$ rpki-client -vvf repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/3130332e3132302e3132342e302f32332d3234203d3e20313338313137.roa File: 3130332e3132302e3132342e302f32332d3234203d3e20313338313137.roa (raw, json) Hash identifier: ehfavKJYShgP2TV1M1uRS+C1vrvpl5VhW1fhvktvS38= Subject key identifier: 9F:89:4F:B1:17:3C:E1:39:51:FD:64:0B:8C:CC:AC:B7:39:1D:2D:57 Certificate issuer: /CN=989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748 Certificate serial: 7F194F43566382797FF13746DC65CB20CDAF0D2F Authority key identifier: 98:9B:87:D4:0F:7C:9F:1B:A5:4A:BC:AE:9B:C7:97:A3:E6:B2:57:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/3130332e3132302e3132342e302f32332d3234203d3e20313338313137.roa Signing time: Mon 01 Jul 2024 01:04:58 +0000 ROA not before: Mon 01 Jul 2024 00:59:58 +0000 ROA not after: Mon 30 Jun 2025 01:04:58 +0000 asID: 138117 IP address blocks: 103.120.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.crl rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 14:08:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:19:4f:43:56:63:82:79:7f:f1:37:46:dc:65:cb:20:cd:af:0d:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748 Validity Not Before: Jul 1 00:59:58 2024 GMT Not After : Jun 30 01:04:58 2025 GMT Subject: CN=9F894FB1173CE13951FD640B8CCCACB7391D2D57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:42:3c:05:50:27:5e:a5:a2:f7:eb:d4:d0:05: ea:62:6c:6b:70:a8:ab:dc:57:0c:ea:83:70:73:e7: a1:3a:6b:f1:10:f4:88:32:9f:a5:b2:2c:51:a8:da: 4e:54:d5:cb:21:59:c5:cc:0a:ca:17:98:7f:8c:d3: 28:e6:18:36:1c:02:05:86:2c:2c:ac:1b:db:53:86: f9:f3:14:5e:7f:c6:49:dd:3d:5d:24:8c:3f:ba:9f: 20:3c:34:76:ff:19:ff:63:02:b7:bb:c0:59:63:65: 60:67:96:ea:e9:c3:71:dd:4f:6d:8e:d9:6b:46:89: ca:c9:87:63:85:15:9b:45:f9:c4:8a:c8:2e:8b:8a: 52:94:50:2e:86:16:4a:b2:12:f2:14:5c:46:c8:80: 7f:36:56:f8:d4:fb:7b:7e:50:44:e3:e9:80:6d:ba: c0:7c:d4:7b:4d:ea:d6:3b:c8:e0:49:b1:6a:2a:ff: 94:cb:49:07:f6:42:78:dc:ec:bd:cf:6d:ff:00:cd: 34:6c:3c:f5:0a:c2:96:3d:f4:ec:20:1d:72:27:b1: 82:08:20:c3:96:24:aa:21:8b:7c:f2:2e:18:3e:f5: c4:32:f3:be:f4:86:f9:05:5b:9a:44:0e:28:57:23: 4a:13:0f:49:a8:63:28:d6:ec:95:35:04:58:6a:fa: 2e:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:89:4F:B1:17:3C:E1:39:51:FD:64:0B:8C:CC:AC:B7:39:1D:2D:57 X509v3 Authority Key Identifier: keyid:98:9B:87:D4:0F:7C:9F:1B:A5:4A:BC:AE:9B:C7:97:A3:E6:B2:57:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/989B87D40F7C9F1BA54ABCAE9BC797A3E6B25748.