$ rpki-client -vvf repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/3130332e3132342e3234362e302f32342d3234203d3e20313338303930.roa File: 3130332e3132342e3234362e302f32342d3234203d3e20313338303930.roa (raw, json) Hash identifier: tL7JMGabfzkzoTYNe8QZJWOm8ymW7Iqvkst3xH7ajDk= Subject key identifier: 2E:F6:4D:AE:7D:A6:B4:2E:FB:F2:D6:B5:84:C0:3F:AF:70:3A:45:F4 Certificate issuer: /CN=9D25181C9096851A77EB95DA55649E08E3B7941B Certificate serial: 794C2F325153889352F939AAF4006E23F01CF192 Authority key identifier: 9D:25:18:1C:90:96:85:1A:77:EB:95:DA:55:64:9E:08:E3:B7:94:1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9D25181C9096851A77EB95DA55649E08E3B7941B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/3130332e3132342e3234362e302f32342d3234203d3e20313338303930.roa Signing time: Thu 02 May 2024 01:00:01 +0000 ROA not before: Thu 02 May 2024 00:55:01 +0000 ROA not after: Thu 01 May 2025 01:00:01 +0000 asID: 138090 IP address blocks: 103.124.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/9D25181C9096851A77EB95DA55649E08E3B7941B.crl rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/9D25181C9096851A77EB95DA55649E08E3B7941B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9D25181C9096851A77EB95DA55649E08E3B7941B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:4c:2f:32:51:53:88:93:52:f9:39:aa:f4:00:6e:23:f0:1c:f1:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D25181C9096851A77EB95DA55649E08E3B7941B Validity Not Before: May 2 00:55:01 2024 GMT Not After : May 1 01:00:01 2025 GMT Subject: CN=2EF64DAE7DA6B42EFBF2D6B584C03FAF703A45F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:cd:54:d6:2e:60:e3:b6:10:12:af:54:e8:e3: a3:c5:0f:21:39:40:d9:7d:11:1e:3f:5d:a2:28:b1: 80:fd:98:b6:13:ee:e8:35:ce:0f:45:50:3d:82:22: 93:0d:37:9d:f0:f2:ff:dd:b8:6d:8d:a6:f9:f8:c0: 09:42:a2:24:7d:cb:9a:6d:fb:f3:6e:c3:6d:82:20: ae:06:9a:e5:a4:9a:e6:9c:ae:78:8a:84:a5:8c:b0: 60:4a:73:64:56:c8:7e:55:1c:26:a1:1d:4f:e7:e8: 52:99:b0:ed:80:20:e3:c2:e2:fe:b1:e1:30:c4:2d: 4f:79:75:02:76:2c:76:fc:6f:99:68:bf:c9:8b:68: 12:70:af:52:90:ee:c0:81:4e:13:02:1b:a9:53:8c: d2:b4:6f:03:12:de:f5:9f:39:3a:b9:4f:08:c0:ae: 98:fe:4e:9a:bb:72:45:c8:27:d2:08:f1:65:75:e2: 4b:ff:22:f4:f8:64:eb:cf:15:52:15:29:bf:65:01: 09:6c:7b:3d:61:04:91:26:13:3c:21:8c:59:9e:4b: 7a:63:0d:df:79:16:b7:8e:c7:d7:ae:99:40:a8:b3: 03:c9:b2:d2:ff:13:99:0e:1e:66:69:36:7d:64:cc: 5d:3e:9b:5e:eb:4b:7a:f9:90:21:91:15:79:f5:1b: af:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:F6:4D:AE:7D:A6:B4:2E:FB:F2:D6:B5:84:C0:3F:AF:70:3A:45:F4 X509v3 Authority Key Identifier: keyid:9D:25:18:1C:90:96:85:1A:77:EB:95:DA:55:64:9E:08:E3:B7:94:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/9D25181C9096851A77EB95DA55649E08E3B7941B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9D25181C9096851A77EB95DA55649E08E3B7941B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/3130332e3132342e3234362e302f32342d3234203d3e20313338303930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.246.0/24 