$ rpki-client -vvf repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3130332e3134302e3133302e302f32342d3234203d3e20313338383636.roa File: 3130332e3134302e3133302e302f32342d3234203d3e20313338383636.roa (raw, json) Hash identifier: AlUWTxdz4XyVx/BJnp5RHH7Yu2FT507lFQbZMytd2ZM= Subject key identifier: 81:CB:32:13:A9:6D:03:1A:12:CC:2E:D3:8D:CE:40:DB:DB:09:66:07 Certificate issuer: /CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Certificate serial: 6EF66ED7098559E5CE4EB4B66036626AB3C3E50E Authority key identifier: 3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3130332e3134302e3133302e302f32342d3234203d3e20313338383636.roa Signing time: Sun 16 Jun 2024 10:00:54 +0000 ROA not before: Sun 16 Jun 2024 09:55:54 +0000 ROA not after: Sun 15 Jun 2025 10:00:54 +0000 asID: 138866 IP address blocks: 103.140.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:f6:6e:d7:09:85:59:e5:ce:4e:b4:b6:60:36:62:6a:b3:c3:e5:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D64FD900E2E64CB159D0067167853AAFC8A7E97 Validity Not Before: Jun 16 09:55:54 2024 GMT Not After : Jun 15 10:00:54 2025 GMT Subject: CN=81CB3213A96D031A12CC2ED38DCE40DBDB096607 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:95:3f:f8:5c:73:1d:94:06:db:78:fb:51:ab: 4e:ef:98:df:df:da:c2:a8:e3:02:fb:f3:22:24:a2: ae:f0:27:6c:4d:49:6f:8f:82:b3:0f:a4:32:60:34: df:63:d6:c8:69:b9:39:49:6f:b6:df:fb:ee:de:4b: 8f:72:cd:29:2b:05:d3:bd:4d:67:c1:9a:5e:47:9a: 94:0d:08:7c:9b:f0:fc:e1:a9:23:e8:7e:cd:42:d9: d2:64:db:d7:1d:80:fb:91:38:44:67:ec:ea:46:f1: a9:d3:04:14:4c:1e:f4:61:b6:a3:ab:87:ff:b7:fe: 1b:67:98:0a:d1:ba:77:da:6c:71:2d:a4:22:23:55: a7:d7:36:51:d8:c2:38:20:90:ef:77:8d:3b:c3:bc: 4f:2b:09:8c:02:f3:9f:8f:ef:5e:08:b3:c7:95:4b: 2f:d9:e9:8f:bc:6e:9c:fa:42:ee:17:f5:f8:73:17: 48:e0:c4:dc:7e:52:04:67:97:6c:54:2f:e2:4d:ac: 7f:4b:41:74:57:05:be:4a:21:0c:0e:21:58:17:3a: a2:11:4b:cf:96:60:a8:8d:1a:c5:4b:cd:a5:3a:95: 90:41:0c:82:0d:0c:ed:bd:26:55:93:26:38:6e:78: 82:48:cc:c4:5a:83:bf:6c:ee:c7:ce:d6:47:07:61: b5:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:CB:32:13:A9:6D:03:1A:12:CC:2E:D3:8D:CE:40:DB:DB:09:66:07 X509v3 Authority Key Identifier: keyid:3D:64:FD:90:0E:2E:64:CB:15:9D:00:67:16:78:53:AA:FC:8A:7E:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3D64FD900E2E64CB159D0067167853AAFC8A7E97.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D64FD900E2E64CB159D0067167853AAFC8A7E97.