$ rpki-client -vvf repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131362e302f32322d3232203d3e20313338313032.roa File: 3130332e3132352e3131362e302f32322d3232203d3e20313338313032.roa (raw, json) Hash identifier: rNIknBN49Czhf1hziOpm6i5yxwizp3oUDeoDC9vUoKQ= Subject key identifier: AC:DD:38:4E:CD:74:6A:99:AB:49:93:83:39:49:A8:44:22:31:17:DE Certificate issuer: /CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Certificate serial: 4B9759351078D2C0092B7BF7A4F878E1C7AE8F9B Authority key identifier: 4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131362e302f32322d3232203d3e20313338313032.roa Signing time: Sun 28 Jan 2024 06:27:08 +0000 ROA not before: Sun 28 Jan 2024 06:22:08 +0000 ROA not after: Sun 26 Jan 2025 06:27:08 +0000 asID: 138102 IP address blocks: 103.125.116.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:97:59:35:10:78:d2:c0:09:2b:7b:f7:a4:f8:78:e1:c7:ae:8f:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Validity Not Before: Jan 28 06:22:08 2024 GMT Not After : Jan 26 06:27:08 2025 GMT Subject: CN=ACDD384ECD746A99AB4993833949A844223117DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b9:c0:3e:86:dc:0f:ec:f9:71:e9:89:6f:fe: cc:2f:41:4f:41:e5:05:db:43:39:b6:da:66:dc:c0: 8d:1b:2b:4a:a5:57:76:64:91:da:ad:5f:37:c4:97: 94:96:2f:0f:e1:d5:be:3a:86:07:f5:47:c1:cd:6a: cf:42:7d:26:8a:3c:1b:b5:c6:02:29:fd:07:ae:72: 66:9a:4c:4f:44:7e:07:9f:3a:16:ae:ef:11:63:b5: d9:61:1f:90:18:36:c7:bd:57:eb:3f:13:34:75:cd: e6:52:83:ac:1e:93:09:30:13:d2:52:0c:b5:b6:4b: ae:22:8e:bf:81:20:ed:cd:f2:31:4a:27:79:db:6e: ab:53:cd:33:9c:b0:93:01:b3:28:5b:f8:fb:47:f9: 62:79:48:8b:37:c9:b8:30:a4:ad:f2:db:20:ce:3e: 99:8d:71:87:a3:06:6c:b7:f2:3d:07:ab:85:e6:14: 1c:42:af:42:54:b5:2b:d0:9a:0e:b8:a6:9e:79:40: d1:da:41:42:f7:d1:ed:03:39:73:31:73:69:26:c6: 6c:bf:71:39:b5:59:2b:90:72:49:4c:39:bf:b5:ee: 0c:69:2f:b1:b0:44:1a:b2:3c:06:2e:b6:7d:bb:2c: cf:3b:18:c3:0c:5c:d4:e7:57:9e:66:e6:50:03:ce: 07:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:DD:38:4E:CD:74:6A:99:AB:49:93:83:39:49:A8:44:22:31:17:DE X509v3 Authority Key Identifier: keyid:4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131362e302f32322d3232203d3e20313338313032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.116.0/22 Signature Algorithm: sha256WithRSAEncryption 1f:97:3c:8e:35:b3:e3:6b:80:80:52:14:5c:6c:01:7a:39:e4: a1:b3:b8:2b:74:72:a4:19:10:e1:c3:30:60:45:03:9e:fb:58: 