$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3130332e3132312e3233382e302f32332d3234203d3e2039333431.roa File: 3130332e3132312e3233382e302f32332d3234203d3e2039333431.roa (raw, json) Hash identifier: /H32ivkGhEOhEC1fzokWHl04RPxu7gq5eZq95bhlZ0M= Subject key identifier: 14:C6:E4:5F:28:12:82:9D:E6:43:FA:04:2F:13:8D:F0:CF:C0:B5:55 Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 415171AEC11A28D90176A4EA9130446690D97901 Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3130332e3132312e3233382e302f32332d3234203d3e2039333431.roa Signing time: Mon 16 Sep 2024 05:00:02 +0000 ROA not before: Mon 16 Sep 2024 04:55:02 +0000 ROA not after: Mon 15 Sep 2025 05:00:02 +0000 asID: 9341 IP address blocks: 103.121.238.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:51:71:ae:c1:1a:28:d9:01:76:a4:ea:91:30:44:66:90:d9:79:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Sep 16 04:55:02 2024 GMT Not After : Sep 15 05:00:02 2025 GMT Subject: CN=14C6E45F2812829DE643FA042F138DF0CFC0B555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b5:ee:21:7d:ed:60:84:9d:f1:f5:32:2b:3b: ed:a2:2a:28:9d:e3:26:2e:47:d0:0e:52:0a:59:2d: 9d:1b:d4:0e:0f:9e:10:50:d4:05:46:bf:e6:e4:49: 5a:8d:14:e0:a6:d8:cf:55:79:e5:fa:7a:51:09:6c: 87:a4:1f:5f:c9:dc:23:1f:05:aa:4d:ee:b8:b9:d6: d1:c5:bb:38:a9:4b:90:d6:f5:93:27:69:20:ca:f4: 12:b2:40:cf:8c:64:9f:c7:ca:c0:47:d3:69:c8:00: 00:a1:d6:ec:85:a0:a8:01:01:7f:fb:68:ed:90:3a: 7d:f2:57:b9:3c:e6:4d:63:d4:af:89:6e:e1:97:a7: de:90:5f:b3:11:e8:2a:a2:ee:dd:16:05:a6:d6:18: 8e:93:8b:fc:26:8d:2b:40:24:bf:17:17:d1:65:16: dd:b7:4e:2f:51:1e:57:10:83:b8:41:ac:e9:45:9c: b6:0e:2f:d5:67:86:28:90:fd:18:ee:2d:3d:62:5f: bb:3e:0a:ec:c4:10:06:ca:ca:39:ce:22:b8:0e:b4: dd:99:a5:2b:f6:23:e7:e3:26:c9:91:2a:34:6a:6f: 8e:cc:be:ba:ad:89:b3:ed:95:2a:89:01:5c:a2:c1: 28:db:bd:79:17:7b:69:a5:c4:c3:70:15:5d:70:10: ec:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:C6:E4:5F:28:12:82:9D:E6:43:FA:04:2F:13:8D:F0:CF:C0:B5:55 X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3130332e3132312e3233382e302f32332d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.238.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:35:1e:ce:16:61:a0:ad:55:26:c7:48:ba:96:54:5b:1f:6c: e8:fb:1a:1c:fb:e7:91:30:57:0e:99:56:cc:1a:3a:93:8f:49: 86:07:00:f4:fc:25:a8:35:b0:12:5f:b6:97:01:91:40:77:f3: 45:85:49:f9:c2:35:60:64:aa:5a:7d:db:3c:54:bf:75:c9:87: e6:d3:2c:42:f5:c3:13:b6:79:e9:50:d8:3b:c5:cc:b3:8e:d8: 64:3b:32:98:06:ea:69:13:24:06:70:5e:24:fe:33:b9:8b:14: 2f:02:97:6c:a1:8e:e9:bc:37:86:46:3e:68:73:a9:07:53:57: d0:19:89:cc:22:fc:47:d7:f3:21:ab:46:76:9c:f2:17:f5:af: cc:3c:b6:07:75:16:1c:9a:65:9a:8d:6d:7c:44:b3:fb:8e:53: d2:6d:5d:ca:0e:5f:f0:61:55:1c:bb:11:42:b3:1f:b8:09:20: 40:03:d7:b3:d6:ca:e9:f3:8a:3a:00:96:5a:df:b1:99:ec:c8: 07:b3:0d:6b:06:f4:cd:b2:56:67:f0:bd:1e:b8:0c:34:3f:ca: 53:45:c4:5b:53:db:de:4a:06:fc:80:7d:66:cb:c3:55:a8:62: bf:fc:04:51:3a:d5:0c:31:4e:1c:32:d3:a2:f7:46:b9:39:ea: bd:4e:bd:d4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQVFxrsEaKNkBdqTqkTBEZpDZeQEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNDA5MTYwNDU1MDJaFw0yNTA5MTUwNTAwMDJaMDMxMTAvBgNV BAMTKDE0QzZFNDVGMjgxMjgyOURFNjQzRkEwNDJGMTM4REYwQ0ZDMEI1NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcte4hfe1ghJ3x9TIrO+2iKiid 4yYuR9AOUgpZLZ0b1A4PnhBQ1AVGv+bkSVqNFOCm2M9VeeX6elEJbIekH1/J3CMf BapN7ri51tHFuzipS5DW9ZMnaSDK9BKyQM+MZJ/HysBH02nIAACh1uyFoKgBAX/7 aO2QOn3yV7k85k1j1K+JbuGXp96QX7MR6Cqi7t0WBabWGI6Ti/wmjStAJL8XF9Fl Ft23Ti9RHlcQg7hBrOlFnLYOL9VnhiiQ/RjuLT1iX7s+CuzEEAbKyjnOIrgOtN2Z pSv2I+fjJsmRKjRqb47MvrqtibPtlSqJAVyiwSjbvXkXe2mlxMNwFV1wEOyHAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUFMbkXygSgp3mQ/oELxON8M/AtVUwHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzMxMzAzMzJlMzEzMjMxMmUzMjMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWd57jANBgkqhkiG 9w0BAQsFAAOCAQEAXTUezhZhoK1VJsdIupZUWx9s6PsaHPvnkTBXDplWzBo6k49J hgcA9PwlqDWwEl+2lwGRQHfzRYVJ+cI1YGSqWn3bPFS/dcmH5tMsQvXDE7Z56VDY O8XMs47YZDsymAbqaRMkBnBeJP4zuYsULwKXbKGO6bw3hkY+aHOpB1NX0BmJzCL8 R9fzIatGdpzyF/WvzDy2B3UWHJplmo1tfESz+45T0m1dyg5f8GFVHLsRQrMfuAkg QAPXs9bK6fOKOgCWWt+xmezIB7MNawb0zbJWZ/C9HrgMND/KU0XEW1Pb3koG/IB9 ZsvDVahiv/wEUTrVDDFOHDLTovdGuTnqvU691A== -----END CERTIFICATE-----Generated at Thu Nov 21 01:24:17 2024 by rpki-client on console-ams.rpki-client.org