$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32322d3234203d3e20313338303839.roa File: 3130332e3132342e3133362e302f32322d3234203d3e20313338303839.roa (raw, json) Hash identifier: 4Hm4WnusfCBYxfpxzUJUTi2ngcR2xlQx9uMM6h03e6c= Subject key identifier: 70:44:B2:E9:D7:E5:7D:B5:72:4B:3F:AE:B5:0F:6D:27:E8:3E:FD:26 Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Certificate serial: 13F976A3D05E3754E466C74C3709705995EA2238 Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32322d3234203d3e20313338303839.roa Signing time: Wed 07 Feb 2024 02:00:00 +0000 ROA not before: Wed 07 Feb 2024 01:55:00 +0000 ROA not after: Wed 05 Feb 2025 02:00:00 +0000 asID: 138089 IP address blocks: 103.124.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 09:52:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:f9:76:a3:d0:5e:37:54:e4:66:c7:4c:37:09:70:59:95:ea:22:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Validity Not Before: Feb 7 01:55:00 2024 GMT Not After : Feb 5 02:00:00 2025 GMT Subject: CN=7044B2E9D7E57DB5724B3FAEB50F6D27E83EFD26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a5:cf:9d:d0:53:71:85:dd:c6:7b:0b:ee:bb: e1:18:8a:a4:8d:fe:83:06:0d:e2:df:fb:fa:d9:45: 86:d1:bc:94:44:0d:03:0b:17:71:b7:1d:74:85:02: 47:31:ed:50:f1:7f:e8:d1:fa:82:bc:23:4e:6e:94: 53:5d:18:43:e6:8d:5b:74:0e:1b:8e:7b:33:7e:36: 81:15:2d:76:ed:5e:89:b2:e5:ea:b9:bb:f0:c1:9e: c3:5a:ed:0c:3f:4a:1f:8c:f2:13:50:5e:e3:a1:d6: 6c:8b:6d:b1:fc:18:67:25:4e:78:78:22:cf:da:a1: 19:b2:9d:4a:61:c7:8b:62:00:81:33:9e:f0:a3:43: 8c:d7:e3:4f:ac:bf:18:15:94:79:4a:5c:55:33:4c: 7a:e3:a0:df:ef:13:64:05:25:e5:1c:b3:f6:5e:20: 63:da:ff:7a:c4:c5:34:67:a6:26:61:b9:16:61:ce: 6a:c3:5a:b3:1b:88:94:07:a8:be:ca:4d:d9:96:cd: e1:e4:64:bf:28:7c:51:b1:b3:08:bd:63:bb:66:6a: 7b:f7:1a:fe:eb:7a:c2:44:c8:03:44:a2:00:66:91: 8a:b7:0d:3e:f4:f9:f7:7e:76:08:b8:bc:03:36:c6: 17:3d:43:6c:99:2a:f9:b4:48:62:cd:52:5f:f3:c8: a2:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:44:B2:E9:D7:E5:7D:B5:72:4B:3F:AE:B5:0F:6D:27:E8:3E:FD:26 X509v3 Authority Key Identifier: keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32322d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.136.0/22 Signature Algorithm: sha256WithRSAEncryption 52:6d:33:af:cb:34:14:7f:74:b0:11:b6:0d:e8:f3:87:ed:6c: 53:5e:64:53:c4:d1:86:17:7a:3d:4a:d1:90:7f:cc:5e:5b:d4: 22:d6:84:8f:09:4d:22:36:ae:8b:5f:7d:3d:96:a2:d0:e8:8f: 69:c0:a3:c2:f9:8b:e6:e8:c3:c5:65:8e:39:99:15:96:c3:48: 3c:db:5c:b7:18:5f:96:7d:d0:93:81:58:5d:5c:cb:50:f7:b9: b9:2d:09:65:1a:03:d0:dd:44:85:00:f7:77:bc:7f:7c:19:8c: 1a:fc:79:9f:6d:c7:3c:71:2f:9a:8a:bc:91:50:ab:a6:6b:47: ec:d0:5b:90:14:8e:92:f4:76:72:ce:9f:d1:08:15:03:00:5f: 29:24:84:9a:b1:15:be:ba:d9:7c:52:53:9e:f5:6c:d5:96:84: 91:d0:4f:84:10:6a:08:46:7c:6a:97:a1:7d:94:76:29:10:99: 67:e9:15:cf:86:68:eb:6c:8c:ae:ba:8a:ff:0c:20:7a:ea:10: 0c:11:d7:13:9b:f4:28:11:68:f5:e4:c6:ea:9c:38:c6:c1:d5: 9f:1f:f2:e9:a5:c6:a2:bb:e4:0a:0a:83:6e:bb:ac:dd:d5:d6: b9:b3:a1:4c:b0:3a:ce:8b:b0:67:97:fd:f3:80:d3:60:09:f9: ed:96:68:9d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUE/l2o9BeN1TkZsdMNwlwWZXqIjgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVB RjcwRTczMzAeFw0yNDAyMDcwMTU1MDBaFw0yNTAyMDUwMjAwMDBaMDMxMTAvBgNV BAMTKDcwNDRCMkU5RDdFNTdEQjU3MjRCM0ZBRUI1MEY2RDI3RTgzRUZEMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGpc+d0FNxhd3Gewvuu+EYiqSN /oMGDeLf+/rZRYbRvJREDQMLF3G3HXSFAkcx7VDxf+jR+oK8I05ulFNdGEPmjVt0 DhuOezN+NoEVLXbtXomy5eq5u/DBnsNa7Qw/Sh+M8hNQXuOh1myLbbH8GGclTnh4 Is/aoRmynUphx4tiAIEznvCjQ4zX40+svxgVlHlKXFUzTHrjoN/vE2QFJeUcs/Ze IGPa/3rExTRnpiZhuRZhzmrDWrMbiJQHqL7KTdmWzeHkZL8ofFGxswi9Y7tmanv3 Gv7resJEyANEogBmkYq3DT70+fd+dgi4vAM2xhc9Q2yZKvm0SGLNUl/zyKLDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUcESy6dflfbVySz+utQ9tJ+g+/SYwHwYDVR0j BBgwFoAUfU8NAHtgE0mWrDGYueW3Hq9w5zMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWJhNGU1OS1mYjMxLTQxYjUtODhlNy0wYjJjZWQxZjIwMWMvMC83RDRGMEQwMDdC NjAxMzQ5OTZBQzMxOThCOUU1QjcxRUFGNzBFNzMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVBRjcw RTczMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMxMzAzMzJlMzEzMjM0MmUzMTMzMzYyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnfIgwDQYJ KoZIhvcNAQELBQADggEBAFJtM6/LNBR/dLARtg3o84ftbFNeZFPE0YYXej1K0ZB/ zF5b1CLWhI8JTSI2rotffT2WotDoj2nAo8L5i+bow8VljjmZFZbDSDzbXLcYX5Z9 0JOBWF1cy1D3ubktCWUaA9DdRIUA93e8f3wZjBr8eZ9txzxxL5qKvJFQq6ZrR+zQ W5AUjpL0dnLOn9EIFQMAXykkhJqxFb662XxSU571bNWWhJHQT4QQaghGfGqXoX2U dikQmWfpFc+GaOtsjK66iv8MIHrqEAwR1xOb9CgRaPXkxuqcOMbB1Z8f8umlxqK7 5AoKg267rN3V1rmzoUywOs6LsGeX/fOA02AJ+e2WaJ0= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:38 2024 by rpki-client on console-ams.rpki-client.org