$ rpki-client -vvf repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/3130332e3132312e3133382e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3133382e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: M22oeIkYdJT0AW1cVL31IxCFck7R8eGHeb3ZdEDWXHk= Subject key identifier: 60:3C:88:0B:5E:51:65:BA:AC:38:42:67:66:C4:99:CE:8B:6D:F1:10 Certificate issuer: /CN=5CC6B0489E576BC0D642B626195A0AA0560DC792 Certificate serial: 615E7D02EA5327379F5B73EEF0296D138B45A499 Authority key identifier: 5C:C6:B0:48:9E:57:6B:C0:D6:42:B6:26:19:5A:0A:A0:56:0D:C7:92 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5CC6B0489E576BC0D642B626195A0AA0560DC792.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/3130332e3132312e3133382e302f32332d3234203d3e20313335343738.roa Signing time: Wed 03 Jan 2024 07:00:59 +0000 ROA not before: Wed 03 Jan 2024 06:55:59 +0000 ROA not after: Wed 01 Jan 2025 07:00:59 +0000 asID: 135478 IP address blocks: 103.121.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/5CC6B0489E576BC0D642B626195A0AA0560DC792.crl rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/5CC6B0489E576BC0D642B626195A0AA0560DC792.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5CC6B0489E576BC0D642B626195A0AA0560DC792.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:5e:7d:02:ea:53:27:37:9f:5b:73:ee:f0:29:6d:13:8b:45:a4:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5CC6B0489E576BC0D642B626195A0AA0560DC792 Validity Not Before: Jan 3 06:55:59 2024 GMT Not After : Jan 1 07:00:59 2025 GMT Subject: CN=603C880B5E5165BAAC38426766C499CE8B6DF110 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:53:2c:22:62:81:ec:25:7e:c4:de:14:70:5c: 22:8a:05:1f:86:e3:ff:e7:ee:c3:69:b1:de:3e:dc: 36:64:0a:8c:9b:30:f4:0e:1f:e7:7d:9a:18:c5:21: 2a:82:50:af:68:87:a0:2f:e2:8f:65:f2:ed:c1:3f: a9:1c:c2:f7:cb:ba:3a:1b:37:38:70:40:78:fc:26: e2:72:f5:be:d5:2f:fd:4e:7f:79:cf:06:b4:e2:02: e9:cf:cd:18:82:a9:4d:d5:a1:b8:c9:21:37:be:46: 32:40:43:68:31:e1:37:ee:e9:26:49:fe:1f:98:79: ff:3d:ff:2f:7a:b5:e2:fd:8b:4b:c9:ff:66:69:d4: ab:bf:8f:2d:23:e6:05:a4:8c:cf:25:45:0d:56:8f: e1:d1:f9:d4:29:e8:18:ca:3c:68:84:7b:93:1b:4e: fb:bd:f4:ad:d8:75:43:13:da:ed:e9:67:89:c7:33: dd:da:52:ac:fb:84:9d:e6:4f:77:cc:f4:e8:0e:bf: 40:8c:25:69:7c:b1:86:b5:ba:24:a7:cf:11:3c:18: 1a:8e:33:0c:3a:70:7a:e7:62:b8:65:3b:61:1b:3b: 82:45:2e:d2:b4:3e:71:31:df:80:90:57:b0:fd:e8: 6d:1b:67:88:9b:45:db:fe:c5:9b:fe:3a:6c:9a:8b: 1d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:3C:88:0B:5E:51:65:BA:AC:38:42:67:66:C4:99:CE:8B:6D:F1:10 X509v3 Authority Key Identifier: keyid:5C:C6:B0:48:9E:57:6B:C0:D6:42:B6:26:19:5A:0A:A0:56:0D:C7:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/5CC6B0489E576BC0D642B626195A0AA0560DC792.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5CC6B0489E576BC0D642B626195A0AA0560DC792.