5f:d1:cf:bb:ba:09:b1:d3:91:e3:f8:6d:55:9d:9a:19:ef:25: f8:ab:c4:8a:82:52:b1:86:22:ca:61:8c:a8:9a:91:88:47:ae: 56:de:7a:df:30:2d:a6:5a:66:00:c8:2b:88:ce:9b:d0:87:61: 10:75:09:ad:d4:4e:14:62:74:f6:88:38:2d:0c:52:d8:a8:63: 43:48:8b:82:eb:80:c7:c7:21:2a:8b:6e:75:15:11:78:e4:a1: 78:a7:cb:b5:95:ec:3a:29:25:e9:37:39:3c:0e:37:c7:0e:c3: 9d:70:71:9d:72:58:70:f0:e5:5d:6e:fa:ac:b8:32:38:c5:68: 34:3d:4e:43:61:e9:46:2d:85:26:70:01:65:6e:2c:4c:4a:be: c4:ce:23:b9:3a:2c:79:20:5d:98:65:6f:f4:10:e7:94:27:75: a6:51:08:5d:72:7e:e6:2d:77:4e:49:c4:ef:af:77:75:38:41: 2f:d4:a4:4f:d8:ac:fd:71:a2:05:2b:5a:7f:76:f3:13:a0:dc: 17:02:28:87:2f:59:36:b0:c7:da:bb:61:5b:8f:77:bc:23:d5: 70:82:59:64 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUS5dZNRB40sAJK3v3pPh44ceuj5swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNF RTZBRDFGOTAeFw0yNDAxMjgwNjIyMDhaFw0yNTAxMjYwNjI3MDhaMDMxMTAvBgNV BAMTKEFDREQzODRFQ0Q3NDZBOTlBQjQ5OTM4MzM5NDlBODQ0MjIzMTE3REUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZucA+htwP7Plx6Ylv/swvQU9B 5QXbQzm22mbcwI0bK0qlV3ZkkdqtXzfEl5SWLw/h1b46hgf1R8HNas9CfSaKPBu1 xgIp/QeucmaaTE9EfgefOhau7xFjtdlhH5AYNse9V+s/EzR1zeZSg6wekwkwE9JS DLW2S64ijr+BIO3N8jFKJ3nbbqtTzTOcsJMBsyhb+PtH+WJ5SIs3ybgwpK3y2yDO PpmNcYejBmy38j0Hq4XmFBxCr0JUtSvQmg64pp55QNHaQUL30e0DOXMxc2kmxmy/ cTm1WSuQcklMOb+17gxpL7GwRBqyPAYutn27LM87GMMMXNTnV55m5lADzgeJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUrN04Ts10apmrSZODOUmoRCIxF94wHwYDVR0j BBgwFoAUTe+92YVL6NHij3MwoLgCw+5q0fkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MGRlMjMxZi1mYjhhLTQyN2EtYWEzNi0wYTNmYzk3MjMyOGQvMC80REVGQkREOTg1 NEJFOEQxRTI4RjczMzBBMEI4MDJDM0VFNkFEMUY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNFRTZB RDFGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwZGUyMzFmLWZiOGEtNDI3YS1h YTM2LTBhM2ZjOTcyMzI4ZC8wLzMxMzAzMzJlMzEzMjM1MmUzMTMxMzYyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMTMzMzgzMTMwMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnfXQwDQYJ KoZIhvcNAQELBQADggEBAB+XPI41s+NrgIBSFFxsAXo55KGzuCt0cqQZEOHDMGBF A577WF/Rz7u6CbHTkeP4bVWdmhnvJfirxIqCUrGGIsphjKiakYhHrlbeet8wLaZa ZgDIK4jOm9CHYRB1Ca3UThRidPaIOC0MUtioY0NIi4LrgMfHISqLbnUVEXjkoXin y7WV7DopJek3OTwON8cOw51wcZ1yWHDw5V1u+qy4MjjFaDQ9TkNh6UYthSZwAWVu LExKvsTOI7k6LHkgXZhlb/QQ55QndaZRCF1yfuYtd05JxO+vd3U4QS/UpE/YrP1x ogUrWn928xOg3BcCKIcvWTawx9q7YVuPd7wj1XCCWWQ= -----END CERTIFICATE-----Generated at Sun Nov 24 09:53:16 2024 by rpki-client on console-ams.rpki-client.org