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9e5060b8-f570-42d6-86ff-33ea7fdf2515/0/3130332e3132302e3132342e302f32332d3234203d3e20313338313137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.124.0/23 Signature Algorithm: sha256WithRSAEncryption 94:a0:90:8f:a5:e1:22:60:79:55:49:2e:54:34:bd:e4:68:4c: 6d:3c:12:7d:45:9a:f2:08:f7:a6:71:64:b2:6b:2a:f8:5d:e0: c4:9b:ef:b7:fd:9a:61:b8:03:4e:47:cc:d2:4c:36:f0:c1:fb: d8:b4:0d:cd:0c:68:e3:fd:45:2e:37:b6:0d:2c:0e:15:a5:75: c0:fd:0f:d0:9d:ab:8a:30:69:af:a6:56:55:2f:19:5c:24:96: da:6c:b7:52:d6:7c:49:86:be:79:65:f3:00:35:62:b0:2f:82: 73:07:41:cd:04:11:c7:0b:4e:d2:f9:a9:ba:3a:bc:1b:ed:87: ec:10:d6:28:53:32:58:69:90:db:8d:4c:35:55:32:50:4b:10: 1f:51:63:36:ca:92:78:45:0e:52:b3:d9:00:5a:af:68:9b:6a: e5:01:0d:99:6f:0b:88:33:4f:9f:8b:71:d8:f5:3b:7e:2c:f4: ee:13:65:25:73:a5:3a:fb:ed:a4:ae:45:23:b1:c7:7f:fc:0b: 64:eb:81:bb:23:c7:d8:17:ef:2e:8d:ec:0f:b8:7f:5f:fa:ec: 49:a0:0b:f7:77:7a:a9:59:83:c2:5e:6f:fa:49:f1:04:dd:7a: cc:61:96:ae:90:c2:bc:f2:aa:8c:4a:d5:76:c9:67:19:7c:63: 09:91:ee:e6 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfxlPQ1Zjgnl/8TdG3GXLIM2vDS8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTg5Qjg3RDQwRjdDOUYxQkE1NEFCQ0FFOUJDNzk3QTNF NkIyNTc0ODAeFw0yNDA3MDEwMDU5NThaFw0yNTA2MzAwMTA0NThaMDMxMTAvBgNV BAMTKDlGODk0RkIxMTczQ0UxMzk1MUZENjQwQjhDQ0NBQ0I3MzkxRDJENTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYQjwFUCdepaL369TQBepibGtw qKvcVwzqg3Bz56E6a/EQ9Igyn6WyLFGo2k5U1cshWcXMCsoXmH+M0yjmGDYcAgWG LCysG9tThvnzFF5/xkndPV0kjD+6nyA8NHb/Gf9jAre7wFljZWBnlurpw3HdT22O 2WtGicrJh2OFFZtF+cSKyC6LilKUUC6GFkqyEvIUXEbIgH82VvjU+3t+UETj6YBt usB81HtN6tY7yOBJsWoq/5TLSQf2Qnjc7L3Pbf8AzTRsPPUKwpY99OwgHXInsYII IMOWJKohi3zyLhg+9cQy8770hvkFW5pEDihXI0oTD0moYyjW7JU1BFhq+i53AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUn4lPsRc84TlR/WQLjMystzkdLVcwHwYDVR0j BBgwFoAUmJuH1A98nxulSryum8eXo+ayV0gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZTUwNjBiOC1mNTcwLTQyZDYtODZmZi0zM2VhN2ZkZjI1MTUvMC85ODlCODdENDBG N0M5RjFCQTU0QUJDQUU5QkM3OTdBM0U2QjI1NzQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTg5Qjg3RDQwRjdDOUYxQkE1NEFCQ0FFOUJDNzk3QTNFNkIy NTc0OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllNTA2MGI4LWY1NzAtNDJkNi04 NmZmLTMzZWE3ZmRmMjUxNS8wLzMxMzAzMzJlMzEzMjMwMmUzMTMyMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMxMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFneHwwDQYJ KoZIhvcNAQELBQADggEBAJSgkI+l4SJgeVVJLlQ0veRoTG08En1FmvII96ZxZLJr Kvhd4MSb77f9mmG4A05HzNJMNvDB+9i0Dc0MaOP9RS43tg0sDhWldcD9D9Cdq4ow aa+mVlUvGVwkltpst1LWfEmGvnll8wA1YrAvgnMHQc0EEccLTtL5qbo6vBvth+wQ 1ihTMlhpkNuNTDVVMlBLEB9RYzbKknhFDlKz2QBar2ibauUBDZlvC4gzT5+Lcdj1 O34s9O4TZSVzpTr77aSuRSOxx3/8C2Trgbsjx9gX7y6N7A+4f1/67EmgC/d3eqlZ g8Jeb/pJ8QTdesxhlq6QwrzyqoxK1XbJZxl8YwmR7uY= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:17 2024 by rpki-client on console-ams.rpki-client.org