$ rpki-client -vvf repo-rpki.idnic.net/repo/93d9268b-5e61-43b2-a624-41b01d7d76b2/0/3130332e3132352e3138352e302f32342d3234203d3e203438343635.roa File: 3130332e3132352e3138352e302f32342d3234203d3e203438343635.roa (raw, json) Hash identifier: wg71zKIGvyCUjjdVHaetQd49Beqy4N7ocd0V9LXETjw= Subject key identifier: 54:18:D6:6A:8B:CD:F5:59:46:CE:0A:56:E6:D5:74:39:76:6D:5A:8B Certificate issuer: /CN=129285A478A166EE0B54DBCDA60771DA54C4F65F Certificate serial: 6FCFFDA6BFAD6816A1007990F30976ADD9B7CAC8 Authority key identifier: 12:92:85:A4:78:A1:66:EE:0B:54:DB:CD:A6:07:71:DA:54:C4:F6:5F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/129285A478A166EE0B54DBCDA60771DA54C4F65F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/93d9268b-5e61-43b2-a624-41b01d7d76b2/0/3130332e3132352e3138352e302f32342d3234203d3e203438343635.roa Signing time: Mon 15 Jul 2024 02:42:03 +0000 ROA not before: Mon 15 Jul 2024 02:37:03 +0000 ROA not after: Mon 14 Jul 2025 02:42:03 +0000 asID: 48465 IP address blocks: 103.125.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/93d9268b-5e61-43b2-a624-41b01d7d76b2/0/129285A478A166EE0B54DBCDA60771DA54C4F65F.crl rsync://repo-rpki.idnic.net/repo/93d9268b-5e61-43b2-a624-41b01d7d76b2/0/129285A478A166EE0B54DBCDA60771DA54C4F65F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/129285A478A166EE0B54DBCDA60771DA54C4F65F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 06:36:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:cf:fd:a6:bf:ad:68:16:a1:00:79:90:f3:09:76:ad:d9:b7:ca:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=129285A478A166EE0B54DBCDA60771DA54C4F65F Validity Not Before: Jul 15 02:37:03 2024 GMT Not After : Jul 14 02:42:03 2025 GMT Subject: CN=5418D66A8BCDF55946CE0A56E6D57439766D5A8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e9:e6:bf:55:d6:55:76:be:0a:2d:a5:d0:d3: 16:11:6c:a2:99:e0:32:64:f5:21:89:45:9b:9f:9e: b2:37:37:f3:d9:b3:56:ed:74:19:1b:e9:ee:1a:53: 95:a6:47:02:da:5a:2c:cc:b1:02:02:13:2e:75:74: 87:23:5d:c0:3d:75:56:53:d5:ef:cc:7a:55:b2:ab: 21:49:3d:0d:fb:78:c7:a9:1e:28:48:74:e0:63:fc: c7:02:e7:59:db:ce:73:bd:dc:0c:dd:1a:79:af:25: 97:88:c0:07:77:93:93:56:d1:92:0b:32:80:64:27: 19:94:6b:84:ac:28:e3:20:bb:70:78:ee:5b:3e:a7: 51:18:5f:1b:ff:45:47:05:cf:6c:87:a3:ef:79:d2: 9b:4c:62:2a:4e:b5:64:a7:8e:6f:d3:7e:12:e9:84: 85:a9:75:27:96:6e:4a:6a:f2:e4:d5:e6:85:42:67: ae:ab:9d:f7:e1:c6:9f:59:60:1a:2e:9d:b7:90:17: aa:3f:ae:43:f7:86:e7:a9:b4:49:a9:7c:ef:9d:46: e8:29:4b:57:ec:74:cc:0d:eb:ed:8b:e8:2e:72:0b: ee:94:b1:a4:9e:7e:05:b0:70:da:a1:83:e5:b4:37: 9c:9d:34:d7:a8:b6:1e:ab:10:1f:09:ed:1c:b7:41: ea:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:18:D6:6A:8B:CD:F5:59:46:CE:0A:56:E6:D5:74:39:76:6D:5A:8B X509v3 Authority Key Identifier: keyid:12:92:85:A4:78:A1:66:EE:0B:54:DB:CD:A6:07:71:DA:54:C4:F6:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/93d9268b-5e61-43b2-a624-41b01d7d76b2/0/129285A478A166EE0B54DBCDA60771DA54C4F65F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/129285A478A166EE0B54DBCDA60771DA54C4F65F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/93d9268b-5e61-43b2-a624-41b01d7d76b2/0/3130332e3132352e3138352e302f32342d3234203d3e203438343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.185.