$ rpki-client -vvf repo-rpki.idnic.net/repo/864c3155-c8ff-4207-a2dc-51e005530b52/0/3130332e3131392e3133392e302f32342d3234203d3e20313337333831.roa File: 3130332e3131392e3133392e302f32342d3234203d3e20313337333831.roa (raw, json) Hash identifier: Jm3uRMpMN5yC5yJ4j2pyInDh/Hv0GiE+XmN77vqyysU= Subject key identifier: 5A:0D:7A:32:35:96:CC:9E:84:4A:97:7E:72:48:F5:1E:E0:51:41:44 Certificate issuer: /CN=B94F48BCAB6D8B0A28B3955504975C159FAC076A Certificate serial: 2155CC4E96B87B2F1C3318BCEF7D00980B14835A Authority key identifier: B9:4F:48:BC:AB:6D:8B:0A:28:B3:95:55:04:97:5C:15:9F:AC:07:6A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B94F48BCAB6D8B0A28B3955504975C159FAC076A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/864c3155-c8ff-4207-a2dc-51e005530b52/0/3130332e3131392e3133392e302f32342d3234203d3e20313337333831.roa Signing time: Mon 01 Jul 2024 01:06:02 +0000 ROA not before: Mon 01 Jul 2024 01:01:02 +0000 ROA not after: Mon 30 Jun 2025 01:06:02 +0000 asID: 137381 IP address blocks: 103.119.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/864c3155-c8ff-4207-a2dc-51e005530b52/0/B94F48BCAB6D8B0A28B3955504975C159FAC076A.crl rsync://repo-rpki.idnic.net/repo/864c3155-c8ff-4207-a2dc-51e005530b52/0/B94F48BCAB6D8B0A28B3955504975C159FAC076A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B94F48BCAB6D8B0A28B3955504975C159FAC076A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 12:14:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:55:cc:4e:96:b8:7b:2f:1c:33:18:bc:ef:7d:00:98:0b:14:83:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B94F48BCAB6D8B0A28B3955504975C159FAC076A Validity Not Before: Jul 1 01:01:02 2024 GMT Not After : Jun 30 01:06:02 2025 GMT Subject: CN=5A0D7A323596CC9E844A977E7248F51EE0514144 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:be:f6:8c:2b:1a:88:86:09:5a:79:0a:f1:76: ca:d5:8f:6e:6c:2a:ff:a3:67:d4:85:8b:d9:26:dc: e0:c1:d1:b5:cd:f8:98:da:53:64:1f:34:02:20:34: 31:f8:09:3a:c6:92:2f:48:c7:6e:d4:6b:ba:b5:d0: 08:47:91:8c:6f:b9:7d:bc:5e:05:4a:93:35:9b:ae: 7a:db:8a:a4:81:d0:45:09:57:de:f9:cf:67:02:b5: 59:db:a3:aa:40:06:a6:5b:eb:bc:47:13:b4:e8:3c: 23:62:b1:0f:4b:f1:82:53:d6:f1:ab:89:d8:59:ab: 0a:d1:b7:90:08:3a:79:a4:d2:1d:1b:9c:ff:b0:d2: 80:e8:ac:a8:69:05:45:d2:c0:82:35:16:77:ce:8e: 5b:06:40:c5:99:3e:97:ef:bc:e4:20:e1:9a:8b:b2: 8e:66:2c:33:93:df:da:30:43:0b:aa:c1:22:59:82: 6d:ea:6e:14:7b:86:9e:d8:2d:4d:7a:ec:c3:e9:96: bb:cd:79:b6:3d:ba:75:b4:08:af:52:4f:a0:3f:b5: 32:6f:a7:0c:d2:b8:ba:79:b1:34:f0:e4:fa:ab:11: b2:50:83:cf:c1:41:dd:1e:36:96:3d:5d:c7:cd:ac: e8:d0:38:ea:c8:d5:27:9b:bb:82:30:46:d5:20:4d: 0f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:0D:7A:32:35:96:CC:9E:84:4A:97:7E:72:48:F5:1E:E0:51:41:44 X509v3 Authority Key Identifier: keyid:B9:4F:48:BC:AB:6D:8B:0A:28:B3:95:55:04:97:5C:15:9F:AC:07:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/864c3155-c8ff-4207-a2dc-51e005530b52/0/B94F48BCAB6D8B0A28B3955504975C159FAC076A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B94F48BCAB6D8B0A28B3955504975C159FAC076A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/864c3155-c8ff-4207-a2dc-51e005530b52/0/3130332e3131392e3133392e302f32342d3234203d3e20313337333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.139.0/24 Signature Algorithm: sha256WithRSAEncryption 41:b7:60:64:50:d6:cc:80:46:56:03:65:33:4c:61:05:59:40: 9f:30:90:38:8a:05:3d:64:a3:cd:15:c8:74:33:ce:82:32:09: de:7b:40:f5:4c:3b:a3:ea:48:4e:25:23:3d:99:1e:ff:ba:e4: 71:26:1a:ac:02:39:e1:ce:f6:93:e7:a7:fd:3e:1b:39:3d:f8: d7:f6:fd:86:38:33:14:e7:09:b2:5b:db:49:69:54:c0:6c:ac: ed:5f:29:3b:4d:8e:a5:e3:c4:ae:fa:c5:fa:f1:01:59:72:bf: d3:59:b9:7c:eb:0c:34:96:9a:6d:90:85:ad:ab:2d:05:30:23: fa:d3:e0:c6:4f:51:f0:b8:11:ad:b4:f7:20:c2:73:e4:b1:59: 5c:59:3c:36:32:29:ea:29:28:5f:68:d5:45:e4:e7:56:8b:35: b7:bb:41:9d:d5:51:c7:88:aa:75:8b:6a:3f:98:db:cc:f4:a2: 1b:0d:ae:57:39:e6:66:6f:9c:7c:04:b1:04:5e:58:65:43:2c: f1:bd:de:53:66:73:b5:2d:10:76:74:24:7f:c1:87:d0:60:bd: a4:fa:8f:22:05:30:b4:7d:68:f9:45:61:20:19:d5:8f:9d:f7: eb:51:01:5f:aa:08:ec:09:42:91:28:32:7b:7b:01:0d:dd:c4: 43:1c:ad:69 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIVXMTpa4ey8cMxi8730AmAsUg1owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk0RjQ4QkNBQjZEOEIwQTI4QjM5NTU1MDQ5NzVDMTU5 RkFDMDc2QTAeFw0yNDA3MDEwMTAxMDJaFw0yNTA2MzAwMTA2MDJaMDMxMTAvBgNV BAMTKDVBMEQ3QTMyMzU5NkNDOUU4NDRBOTc3RTcyNDhGNTFFRTA1MTQxNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBvvaMKxqIhglaeQrxdsrVj25s Kv+jZ9SFi9km3ODB0bXN+JjaU2QfNAIgNDH4CTrGki9Ix27Ua7q10AhHkYxvuX28 XgVKkzWbrnrbiqSB0EUJV975z2cCtVnbo6pABqZb67xHE7ToPCNisQ9L8YJT1vGr idhZqwrRt5AIOnmk0h0bnP+w0oDorKhpBUXSwII1FnfOjlsGQMWZPpfvvOQg4ZqL so5mLDOT39owQwuqwSJZgm3qbhR7hp7YLU167MPplrvNebY9unW0CK9ST6A/tTJv pwzSuLp5sTTw5PqrEbJQg8/BQd0eNpY9XcfNrOjQOOrI1Sebu4IwRtUgTQ+RAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUWg16MjWWzJ6ESpd+ckj1HuBRQUQwHwYDVR0j BBgwFoAUuU9IvKttiwoos5VVBJdcFZ+sB2owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NjRjMzE1NS1jOGZmLTQyMDctYTJkYy01MWUwMDU1MzBiNTIvMC9COTRGNDhCQ0FC NkQ4QjBBMjhCMzk1NTUwNDk3NUMxNTlGQUMwNzZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjk0RjQ4QkNBQjZEOEIwQTI4QjM5NTU1MDQ5NzVDMTU5RkFD MDc2QS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg2NGMzMTU1LWM4ZmYtNDIwNy1h MmRjLTUxZTAwNTUzMGI1Mi8wLzMxMzAzMzJlMzEzMTM5MmUzMTMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzM4MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnd4swDQYJ KoZIhvcNAQELBQADggEBAEG3YGRQ1syARlYDZTNMYQVZQJ8wkDiKBT1ko80VyHQz zoIyCd57QPVMO6PqSE4lIz2ZHv+65HEmGqwCOeHO9pPnp/0+Gzk9+Nf2/YY4MxTn CbJb20lpVMBsrO1fKTtNjqXjxK76xfrxAVlyv9NZuXzrDDSWmm2Qha2rLQUwI/rT 4MZPUfC4Ea209yDCc+SxWVxZPDYyKeopKF9o1UXk51aLNbe7QZ3VUceIqnWLaj+Y 28z0ohsNrlc55mZvnHwEsQReWGVDLPG93lNmc7UtEHZ0JH/Bh9BgvaT6jyIFMLR9 aPlFYSAZ1Y+d9+tRAV+qCOwJQpEoMnt7AQ3dxEMcrWk= -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:43 2024 by rpki-client on console-fra.rpki-client.org