$ rpki-client -vvf repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/3130332e3132362e3131392e302f32342d3234203d3e20313338313136.roa File: 3130332e3132362e3131392e302f32342d3234203d3e20313338313136.roa (raw, json) Hash identifier: mb0eVHk5fU6EsN1FHO07Yf907g6iEki+6AgF+Su1t9s= Subject key identifier: 14:EA:AA:D0:3C:0F:60:CF:C8:14:0A:C8:DA:10:67:8E:EC:D6:37:BD Certificate issuer: /CN=6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8 Certificate serial: 68FF2D55EA075D2B3C189102B215ADC0367B72A4 Authority key identifier: 6D:F8:A8:73:B7:0B:A8:CC:AD:A3:1A:AD:D8:21:5F:F7:D0:2F:47:E8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/3130332e3132362e3131392e302f32342d3234203d3e20313338313136.roa Signing time: Mon 04 Nov 2024 06:23:37 +0000 ROA not before: Mon 04 Nov 2024 06:18:37 +0000 ROA not after: Mon 03 Nov 2025 06:23:37 +0000 asID: 138116 IP address blocks: 103.126.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.crl rsync://repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 06:29:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:ff:2d:55:ea:07:5d:2b:3c:18:91:02:b2:15:ad:c0:36:7b:72:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8 Validity Not Before: Nov 4 06:18:37 2024 GMT Not After : Nov 3 06:23:37 2025 GMT Subject: CN=14EAAAD03C0F60CFC8140AC8DA10678EECD637BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:22:5f:8a:4e:81:58:be:07:92:6b:0b:1a:bc: 1d:ed:72:35:42:f0:91:c8:4e:eb:97:54:16:20:6b: 2a:68:73:ec:60:33:7b:bd:10:53:4d:e0:a0:d1:92: e0:60:17:a3:41:50:15:24:8f:2c:2b:06:13:50:df: 16:08:e3:d4:cc:15:9e:4f:f6:d8:bc:dc:66:b8:f1: cb:db:4f:c2:b4:bb:1e:06:e3:fb:78:92:87:0d:de: 86:7d:71:0d:75:79:b8:ce:0c:75:34:0c:a3:cc:98: b9:1f:9d:80:85:49:a2:13:77:ed:5b:db:0e:ed:d4: ba:11:7e:40:b3:b3:09:00:51:07:ae:9d:92:c1:af: 9a:eb:a2:e5:cb:4c:4e:a2:3b:c7:f6:4c:59:0d:25: 8d:e3:17:32:d7:bd:5b:f1:2b:8c:03:70:77:cb:4f: 81:dc:44:76:d5:55:e3:cf:b4:79:2b:3a:f2:9e:1d: 8f:de:ca:62:a8:fc:d1:6c:8e:ad:fb:31:3c:2c:c5: d8:69:fa:88:91:80:e7:85:cf:52:e5:95:62:84:38: 75:f3:b4:68:c8:ee:11:07:82:94:71:29:c3:1f:cd: 6e:e7:ac:ee:af:bc:18:f0:96:16:84:0a:a6:1a:48: 99:61:18:3e:79:da:2f:1d:61:e5:be:bd:5b:5f:03: d3:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:EA:AA:D0:3C:0F:60:CF:C8:14:0A:C8:DA:10:67:8E:EC:D6:37:BD X509v3 Authority Key Identifier: keyid:6D:F8:A8:73:B7:0B:A8:CC:AD:A3:1A:AD:D8:21:5F:F7:D0:2F:47:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6DF8A873B70BA8CCADA31AADD8215FF7D02F47E8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/97d26de0-68cf-429c-8b0e-8d64b762f824/0/3130332e3132362e3131392e302f32342d3234203d3e20313338313136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.126.119.0/24 