$ rpki-client -vvf repo-rpki.idnic.net/repo/74714665-c670-451e-bdcb-9074219d55ce/0/3130332e3133392e3132312e302f32342d3234203d3e20313335363336.roa File: 3130332e3133392e3132312e302f32342d3234203d3e20313335363336.roa (raw, json) Hash identifier: Zqi6UNLfRCM6ekHU9BTeaUOG1RDmWvmYYsL2W4SjJOw= Subject key identifier: 9A:CF:04:B9:4C:21:49:D0:AC:5D:C3:B9:3B:21:C2:97:AD:0A:8A:E5 Certificate issuer: /CN=C740DD931883C284135261B25A6958E80CDF63D2 Certificate serial: 43E1814626C3E46B50936B93439E8B1208305109 Authority key identifier: C7:40:DD:93:18:83:C2:84:13:52:61:B2:5A:69:58:E8:0C:DF:63:D2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C740DD931883C284135261B25A6958E80CDF63D2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/74714665-c670-451e-bdcb-9074219d55ce/0/3130332e3133392e3132312e302f32342d3234203d3e20313335363336.roa Signing time: Wed 24 Apr 2024 05:34:01 +0000 ROA not before: Wed 24 Apr 2024 05:29:01 +0000 ROA not after: Wed 23 Apr 2025 05:34:01 +0000 asID: 135636 IP address blocks: 103.139.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/74714665-c670-451e-bdcb-9074219d55ce/0/C740DD931883C284135261B25A6958E80CDF63D2.crl rsync://repo-rpki.idnic.net/repo/74714665-c670-451e-bdcb-9074219d55ce/0/C740DD931883C284135261B25A6958E80CDF63D2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C740DD931883C284135261B25A6958E80CDF63D2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:e1:81:46:26:c3:e4:6b:50:93:6b:93:43:9e:8b:12:08:30:51:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C740DD931883C284135261B25A6958E80CDF63D2 Validity Not Before: Apr 24 05:29:01 2024 GMT Not After : Apr 23 05:34:01 2025 GMT Subject: CN=9ACF04B94C2149D0AC5DC3B93B21C297AD0A8AE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f7:d4:d5:d5:e4:b2:eb:29:6c:60:76:a3:ef: d0:90:89:93:98:d3:50:28:19:38:de:d9:73:9f:98: 67:ca:cd:67:13:e9:4d:29:c4:5f:ed:2e:4e:96:e7: 76:b5:55:a2:5c:13:e5:67:15:f2:dc:76:3b:80:bf: cb:74:8d:25:1d:f5:81:37:7c:fd:19:21:4a:16:0a: 95:00:92:ba:de:01:5c:5c:78:c6:6e:99:e3:02:17: f4:93:3f:c9:82:cb:52:f2:a8:fc:18:c6:0a:5c:dc: 5e:3d:8d:a5:3d:b0:07:a1:cb:46:c4:7e:f4:01:31: 9f:58:7b:43:e5:8e:5b:fb:ca:55:b8:b7:5b:b7:81: 16:c1:7e:39:0f:fc:eb:0e:f5:3a:78:c7:2a:69:6c: cf:e5:30:fa:21:2d:dd:21:09:47:ba:d8:63:9a:3f: fa:a4:59:92:0f:49:63:03:b3:05:dd:61:95:b6:c3: 48:22:86:bb:3d:94:bd:c1:f9:f7:b6:e4:17:9d:cb: 0f:6a:c4:93:44:95:2f:d7:73:d0:e3:04:f4:a1:99: ed:01:3f:76:14:c8:f8:09:ee:e8:20:0d:fa:5d:42: dc:e4:d4:5a:74:d3:ca:c4:28:f3:da:1f:b6:81:ed: b7:c2:d6:e9:a8:18:8f:5c:e4:4f:30:d5:c5:e4:c6: 5a:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:CF:04:B9:4C:21:49:D0:AC:5D:C3:B9:3B:21:C2:97:AD:0A:8A:E5 X509v3 Authority Key Identifier: