$ rpki-client -vvf repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/3130332e3132312e3130382e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3130382e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: 0mqG/liJMTX8oPiItYLWlq40s+lsa6Z1Gz/HI3sVisI= Subject key identifier: 44:34:B9:ED:8F:44:16:57:54:C8:BB:4D:21:59:EA:E0:EE:B0:E9:D4 Certificate issuer: /CN=BE77663F7F3591A0E64D8D5AC98F2635919B4B3B Certificate serial: 7C152527BAE3C2A3F1D37D507296F98EFE9EA462 Authority key identifier: BE:77:66:3F:7F:35:91:A0:E6:4D:8D:5A:C9:8F:26:35:91:9B:4B:3B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/3130332e3132312e3130382e302f32332d3234203d3e20313335343738.roa Signing time: Wed 03 Jan 2024 05:00:00 +0000 ROA not before: Wed 03 Jan 2024 04:55:00 +0000 ROA not after: Wed 01 Jan 2025 05:00:00 +0000 asID: 135478 IP address blocks: 103.121.108.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.crl rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:15:25:27:ba:e3:c2:a3:f1:d3:7d:50:72:96:f9:8e:fe:9e:a4:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BE77663F7F3591A0E64D8D5AC98F2635919B4B3B Validity Not Before: Jan 3 04:55:00 2024 GMT Not After : Jan 1 05:00:00 2025 GMT Subject: CN=4434B9ED8F44165754C8BB4D2159EAE0EEB0E9D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:41:b8:ac:03:c7:f8:0d:14:7b:b2:6b:f9:86: 7f:8c:84:9e:4e:27:6e:21:07:73:2e:0f:6f:c9:cf: 31:fb:33:da:c1:7e:51:c4:df:0c:fd:86:71:a1:9f: 10:20:78:30:a9:21:64:f3:74:ef:10:ef:20:db:42: 42:af:60:5b:9d:19:41:7d:99:13:4a:b1:12:6a:ae: 8f:d7:40:e2:08:70:eb:34:88:5b:e1:d4:53:e9:7a: 8c:28:b6:1d:a5:b1:21:4e:da:96:e1:7b:4e:28:75: 25:ea:16:3d:50:58:c6:ae:64:a5:1c:6f:69:71:34: 3a:4a:bd:2e:9b:bc:bf:9a:62:10:5f:07:90:68:fe: e4:74:a5:2c:c9:6d:90:f9:8d:4f:82:c2:80:66:94: db:6a:20:4a:2d:0b:ad:0b:36:8c:9f:5c:bc:8a:23: 54:cc:67:b4:8f:c0:63:93:56:2c:4b:e8:51:5c:20: 58:37:55:b9:05:91:dd:4f:2d:54:f1:d3:c9:79:8b: 8e:ff:dc:95:b3:e4:87:cb:10:a2:62:53:c9:58:f2: 3a:5a:99:10:4e:bf:ef:85:97:54:ed:b7:a2:ea:03: b4:dd:de:0d:a7:fc:67:86:1f:bd:e3:c9:c9:c7:1c: 4b:ed:70:71:d2:d9:bb:e2:8f:b0:7c:b6:57:1d:cc: a0:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:34:B9:ED:8F:44:16:57:54:C8:BB:4D:21:59:EA:E0:EE:B0:E9:D4 X509v3 Authority Key Identifier: keyid:BE:77:66:3F:7F:35:91:A0:E6:4D:8D:5A:C9:8F:26:35:91:9B:4B:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/3130332e3132312e3130382e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.108.0/23 Signature Algorithm: sha256WithRSAEncryption 62:1a:e5:68:14:8c:69:38:84:6f:03:8b:c8:80:2d:50:45:54: 