$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133372e302f32342d3234203d3e20313338303839.roa File: 3130332e3132342e3133372e302f32342d3234203d3e20313338303839.roa (raw, json) Hash identifier: TweHsnwYTZJNRDapWYbX3bkK7Ez5NmNqQmfOElapmkc= Subject key identifier: C0:AF:6E:9B:0E:81:32:39:A1:89:4F:96:B9:36:F5:5B:F8:FA:92:5A Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Certificate serial: 7353B8322E20D1DCE36C6E078E0828E5DA90D880 Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133372e302f32342d3234203d3e20313338303839.roa Signing time: Mon 25 Mar 2024 14:00:00 +0000 ROA not before: Mon 25 Mar 2024 13:55:00 +0000 ROA not after: Mon 24 Mar 2025 14:00:00 +0000 asID: 138089 IP address blocks: 103.124.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 09:52:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:53:b8:32:2e:20:d1:dc:e3:6c:6e:07:8e:08:28:e5:da:90:d8:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Validity Not Before: Mar 25 13:55:00 2024 GMT Not After : Mar 24 14:00:00 2025 GMT Subject: CN=C0AF6E9B0E813239A1894F96B936F55BF8FA925A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:34:e4:ef:c1:aa:0b:43:47:de:56:33:ea:0c: ff:b0:9e:b7:5d:a7:ec:a4:70:c4:6c:73:aa:85:41: e4:a4:ba:a9:2b:f3:34:4d:43:e5:59:c6:62:4a:55: 85:8c:35:c2:90:0e:69:51:e2:18:28:01:d9:0f:d3: 84:2a:06:4b:2b:80:10:5e:7d:36:29:b7:5f:1c:c8: 78:cb:bf:19:ed:fd:96:68:2a:00:13:ab:7a:31:d3: 0b:4d:a3:b7:29:52:95:6d:b1:24:0f:44:dd:42:2e: 4c:ee:39:dd:b3:74:87:4e:74:1c:35:da:7b:dc:c5: a0:15:d9:d7:41:cc:5f:26:59:5c:7c:69:ca:d1:7f: 4a:06:ff:c7:25:f3:c1:85:a0:1d:b2:bc:d3:d3:b4: 35:26:29:f3:af:27:18:f0:99:4b:58:3a:e9:99:3f: f8:5b:9d:7b:cc:dc:47:e6:c3:fb:47:7e:b7:58:f2: 32:4b:af:b7:51:56:23:8a:89:4f:a8:71:8a:17:5a: ee:81:8a:8c:d0:8c:d4:39:d5:63:8f:c3:47:d3:6d: 9b:2a:32:70:76:5d:9d:00:1b:13:a8:96:33:2c:2a: fb:f2:f5:83:3b:6b:a6:10:8f:ee:5c:83:3d:07:f7: 52:15:64:10:26:5f:54:f5:59:cd:19:c8:81:4a:00: 7a:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:AF:6E:9B:0E:81:32:39:A1:89:4F:96:B9:36:F5:5B:F8:FA:92:5A X509v3 Authority Key Identifier: keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133372e302f32342d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.137.0/24 Signature Algorithm: sha256WithRSAEncryption 05:ac:e0:97:0e:85:46:e3:59:ab:40:e1:a3:2f:39:43:ad:f7: 55:20:c7:f5:6c:e9:c9:92:1b:73:6c:e3:3c:16:08:f7:70:64: bb:df:99:21:fb:90:ac:64:f4:22:e6:a4:04:71:e2:cc:67:00: 49:73:12:b4:17:fb:0e:00:1f:7b:59:a4:3b:bc:30:01:1e:ed: db:c1:da:57:64:c8:ca:f2:e7:f8:89:d9:bf:9a:6c:33:2f:f3: 66:fa:56:32:15:22:b0:40:f8:22:02:bb:6b:ac:d4:83:e5:96: 4c:9f:5e:17:f2:32:38:03:8a:a8:8d:f4:57:6f:99:d3:e2:2b: 47:5d:24:ea:da:a9:b8:0a:b4:21:9c:be:a4:03:0c:3b:17:72: 52:86:49:09:c4:0f:5e:c2:5d:04:1b:c1:71:82:bf:08:40:42: ee:e2:56:ad:28:a1:7d:e4:86:23:79:1b:4c:21:cc:98:9e:e8: 04:34:4f:d4:a5:4a:97:98:a5:3b:83:4a:1a:ed:37:54:e6:21: 77:ac:cf:0b:fb:4f:7a:2f:cc:e7:65:c9:65:61:fe:14:95:05: 0f:89:3b:32:bb:50:1d:54:91:e2:2a:32:6c:79:df:2d:1a:df: 84:c0:56:1b:90:da:77:bd:73:84:26:76:33:02:b3:84:74:e0: 8a:0a:4d:28 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUc1O4Mi4g0dzjbG4Hjggo5dqQ2IAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVB RjcwRTczMzAeFw0yNDAzMjUxMzU1MDBaFw0yNTAzMjQxNDAwMDBaMDMxMTAvBgNV BAMTKEMwQUY2RTlCMEU4MTMyMzlBMTg5NEY5NkI5MzZGNTVCRjhGQTkyNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnNOTvwaoLQ0feVjPqDP+wnrdd p+ykcMRsc6qFQeSkuqkr8zRNQ+VZxmJKVYWMNcKQDmlR4hgoAdkP04QqBksrgBBe fTYpt18cyHjLvxnt/ZZoKgATq3ox0wtNo7cpUpVtsSQPRN1CLkzuOd2zdIdOdBw1 2nvcxaAV2ddBzF8mWVx8acrRf0oG/8cl88GFoB2yvNPTtDUmKfOvJxjwmUtYOumZ P/hbnXvM3Efmw/tHfrdY8jJLr7dRViOKiU+ocYoXWu6BiozQjNQ51WOPw0fTbZsq MnB2XZ0AGxOoljMsKvvy9YM7a6YQj+5cgz0H91IVZBAmX1T1Wc0ZyIFKAHqNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUwK9umw6BMjmhiU+WuTb1W/j6klowHwYDVR0j BBgwFoAUfU8NAHtgE0mWrDGYueW3Hq9w5zMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWJhNGU1OS1mYjMxLTQxYjUtODhlNy0wYjJjZWQxZjIwMWMvMC83RDRGMEQwMDdC NjAxMzQ5OTZBQzMxOThCOUU1QjcxRUFGNzBFNzMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVBRjcw RTczMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMxMzAzMzJlMzEzMjM0MmUzMTMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfIkwDQYJ KoZIhvcNAQELBQADggEBAAWs4JcOhUbjWatA4aMvOUOt91Ugx/Vs6cmSG3Ns4zwW CPdwZLvfmSH7kKxk9CLmpARx4sxnAElzErQX+w4AH3tZpDu8MAEe7dvB2ldkyMry 5/iJ2b+abDMv82b6VjIVIrBA+CICu2us1IPllkyfXhfyMjgDiqiN9FdvmdPiK0dd JOraqbgKtCGcvqQDDDsXclKGSQnED17CXQQbwXGCvwhAQu7iVq0ooX3khiN5G0wh zJie6AQ0T9SlSpeYpTuDShrtN1TmIXeszwv7T3ovzOdlyWVh/hSVBQ+JOzK7UB1U keIqMmx53y0a34TAVhuQ2ne9c4QmdjMCs4R04IoKTSg= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:38 2024 by rpki-client on console-ams.rpki-client.org