$ rpki-client -vvf repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133382e302f32342d3234203d3e20313338303839.roa File: 3130332e3132342e3133382e302f32342d3234203d3e20313338303839.roa (raw, json) Hash identifier: 5leq3WQ1j3uC/yh6caiPHP4oda691+YpS+PNWtHfmA8= Subject key identifier: 5F:5B:A8:95:78:AF:4F:86:F7:0C:18:91:BE:5D:B4:26:0A:C5:4B:B6 Certificate issuer: /CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Certificate serial: 50EE48FDB79726A8232F1AA06AC29ACE07B5251B Authority key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133382e302f32342d3234203d3e20313338303839.roa Signing time: Mon 25 Mar 2024 14:00:00 +0000 ROA not before: Mon 25 Mar 2024 13:55:00 +0000 ROA not after: Mon 24 Mar 2025 14:00:00 +0000 asID: 138089 IP address blocks: 103.124.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 09:52:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:ee:48:fd:b7:97:26:a8:23:2f:1a:a0:6a:c2:9a:ce:07:b5:25:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Validity Not Before: Mar 25 13:55:00 2024 GMT Not After : Mar 24 14:00:00 2025 GMT Subject: CN=5F5BA89578AF4F86F70C1891BE5DB4260AC54BB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:63:85:62:f3:15:6f:8c:d4:d7:63:32:ba:2c: 5a:88:a1:23:b9:42:dc:a3:36:67:bf:70:50:c9:ae: 49:2f:b3:50:bd:04:ea:65:e1:aa:65:71:c7:86:08: b4:4d:b1:e3:0d:5f:08:8e:db:2d:f7:78:5d:15:c1: 5b:b6:d4:92:5d:d1:cb:14:da:64:ca:6f:9e:66:97: 81:c5:92:0c:65:df:74:a2:1c:5d:3c:c5:5f:e3:26: 41:8c:3d:a7:bb:a0:3a:20:f1:e1:38:45:02:81:8c: 72:e5:e0:72:46:ae:74:3b:fd:e7:77:01:21:c2:52: 83:ed:31:d5:70:bd:96:4f:38:f6:f9:de:47:9e:67: d6:54:21:49:8e:39:c8:92:29:d7:4d:1c:bc:6a:e9: 3c:73:54:36:08:7b:4d:5b:a1:89:08:9f:e0:c2:50: d3:d7:d4:92:8e:3b:05:93:26:f4:c8:fd:b1:eb:9d: c9:b9:4d:c3:0e:13:ab:19:12:a8:d0:36:19:03:69: cb:96:76:62:f0:ba:c4:37:16:80:4a:8d:34:7b:77: 61:a3:c2:0e:a9:44:ea:11:55:58:17:66:f0:77:ba: 40:f3:f5:df:f8:a8:f8:21:ef:fc:c1:25:82:c7:ab: 49:06:77:63:19:d8:80:b6:78:2e:1e:27:d1:be:9a: bb:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:5B:A8:95:78:AF:4F:86:F7:0C:18:91:BE:5D:B4:26:0A:C5:4B:B6 X509v3 Authority Key Identifier: keyid:7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/3130332e3132342e3133382e302f32342d3234203d3e20313338303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.138.0/24 Signature Algorithm: sha256WithRSAEncryption d4:79:74:35:2c:08:f0:47:7e:59:dc:47:5e:ba:a3:8e:e2:d1: f6:e2:b2:85:81:26:88:8a:c9:48:c6:0c:dd:63:e1:c6:46:26: 07:fe:07:04:93:7b:a6:8c:ff:98:db:93:26:a8:8d:c8:10:80: 4e:7f:eb:1b:2f:df:1b:93:1c:61:79:58:f3:90:1f:b4:26:9c: 90:4d:96:41:bf:e1:56:b7:e3:22:3c:80:a0:c1:df:c6:6d:be: f0:d6:a1:c8:e1:79:11:d3:b3:8f:35:28:7b:2f:60:e6:15:1d: 6c:35:79:b4:04:64:2a:ea:b6:bc:20:29:34:8f:e7:7c:b9:d3: a8:04:1b:dd:eb:02:7c:23:e4:ee:8d:56:7e:d4:0c:10:66:77: ba:ce:c5:70:ee:22:b4:43:a5:37:05:54:ad:a7:48:40:bb:26: fb:57:6e:11:45:0f:f9:27:43:fc:12:fa:ac:59:8f:ac:51:d6: 3e:50:e4:c5:33:70:bc:87:dd:00:f1:f9:60:34:97:3a:8d:ff: c1:2f:6d:4f:94:c9:7a:f3:d4:28:00:70:75:51:29:b8:41:71: e4:a5:07:92:f0:b2:ac:73:ab:9c:e7:2d:ee:57:08:5a:21:54: c7:3d:9b:20:dc:c2:cf:97:30:30:30:00:8f:fe:d9:ec:32:ec: ad:5e:65:c7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUO5I/beXJqgjLxqgasKazge1JRswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVB RjcwRTczMzAeFw0yNDAzMjUxMzU1MDBaFw0yNTAzMjQxNDAwMDBaMDMxMTAvBgNV BAMTKDVGNUJBODk1NzhBRjRGODZGNzBDMTg5MUJFNURCNDI2MEFDNTRCQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDY4Vi8xVvjNTXYzK6LFqIoSO5 QtyjNme/cFDJrkkvs1C9BOpl4aplcceGCLRNseMNXwiO2y33eF0VwVu21JJd0csU 2mTKb55ml4HFkgxl33SiHF08xV/jJkGMPae7oDog8eE4RQKBjHLl4HJGrnQ7/ed3 ASHCUoPtMdVwvZZPOPb53keeZ9ZUIUmOOciSKddNHLxq6TxzVDYIe01boYkIn+DC UNPX1JKOOwWTJvTI/bHrncm5TcMOE6sZEqjQNhkDacuWdmLwusQ3FoBKjTR7d2Gj wg6pROoRVVgXZvB3ukDz9d/4qPgh7/zBJYLHq0kGd2MZ2IC2eC4eJ9G+mrvjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUX1uolXivT4b3DBiRvl20JgrFS7YwHwYDVR0j BBgwFoAUfU8NAHtgE0mWrDGYueW3Hq9w5zMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWJhNGU1OS1mYjMxLTQxYjUtODhlNy0wYjJjZWQxZjIwMWMvMC83RDRGMEQwMDdC NjAxMzQ5OTZBQzMxOThCOUU1QjcxRUFGNzBFNzMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q0RjBEMDA3QjYwMTM0OTk2QUMzMTk4QjlFNUI3MUVBRjcw RTczMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5LWZiMzEtNDFiNS04 OGU3LTBiMmNlZDFmMjAxYy8wLzMxMzAzMzJlMzEzMjM0MmUzMTMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfIowDQYJ KoZIhvcNAQELBQADggEBANR5dDUsCPBHflncR166o47i0fbisoWBJoiKyUjGDN1j 4cZGJgf+BwSTe6aM/5jbkyaojcgQgE5/6xsv3xuTHGF5WPOQH7QmnJBNlkG/4Va3 4yI8gKDB38ZtvvDWocjheRHTs481KHsvYOYVHWw1ebQEZCrqtrwgKTSP53y506gE G93rAnwj5O6NVn7UDBBmd7rOxXDuIrRDpTcFVK2nSEC7JvtXbhFFD/knQ/wS+qxZ j6xR1j5Q5MUzcLyH3QDx+WA0lzqN/8EvbU+UyXrz1CgAcHVRKbhBceSlB5Lwsqxz q5znLe5XCFohVMc9myDcws+XMDAwAI/+2ewy7K1eZcc= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:38 2024 by rpki-client on console-ams.rpki-client.org