$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133382e302f32332d3234203d3e20313338303839.roa File: 3130332e3132342e3133382e302f32332d3234203d3e20313338303839.roa (raw, json) Hash identifier: sY9vGlyucSxgaOLfCvOLUedhXuURH56B3R5je15TfYY= Subject key identifier: CF:8B:03:FE:F3:A9:A0:7A:0B:3D:BF:9E:D0:BF:29:3B:52:9A:96:14 Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Certificate serial: 0E92A57452C02F4378A6C3D041B6770FE0AF574A Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133382e302f32332d3234203d3e20313338303839.roa Signing time: Wed 07 Feb 2024 02:00:00 +0000 ROA not before: Wed 07 Feb 2024 01:55:00 +0000 ROA not after: Wed 05 Feb 2025 02:00:00 +0000 asID: 138089 IP address blocks: 103.124.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:92:a5:74:52:c0:2f:43:78:a6:c3:d0:41:b6:77:0f:e0:af:57:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Validity Not Before: Feb 7 01:55:00 2024 GMT Not After : Feb 5 02:00:00 2025 GMT Subject: CN=CF8B03FEF3A9A07A0B3DBF9ED0BF293B529A9614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:cb:87:2f:82:33:8e:31:58:20:00:c7:dd:90: d6:8d:5b:f4:77:79:e0:60:74:54:17:c0:23:84:fa: 29:22:40:fe:df:36:34:0b:8a:9e:f1:6f:fc:57:b1: 75:e1:2b:a5:1c:6b:d7:b0:3e:52:84:72:4e:af:65: 7f:09:15:89:9c:ea:99:c2:ee:f6:1b:c9:81:16:5d: 12:f7:ed:3c:5d:9c:7f:1a:60:17:b0:ea:92:32:2a: 9b:47:a3:84:67:b6:f8:e8:52:87:e0:cb:80:ac:54: 57:cd:0f:5f:bc:c9:e9:63:f1:32:a9:33:92:07:25: 92:93:db:7b:c9:b8:fb:81:9a:eb:15:64:7d:bb:ed: e7:b5:f7:95:7d:6a:b0:19:85:d5:77:26:0a:e3:76: 41:68:1f:4e:3d:6b:d5:6c:ec:c1:90:19:4b:fb:3d: 47:fa:65:0f:c2:df:6e:42:9b:51:32:0b:00:86:f2: 18:3c:20:54:9f:52:2f:1e:b4:65:51:3f:5c:eb:27: 78:47:6e:35:24:44:d7:79:0f:e9:35:0f:fb:10:1e: 31:79:8d:94:2c:bc:0a:a3:c7:db:2b:78:61:2a:14: 80:37:19:07:48:6a:d3:87:5d:af:d9:3c:05:7d:e6: 44:35:32:3b:e6:97:16:59:d6:0b:a2:8b:94:d0:24: 7e:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:8B:03:FE:F3:A9:A0:7A:0B:3D:BF:9E:D0:BF:29:3B:52:9A:96:14 X509v3 Authority Key Identifier: keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133382e302f32332d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.138.0/23 Signature Algorithm: sha256WithRSAEncryption b6:26:d2:4e:bc:e2:9f:ed:d2:ee:d8:de:90:53:bb:68:fa:f5: 13:02:cd:6d:6c:08:f3:35:d2:48:2a:b8:ed:7f:82:4c:26:66: 12:9b:0c:ae:11:36:cf:ef:c6:9b:be:c2:a2:ea:a5:b7:3b:26: c5:0c:13:6f:5b:dc:c3:0f:06:bf:ab:fc:00:ae:4b:50:61:9b: 49:ef:60:ed:df:bf:cc:cb:57:a8:ee:01:09:1a:cd:ce:25:1e: 11:3f:79:b2:4e:6a:a4:a6:29:e9:f6:ca:83:98:d2:c2:36:aa: 09:ae:1b:1d:94:cb:61:71:47:cd:ee:4e:d3:94:c3:b4:f1:b0: 69:25:b3:72:1f:0d:15:da:b6:fc:58:73:c5:3a:69:95:96:b9: 60:59:ff:95:98:31:d3:2f:fa:29:32:67:9d:48:7b:45:e4:2b: 10:9d:69:35:8a:08:8b:ec:9e:04:85:25:86:71:43:b4:6f:9b: 22:5e:a2:0c:ab:5b:52:ec:81:e9:ef:e1:ed:62:f7:06:1d:5e: 8d:df:9f:0b:e9:d3:4e:e9:ef:57:ea:5e:12:b5:d1:12:a0:29: a8:47:78:da:90:be:01:64:3c:03:88:7d:c5:79:c0:ab:ba:df: 00:57:f6:2a:f7:a0:18:f9:24:ba:15:60:33:69:84:86:bb:22: 92:41:62:4c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDpKldFLAL0N4psPQQbZ3D+CvV0owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVB RjcwRTczMzAeFw0yNDAyMDcwMTU1MDBaFw0yNTAyMDUwMjAwMDBaMDMxMTAvBgNV BAMTKENGOEIwM0ZFRjNBOUEwN0EwQjNEQkY5RUQwQkYyOTNCNTI5QTk2MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYy4cvgjOOMVggAMfdkNaNW/R3 eeBgdFQXwCOE+ikiQP7fNjQLip7xb/xXsXXhK6Uca9ewPlKEck6vZX8JFYmc6pnC 7vYbyYEWXRL37TxdnH8aYBew6pIyKptHo4RntvjoUofgy4CsVFfND1+8yelj8TKp M5IHJZKT23vJuPuBmusVZH277ee195V9arAZhdV3JgrjdkFoH049a9Vs7MGQGUv7 PUf6ZQ/C325Cm1EyCwCG8hg8IFSfUi8etGVRP1zrJ3hHbjUkRNd5D+k1D/sQHjF5 jZQsvAqjx9sreGEqFIA3GQdIatOHXa/ZPAV95kQ1MjvmlxZZ1guii5TQJH7DAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUz4sD/vOpoHoLPb+e0L8pO1KalhQwHwYDVR0j BBgwFoAUfU8NAHtgE0mWrDGYueW3Hq9w5zMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWJhNGU1OS1mYjMxLTQxYjUtODhlNy0wYjJjZWQxZjIwMWMvMC83RDRGMEQwMDdC NjAxMzQ5OTZBQzMxOThCOUU1QjcxRUFGNzBFNzMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVBRjcw RTczMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMxMzAzMzJlMzEzMjM0MmUzMTMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnfIowDQYJ KoZIhvcNAQELBQADggEBALYm0k684p/t0u7Y3pBTu2j69RMCzW1sCPM10kgquO1/ gkwmZhKbDK4RNs/vxpu+wqLqpbc7JsUME29b3MMPBr+r/ACuS1Bhm0nvYO3fv8zL V6juAQkazc4lHhE/ebJOaqSmKen2yoOY0sI2qgmuGx2Uy2FxR83uTtOUw7TxsGkl s3IfDRXatvxYc8U6aZWWuWBZ/5WYMdMv+ikyZ51Ie0XkKxCdaTWKCIvsngSFJYZx Q7RvmyJeogyrW1Lsgenv4e1i9wYdXo3fnwvp007p71fqXhK10RKgKahHeNqQvgFk PAOIfcV5wKu63wBX9ir3oBj5JLoVYDNphIa7IpJBYkw= -----END CERTIFICATE-----Generated at Sat May 4 11:06:15 2024 by rpki-client on console-fra.rpki-client.org