$ rpki-client -vvf repo-rpki.idnic.net/repo/b4912c9b-dce4-40e6-9588-d7ca8c37ef4d/0/3130332e3133392e3230372e302f32342d3234203d3e20313530353133.roa File: 3130332e3133392e3230372e302f32342d3234203d3e20313530353133.roa (raw, json) Hash identifier: YVY41bJD1E0b+3DGr5BvWBYtyugsvrMJqCHYHON8OLk= Subject key identifier: 14:3C:4D:00:39:FF:B3:7F:2C:61:A8:43:BB:9D:A8:A9:2F:95:CA:5A Certificate issuer: /CN=A01B6715A5B29F23D33C70B4E59135B0FA2231F5 Certificate serial: 07D29FD21B93DB2EC6129502F069DBCED852E590 Authority key identifier: A0:1B:67:15:A5:B2:9F:23:D3:3C:70:B4:E5:91:35:B0:FA:22:31:F5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A01B6715A5B29F23D33C70B4E59135B0FA2231F5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b4912c9b-dce4-40e6-9588-d7ca8c37ef4d/0/3130332e3133392e3230372e302f32342d3234203d3e20313530353133.roa Signing time: Mon 19 Feb 2024 08:01:05 +0000 ROA not before: Mon 19 Feb 2024 07:56:05 +0000 ROA not after: Mon 17 Feb 2025 08:01:05 +0000 asID: 150513 IP address blocks: 103.139.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b4912c9b-dce4-40e6-9588-d7ca8c37ef4d/0/A01B6715A5B29F23D33C70B4E59135B0FA2231F5.crl rsync://repo-rpki.idnic.net/repo/b4912c9b-dce4-40e6-9588-d7ca8c37ef4d/0/A01B6715A5B29F23D33C70B4E59135B0FA2231F5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A01B6715A5B29F23D33C70B4E59135B0FA2231F5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 07:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:d2:9f:d2:1b:93:db:2e:c6:12:95:02:f0:69:db:ce:d8:52:e5:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A01B6715A5B29F23D33C70B4E59135B0FA2231F5 Validity Not Before: Feb 19 07:56:05 2024 GMT Not After : Feb 17 08:01:05 2025 GMT Subject: CN=143C4D0039FFB37F2C61A843BB9DA8A92F95CA5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d2:3b:53:f2:5d:5a:18:fc:c0:e7:f2:09:b9: 8c:26:f7:3b:e9:a0:11:b1:9c:50:d6:a3:45:bd:15: 2d:f1:56:4f:03:20:c9:ff:7c:87:cc:d2:a6:d1:f4: 52:93:62:b3:ec:c7:5e:c9:71:5c:08:8a:f6:ef:32: be:93:16:e5:ff:18:fe:06:5d:c8:62:a4:32:01:2f: 06:58:3b:7a:de:50:d6:db:06:14:cb:6a:8b:ec:2c: 96:4c:61:45:0e:32:a2:17:a2:5d:02:b3:7e:59:a7: e4:63:63:92:e7:e4:e4:9f:02:06:d4:f4:d4:b3:59: 36:d0:65:ac:6d:25:1c:d5:05:63:9e:1f:23:a5:66: e6:f4:1a:47:4c:17:d7:89:29:da:43:5c:37:6a:29: 6d:4a:30:0f:b6:e8:c9:30:90:22:93:18:a8:d2:43: 2f:85:b0:b4:94:93:50:d0:0b:e1:24:63:21:b2:56: eb:df:29:1c:e6:22:16:c3:65:51:43:3f:a4:50:f2: 