keyid:C7:40:DD:93:18:83:C2:84:13:52:61:B2:5A:69:58:E8:0C:DF:63:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/74714665-c670-451e-bdcb-9074219d55ce/0/C740DD931883C284135261B25A6958E80CDF63D2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C740DD931883C284135261B25A6958E80CDF63D2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/74714665-c670-451e-bdcb-9074219d55ce/0/3130332e3133392e3132312e302f32342d3234203d3e20313335363336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.121.0/24 Signature Algorithm: sha256WithRSAEncryption 64:65:b9:fa:35:e6:5b:80:28:3f:2c:44:8b:ad:e2:bc:fa:c8: 5a:47:75:5e:7b:c1:42:cc:17:28:27:a8:e4:1e:f4:23:b7:56: c1:a9:2c:37:b6:20:0c:9c:3b:c6:fe:16:a6:db:7b:e5:e3:a2: 7b:67:3c:00:69:f2:94:fb:3f:21:1d:0c:fb:1d:5e:69:bb:b8: b5:10:b5:e3:de:9d:bb:ba:c1:c4:c2:19:08:ae:de:b3:db:c0: c8:c7:f1:27:b7:2e:16:e4:55:6d:e4:f3:e7:a9:9d:c9:56:56: 85:62:24:1c:26:8a:eb:a7:df:62:7f:ab:6f:d4:29:4b:36:f4: a7:d7:b1:f7:3b:c4:74:4c:4f:2e:fb:83:87:50:52:f3:b5:b1: 46:02:a4:d6:f4:8c:ea:34:c5:31:b5:71:76:53:de:ed:d3:d6: ed:a8:84:d8:48:dd:e6:b3:e0:e8:85:b0:f4:d8:43:9b:d0:41: d3:29:a9:b1:ae:1c:72:37:07:04:3e:04:de:fc:e0:a9:ba:73: c4:c1:cc:03:90:72:59:33:38:ca:9f:96:b0:b7:57:dc:7f:aa: c4:a1:74:34:4a:81:3e:e8:23:5a:fa:ed:e1:7d:c8:b3:06:7f: 7c:d2:c5:2c:a4:f5:3e:7e:50:7c:41:c6:0f:d3:53:06:b1:d3: 91:f4:5a:71 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQ+GBRibD5GtQk2uTQ56LEggwUQkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzc0MEREOTMxODgzQzI4NDEzNTI2MUIyNUE2OTU4RTgw Q0RGNjNEMjAeFw0yNDA0MjQwNTI5MDFaFw0yNTA0MjMwNTM0MDFaMDMxMTAvBgNV BAMTKDlBQ0YwNEI5NEMyMTQ5RDBBQzVEQzNCOTNCMjFDMjk3QUQwQThBRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC799TV1eSy6ylsYHaj79CQiZOY 01AoGTje2XOfmGfKzWcT6U0pxF/tLk6W53a1VaJcE+VnFfLcdjuAv8t0jSUd9YE3 fP0ZIUoWCpUAkrreAVxceMZumeMCF/STP8mCy1LyqPwYxgpc3F49jaU9sAehy0bE fvQBMZ9Ye0Pljlv7ylW4t1u3gRbBfjkP/OsO9Tp4xyppbM/lMPohLd0hCUe62GOa P/qkWZIPSWMDswXdYZW2w0gihrs9lL3B+fe25Bedyw9qxJNElS/Xc9DjBPShme0B P3YUyPgJ7uggDfpdQtzk1Fp008rEKPPaH7aB7bfC1umoGI9c5E8w1cXkxlrfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUms8EuUwhSdCsXcO5OyHCl60KiuUwHwYDVR0j BBgwFoAUx0DdkxiDwoQTUmGyWmlY6AzfY9IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NDcxNDY2NS1jNjcwLTQ1MWUtYmRjYi05MDc0MjE5ZDU1Y2UvMC9DNzQwREQ5MzE4 ODNDMjg0MTM1MjYxQjI1QTY5NThFODBDREY2M0QyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzc0MEREOTMxODgzQzI4NDEzNTI2MUIyNUE2OTU4RTgwQ0RG NjNEMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc0NzE0NjY1LWM2NzAtNDUxZS1i ZGNiLTkwNzQyMTlkNTVjZS8wLzMxMzAzMzJlMzEzMzM5MmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzUzNjMzMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABni3kwDQYJ KoZIhvcNAQELBQADggEBAGRlufo15luAKD8sRIut4rz6yFpHdV57wULMFygnqOQe 9CO3VsGpLDe2IAycO8b+Fqbbe+XjontnPABp8pT7PyEdDPsdXmm7uLUQtePenbu6 wcTCGQiu3rPbwMjH8Se3LhbkVW3k8+epnclWVoViJBwmiuun32J/q2/UKUs29KfX sfc7xHRMTy77g4dQUvO1sUYCpNb0jOo0xTG1cXZT3u3T1u2ohNhI3eaz4OiFsPTY Q5vQQdMpqbGuHHI3BwQ+BN784Km6c8TBzAOQclkzOMqflrC3V9x/qsShdDRKgT7o I1r67eF9yLMGf3zSxSyk9T5+UHxBxg/TUwax05H0WnE= -----END CERTIFICATE-----Generated at Sat Jun 1 15:52:56 2024 by rpki-client on console-ams.rpki-client.org