$ rpki-client -vvf repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131392e302f32342d3234203d3e20313337333738.roa File: 3130332e3131392e3131392e302f32342d3234203d3e20313337333738.roa (raw, json) Hash identifier: UkZqcP9RvZ0JJpdnBoOJb+tN3AB7DzIZMERn5ZQmK70= Subject key identifier: 86:4F:95:16:CD:1E:6F:2A:DD:E7:7D:A2:63:57:75:2A:99:32:1C:A6 Certificate issuer: /CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Certificate serial: 0EFB9B344940D400811CB33265A17F9FAE6E005D Authority key identifier: 00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131392e302f32342d3234203d3e20313337333738.roa Signing time: Mon 31 Jul 2023 00:04:40 +0000 ROA not before: Sun 30 Jul 2023 23:59:40 +0000 ROA not after: Mon 29 Jul 2024 00:04:40 +0000 asID: 137378 IP address blocks: 103.119.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 11:45:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:fb:9b:34:49:40:d4:00:81:1c:b3:32:65:a1:7f:9f:ae:6e:00:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Validity Not Before: Jul 30 23:59:40 2023 GMT Not After : Jul 29 00:04:40 2024 GMT Subject: CN=864F9516CD1E6F2ADDE77DA26357752A99321CA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:18:89:b3:6f:76:2f:bf:e2:9d:01:c3:5f:98: 94:b3:02:89:3b:d6:92:14:f7:dc:20:d4:84:3f:26: 91:6a:93:18:c1:fa:08:cb:04:15:7d:5a:f8:34:bd: ae:0e:63:3a:d6:06:0e:06:fd:7d:45:64:99:66:d9: a5:a3:b1:31:0f:f5:d9:ee:4c:3b:44:cc:3f:f7:3e: a3:a0:8f:45:82:06:64:1c:ee:ce:64:6e:95:94:cb: e7:26:e3:f9:9c:bc:29:68:ff:9d:8c:85:75:df:05: 03:be:5e:f8:74:82:23:03:18:78:eb:26:03:e4:af: 91:d6:b4:90:0d:4b:f1:c2:74:ac:ab:3d:b6:3d:89: 23:48:d8:f2:29:33:46:78:ba:1f:21:42:f8:4c:21: 84:56:40:11:74:9a:23:ad:4a:f4:4b:1d:7e:57:de: d4:6e:d8:33:d5:bc:b4:26:17:35:87:06:95:97:44: da:38:fb:a6:c5:5b:9a:b8:24:73:77:f5:58:c6:8f: ee:23:c1:34:79:77:bd:4a:5a:78:f8:c4:5d:ee:9d: a6:63:b6:04:6a:5f:b9:6a:5b:a0:c3:2a:72:3f:d1: f8:d5:22:b2:9f:7a:6e:a8:4c:25:25:33:a8:80:af: 5f:53:cb:a2:18:71:bb:69:33:a9:85:06:63:2a:e2: 34:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:4F:95:16:CD:1E:6F:2A:DD:E7:7D:A2:63:57:75:2A:99:32:1C:A6 X509v3 Authority Key Identifier: keyid:00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/3130332e3131392e3131392e302f32342d3234203d3e20313337333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.119.