$ rpki-client -vvf repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/3130332e3132312e3133342e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3133342e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: R4GnEXhAf/fgh2Q8FVP7pFzbA7+Mg/qDs/dM/4iifsA= Subject key identifier: 89:AE:03:C0:A4:02:B6:01:BF:38:C2:A1:E4:4B:C1:66:21:AC:0A:66 Certificate issuer: /CN=FF75AEDDC6059E8A2B830E487D72BE77E330BEEF Certificate serial: 57A9239281033E9EE5E4F3D8163620E979AB6461 Authority key identifier: FF:75:AE:DD:C6:05:9E:8A:2B:83:0E:48:7D:72:BE:77:E3:30:BE:EF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/3130332e3132312e3133342e302f32332d3234203d3e20313335343738.roa Signing time: Wed 03 Jan 2024 07:00:55 +0000 ROA not before: Wed 03 Jan 2024 06:55:55 +0000 ROA not after: Wed 01 Jan 2025 07:00:55 +0000 asID: 135478 IP address blocks: 103.121.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.crl rsync://repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:a9:23:92:81:03:3e:9e:e5:e4:f3:d8:16:36:20:e9:79:ab:64:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF75AEDDC6059E8A2B830E487D72BE77E330BEEF Validity Not Before: Jan 3 06:55:55 2024 GMT Not After : Jan 1 07:00:55 2025 GMT Subject: CN=89AE03C0A402B601BF38C2A1E44BC16621AC0A66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:19:fa:14:8a:0e:0c:70:55:ac:0c:06:d6:33: 30:88:c8:52:39:ca:5f:9f:15:d2:1d:67:72:bd:c0: 37:6a:d8:39:f2:f7:24:dc:45:83:5b:d0:d2:fd:7a: 70:a2:cb:c1:94:9c:2e:d9:9a:c8:4c:24:0e:e9:63: 5c:83:0f:76:89:d5:04:fd:18:02:b7:c4:8e:22:b2: a2:43:f3:e1:b1:fd:e6:ce:dc:06:42:50:92:24:0b: f3:e7:33:e4:9f:b7:f8:ae:4a:c1:8b:2f:0a:03:49: 9f:25:21:a1:7c:39:30:43:7c:71:e4:10:27:d1:c0: 80:86:b2:95:a6:48:9a:6e:8f:88:c3:8d:7a:a6:52: e1:3e:d4:33:a8:cc:b9:99:cc:f4:eb:87:38:3f:9e: 51:b6:ed:24:9f:d8:06:01:20:e4:96:c0:c9:20:76: ed:74:44:3d:35:10:c8:c1:cb:d2:e7:75:7c:eb:c2: 12:2f:5d:fd:24:d0:7a:d9:c5:b2:2b:a7:12:78:d7: d7:2d:cb:1f:d1:fd:a8:5a:c0:9b:99:85:b4:7b:d1: 0c:c0:69:f8:9f:f4:08:6a:ee:82:9c:df:4b:7c:b5: db:61:59:ec:b5:8b:ee:67:cd:e6:87:40:d4:8f:a1: 63:4b:be:85:69:16:f0:3a:ae:43:b1:27:a0:29:03: 5d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:AE:03:C0:A4:02:B6:01:BF:38:C2:A1:E4:4B:C1:66:21:AC:0A:66 X509v3 Authority Key Identifier: keyid:FF:75:AE:DD:C6:05:9E:8A:2B:83:0E:48:7D:72:BE:77:E3:30:BE:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF75AEDDC6059E8A2B830E487D72BE77E330BEEF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9b3784fe-f9fe-4cbe-8768-263a76986a3a/0/3130332e3132312e3133342e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.134.0/23 Signature