$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32332d3234203d3e20313338303839.roa File: 3130332e3132342e3133362e302f32332d3234203d3e20313338303839.roa (raw, json) Hash identifier: Gi8pXuaHvIjRFGEOcjqpkp/ITy5FzjLcXXMmxYMHE20= Subject key identifier: 84:F3:75:38:B0:26:06:10:7B:E8:E1:62:F7:71:81:D2:B0:BA:21:9A Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Certificate serial: 40B2BD79BF5B592DCAA53DAA9A1CBFC15F84B852 Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32332d3234203d3e20313338303839.roa Signing time: Wed 07 Feb 2024 02:00:00 +0000 ROA not before: Wed 07 Feb 2024 01:55:00 +0000 ROA not after: Wed 05 Feb 2025 02:00:00 +0000 asID: 138089 IP address blocks: 103.124.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:b2:bd:79:bf:5b:59:2d:ca:a5:3d:aa:9a:1c:bf:c1:5f:84:b8:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Validity Not Before: Feb 7 01:55:00 2024 GMT Not After : Feb 5 02:00:00 2025 GMT Subject: CN=84F37538B02606107BE8E162F77181D2B0BA219A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:d8:1b:82:ce:a3:68:af:c7:8f:ab:d7:70:ad: 96:51:c4:70:f3:2f:6f:e3:f3:53:f9:f2:8a:79:f3: e6:ba:90:58:d6:29:fc:ba:64:65:49:22:ca:db:79: e4:d1:92:16:ea:8f:a5:e4:c1:0e:53:a8:e0:76:f2: 69:99:aa:99:f4:40:26:3a:1c:13:f1:d8:66:9e:bb: 0d:00:82:9e:71:bb:f5:fa:09:6e:a6:43:f6:73:16: cc:86:0f:de:c7:82:a1:0c:9d:ba:fe:e3:32:84:b0: 2c:91:e4:71:68:f3:ce:0d:b6:65:9f:c6:39:1f:42: 07:10:29:27:4f:43:9a:b2:b7:68:2a:2d:99:03:23: b9:e1:97:7c:69:9d:a9:eb:cc:e6:5e:78:df:7f:48: 41:33:b9:35:35:43:5a:14:9d:be:df:38:2b:08:9c: 53:ae:ab:7a:5a:83:4c:a4:2a:7f:f2:5a:f8:44:37: 32:ad:95:7e:d1:16:2a:36:e3:c9:ed:ab:cd:c6:2a: c4:48:58:2b:9a:de:fb:a7:35:20:11:3e:21:19:43: ca:11:80:53:ea:fb:e8:e0:03:aa:e8:11:e9:e1:89: 88:af:53:02:ef:8c:41:9e:80:19:f8:94:9b:a1:ec: 8d:15:fd:41:4a:c1:7c:40:fe:3f:e0:1a:5c:d0:93: d2:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:F3:75:38:B0:26:06:10:7B:E8:E1:62:F7:71:81:D2:B0:BA:21:9A X509v3 Authority Key Identifier: keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32332d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.136.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:4e:ee:db:8f:03:1d:88:25:97:30:9c:d6:d9:eb:8c:c3:2c: 17:28:ce:c9:e9:39:18:d9:c3:f7:ad:00:a3:3b:ba:83:e1:1f: 34:90:c4:45:49:bc:dc:9a:95:2f:9b:e5:63:c1:dd:34:a3:72: 48:f2:bc:35:eb:13:83:bb:6b:79:ad:cf:92:80:51:1f:e4:4a: b8:e4:7d:6f:b2:be:ed:24:a9:ee:05:c9:8f:47:78:b9:35:49: 41:c3:e0:d5:76:fe:12:c7:b3:36:84:ca:b4:de:ce:64:78:3f: 4d:c7:25:ea:00:28:fe:c7:f7:cf:b2:f2:8f:89:19:d8:0c:21: 7c:e9:de:e4:69:5f:49:39:44:fa:0e:ff:11:86:bd:bc:20:38: d0:dd:ed:c1:e3:5d:4e:4b:d4:37:5a:11:34:0b:0e:f1:6d:aa: f4:6b:03:fe:5d:1c:d3:22:67:a6:5f:17:89:e7:46:d6:42:95: d9:f3:aa:2d:3b:6d:0d:98:cb:32:7a:c3:46:b7:0b:67:63:90: 90:07:ac:34:61:60:2d:8e:ee:73:e9:7e:47:64:a4:ea:7e:92: 8e:76:78:a0:33:98:45:58:d7:39:eb:32:ba:58:fd:46:ab:a0: 48:f4:bc:0d:39:06:60:d8:b3:20:4c:8a:09:85:b5:36:19:53: 15:0a:f7:10 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQLK9eb9bWS3KpT2qmhy/wV+EuFIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVB RjcwRTczMzAeFw0yNDAyMDcwMTU1MDBaFw0yNTAyMDUwMjAwMDBaMDMxMTAvBgNV BAMTKDg0RjM3NTM4QjAyNjA2MTA3QkU4RTE2MkY3NzE4MUQyQjBCQTIxOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDg2BuCzqNor8ePq9dwrZZRxHDz L2/j81P58op58+a6kFjWKfy6ZGVJIsrbeeTRkhbqj6XkwQ5TqOB28mmZqpn0QCY6 HBPx2Gaeuw0Agp5xu/X6CW6mQ/ZzFsyGD97HgqEMnbr+4zKEsCyR5HFo884NtmWf xjkfQgcQKSdPQ5qyt2gqLZkDI7nhl3xpnanrzOZeeN9/SEEzuTU1Q1oUnb7fOCsI nFOuq3pag0ykKn/yWvhENzKtlX7RFio248ntq83GKsRIWCua3vunNSARPiEZQ8oR gFPq++jgA6roEenhiYivUwLvjEGegBn4lJuh7I0V/UFKwXxA/j/gGlzQk9JpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUhPN1OLAmBhB76OFi93GB0rC6IZowHwYDVR0j BBgwFoAUfU8NAHtgE0mWrDGYueW3Hq9w5zMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWJhNGU1OS1mYjMxLTQxYjUtODhlNy0wYjJjZWQxZjIwMWMvMC83RDRGMEQwMDdC NjAxMzQ5OTZBQzMxOThCOUU1QjcxRUFGNzBFNzMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVBRjcw RTczMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMxMzAzMzJlMzEzMjM0MmUzMTMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnfIgwDQYJ KoZIhvcNAQELBQADggEBAExO7tuPAx2IJZcwnNbZ64zDLBcozsnpORjZw/etAKM7 uoPhHzSQxEVJvNyalS+b5WPB3TSjckjyvDXrE4O7a3mtz5KAUR/kSrjkfW+yvu0k qe4FyY9HeLk1SUHD4NV2/hLHszaEyrTezmR4P03HJeoAKP7H98+y8o+JGdgMIXzp 3uRpX0k5RPoO/xGGvbwgONDd7cHjXU5L1DdaETQLDvFtqvRrA/5dHNMiZ6ZfF4nn RtZCldnzqi07bQ2YyzJ6w0a3C2djkJAHrDRhYC2O7nPpfkdkpOp+ko52eKAzmEVY 1znrMrpY/UaroEj0vA05BmDYsyBMigmFtTYZUxUK9xA= -----END CERTIFICATE-----Generated at Sat May 4 11:06:15 2024 by rpki-client on console-fra.rpki-client.org