSAEncryption 16:9c:c6:bb:cc:47:fd:e8:25:6c:53:93:f1:de:c4:18:0a:3a: 2d:b9:26:29:6b:d2:3d:5d:9b:37:fb:5f:c1:3e:20:a8:02:44: 11:03:ae:dc:ed:59:71:b7:40:22:d7:65:f4:d5:39:a4:f1:bc: 51:63:75:a9:f1:d7:cf:c1:67:24:4d:cc:ac:29:bd:0d:fb:fb: da:25:c0:1f:83:88:5d:5a:66:5f:c6:d8:40:ed:42:17:26:73: e8:56:2f:0e:c4:e3:d6:39:7b:f1:7b:68:f4:30:13:50:13:e3: f7:aa:3e:36:f6:1c:9f:df:4a:cb:83:23:3e:c8:ce:31:e1:24: ce:79:fa:5a:53:d8:62:85:2d:50:3d:47:96:34:22:b4:a0:fc: 31:93:4e:8a:fa:73:38:fd:64:4d:ba:29:a4:9c:f5:f3:f3:43: 0e:eb:6f:2e:a9:e0:ef:ee:46:74:b6:60:cd:26:fc:13:bc:b1: fc:2f:be:88:6e:b1:66:31:6f:19:06:a8:eb:a2:e8:d4:78:2f: dd:0e:77:86:a9:af:65:ed:00:ed:0f:cc:ce:a2:d8:fa:85:22: e6:f8:59:4b:9d:d7:0c:1d:0a:e9:63:03:57:7b:ee:6a:63:8c: 2f:7c:89:73:83:26:88:ce:31:88:1e:aa:e1:6c:e2:e5:53:db: 67:28:ab:b1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUchCl1jWhL3wpO2NNmVdeN3itRF8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBBQzY1RTYxRTQ5MTMyNjhDNUQwQjhBRkU4QzdEOTEz QjY4NkQ5RjAeFw0yNDA3MDEwMDU4MjZaFw0yNTA2MzAwMTAzMjZaMDMxMTAvBgNV BAMTKEQ5NTRFOTIwQzJFQ0IzMTA5ODk5NUYxMkM0OUI1MDI3MDRBMkZDMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKWxE2ym3hBLTHR1IX2rM6w5v4 ugCb3JpwB9OsFLs+Jc8Rr8IDnySBRS8FSVcNmjnGdEYLJJCgg4eNfAQL7IQeZdpe dsoJnG2W4bV92zGlbvBvqS/4VfZOZ6xJB/gtQdZXntjGtnoxsNWrwX+2r1MtWRAq T+X8A486vIhZTbWO2TglT/on1BhxhTHOHbeQyLaiVnmnuuhBx6irVpmDgl3INasd 57AyzzlwAKD9ogdgHwi51r+hKi0dyDRO7FUuC5Gg8AfsN2oSJH3OjFSSPrI9KcB/ h2js97njVDPM/l6H9698mNa0LR8GalTjHW1UvWzXfDKqJ7FJa/ja9g7Gq3C/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU2VTpIMLssxCYmV8SxJtQJwSi/BEwHwYDVR0j BBgwFoAUAKxl5h5JEyaMXQuK/ox9kTtobZ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTg5NTBmMC0zYjE0LTRhNmQtYjMwZi03NTM3OWNiMmViY2UvMC8wMEFDNjVFNjFF NDkxMzI2OEM1RDBCOEFGRThDN0Q5MTNCNjg2RDlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBBQzY1RTYxRTQ5MTMyNjhDNUQwQjhBRkU4QzdEOTEzQjY4 NkQ5Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlODk1MGYwLTNiMTQtNGE2ZC1i MzBmLTc1Mzc5Y2IyZWJjZS8wLzMxMzAzMzJlMzEzMTM5MmUzMTMxMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnd3YwDQYJ KoZIhvcNAQELBQADggEBABacxrvMR/3oJWxTk/HexBgKOi25Jilr0j1dmzf7X8E+ IKgCRBEDrtztWXG3QCLXZfTVOaTxvFFjdanx18/BZyRNzKwpvQ37+9olwB+DiF1a Zl/G2EDtQhcmc+hWLw7E49Y5e/F7aPQwE1AT4/eqPjb2HJ/fSsuDIz7IzjHhJM55 +lpT2GKFLVA9R5Y0IrSg/DGTTor6czj9ZE26KaSc9fPzQw7rby6p4O/uRnS2YM0m /BO8sfwvvohusWYxbxkGqOui6NR4L90Od4apr2XtAO0PzM6i2PqFIub4WUud1wwd CuljA1d77mpjjC98iXODJojOMYgequFs4uVT22coq7E= -----END CERTIFICATE-----Generated at Fri Nov 22 08:00:08 2024 by rpki-client on console-ams.rpki-client.org