$ rpki-client -vvf repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131372e302f32342d3234203d3e20313338313032.roa File: 3130332e3132352e3131372e302f32342d3234203d3e20313338313032.roa (raw, json) Hash identifier: lpfns/g/H9K8Wfv1chRemKmhS+d6ZGfM1lGRlJ6bBVk= Subject key identifier: 92:7F:76:3D:DD:16:D6:43:1C:54:13:58:EB:99:40:FF:D6:9E:DC:11 Certificate issuer: /CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Certificate serial: 6EB9BD87691418472CB9F57B8D6761C0A9D26EF3 Authority key identifier: 4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131372e302f32342d3234203d3e20313338313032.roa Signing time: Sun 28 Jan 2024 07:52:46 +0000 ROA not before: Sun 28 Jan 2024 07:47:46 +0000 ROA not after: Sun 26 Jan 2025 07:52:46 +0000 asID: 138102 IP address blocks: 103.125.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:b9:bd:87:69:14:18:47:2c:b9:f5:7b:8d:67:61:c0:a9:d2:6e:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Validity Not Before: Jan 28 07:47:46 2024 GMT Not After : Jan 26 07:52:46 2025 GMT Subject: CN=927F763DDD16D6431C541358EB9940FFD69EDC11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9b:5a:c8:58:ba:13:c6:f8:9a:d5:eb:07:10: 08:42:80:ee:89:0b:ad:88:11:d9:a3:30:a0:46:33: 02:90:d7:c0:5b:16:db:2a:44:6d:72:3d:e7:01:0c: 69:50:53:85:08:5a:b6:cc:7a:cf:6c:d7:82:07:e1: 44:dc:bb:cd:9b:78:79:f4:e6:3c:80:dc:94:0a:39: f4:4e:66:a7:ad:c5:09:eb:ea:66:47:3a:85:a8:4e: d7:28:42:6d:4f:ef:1a:16:e4:20:25:b5:da:1e:c4: 24:90:a7:c1:68:f5:83:8a:f8:00:52:9b:a3:86:af: d3:d2:ca:23:8f:ab:bd:d9:14:3a:57:b1:cd:16:12: a8:0a:ba:ac:5b:a0:ad:48:8e:bd:58:b2:7b:06:f1: f5:1f:f5:4c:a9:27:b7:b6:2a:66:a3:50:2e:6a:f7: 36:89:4f:71:e5:dd:1e:3d:aa:1c:8d:c0:bc:d9:a5: 93:0b:a3:58:c3:16:f0:70:d5:e7:4d:e6:61:c8:a0: 8c:dc:47:42:27:87:4f:78:a8:93:c3:ed:e3:60:d6: 1a:5f:49:34:a0:73:5a:0c:a5:e6:59:92:b5:de:df: c2:e9:02:f8:09:05:e9:59:46:30:7b:56:21:8b:e5: 9f:c5:a4:bf:ec:d6:e2:16:51:4f:1c:07:ba:10:ec: 5e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:7F:76:3D:DD:16:D6:43:1C:54:13:58:EB:99:40:FF:D6:9E:DC:11 X509v3 Authority Key Identifier: keyid:4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131372e302f32342d3234203d3e20313338313032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.117.