$ rpki-client -vvf repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131392e302f32342d3234203d3e20313338313032.roa File: 3130332e3132352e3131392e302f32342d3234203d3e20313338313032.roa (raw, json) Hash identifier: 18oVhB2sTi3iocLxX/xcEu6OuCJaTnvrPxNJBGq5PfY= Subject key identifier: 0B:1D:22:68:E4:30:EA:33:8E:63:D5:E7:57:FD:E1:55:BB:8D:FB:81 Certificate issuer: /CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Certificate serial: 1BDCB992599B7A2BC04AB3B66B45BC956AC07F6B Authority key identifier: 4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131392e302f32342d3234203d3e20313338313032.roa Signing time: Sun 28 Jan 2024 07:53:46 +0000 ROA not before: Sun 28 Jan 2024 07:48:46 +0000 ROA not after: Sun 26 Jan 2025 07:53:46 +0000 asID: 138102 IP address blocks: 103.125.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:dc:b9:92:59:9b:7a:2b:c0:4a:b3:b6:6b:45:bc:95:6a:c0:7f:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Validity Not Before: Jan 28 07:48:46 2024 GMT Not After : Jan 26 07:53:46 2025 GMT Subject: CN=0B1D2268E430EA338E63D5E757FDE155BB8DFB81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c4:d4:34:97:3b:90:6f:f3:76:5e:ab:03:87: ed:42:f6:48:84:37:94:2c:fa:c3:cc:b0:6c:d0:bb: 7d:5a:7d:23:90:b1:5f:7e:57:0f:74:94:48:83:75: 19:65:60:a8:60:1c:59:17:8f:d2:94:b0:cb:9b:ea: b8:3f:7c:b4:73:25:24:52:00:dc:4e:b9:3d:ca:33: 51:5a:56:22:aa:c7:f4:36:c4:e4:81:88:a5:3b:32: fe:ed:70:12:2d:4c:44:0f:83:e0:8a:eb:22:a4:96: a8:ac:40:38:ea:ff:19:11:3d:32:0d:16:44:e4:d9: db:ee:2d:d2:54:5e:b9:ff:f6:94:64:79:8f:51:cf: d4:59:d6:01:41:75:47:dd:2e:d3:8d:6c:61:aa:9b: f5:64:5f:fd:f7:2f:f8:ab:29:f9:2d:4d:af:b6:a9: a5:60:37:22:7c:98:7e:91:4e:80:79:f4:13:2c:95: f6:45:07:92:41:6e:54:a8:00:5c:a3:2a:94:78:42: 8d:4a:5a:1e:ad:bf:5f:df:d6:b1:ca:8a:79:15:f9: ee:5f:54:30:41:f6:9f:1c:3b:19:61:33:ed:0a:b3: 88:2c:0c:c5:fd:ab:fe:06:8b:43:ae:51:d8:68:a2: ce:3a:0d:78:37:10:79:49:fb:dc:ab:ce:1c:e6:4c: 52:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:1D:22:68:E4:30:EA:33:8E:63:D5:E7:57:FD:E1:55:BB:8D:FB:81 X509v3 Authority Key Identifier: keyid:4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/3130332e3132352e3131392e302f32342d3234203d3e20313338313032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.119.0/24 Signature Algorithm: sha256WithRSAEncryption 93:76:09:61:75:21:9e:85:f5:23:3e:a3:64:1c:6a:e3:eb:39: 6d:f7:85:8d:7c:6a:c1:af:55:87:8f:70:a0:2a:bb:07:72:7c: 