Signature Algorithm: sha256WithRSAEncryption 84:a6:bf:97:99:4a:82:5a:42:ee:db:c6:b1:f8:2f:b2:84:93: fe:50:bb:76:66:7b:b8:48:a2:af:5e:64:92:96:a5:cf:7a:d4: 3b:84:68:8a:7e:4f:fc:1d:c6:db:d0:a9:5b:73:58:7b:4b:e4: 12:b1:95:b3:75:37:b8:04:d9:5e:d1:60:be:2d:e0:ba:ed:5a: cd:26:a7:4b:ad:e8:2d:d7:ef:24:2c:f5:9f:4c:71:52:12:5b: 0d:ed:00:98:22:d7:03:9a:96:7a:f6:6c:6c:e3:75:e6:4e:51: 86:56:01:8c:6b:6e:b9:f8:25:67:22:09:57:cd:62:cc:76:84: 5d:de:3e:55:00:67:e7:90:fa:64:cf:30:d5:24:29:5a:f8:ee: e9:1c:bb:9e:7d:35:fc:bd:07:35:5b:6e:37:fa:6e:d7:59:75: df:63:03:ed:76:4c:11:c8:72:d1:4b:5e:97:0a:a3:be:ef:09: b5:79:22:f5:09:be:00:4c:8e:db:e1:ec:6a:12:25:b9:5d:a9: 3a:4d:1e:5b:72:92:b4:e4:28:9a:06:78:e1:ce:0e:08:5e:d6: 8a:25:52:39:ba:2d:89:07:4f:03:83:60:a9:c3:92:2d:10:58: ee:94:0c:83:ab:24:d0:da:2d:5f:a3:18:45:2d:63:b8:2b:39: 12:94:ab:be -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeUwvMlFTiJNS+Tmq9ABuI/Ac8ZIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQyNTE4MUM5MDk2ODUxQTc3RUI5NURBNTU2NDlFMDhF M0I3OTQxQjAeFw0yNDA1MDIwMDU1MDFaFw0yNTA1MDEwMTAwMDFaMDMxMTAvBgNV BAMTKDJFRjY0REFFN0RBNkI0MkVGQkYyRDZCNTg0QzAzRkFGNzAzQTQ1RjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfzVTWLmDjthASr1To46PFDyE5 QNl9ER4/XaIosYD9mLYT7ug1zg9FUD2CIpMNN53w8v/duG2Npvn4wAlCoiR9y5pt +/Nuw22CIK4GmuWkmuacrniKhKWMsGBKc2RWyH5VHCahHU/n6FKZsO2AIOPC4v6x 4TDELU95dQJ2LHb8b5lov8mLaBJwr1KQ7sCBThMCG6lTjNK0bwMS3vWfOTq5TwjA rpj+Tpq7ckXIJ9II8WV14kv/IvT4ZOvPFVIVKb9lAQlsez1hBJEmEzwhjFmeS3pj Dd95FreOx9eumUCoswPJstL/E5kOHmZpNn1kzF0+m17rS3r5kCGRFXn1G6/RAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQULvZNrn2mtC778ta1hMA/r3A6RfQwHwYDVR0j BBgwFoAUnSUYHJCWhRp365XaVWSeCOO3lBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTJjOTI4NS1jMDlhLTQ1MDYtYTMyMC1mZGExYTA3ZmQ5ZWMvMC85RDI1MTgxQzkw OTY4NTFBNzdFQjk1REE1NTY0OUUwOEUzQjc5NDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUQyNTE4MUM5MDk2ODUxQTc3RUI5NURBNTU2NDlFMDhFM0I3 OTQxQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlMmM5Mjg1LWMwOWEtNDUwNi1h MzIwLWZkYTFhMDdmZDllYy8wLzMxMzAzMzJlMzEzMjM0MmUzMjM0MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM5MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfPYwDQYJ KoZIhvcNAQELBQADggEBAISmv5eZSoJaQu7bxrH4L7KEk/5Qu3Zme7hIoq9eZJKW pc961DuEaIp+T/wdxtvQqVtzWHtL5BKxlbN1N7gE2V7RYL4t4LrtWs0mp0ut6C3X 7yQs9Z9McVISWw3tAJgi1wOalnr2bGzjdeZOUYZWAYxrbrn4JWciCVfNYsx2hF3e PlUAZ+eQ+mTPMNUkKVr47ukcu559Nfy9BzVbbjf6btdZdd9jA+12TBHIctFLXpcK o77vCbV5IvUJvgBMjtvh7GoSJbldqTpNHltykrTkKJoGeOHODghe1oolUjm6LYkH TwODYKnDki0QWO6UDIOrJNDaLV+jGEUtY7grORKUq74= -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:51 2024 by rpki-client on console-ams.rpki-client.org