46:e3:e9:87:25:81:52:07:17:65:6a:75:df:23:75:2e:fa:7a: a4:fc:96:1d:84:85:37:65:cb:2f:34:94:ea:8c:87:94:09:15: 0a:c9:6d:cc:b1:03:33:b3:f3:70:e2:97:68:c6:07:7a:42:bf: bd:41:71:69:e7:ca:9a:48:ea:50:8b:ca:54:47:b1:46:cf:b7: 6b:46:a7:88:12:ab:00:f8:b5:b4:2d:97:fe:14:bb:83:41:7c: a6:6b:9f:61:63:8b:25:43:ef:46:d4:b8:cd:e0:9f:7e:ce:ba: c0:3d:69:11:7f:b1:04:23:87:ac:bd:58:9f:3a:e8:1d:bd:53: c4:e3:f7:c7:2c:0b:a5:e9:6b:55:8c:9e:0e:e7:d2:c0:ac:b6: cc:94:5d:c2:5d:4e:37:85:f3:12:ae:78:4a:0a:ea:48:c6:7a: 17:80:1a:c1:5c:6e:72:20:c0:64:49:45:3e:fb:6c:fb:20:6e: a4:ab:0e:72:bd:d1:ba:4d:0c:d1:53:27:13:0c:45:9a:18:9c: 18:0b:f9:ec:7b:2f:f3:b5:ab:d4:de:98:1d:13:e5:f3:b9:18: 7c:ce:82:bd:cd:5b:a1:6d:01:be:ac:d0:d9:6e:82:e6:09:d9: 98:d1:41:86 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfBUlJ7rjwqPx031Qcpb5jv6epGIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkU3NzY2M0Y3RjM1OTFBMEU2NEQ4RDVBQzk4RjI2MzU5 MTlCNEIzQjAeFw0yNDAxMDMwNDU1MDBaFw0yNTAxMDEwNTAwMDBaMDMxMTAvBgNV BAMTKDQ0MzRCOUVEOEY0NDE2NTc1NEM4QkI0RDIxNTlFQUUwRUVCMEU5RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3QbisA8f4DRR7smv5hn+MhJ5O J24hB3MuD2/JzzH7M9rBflHE3wz9hnGhnxAgeDCpIWTzdO8Q7yDbQkKvYFudGUF9 mRNKsRJqro/XQOIIcOs0iFvh1FPpeowoth2lsSFO2pbhe04odSXqFj1QWMauZKUc b2lxNDpKvS6bvL+aYhBfB5Bo/uR0pSzJbZD5jU+CwoBmlNtqIEotC60LNoyfXLyK I1TMZ7SPwGOTVixL6FFcIFg3VbkFkd1PLVTx08l5i47/3JWz5IfLEKJiU8lY8jpa mRBOv++Fl1Ttt6LqA7Td3g2n/GeGH73jycnHHEvtcHHS2bvij7B8tlcdzKAZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQURDS57Y9EFldUyLtNIVnq4O6w6dQwHwYDVR0j BBgwFoAUvndmP381kaDmTY1ayY8mNZGbSzswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NGI0ZmU5My03Mjk2LTQ4YjQtYWEwZC1jOGE1YTNkZmQ1OWEvMC9CRTc3NjYzRjdG MzU5MUEwRTY0RDhENUFDOThGMjYzNTkxOUI0QjNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkU3NzY2M0Y3RjM1OTFBMEU2NEQ4RDVBQzk4RjI2MzU5MTlC NEIzQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0YjRmZTkzLTcyOTYtNDhiNC1h YTBkLWM4YTVhM2RmZDU5YS8wLzMxMzAzMzJlMzEzMjMxMmUzMTMwMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneWwwDQYJ KoZIhvcNAQELBQADggEBAGIa5WgUjGk4hG8Di8iALVBFVEbj6YclgVIHF2Vqdd8j dS76eqT8lh2EhTdlyy80lOqMh5QJFQrJbcyxAzOz83Dil2jGB3pCv71BcWnnyppI 6lCLylRHsUbPt2tGp4gSqwD4tbQtl/4Uu4NBfKZrn2FjiyVD70bUuM3gn37OusA9 aRF/sQQjh6y9WJ866B29U8Tj98csC6Xpa1WMng7n0sCstsyUXcJdTjeF8xKueEoK 6kjGeheAGsFcbnIgwGRJRT77bPsgbqSrDnK90bpNDNFTJxMMRZoYnBgL+ex7L/O1 q9TemB0T5fO5GHzOgr3NW6FtAb6s0NluguYJ2ZjRQYY= -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:02 2024 by rpki-client on console-ams.rpki-client.org