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:63:90:a3:05:00:e7:63:06:fc:8c:d4:b3:be:98:4f:d0:7b: 33:f0:da:36:ce:a2:c4:68:0a:a0:63:64:d3:69:58:5b:94:22: 93:a8:82:9a:39:0a:47:35:8f:86:8b:0b:13:75:4e:6a:b8:6b: e2:cb:fe:5a:4c:79:68:61:da:64:41:3a:cb:c2:ea:97:a4:20: 91:41:43:26:fe:49:8a:d5:77:41:8f:9a:85:3b:26:da:b0:3d: 2f:8f:9c:fa:11:7c:b9:e2:3e:96:31:e0:0b:09:6b:b6:d7:87: 32:d9:6d:0c:19:97:b7:29:05:73:1b:45:74:08:ea:0d:ed:03: 70:7b:58:d1:d5:56:cc:52:02:ea:f7:51:70:5f:b0:fd:d7:ca: fc:b1:86:6f:6c:12:cb:48:80:81:b0:e5:5a:7d:1e:4b:74:16: b3:bb:6f:1d:0d:ab:0c:25:a1:84:a1:dc:16:85:b6:4e:f7:89: 3a:7d:cc:ac:1e:58:cb:fb:19:97:2e:48:5c:ae:77:68:53:22: f7:65:4f:18:23:4d:0e:dc:ae:54:be:09:e0:41:8c:85:61:5b: 56:8e:cf:7f:93:2e:ee:ab:9f:0c:f7:0f:7a:62:94:f7:9f:d5: 4a:aa:3e:39:8b:be:c3:db:27:a1:2a:69:8d:92:f6:fe:d7:80: 03:35:c8:20 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUb8/9pr+taBahAHmQ8wl2rdm3ysgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTI5Mjg1QTQ3OEExNjZFRTBCNTREQkNEQTYwNzcxREE1 NEM0RjY1RjAeFw0yNDA3MTUwMjM3MDNaFw0yNTA3MTQwMjQyMDNaMDMxMTAvBgNV BAMTKDU0MThENjZBOEJDREY1NTk0NkNFMEE1NkU2RDU3NDM5NzY2RDVBOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH6ea/VdZVdr4KLaXQ0xYRbKKZ 4DJk9SGJRZufnrI3N/PZs1btdBkb6e4aU5WmRwLaWizMsQICEy51dIcjXcA9dVZT 1e/MelWyqyFJPQ37eMepHihIdOBj/McC51nbznO93AzdGnmvJZeIwAd3k5NW0ZIL MoBkJxmUa4SsKOMgu3B47ls+p1EYXxv/RUcFz2yHo+950ptMYipOtWSnjm/TfhLp hIWpdSeWbkpq8uTV5oVCZ66rnffhxp9ZYBounbeQF6o/rkP3hueptEmpfO+dRugp S1fsdMwN6+2L6C5yC+6UsaSefgWwcNqhg+W0N5ydNNeoth6rEB8J7Ry3Qeq1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVBjWaovN9VlGzgpW5tV0OXZtWoswHwYDVR0j BBgwFoAUEpKFpHihZu4LVNvNpgdx2lTE9l8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 M2Q5MjY4Yi01ZTYxLTQzYjItYTYyNC00MWIwMWQ3ZDc2YjIvMC8xMjkyODVBNDc4 QTE2NkVFMEI1NERCQ0RBNjA3NzFEQTU0QzRGNjVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTI5Mjg1QTQ3OEExNjZFRTBCNTREQkNEQTYwNzcxREE1NEM0 RjY1Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkzZDkyNjhiLTVlNjEtNDNiMi1h NjI0LTQxYjAxZDdkNzZiMi8wLzMxMzAzMzJlMzEzMjM1MmUzMTM4MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM4MzQzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ325MA0GCSqG SIb3DQEBCwUAA4IBAQBrY5CjBQDnYwb8jNSzvphP0Hsz8No2zqLEaAqgY2TTaVhb lCKTqIKaOQpHNY+GiwsTdU5quGviy/5aTHloYdpkQTrLwuqXpCCRQUMm/kmK1XdB j5qFOybasD0vj5z6EXy54j6WMeALCWu214cy2W0MGZe3KQVzG0V0COoN7QNwe1jR 1VbMUgLq91FwX7D918r8sYZvbBLLSICBsOVafR5LdBazu28dDasMJaGEodwWhbZO 94k6fcysHljL+xmXLkhcrndoUyL3ZU8YI00O3K5UvgngQYyFYVtWjs9/ky7uq58M 9w96YpT3n9VKqj45i77D2yehKmmNkvb+14ADNcgg -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:38 2024 by rpki-client on console-ams.rpki-client.org