$ rpki-client -vvf repo-rpki.idnic.net/repo/73fe4255-1d91-4fcc-bce4-8a42adfe3c29/0/3130332e3133392e32352e302f32342d3234203d3e20313338383738.roa File: 3130332e3133392e32352e302f32342d3234203d3e20313338383738.roa (raw, json) Hash identifier: RYbwzoZNVEeCPZF43gFAZgtRg296MShKXDHjj7JKutI= Subject key identifier: D3:40:49:6E:DD:53:A5:02:D5:A5:87:02:C9:39:0C:19:5A:A9:A5:AA Certificate issuer: /CN=EC39D766063B56E5EA4DBFB2A502298FB995956A Certificate serial: 6B2DDE693B6209FA9E9BD09272EDC451AAFF583D Authority key identifier: EC:39:D7:66:06:3B:56:E5:EA:4D:BF:B2:A5:02:29:8F:B9:95:95:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC39D766063B56E5EA4DBFB2A502298FB995956A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73fe4255-1d91-4fcc-bce4-8a42adfe3c29/0/3130332e3133392e32352e302f32342d3234203d3e20313338383738.roa Signing time: Mon 01 Jul 2024 01:02:30 +0000 ROA not before: Mon 01 Jul 2024 00:57:30 +0000 ROA not after: Mon 30 Jun 2025 01:02:30 +0000 asID: 138878 IP address blocks: 103.139.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73fe4255-1d91-4fcc-bce4-8a42adfe3c29/0/EC39D766063B56E5EA4DBFB2A502298FB995956A.crl rsync://repo-rpki.idnic.net/repo/73fe4255-1d91-4fcc-bce4-8a42adfe3c29/0/EC39D766063B56E5EA4DBFB2A502298FB995956A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC39D766063B56E5EA4DBFB2A502298FB995956A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:2d:de:69:3b:62:09:fa:9e:9b:d0:92:72:ed:c4:51:aa:ff:58:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EC39D766063B56E5EA4DBFB2A502298FB995956A Validity Not Before: Jul 1 00:57:30 2024 GMT Not After : Jun 30 01:02:30 2025 GMT Subject: CN=D340496EDD53A502D5A58702C9390C195AA9A5AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:46:54:5a:c0:05:2f:9e:fc:30:26:8d:6c:be: 2b:25:9b:83:8b:b8:89:b1:e5:81:28:4f:82:ba:d6: a1:1d:4b:40:89:68:72:61:e4:d8:5a:62:f1:ed:ef: 1f:b5:c8:56:bf:7c:ce:f5:19:cc:5a:16:d6:f4:38: d6:a6:26:cc:2c:b6:4f:df:05:35:ed:47:15:af:32: 56:ca:69:c2:6e:a6:5f:da:d2:71:29:25:10:b0:61: 5b:7c:cc:87:d6:9c:d8:a9:6f:77:d6:14:03:12:1a: dd:52:5e:64:17:d0:c3:21:a1:92:cd:7f:08:26:97: 25:80:d8:c9:af:89:c4:d8:41:68:ef:c8:89:d1:6a: 0d:76:a0:35:0b:82:d1:7d:e0:a0:17:c2:ec:65:1d: 52:02:fa:0a:c6:46:1c:e2:a1:87:27:19:de:30:ac: 3e:cf:7f:73:c1:36:73:7a:60:80:ba:59:bc:37:8b: 29:27:34:a1:6f:65:3e:30:f5:b6:8f:d7:3a:66:a8: 1a:a3:05:88:50:13:50:82:df:ab:d8:ed:72:8d:f2: 20:3a:5b:a6:8d:2c:8b:a6:00:0b:47:a3:f0:87:7f: 27:c6:44:97:82:fa:f4:f9:f7:38:6f:9f:47:0e:d6: eb:af:ac:0e:a1:21:aa:00:4b:a1:1f:68:e8:23:d8: 15:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:40:49:6E:DD:53:A5:02:D5:A5:87:02:C9:39:0C:19:5A:A9:A5:AA X509v3 Authority Key Identifier: keyid:EC:39:D7:66:06:3B:56:E5:EA:4D:BF:B2:A5:02:29:8F:B9:95:95:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73fe4255-1d91-4fcc-bce4-8a42adfe3c29/0/EC39D766063B56E5EA4DBFB2A502298FB995956A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/EC39D766063B56E5EA4DBFB2A502298FB995956A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73fe4255-1d91-4fcc-bce4-8a42adfe3c29/0/3130332e3133392e32352e302f32342d3234203d3e20313338383738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.25.