22:76:20:be:6a:5e:cb:96:e9:fa:1d:8e:ae:44:39:3a:06:1a: 2e:a7:36:31:cb:c4:d8:14:d9:f9:5e:f2:a7:7c:f1:c4:b3:ca: e2:e2:e3:fb:d2:1f:e0:69:73:4b:2f:6b:b5:c0:ee:ff:78:5f: 96:1c:46:41:a8:26:a3:53:ce:a6:1c:68:c2:14:83:38:49:03: 41:2c:75:fc:34:b8:5d:fc:74:3f:e8:0f:04:f0:9c:ce:1b:e6: 7b:a9:52:e9:7e:e9:d3:16:e0:cc:fc:7e:fb:9c:e7:ab:7c:5f: 74:56:3e:b5:fe:9f:38:43:f4:33:91:e0:33:c6:08:62:43:9b: 83:a5:0e:da:b6:1a:ae:cc:12:48:a6:39:a6:48:48:49:c6:49: a3:3e:d4:69:2c:4c:28:81:54:88:29:7e:05:39:9b:3c:c9:30: ee:86:08:68:38:b9:c7:05:71:31:62:cc:52:0e:bd:b0:82:57: ed:e0:e4:f9:c8:75:3f:a5:0b:16:c7:5e:0c:3f:b2:4a:fb:5d: fa:93:b4:6d:83:6d:fe:a0:1d:2b:35:9c:f9:67:7a:8b:94:7c: e4:98:5a:6a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUG9y5klmbeivASrO2a0W8lWrAf2swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNF RTZBRDFGOTAeFw0yNDAxMjgwNzQ4NDZaFw0yNTAxMjYwNzUzNDZaMDMxMTAvBgNV BAMTKDBCMUQyMjY4RTQzMEVBMzM4RTYzRDVFNzU3RkRFMTU1QkI4REZCODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUxNQ0lzuQb/N2XqsDh+1C9kiE N5Qs+sPMsGzQu31afSOQsV9+Vw90lEiDdRllYKhgHFkXj9KUsMub6rg/fLRzJSRS ANxOuT3KM1FaViKqx/Q2xOSBiKU7Mv7tcBItTEQPg+CK6yKklqisQDjq/xkRPTIN FkTk2dvuLdJUXrn/9pRkeY9Rz9RZ1gFBdUfdLtONbGGqm/VkX/33L/irKfktTa+2 qaVgNyJ8mH6RToB59BMslfZFB5JBblSoAFyjKpR4Qo1KWh6tv1/f1rHKinkV+e5f VDBB9p8cOxlhM+0Ks4gsDMX9q/4Gi0OuUdhoos46DXg3EHlJ+9yrzhzmTFIjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUCx0iaOQw6jOOY9XnV/3hVbuN+4EwHwYDVR0j BBgwFoAUTe+92YVL6NHij3MwoLgCw+5q0fkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MGRlMjMxZi1mYjhhLTQyN2EtYWEzNi0wYTNmYzk3MjMyOGQvMC80REVGQkREOTg1 NEJFOEQxRTI4RjczMzBBMEI4MDJDM0VFNkFEMUY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNFRTZB RDFGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwZGUyMzFmLWZiOGEtNDI3YS1h YTM2LTBhM2ZjOTcyMzI4ZC8wLzMxMzAzMzJlMzEzMjM1MmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMwMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfXcwDQYJ KoZIhvcNAQELBQADggEBAJN2CWF1IZ6F9SM+o2QcauPrOW33hY18asGvVYePcKAq uwdyfCJ2IL5qXsuW6fodjq5EOToGGi6nNjHLxNgU2fle8qd88cSzyuLi4/vSH+Bp c0sva7XA7v94X5YcRkGoJqNTzqYcaMIUgzhJA0Esdfw0uF38dD/oDwTwnM4b5nup Uul+6dMW4Mz8fvuc56t8X3RWPrX+nzhD9DOR4DPGCGJDm4OlDtq2Gq7MEkimOaZI SEnGSaM+1GksTCiBVIgpfgU5mzzJMO6GCGg4uccFcTFizFIOvbCCV+3g5PnIdT+l CxbHXgw/skr7XfqTtG2Dbf6gHSs1nPlneouUfOSYWmo= -----END CERTIFICATE-----Generated at Sun Nov 24 10:18:22 2024 by rpki-client on console-fra.rpki-client.org