$ rpki-client -vvf repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa File: 3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa (raw, json) Hash identifier: oYxCGMbqXgR8AQNdiL8ihq35M5ctD4QdRyR88XpWqWE= Subject key identifier: 6F:72:88:EF:7C:E1:D1:57:A9:6D:4C:BC:08:06:CF:BF:91:25:77:F2 Certificate issuer: /CN=58D7A2E054D4F6B835578031386896062B0B0CED Certificate serial: 74989DC3919DF418AB63711AA123ACC951583DD9 Authority key identifier: 58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa Signing time: Sun 04 Aug 2024 10:01:02 +0000 ROA not before: Sun 04 Aug 2024 09:56:02 +0000 ROA not after: Sun 03 Aug 2025 10:01:02 +0000 asID: 135636 IP address blocks: 103.98.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:98:9d:c3:91:9d:f4:18:ab:63:71:1a:a1:23:ac:c9:51:58:3d:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7A2E054D4F6B835578031386896062B0B0CED Validity Not Before: Aug 4 09:56:02 2024 GMT Not After : Aug 3 10:01:02 2025 GMT Subject: CN=6F7288EF7CE1D157A96D4CBC0806CFBF912577F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:64:29:2b:e8:ba:77:05:19:1d:e8:c0:b8:24: d6:29:f9:6d:46:c7:90:c7:fe:18:47:1e:50:c1:42: 86:5a:ac:fc:0a:20:c5:2d:f7:f0:8b:79:95:7f:04: 0f:86:a3:03:91:76:29:d9:f8:57:6f:6d:33:78:e2: 57:6d:44:35:9a:b1:a6:bf:58:95:9f:1b:27:e6:f4: 2c:48:22:9a:7c:e1:6d:24:96:88:96:ad:1b:9b:51: 71:c1:ce:3d:e1:d3:11:5c:6a:d0:de:c8:0e:4e:7d: 8b:00:dc:19:52:02:7d:2b:35:e3:b6:c6:f6:e6:31: e5:79:66:4d:38:b1:c0:61:ce:55:67:83:07:e8:b3: 30:79:ff:ab:f0:15:91:42:98:04:24:66:c2:37:80: b0:a2:2c:69:ac:74:9c:0b:63:7f:a8:15:ad:aa:c8: fa:fc:6b:de:e8:9b:0d:cf:57:d8:6d:1d:70:07:16: c5:31:45:20:39:f3:6d:30:97:48:c1:76:62:77:95: 6e:6a:0c:09:f1:75:90:85:e0:3a:9e:5b:00:36:75: 58:e5:65:f6:ce:8f:57:b8:32:8c:2b:c2:12:c9:82: 23:f7:50:a0:25:71:cf:44:4b:50:9c:a9:1a:f4:9e: 31:c8:8f:33:7d:a4:c5:9d:aa:36:cf:67:79:d6:95: 12:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:72:88:EF:7C:E1:D1:57:A9:6D:4C:BC:08:06:CF:BF:91:25:77:F2 X509v3 Authority Key Identifier: keyid:58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.98.121.0/24 Signature Algorithm: sha256WithRSAEncryption 51:2e:ec:f4:a2:00:a9:ab:62:40:24:86:71:9f:ad:28:26:20: 21:26:e7:8f:f2:39:a8:15:f1:21:30:71:fa:a8:39:b1:d6:ba: d0:6f:c6:eb:f5:d6:f2:1f:a6:cf:85:f3:f3:60:ec:cd:ef:47: b1:26:91:de:e9:42:62:10:82:9f:68:13:68:62:ac:e7:3e:e0: f0:01:2f:03:57:88:9d:a2:b9:47:e1:97:6d:df:5a:4f:4b:de: cc:13:32:79:17:c6:2b:4b:ef:d8:00:88:5f:4e:93:c3:94:65: e3:51:f2:dd:d8:e8:e3:1a:05:c0:ff:c1:87:16:94:cd:c8:7e: d3:3a:35:c5:65:85:c0:4a:17:b0:82:1e:ea:55:f5:55:41:7b: 8c:c4:93:a2:97:7c:13:68:d7:f5:41:3a:8a:66:16:34:e2:52: 4c:20:57:c4:10:ae:69:66:d2:b0:68:88:e2:44:32:7c:d4:6d: 29:8f:58:d8:5f:27:22:cc:ac:47:ca:fe:76:9d:aa:12:44:ba: e7:1d:5d:f6:ab:34:8f:07:f9:42:45:fc:25:eb:4a:2f:f2:e0: b7:c3:a1:54:ea:18:aa:ed:2c:b0:58:f4:53:49:60:e4:22:8a: d7:7c:ed:cf:a5:c3:63:6b:9c:fc:de:57:7c:44:21:e4:bd:b8: da:02:3f:f8 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUdJidw5Gd9BirY3EaoSOsyVFYPdkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYy QjBCMENFRDAeFw0yNDA4MDQwOTU2MDJaFw0yNTA4MDMxMDAxMDJaMDMxMTAvBgNV BAMTKDZGNzI4OEVGN0NFMUQxNTdBOTZENENCQzA4MDZDRkJGOTEyNTc3RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyZCkr6Lp3BRkd6MC4JNYp+W1G x5DH/hhHHlDBQoZarPwKIMUt9/CLeZV/BA+GowORdinZ+FdvbTN44ldtRDWasaa/ WJWfGyfm9CxIIpp84W0kloiWrRubUXHBzj3h0xFcatDeyA5OfYsA3BlSAn0rNeO2 xvbmMeV5Zk04scBhzlVngwfoszB5/6vwFZFCmAQkZsI3gLCiLGmsdJwLY3+oFa2q yPr8a97omw3PV9htHXAHFsUxRSA5820wl0jBdmJ3lW5qDAnxdZCF4DqeWwA2dVjl ZfbOj1e4MowrwhLJgiP3UKAlcc9ES1CcqRr0njHIjzN9pMWdqjbPZ3nWlRJFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUb3KI73zh0VepbUy8CAbPv5Eld/IwHwYDVR0j BBgwFoAUWNei4FTU9rg1V4AxOGiWBisLDO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWJiYWRiMy05YWM4LTQ2ZGYtYWI5MS1iZjM5ZGZlZTFiZDAvMC81OEQ3QTJFMDU0 RDRGNkI4MzU1NzgwMzEzODY4OTYwNjJCMEIwQ0VELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYyQjBC MENFRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlYmJhZGIzLTlhYzgtNDZkZi1h YjkxLWJmMzlkZmVlMWJkMC8wLzMxMzAzMzJlMzkzODJlMzEzMjMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM1MzYzMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2J5MA0GCSqG SIb3DQEBCwUAA4IBAQBRLuz0ogCpq2JAJIZxn60oJiAhJueP8jmoFfEhMHH6qDmx 1rrQb8br9dbyH6bPhfPzYOzN70exJpHe6UJiEIKfaBNoYqznPuDwAS8DV4idorlH 4Zdt31pPS97MEzJ5F8YrS+/YAIhfTpPDlGXjUfLd2OjjGgXA/8GHFpTNyH7TOjXF ZYXAShewgh7qVfVVQXuMxJOil3wTaNf1QTqKZhY04lJMIFfEEK5pZtKwaIjiRDJ8 1G0pj1jYXycizKxHyv52naoSRLrnHV32qzSPB/lCRfwl60ov8uC3w6FU6hiq7Syw WPRTSWDkIorXfO3PpcNja5z83ld8RCHkvbjaAj/4 -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:33 2024 by rpki-client on console-ams.rpki-client.org