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:20:e0:d8:45:f8:6a:70:c2:2e:c0:b4:8f:f9:3b:a1:b0:35: 29:d9:3d:ee:cb:cf:b1:50:61:c5:40:b2:05:35:f3:da:de:cd: 11:40:14:96:32:3c:d0:9b:6b:86:8c:e0:09:32:32:ec:45:52: 81:81:b8:74:d8:99:d1:b4:19:e9:15:9a:49:96:d4:e4:f3:e5: be:13:3e:86:fa:ba:bf:c5:de:f0:47:05:40:d6:54:5a:8f:ea: 81:e9:4c:a4:6f:a9:c9:56:cf:23:8c:24:f5:1e:84:53:d8:8d: 9c:9e:8e:6c:8b:6a:6f:99:0a:a5:3f:1a:d2:b2:06:d8:d4:19: 70:a6:d2:95:8a:32:ed:30:88:1e:c9:36:15:a2:ab:33:e5:6e: 79:8f:51:df:25:e6:dc:b5:81:a9:53:b6:8a:09:cb:68:70:84: 93:a9:99:68:93:1b:ab:0c:04:2d:92:96:07:86:a9:ec:28:f3: 3d:cd:58:9d:f1:d9:16:34:b6:e5:ac:0e:17:cc:b6:e1:e5:c5: d0:67:88:f6:40:d9:1b:5a:0f:e8:32:ee:92:59:ca:c9:cf:9a: d5:16:97:72:b4:7f:be:86:61:a8:e6:88:c6:a7:09:eb:ac:b4: 28:51:34:a0:d6:a9:48:2f:0a:d1:e0:af:1e:1b:7d:38:e9:0c: b0:2b:6b:61 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUay3eaTtiCfqem9CScu3EUar/WD0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUMzOUQ3NjYwNjNCNTZFNUVBNERCRkIyQTUwMjI5OEZC OTk1OTU2QTAeFw0yNDA3MDEwMDU3MzBaFw0yNTA2MzAwMTAyMzBaMDMxMTAvBgNV BAMTKEQzNDA0OTZFREQ1M0E1MDJENUE1ODcwMkM5MzkwQzE5NUFBOUE1QUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDERlRawAUvnvwwJo1svislm4OL uImx5YEoT4K61qEdS0CJaHJh5NhaYvHt7x+1yFa/fM71GcxaFtb0ONamJswstk/f BTXtRxWvMlbKacJupl/a0nEpJRCwYVt8zIfWnNipb3fWFAMSGt1SXmQX0MMhoZLN fwgmlyWA2MmvicTYQWjvyInRag12oDULgtF94KAXwuxlHVIC+grGRhzioYcnGd4w rD7Pf3PBNnN6YIC6Wbw3iyknNKFvZT4w9baP1zpmqBqjBYhQE1CC36vY7XKN8iA6 W6aNLIumAAtHo/CHfyfGRJeC+vT59zhvn0cO1uuvrA6hIaoAS6EfaOgj2BVnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU00BJbt1TpQLVpYcCyTkMGVqppaowHwYDVR0j BBgwFoAU7DnXZgY7VuXqTb+ypQIpj7mVlWowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2ZlNDI1NS0xZDkxLTRmY2MtYmNlNC04YTQyYWRmZTNjMjkvMC9FQzM5RDc2NjA2 M0I1NkU1RUE0REJGQjJBNTAyMjk4RkI5OTU5NTZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRUMzOUQ3NjYwNjNCNTZFNUVBNERCRkIyQTUwMjI5OEZCOTk1 OTU2QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZmU0MjU1LTFkOTEtNGZjYy1i Y2U0LThhNDJhZGZlM2MyOS8wLzMxMzAzMzJlMzEzMzM5MmUzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4sZMA0GCSqG SIb3DQEBCwUAA4IBAQCMIODYRfhqcMIuwLSP+TuhsDUp2T3uy8+xUGHFQLIFNfPa 3s0RQBSWMjzQm2uGjOAJMjLsRVKBgbh02JnRtBnpFZpJltTk8+W+Ez6G+rq/xd7w RwVA1lRaj+qB6Uykb6nJVs8jjCT1HoRT2I2cno5si2pvmQqlPxrSsgbY1BlwptKV ijLtMIgeyTYVoqsz5W55j1HfJebctYGpU7aKCctocISTqZlokxurDAQtkpYHhqns KPM9zVid8dkWNLblrA4XzLbh5cXQZ4j2QNkbWg/oMu6SWcrJz5rVFpdytH++hmGo 5ojGpwnrrLQoUTSg1qlILwrR4K8eG3046QywK2th -----END CERTIFICATE-----Generated at Sun Nov 24 11:34:09 2024 by rpki-client on console-fra.rpki-client.org