Algorithm: sha256WithRSAEncryption 43:3c:31:87:1e:bc:b3:f4:86:74:cd:e2:8f:88:16:1c:3a:b9: 25:75:8c:03:5b:d0:a5:f9:3d:9d:26:82:d0:1b:a5:4a:3b:54: 7c:e1:8b:ec:a6:b3:8c:1d:a8:99:91:59:c3:db:5f:a3:37:c6: 7e:82:82:bd:7d:82:f3:a7:1d:1a:28:82:37:c2:9b:1a:e2:42: ba:63:d1:d1:e0:0e:45:95:68:66:c3:71:dd:13:55:e8:28:ed: 3f:2f:a9:a9:1c:a1:67:a9:13:a8:a1:b1:2d:2b:fc:be:cd:0a: 39:72:48:b8:14:35:a4:85:fb:ca:8f:5c:05:a2:d8:a2:0e:22: 95:95:17:66:6f:83:39:13:02:b3:0f:d2:72:5b:f7:3a:c7:91: 17:8d:64:9f:72:a0:b7:35:bb:27:66:d1:6a:cc:39:01:a3:cf: f7:9c:54:b3:e1:dd:be:49:74:c0:b9:dd:29:b3:3a:76:a2:31: 12:a2:0d:bc:f7:b8:ca:f6:fe:08:c3:3f:e8:49:55:ec:d5:a5: e6:6e:b7:d3:6e:f9:da:3e:ca:5a:c9:cd:7a:16:da:22:09:f5: 2e:54:35:d2:b1:53:87:a9:67:f7:6e:a3:16:f2:5c:a7:8d:51: e5:e3:b9:f2:e7:13:36:50:14:76:42:ab:df:a4:9e:e7:db:47: 79:13:21:62 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUV6kjkoEDPp7l5PPYFjYg6XmrZGEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY3NUFFRERDNjA1OUU4QTJCODMwRTQ4N0Q3MkJFNzdF MzMwQkVFRjAeFw0yNDAxMDMwNjU1NTVaFw0yNTAxMDEwNzAwNTVaMDMxMTAvBgNV BAMTKDg5QUUwM0MwQTQwMkI2MDFCRjM4QzJBMUU0NEJDMTY2MjFBQzBBNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGGfoUig4McFWsDAbWMzCIyFI5 yl+fFdIdZ3K9wDdq2Dny9yTcRYNb0NL9enCiy8GUnC7ZmshMJA7pY1yDD3aJ1QT9 GAK3xI4isqJD8+Gx/ebO3AZCUJIkC/PnM+Sft/iuSsGLLwoDSZ8lIaF8OTBDfHHk ECfRwICGspWmSJpuj4jDjXqmUuE+1DOozLmZzPTrhzg/nlG27SSf2AYBIOSWwMkg du10RD01EMjBy9LndXzrwhIvXf0k0HrZxbIrpxJ419ctyx/R/ahawJuZhbR70QzA afif9Ahq7oKc30t8tdthWey1i+5nzeaHQNSPoWNLvoVpFvA6rkOxJ6ApA13XAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUia4DwKQCtgG/OMKh5EvBZiGsCmYwHwYDVR0j BBgwFoAU/3Wu3cYFnoorgw5IfXK+d+Mwvu8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YjM3ODRmZS1mOWZlLTRjYmUtODc2OC0yNjNhNzY5ODZhM2EvMC9GRjc1QUVEREM2 MDU5RThBMkI4MzBFNDg3RDcyQkU3N0UzMzBCRUVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkY3NUFFRERDNjA1OUU4QTJCODMwRTQ4N0Q3MkJFNzdFMzMw QkVFRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzliMzc4NGZlLWY5ZmUtNGNiZS04 NzY4LTI2M2E3Njk4NmEzYS8wLzMxMzAzMzJlMzEzMjMxMmUzMTMzMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneYYwDQYJ KoZIhvcNAQELBQADggEBAEM8MYcevLP0hnTN4o+IFhw6uSV1jANb0KX5PZ0mgtAb pUo7VHzhi+yms4wdqJmRWcPbX6M3xn6Cgr19gvOnHRoogjfCmxriQrpj0dHgDkWV aGbDcd0TVego7T8vqakcoWepE6ihsS0r/L7NCjlySLgUNaSF+8qPXAWi2KIOIpWV F2ZvgzkTArMP0nJb9zrHkReNZJ9yoLc1uydm0WrMOQGjz/ecVLPh3b5JdMC53Smz OnaiMRKiDbz3uMr2/gjDP+hJVezVpeZut9Nu+do+ylrJzXoW2iIJ9S5UNdKxU4ep Z/duoxbyXKeNUeXjufLnEzZQFHZCq9+knufbR3kTIWI= -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:18 2024 by rpki-client on console-fra.rpki-client.org