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a519aeb-5c56-4cb3-94a0-0f400ea6a375/0/3130332e3134302e3133302e302f32342d3234203d3e20313338383636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.130.0/24 Signature Algorithm: sha256WithRSAEncryption 57:56:3d:67:c5:aa:43:0c:e7:f6:1b:bf:e2:51:eb:f8:26:a3: 56:af:63:ab:8e:77:56:80:3a:c9:80:a4:1b:cc:53:32:7a:47: ec:26:95:1f:06:1b:27:94:36:97:93:20:7c:6e:7c:35:f8:51: f1:9a:66:f8:31:ab:ed:a1:bc:68:cb:4a:73:d5:2d:44:c4:2f: 57:11:c3:bf:02:62:29:4b:11:28:6f:b8:9e:6d:ed:26:31:e7: 20:99:fe:81:c8:a0:84:30:1a:d3:65:cf:e1:85:5f:29:0c:09: 61:e3:39:5f:c6:67:f6:ec:a4:5b:bf:e9:cc:7a:28:fe:84:f5: f9:cf:5d:4e:65:73:b8:0b:e8:0e:fe:be:84:20:bb:4d:8a:20: b0:4a:83:54:e4:33:fc:4b:f2:f1:d5:6d:bf:8c:23:77:d1:a8: 54:6b:72:57:d4:4b:eb:9e:4f:db:fb:c2:8b:0d:be:d8:77:16: 87:8c:52:05:90:7d:03:46:1d:3c:e9:37:5a:92:3b:91:34:fc: ff:83:8b:2e:9f:71:89:b6:05:66:fe:06:58:03:7a:e8:1b:cb: 53:46:28:c0:e7:fb:62:0e:a1:ba:fc:59:47:17:50:c1:fa:e4: a8:46:fa:1c:63:3d:f0:ed:43:ca:ac:ab:3b:c0:f9:a4:c3:98: c2:45:3c:e3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbvZu1wmFWeXOTrS2YDZiarPD5Q4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFG QzhBN0U5NzAeFw0yNDA2MTYwOTU1NTRaFw0yNTA2MTUxMDAwNTRaMDMxMTAvBgNV BAMTKDgxQ0IzMjEzQTk2RDAzMUExMkNDMkVEMzhEQ0U0MERCREIwOTY2MDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQlT/4XHMdlAbbePtRq07vmN/f 2sKo4wL78yIkoq7wJ2xNSW+PgrMPpDJgNN9j1shpuTlJb7bf++7eS49yzSkrBdO9 TWfBml5HmpQNCHyb8PzhqSPofs1C2dJk29cdgPuROERn7OpG8anTBBRMHvRhtqOr h/+3/htnmArRunfabHEtpCIjVafXNlHYwjggkO93jTvDvE8rCYwC85+P714Is8eV Sy/Z6Y+8bpz6Qu4X9fhzF0jgxNx+UgRnl2xUL+JNrH9LQXRXBb5KIQwOIVgXOqIR S8+WYKiNGsVLzaU6lZBBDIINDO29JlWTJjhueIJIzMRag79s7sfO1kcHYbX9AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUgcsyE6ltAxoSzC7Tjc5A29sJZgcwHwYDVR0j BBgwFoAUPWT9kA4uZMsVnQBnFnhTqvyKfpcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUxOWFlYi01YzU2LTRjYjMtOTRhMC0wZjQwMGVhNmEzNzUvMC8zRDY0RkQ5MDBF MkU2NENCMTU5RDAwNjcxNjc4NTNBQUZDOEE3RTk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q2NEZEOTAwRTJFNjRDQjE1OUQwMDY3MTY3ODUzQUFGQzhB N0U5Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhNTE5YWViLTVjNTYtNGNiMy05 NGEwLTBmNDAwZWE2YTM3NS8wLzMxMzAzMzJlMzEzNDMwMmUzMTMzMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzODM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnjIIwDQYJ KoZIhvcNAQELBQADggEBAFdWPWfFqkMM5/Ybv+JR6/gmo1avY6uOd1aAOsmApBvM UzJ6R+wmlR8GGyeUNpeTIHxufDX4UfGaZvgxq+2hvGjLSnPVLUTEL1cRw78CYilL EShvuJ5t7SYx5yCZ/oHIoIQwGtNlz+GFXykMCWHjOV/GZ/bspFu/6cx6KP6E9fnP XU5lc7gL6A7+voQgu02KILBKg1TkM/xL8vHVbb+MI3fRqFRrclfUS+ueT9v7wosN vth3FoeMUgWQfQNGHTzpN1qSO5E0/P+Diy6fcYm2BWb+BlgDeugby1NGKMDn+2IO obr8WUcXUMH65KhG+hxjPfDtQ8qsqzvA+aTDmMJFPOM= -----END CERTIFICATE-----Generated at Mon Nov 25 19:46:14 2024 by rpki-client on console-fra.rpki-client.org