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f4fa7b8-5302-490b-92e4-27f28c66575c/0/3130332e3132312e3133382e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.138.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:26:ed:2a:7a:4b:63:c5:56:a3:7c:ca:ef:dc:ad:ae:e6:40: d0:93:43:67:a8:c9:cb:0b:f6:43:9e:55:38:56:e7:5e:01:32: 93:94:2e:ed:1f:0d:f7:8a:b8:98:e3:f5:d7:ed:3d:aa:ff:1c: 27:d8:34:71:b5:1f:35:3f:a8:22:19:03:a7:bf:da:2d:55:92: 12:fa:99:6a:e2:ef:e4:59:ae:08:8c:3f:37:bb:00:d2:71:25: 11:13:ec:ee:db:74:f8:9b:97:a4:54:ac:18:c5:2f:79:8e:77: b4:66:69:a1:f8:21:92:a7:7f:d0:da:96:b4:f2:a9:fe:77:99: a3:04:13:6e:ee:db:2e:af:e4:db:8b:82:7c:20:6e:b1:14:d4: 75:60:7a:4c:37:48:d9:10:8a:16:1b:96:71:37:24:6d:14:ae: d1:63:67:72:87:8e:f7:06:f6:1f:21:8c:0a:d5:94:72:6f:f9: c5:67:96:fb:c4:33:d1:40:8d:01:9b:6c:51:78:81:d2:a9:81: ce:c9:27:82:bf:ab:0e:f2:cc:fa:ea:db:21:69:27:5c:52:85: a4:dc:40:fc:8d:ec:55:c3:83:4f:4a:a3:df:6e:16:6d:22:40: a7:68:0d:4c:a5:9f:56:48:58:0c:56:65:d1:71:9d:65:d5:1b: 27:e0:0c:15 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYV59AupTJzefW3Pu8CltE4tFpJkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUNDNkIwNDg5RTU3NkJDMEQ2NDJCNjI2MTk1QTBBQTA1 NjBEQzc5MjAeFw0yNDAxMDMwNjU1NTlaFw0yNTAxMDEwNzAwNTlaMDMxMTAvBgNV BAMTKDYwM0M4ODBCNUU1MTY1QkFBQzM4NDI2NzY2QzQ5OUNFOEI2REYxMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6UywiYoHsJX7E3hRwXCKKBR+G 4//n7sNpsd4+3DZkCoybMPQOH+d9mhjFISqCUK9oh6Av4o9l8u3BP6kcwvfLujob NzhwQHj8JuJy9b7VL/1Of3nPBrTiAunPzRiCqU3VobjJITe+RjJAQ2gx4Tfu6SZJ /h+Yef89/y96teL9i0vJ/2Zp1Ku/jy0j5gWkjM8lRQ1Wj+HR+dQp6BjKPGiEe5Mb Tvu99K3YdUMT2u3pZ4nHM93aUqz7hJ3mT3fM9OgOv0CMJWl8sYa1uiSnzxE8GBqO Mww6cHrnYrhlO2EbO4JFLtK0PnEx34CQV7D96G0bZ4ibRdv+xZv+Omyaix0LAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUYDyIC15RZbqsOEJnZsSZzott8RAwHwYDVR0j BBgwFoAUXMawSJ5Xa8DWQrYmGVoKoFYNx5IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjRmYTdiOC01MzAyLTQ5MGItOTJlNC0yN2YyOGM2NjU3NWMvMC81Q0M2QjA0ODlF NTc2QkMwRDY0MkI2MjYxOTVBMEFBMDU2MERDNzkyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUNDNkIwNDg5RTU3NkJDMEQ2NDJCNjI2MTk1QTBBQTA1NjBE Qzc5Mi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNGZhN2I4LTUzMDItNDkwYi05 MmU0LTI3ZjI4YzY2NTc1Yy8wLzMxMzAzMzJlMzEzMjMxMmUzMTMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneYowDQYJ KoZIhvcNAQELBQADggEBAIsm7Sp6S2PFVqN8yu/cra7mQNCTQ2eoycsL9kOeVThW 514BMpOULu0fDfeKuJjj9dftPar/HCfYNHG1HzU/qCIZA6e/2i1VkhL6mWri7+RZ rgiMPze7ANJxJRET7O7bdPibl6RUrBjFL3mOd7RmaaH4IZKnf9DalrTyqf53maME E27u2y6v5NuLgnwgbrEU1HVgekw3SNkQihYblnE3JG0UrtFjZ3KHjvcG9h8hjArV lHJv+cVnlvvEM9FAjQGbbFF4gdKpgc7JJ4K/qw7yzPrq2yFpJ1xShaTcQPyN7FXD g09Ko99uFm0iQKdoDUyln1ZIWAxWZdFxnWXVGyfgDBU= -----END CERTIFICATE-----Generated at Fri Nov 22 08:00:08 2024 by rpki-client on console-ams.rpki-client.org