Signature Algorithm: sha256WithRSAEncryption 34:86:8f:41:45:bd:1b:7c:da:fe:c7:f9:23:f2:9c:68:2a:5f: a7:ab:e3:8b:c1:05:53:19:9d:2a:32:d3:8a:c9:b6:b0:04:7b: 05:a9:d0:56:89:39:53:fe:bd:12:01:14:9f:c8:52:2b:dd:ff: 1d:96:0b:72:b8:17:87:34:c8:29:c5:73:9d:9f:5f:e2:a5:8f: 45:67:1c:82:c6:2a:42:da:06:3e:1f:2b:3a:af:e6:2e:43:30: 57:df:aa:bc:62:52:f4:88:ca:92:f3:39:47:0a:7c:d5:94:f4: d1:ab:49:13:36:99:3e:f5:74:4b:56:f4:46:94:ea:08:16:22: 30:bf:48:14:91:57:df:17:bc:04:f1:be:07:5a:ff:c1:83:a2: 98:0e:20:9a:23:70:23:48:74:bf:f5:62:08:3f:68:3e:59:28: ad:16:46:ac:d6:e0:d0:47:88:83:e7:0c:50:85:c1:20:08:76: 25:b0:91:2a:3f:9d:ad:7a:d9:f9:fd:11:a7:51:06:06:79:04: fb:6d:c2:12:05:f2:45:12:16:3a:52:f5:31:46:0f:ab:eb:0c: 49:50:de:f6:82:e4:c8:8a:02:14:03:39:f3:4e:a4:08:0a:1b: a6:8a:24:4d:2b:06:1a:3f:22:aa:d4:e7:bb:45:c2:c4:78:b9: c3:1e:d1:f4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUaP8tVeoHXSs8GJECshWtwDZ7cqQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkRGOEE4NzNCNzBCQThDQ0FEQTMxQUFERDgyMTVGRjdE MDJGNDdFODAeFw0yNDExMDQwNjE4MzdaFw0yNTExMDMwNjIzMzdaMDMxMTAvBgNV BAMTKDE0RUFBQUQwM0MwRjYwQ0ZDODE0MEFDOERBMTA2NzhFRUNENjM3QkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpIl+KToFYvgeSawsavB3tcjVC 8JHITuuXVBYgaypoc+xgM3u9EFNN4KDRkuBgF6NBUBUkjywrBhNQ3xYI49TMFZ5P 9ti83Ga48cvbT8K0ux4G4/t4kocN3oZ9cQ11ebjODHU0DKPMmLkfnYCFSaITd+1b 2w7t1LoRfkCzswkAUQeunZLBr5rrouXLTE6iO8f2TFkNJY3jFzLXvVvxK4wDcHfL T4HcRHbVVePPtHkrOvKeHY/eymKo/NFsjq37MTwsxdhp+oiRgOeFz1LllWKEOHXz tGjI7hEHgpRxKcMfzW7nrO6vvBjwlhaECqYaSJlhGD552i8dYeW+vVtfA9PpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUFOqq0DwPYM/IFArI2hBnjuzWN70wHwYDVR0j BBgwFoAUbfioc7cLqMytoxqt2CFf99AvR+gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 N2QyNmRlMC02OGNmLTQyOWMtOGIwZS04ZDY0Yjc2MmY4MjQvMC82REY4QTg3M0I3 MEJBOENDQURBMzFBQUREODIxNUZGN0QwMkY0N0U4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkRGOEE4NzNCNzBCQThDQ0FEQTMxQUFERDgyMTVGRjdEMDJG NDdFOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk3ZDI2ZGUwLTY4Y2YtNDI5Yy04 YjBlLThkNjRiNzYyZjgyNC8wLzMxMzAzMzJlMzEzMjM2MmUzMTMxMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMxMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnfncwDQYJ KoZIhvcNAQELBQADggEBADSGj0FFvRt82v7H+SPynGgqX6er44vBBVMZnSoy04rJ trAEewWp0FaJOVP+vRIBFJ/IUivd/x2WC3K4F4c0yCnFc52fX+Klj0VnHILGKkLa Bj4fKzqv5i5DMFffqrxiUvSIypLzOUcKfNWU9NGrSRM2mT71dEtW9EaU6ggWIjC/ SBSRV98XvATxvgda/8GDopgOIJojcCNIdL/1Ygg/aD5ZKK0WRqzW4NBHiIPnDFCF wSAIdiWwkSo/na162fn9EadRBgZ5BPttwhIF8kUSFjpS9TFGD6vrDElQ3vaC5MiK AhQDOfNOpAgKG6aKJE0rBho/IqrU57tFwsR4ucMe0fQ= -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:38 2024 by rpki-client on console-ams.rpki-client.org