$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32342d3234203d3e20313338303839.roa File: 3130332e3132342e3133362e302f32342d3234203d3e20313338303839.roa (raw, json) Hash identifier: fCLtH63XHef23XJpqpHfRy4HZxlv7dPLgS80XrkYx0k= Subject key identifier: 8E:D6:52:52:BE:3F:0A:EC:DA:D0:CB:63:E0:C5:BC:BB:98:69:B7:E7 Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Certificate serial: 3E061823D4241644C5A611F8F0D5ED20FC7F4B3F Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32342d3234203d3e20313338303839.roa Signing time: Mon 25 Mar 2024 14:00:00 +0000 ROA not before: Mon 25 Mar 2024 13:55:00 +0000 ROA not after: Mon 24 Mar 2025 14:00:00 +0000 asID: 138089 IP address blocks: 103.124.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:06:18:23:d4:24:16:44:c5:a6:11:f8:f0:d5:ed:20:fc:7f:4b:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Validity Not Before: Mar 25 13:55:00 2024 GMT Not After : Mar 24 14:00:00 2025 GMT Subject: CN=8ED65252BE3F0AECDAD0CB63E0C5BCBB9869B7E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ec:b8:82:41:1b:94:fb:27:3a:8a:ed:73:0b: 71:fe:7d:65:d8:68:59:7d:e7:d7:6c:59:b9:44:c5: 47:d1:45:75:5c:34:24:a1:ee:ad:06:5d:33:fc:bf: d3:a7:d1:af:65:61:0a:ac:11:bd:fd:5e:c0:be:54: 59:1c:9b:98:00:79:8c:ae:15:6b:9e:66:9c:53:2f: 40:e4:53:38:50:3d:d2:c4:94:38:73:d3:7e:c0:b1: 58:32:f3:67:f6:0d:4d:5b:e2:cc:70:36:32:76:a8: 3f:f5:8a:5b:c6:51:3c:c4:a4:a5:0c:99:29:81:81: 76:e9:28:53:0d:ef:8f:08:c0:f0:7e:7b:7a:64:3e: 2a:c8:27:fc:cd:89:88:23:33:f6:67:33:cf:2e:76: 99:9a:2b:ed:ad:b5:44:74:7f:28:8b:77:a5:47:77: 14:2d:b9:92:b6:30:f8:89:5a:2c:4f:e7:d9:b7:41: 48:00:47:3d:d3:f0:de:32:00:43:cf:b9:a0:1f:f2: d6:69:4b:25:40:2a:8b:f2:20:39:0b:25:2c:16:86: d8:65:9c:02:1b:86:6c:db:d5:4f:f1:cc:2a:36:e3: 82:e1:1c:a4:21:02:f2:99:ea:a9:b0:e5:17:c8:b9: 92:0c:8b:f9:ef:5b:f5:ce:1d:39:54:49:ac:b7:7e: 66:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:D6:52:52:BE:3F:0A:EC:DA:D0:CB:63:E0:C5:BC:BB:98:69:B7:E7 X509v3 Authority Key Identifier: keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133362e302f32342d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.136.0/24 Signature Algorithm: sha256WithRSAEncryption 62:0b:99:01:b7:ae:e9:0d:9f:26:ca:07:db:66:62:05:e4:70: 53:20:b0:ca:81:39:3b:2f:c4:cc:93:fd:0d:7b:8a:fb:0e:5e: 30:bd:06:32:f5:c9:66:1f:c7:5f:3e:13:bc:ee:c9:9f:9e:8f: e7:fe:04:dd:a8:ce:d6:7c:25:19:e2:cb:9b:c8:69:44:e8:b1: e1:3a:a7:ab:cf:28:8a:d4:f9:47:4f:65:32:fc:6b:8e:f5:62: 5c:26:55:0e:53:e7:73:6e:2e:a1:50:e9:b7:30:41:f1:39:a2: 41:86:08:50:e7:dc:4a:87:e1:d9:8e:f7:b6:b6:54:15:8d:f2: ed:e7:db:cf:08:76:c7:d7:30:30:82:29:e4:f2:9b:c5:d5:76: 77:ca:8f:d5:ca:c8:a4:04:45:a7:b2:c5:8a:42:bc:8c:f6:41: d0:72:94:9e:71:8a:b6:e5:dd:2d:a6:12:87:1e:96:3a:29:45: 38:39:08:ea:52:73:2d:c0:aa:2c:01:24:9b:5e:53:22:19:0f: 4b:83:44:99:1b:1d:35:6b:5d:a1:43:ad:8a:61:72:75:57:89: 9e:cc:76:b1:63:8b:de:26:24:5a:a2:a8:d1:e8:fc:e9:b5:4f: 4f:48:a1:d6:bc:be:ce:20:f0:15:c1:c0:3e:30:4f:5f:cb:af: da:5e:d9:f0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPgYYI9QkFkTFphH48NXtIPx/Sz8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVB RjcwRTczMzAeFw0yNDAzMjUxMzU1MDBaFw0yNTAzMjQxNDAwMDBaMDMxMTAvBgNV BAMTKDhFRDY1MjUyQkUzRjBBRUNEQUQwQ0I2M0UwQzVCQ0JCOTg2OUI3RTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa7LiCQRuU+yc6iu1zC3H+fWXY aFl959dsWblExUfRRXVcNCSh7q0GXTP8v9On0a9lYQqsEb39XsC+VFkcm5gAeYyu FWueZpxTL0DkUzhQPdLElDhz037AsVgy82f2DU1b4sxwNjJ2qD/1ilvGUTzEpKUM mSmBgXbpKFMN748IwPB+e3pkPirIJ/zNiYgjM/ZnM88udpmaK+2ttUR0fyiLd6VH dxQtuZK2MPiJWixP59m3QUgARz3T8N4yAEPPuaAf8tZpSyVAKovyIDkLJSwWhthl nAIbhmzb1U/xzCo244LhHKQhAvKZ6qmw5RfIuZIMi/nvW/XOHTlUSay3fmavAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUjtZSUr4/Cuza0Mtj4MW8u5hpt+cwHwYDVR0j BBgwFoAUfU8NAHtgE0mWrDGYueW3Hq9w5zMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWJhNGU1OS1mYjMxLTQxYjUtODhlNy0wYjJjZWQxZjIwMWMvMC83RDRGMEQwMDdC NjAxMzQ5OTZBQzMxOThCOUU1QjcxRUFGNzBFNzMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVBRjcw RTczMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMxMzAzMzJlMzEzMjM0MmUzMTMzMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfIgwDQYJ KoZIhvcNAQELBQADggEBAGILmQG3rukNnybKB9tmYgXkcFMgsMqBOTsvxMyT/Q17 ivsOXjC9BjL1yWYfx18+E7zuyZ+ej+f+BN2oztZ8JRniy5vIaUToseE6p6vPKIrU +UdPZTL8a471YlwmVQ5T53NuLqFQ6bcwQfE5okGGCFDn3EqH4dmO97a2VBWN8u3n 288IdsfXMDCCKeTym8XVdnfKj9XKyKQERaeyxYpCvIz2QdBylJ5xirbl3S2mEoce ljopRTg5COpScy3AqiwBJJteUyIZD0uDRJkbHTVrXaFDrYphcnVXiZ7MdrFji94m JFqiqNHo/Om1T09Ioda8vs4g8BXBwD4wT1/Lr9pe2fA= -----END CERTIFICATE-----Generated at Sat May 4 11:06:15 2024 by rpki-client on console-fra.rpki-client.org