$ rpki-client -vvf repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131362e302f32342d3234203d3e20313338313032.roa File: 3130332e3132352e3131362e302f32342d3234203d3e20313338313032.roa (raw, json) Hash identifier: BE++yCjQX47WWB6S5ls0xJdupFNe769usXbGx7dHHBM= Subject key identifier: DD:B1:9F:7E:0E:D1:ED:57:BC:83:08:25:ED:65:D4:9B:06:34:68:D5 Certificate issuer: /CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Certificate serial: 41ECCB561B9D050E1D5030BC1DBC55E1B57F4001 Authority key identifier: 4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131362e302f32342d3234203d3e20313338313032.roa Signing time: Sun 28 Jan 2024 07:52:28 +0000 ROA not before: Sun 28 Jan 2024 07:47:28 +0000 ROA not after: Sun 26 Jan 2025 07:52:28 +0000 asID: 138102 IP address blocks: 103.125.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:ec:cb:56:1b:9d:05:0e:1d:50:30:bc:1d:bc:55:e1:b5:7f:40:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Validity Not Before: Jan 28 07:47:28 2024 GMT Not After : Jan 26 07:52:28 2025 GMT Subject: CN=DDB19F7E0ED1ED57BC830825ED65D49B063468D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:4d:ea:e2:47:c5:97:be:65:d4:7a:fd:8d:d6: 0e:83:47:4a:77:d9:65:9b:0c:f9:4d:53:81:cc:40: c9:56:3a:ef:c1:65:da:d2:b6:2f:9b:f9:dd:1f:0a: 8d:47:d0:48:77:a1:5d:2f:f5:e0:fe:58:5f:54:0b: de:aa:47:3d:dc:56:3a:95:51:56:70:8e:84:9d:3a: 1f:94:1d:5c:14:72:56:67:e3:be:a5:26:ff:42:92: 10:1d:d2:88:77:11:96:ba:70:6d:1a:6e:35:00:8d: 80:0a:89:7a:06:76:de:c6:ad:37:ce:e7:15:34:dd: 57:d0:72:28:cd:e4:ad:4f:ea:0e:bb:51:b7:01:23: 90:74:2c:d3:39:83:38:43:0f:e9:34:70:5f:70:f4: 13:f5:3b:00:1f:ab:57:89:df:0c:49:bc:b6:20:32: b0:81:6a:f9:6a:fe:3f:f1:03:d0:39:d4:e9:31:50: 67:8f:98:3e:eb:9c:98:9a:65:c8:69:50:f6:14:86: bc:0e:4c:26:a2:c3:d7:a7:6c:fc:a8:e4:b0:7d:97: 4f:3a:8a:ba:0f:f5:93:87:91:c7:c9:8b:f5:2a:f6: da:07:c9:e2:2a:39:8d:fd:63:7e:08:11:71:60:38: 05:40:fc:8f:70:c4:ca:54:ee:2a:e5:16:83:55:f2: a9:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:B1:9F:7E:0E:D1:ED:57:BC:83:08:25:ED:65:D4:9B:06:34:68:D5 X509v3 Authority Key Identifier: keyid:4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131362e302f32342d3234203d3e20313338313032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.116.0/24 Signature Algorithm: sha256WithRSAEncryption 89:64:c5:7e:f3:5c:e8:26:a1:58:99:1b:d4:4f:a4:3d:49:b0: be:65:3e:ca:48:5f:85:e3:70:60:dd:ca:b9:06:30:6c:92:b5: fe:95:16:d3:20:f5:4c:4b:95:79:9f:31:97:5d:3f:5f:e8:f3: 39:85:ad:3f:2d:0a:eb:99:2a:d9:df:8f:ad:08:78:61:0a:8f: a8:8f:5b:6a:8e:f5:fe:7b:94:c1:d8:f9:78:7d:a1:83:d3:8f: 2f:7e:d6:43:0b:21:ca:29:7b:e9:a1:63:c6:dd:8a:7c:38:9a: b3:f8:3d:7a:76:1b:68:9a:31:75:5a:81:a6:3e:7b:99:f4:db: 62:a2:b5:e0:2c:73:4a:9b:05:ff:06:2f:df:cd:64:c2:95:91: 50:8e:69:4c:7c:8b:15:9d:be:59:15:a1:7c:27:70:f8:d7:ae: 73:57:94:fe:5e:6a:d6:f7:39:19:0a:fd:e9:96:15:e8:83:8f: 10:c0:7d:f9:3f:0e:f3:e1:ef:6b:51:43:55:ec:04:dd:11:6d: 4a:cb:74:b0:f1:dd:43:b4:c1:56:f0:8d:c6:b0:94:19:9c:42: ef:18:65:35:e4:37:03:e4:c0:ae:f6:a4:64:b8:cd:d4:47:7d: 80:84:92:f6:7c:1f:ad:5d:5c:34:a5:46:ff:cb:da:e9:8d:28: 78:99:cd:62 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQezLVhudBQ4dUDC8HbxV4bV/QAEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNF RTZBRDFGOTAeFw0yNDAxMjgwNzQ3MjhaFw0yNTAxMjYwNzUyMjhaMDMxMTAvBgNV BAMTKEREQjE5RjdFMEVEMUVENTdCQzgzMDgyNUVENjVENDlCMDYzNDY4RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD9TeriR8WXvmXUev2N1g6DR0p3 2WWbDPlNU4HMQMlWOu/BZdrSti+b+d0fCo1H0Eh3oV0v9eD+WF9UC96qRz3cVjqV UVZwjoSdOh+UHVwUclZn476lJv9CkhAd0oh3EZa6cG0abjUAjYAKiXoGdt7GrTfO 5xU03VfQcijN5K1P6g67UbcBI5B0LNM5gzhDD+k0cF9w9BP1OwAfq1eJ3wxJvLYg MrCBavlq/j/xA9A51OkxUGePmD7rnJiaZchpUPYUhrwOTCaiw9enbPyo5LB9l086 iroP9ZOHkcfJi/Uq9toHyeIqOY39Y34IEXFgOAVA/I9wxMpU7irlFoNV8qmtAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU3bGffg7R7Ve8gwgl7WXUmwY0aNUwHwYDVR0j BBgwFoAUTe+92YVL6NHij3MwoLgCw+5q0fkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MGRlMjMxZi1mYjhhLTQyN2EtYWEzNi0wYTNmYzk3MjMyOGQvMC80REVGQkREOTg1 NEJFOEQxRTI4RjczMzBBMEI4MDJDM0VFNkFEMUY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNFRTZB RDFGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwZGUyMzFmLWZiOGEtNDI3YS1h YTM2LTBhM2ZjOTcyMzI4ZC8wLzMxMzAzMzJlMzEzMjM1MmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMwMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfXQwDQYJ KoZIhvcNAQELBQADggEBAIlkxX7zXOgmoViZG9RPpD1JsL5lPspIX4XjcGDdyrkG MGyStf6VFtMg9UxLlXmfMZddP1/o8zmFrT8tCuuZKtnfj60IeGEKj6iPW2qO9f57 lMHY+Xh9oYPTjy9+1kMLIcope+mhY8bdinw4mrP4PXp2G2iaMXVagaY+e5n022Ki teAsc0qbBf8GL9/NZMKVkVCOaUx8ixWdvlkVoXwncPjXrnNXlP5eatb3ORkK/emW FeiDjxDAffk/DvPh72tRQ1XsBN0RbUrLdLDx3UO0wVbwjcawlBmcQu8YZTXkNwPk wK72pGS4zdRHfYCEkvZ8H61dXDSlRv/L2umNKHiZzWI= -----END CERTIFICATE-----Generated at Sun Nov 24 09:53:16 2024 by rpki-client on console-ams.rpki-client.org