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:2e:d8:fd:b0:f2:ca:72:7c:a5:70:f6:06:09:0b:0b:99:9a: fc:c5:22:6f:7f:7b:bb:f3:8d:32:d3:68:e3:33:77:20:9e:10: d9:6d:c2:1c:f6:2c:c8:6d:c8:18:ff:71:33:0f:cd:31:33:60: 53:db:94:c3:e2:d4:2a:b1:c0:a8:37:e5:3a:91:89:47:5a:58: 8c:48:7e:f6:5b:41:5e:e6:e1:d2:91:55:4d:14:c0:78:98:3e: 5f:ae:39:ec:c8:7c:89:f7:77:27:3d:c9:83:c0:a6:88:0c:ab: 77:4a:90:39:06:0e:0b:0b:35:d5:0c:49:a5:b2:3d:23:f9:59: 45:bc:57:55:ef:f5:c2:42:b4:03:2e:ad:95:08:dd:c9:21:a9: dc:6b:eb:d4:49:c7:31:26:ac:e9:d2:b3:6e:c9:be:e7:9d:fa: 34:8c:b6:d3:93:a9:c4:6c:fc:a3:0f:a5:3f:c3:d6:bb:ac:f1: 10:19:f8:1b:13:8b:9f:9d:9e:c6:a6:e4:f3:77:34:63:eb:43: 31:22:da:dd:f4:1d:18:dc:9c:0d:e3:4e:f0:0a:46:66:74:d0: 8c:c6:e0:8b:53:83:2b:78:ac:ee:0d:dc:81:68:20:ab:c0:a3: 4d:be:48:86:5c:cd:51:d0:d2:4a:ef:fd:9c:77:06:3c:b3:b8: 0c:3a:f5:80 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDvubNElA1ACBHLMyZaF/n65uAF0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBBQzY1RTYxRTQ5MTMyNjhDNUQwQjhBRkU4QzdEOTEz QjY4NkQ5RjAeFw0yMzA3MzAyMzU5NDBaFw0yNDA3MjkwMDA0NDBaMDMxMTAvBgNV BAMTKDg2NEY5NTE2Q0QxRTZGMkFEREU3N0RBMjYzNTc3NTJBOTkzMjFDQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcGImzb3Yvv+KdAcNfmJSzAok7 1pIU99wg1IQ/JpFqkxjB+gjLBBV9Wvg0va4OYzrWBg4G/X1FZJlm2aWjsTEP9dnu TDtEzD/3PqOgj0WCBmQc7s5kbpWUy+cm4/mcvClo/52MhXXfBQO+Xvh0giMDGHjr JgPkr5HWtJANS/HCdKyrPbY9iSNI2PIpM0Z4uh8hQvhMIYRWQBF0miOtSvRLHX5X 3tRu2DPVvLQmFzWHBpWXRNo4+6bFW5q4JHN39VjGj+4jwTR5d71KWnj4xF3unaZj tgRqX7lqW6DDKnI/0fjVIrKfem6oTCUlM6iAr19Ty6IYcbtpM6mFBmMq4jT/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUhk+VFs0ebyrd532iY1d1KpkyHKYwHwYDVR0j BBgwFoAUAKxl5h5JEyaMXQuK/ox9kTtobZ8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTg5NTBmMC0zYjE0LTRhNmQtYjMwZi03NTM3OWNiMmViY2UvMC8wMEFDNjVFNjFF NDkxMzI2OEM1RDBCOEFGRThDN0Q5MTNCNjg2RDlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBBQzY1RTYxRTQ5MTMyNjhDNUQwQjhBRkU4QzdEOTEzQjY4 NkQ5Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlODk1MGYwLTNiMTQtNGE2ZC1i MzBmLTc1Mzc5Y2IyZWJjZS8wLzMxMzAzMzJlMzEzMTM5MmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnd3cwDQYJ KoZIhvcNAQELBQADggEBAA4u2P2w8spyfKVw9gYJCwuZmvzFIm9/e7vzjTLTaOMz dyCeENltwhz2LMhtyBj/cTMPzTEzYFPblMPi1CqxwKg35TqRiUdaWIxIfvZbQV7m 4dKRVU0UwHiYPl+uOezIfIn3dyc9yYPApogMq3dKkDkGDgsLNdUMSaWyPSP5WUW8 V1Xv9cJCtAMurZUI3ckhqdxr69RJxzEmrOnSs27Jvued+jSMttOTqcRs/KMPpT/D 1rus8RAZ+BsTi5+dnsam5PN3NGPrQzEi2t30HRjcnA3jTvAKRmZ00IzG4ItTgyt4 rO4N3IFoIKvAo02+SIZczVHQ0krv/Zx3BjyzuAw69YA= -----END CERTIFICATE-----Generated at Tue May 7 07:12:27 2024 by rpki-client on console-ams.rpki-client.org