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:6c:88:a4:73:8f:b4:64:20:a9:63:31:5e:1f:c4:1f:58:16: 69:82:ac:57:78:f0:56:be:f9:43:aa:df:e3:8e:f0:3e:c6:33: 07:19:fe:a6:19:f2:1e:29:33:85:10:9c:f5:c5:d2:9c:3f:2e: 4c:57:7f:2e:f0:60:59:cb:f6:f3:88:99:a1:ed:46:a5:ac:41: de:ae:72:f5:0f:bd:f8:c5:35:26:0f:5c:dc:55:ae:93:d0:cc: c6:cd:5b:52:85:aa:ff:e3:be:5a:0f:b8:f7:ac:f5:be:2b:c5: 11:c7:b8:9f:fd:c8:53:47:51:72:0e:a5:8e:b7:20:38:32:13: 39:4f:51:a6:56:7c:26:75:8e:23:1e:ba:4b:b1:9d:b2:4a:1a: 2a:31:36:a7:3c:df:21:ec:5a:ce:8c:ee:a5:07:33:f9:13:0f: f0:0f:73:e1:f5:b5:12:0d:04:f7:0d:97:52:5d:2f:84:7f:ca: 2d:9c:14:0b:48:fd:5e:af:77:6f:36:53:e9:de:0b:3b:7b:ac: 6d:3b:25:4e:1f:3a:fd:9a:94:47:b8:72:0d:d0:c2:95:49:ec: 21:15:8b:bb:d6:b1:72:aa:9b:d3:ad:13:5b:71:f3:5a:7d:78: 82:75:d6:d3:4a:e9:4f:b7:15:63:e7:4d:90:ce:18:a8:f2:26: 39:e0:fb:23 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUbrm9h2kUGEcsufV7jWdhwKnSbvMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNF RTZBRDFGOTAeFw0yNDAxMjgwNzQ3NDZaFw0yNTAxMjYwNzUyNDZaMDMxMTAvBgNV BAMTKDkyN0Y3NjNEREQxNkQ2NDMxQzU0MTM1OEVCOTk0MEZGRDY5RURDMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBm1rIWLoTxvia1esHEAhCgO6J C62IEdmjMKBGMwKQ18BbFtsqRG1yPecBDGlQU4UIWrbMes9s14IH4UTcu82beHn0 5jyA3JQKOfROZqetxQnr6mZHOoWoTtcoQm1P7xoW5CAltdoexCSQp8Fo9YOK+ABS m6OGr9PSyiOPq73ZFDpXsc0WEqgKuqxboK1Ijr1YsnsG8fUf9UypJ7e2KmajUC5q 9zaJT3Hl3R49qhyNwLzZpZMLo1jDFvBw1edN5mHIoIzcR0Inh094qJPD7eNg1hpf STSgc1oMpeZZkrXe38LpAvgJBelZRjB7ViGL5Z/FpL/s1uIWUU8cB7oQ7F4LAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUkn92Pd0W1kMcVBNY65lA/9ae3BEwHwYDVR0j BBgwFoAUTe+92YVL6NHij3MwoLgCw+5q0fkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MGRlMjMxZi1mYjhhLTQyN2EtYWEzNi0wYTNmYzk3MjMyOGQvMC80REVGQkREOTg1 NEJFOEQxRTI4RjczMzBBMEI4MDJDM0VFNkFEMUY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNFRTZB RDFGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwZGUyMzFmLWZiOGEtNDI3YS1h YTM2LTBhM2ZjOTcyMzI4ZC8wLzMxMzAzMzJlMzEzMjM1MmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMwMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfXUwDQYJ KoZIhvcNAQELBQADggEBAItsiKRzj7RkIKljMV4fxB9YFmmCrFd48Fa++UOq3+OO 8D7GMwcZ/qYZ8h4pM4UQnPXF0pw/LkxXfy7wYFnL9vOImaHtRqWsQd6ucvUPvfjF NSYPXNxVrpPQzMbNW1KFqv/jvloPuPes9b4rxRHHuJ/9yFNHUXIOpY63IDgyEzlP UaZWfCZ1jiMeukuxnbJKGioxNqc83yHsWs6M7qUHM/kTD/APc+H1tRINBPcNl1Jd L4R/yi2cFAtI/V6vd282U+neCzt7rG07JU4fOv2alEe4cg3QwpVJ7CEVi7vWsXKq m9OtE1tx81p9eIJ11tNK6U+3FWPnTZDOGKjyJjng+yM= -----END CERTIFICATE-----Generated at Sun Nov 24 09:53:16 2024 by rpki-client on console-ams.rpki-client.org