2a:dd:40:1b:44:0b:bb:4b:ae:4f:7a:f2:39:2e:e1: a4:76:3d:44:92:5d:c6:c7:02:2c:9f:5a:b2:81:94: 89:5d:86:48:5f:b9:bf:cb:2e:66:6a:64:d0:5b:60: 52:4d:d7:0a:76:a1:39:32:17:3a:f4:1a:0f:c7:ff: 2a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:3C:4D:00:39:FF:B3:7F:2C:61:A8:43:BB:9D:A8:A9:2F:95:CA:5A X509v3 Authority Key Identifier: keyid:A0:1B:67:15:A5:B2:9F:23:D3:3C:70:B4:E5:91:35:B0:FA:22:31:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b4912c9b-dce4-40e6-9588-d7ca8c37ef4d/0/A01B6715A5B29F23D33C70B4E59135B0FA2231F5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A01B6715A5B29F23D33C70B4E59135B0FA2231F5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b4912c9b-dce4-40e6-9588-d7ca8c37ef4d/0/3130332e3133392e3230372e302f32342d3234203d3e20313530353133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.207.0/24 Signature Algorithm: sha256WithRSAEncryption 99:65:4b:10:d1:ed:23:3c:fe:3b:95:cf:a8:d6:bf:a0:60:30: 7b:4d:6a:d0:6f:fa:3e:04:e2:3a:8d:fe:0f:09:95:e4:0d:53: af:48:e6:4e:82:17:c4:a0:90:a9:a0:d4:96:4b:fd:ee:97:98: 1c:78:0c:64:35:98:7d:2c:7c:aa:44:3b:4b:0c:95:72:6b:d7: 7a:7e:92:42:b0:66:e3:52:40:59:91:4c:a1:77:88:0e:a2:e0: bc:7d:ca:50:03:4e:a0:cb:95:cc:a7:fe:5a:bb:4b:19:ce:63: 1c:be:da:05:27:de:64:6d:7a:19:42:d6:74:0b:32:60:f3:bf: 91:69:2a:f8:bf:81:16:f7:d3:13:3c:3e:ce:b9:4b:28:e7:fa: 38:f3:aa:66:c2:bb:6e:27:84:a1:bf:64:23:cd:6a:0c:75:4f: 79:5e:0f:f9:43:24:b5:a9:e4:0f:52:42:73:f7:b0:c4:c8:f1: 62:d0:54:ca:88:9b:7c:15:d1:c4:24:83:4b:a9:92:60:3c:5f: 8a:ca:41:43:30:bc:d6:e3:33:2e:81:13:29:7f:c6:3f:a2:7a: 4b:b5:d9:64:f6:99:09:56:92:7f:c1:eb:e2:35:2e:c1:c2:cb: 0e:9b:9c:32:39:87:b9:e1:e7:27:d7:13:79:d4:eb:c2:60:6e: 53:0c:72:08 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUB9Kf0huT2y7GEpUC8GnbzthS5ZAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTAxQjY3MTVBNUIyOUYyM0QzM0M3MEI0RTU5MTM1QjBG QTIyMzFGNTAeFw0yNDAyMTkwNzU2MDVaFw0yNTAyMTcwODAxMDVaMDMxMTAvBgNV BAMTKDE0M0M0RDAwMzlGRkIzN0YyQzYxQTg0M0JCOURBOEE5MkY5NUNBNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/0jtT8l1aGPzA5/IJuYwm9zvp oBGxnFDWo0W9FS3xVk8DIMn/fIfM0qbR9FKTYrPsx17JcVwIivbvMr6TFuX/GP4G XchipDIBLwZYO3reUNbbBhTLaovsLJZMYUUOMqIXol0Cs35Zp+RjY5Ln5OSfAgbU 9NSzWTbQZaxtJRzVBWOeHyOlZub0GkdMF9eJKdpDXDdqKW1KMA+26MkwkCKTGKjS Qy+FsLSUk1DQC+EkYyGyVuvfKRzmIhbDZVFDP6RQ8irdQBtEC7tLrk968jku4aR2 PUSSXcbHAiyfWrKBlIldhkhfub/LLmZqZNBbYFJN1wp2oTkyFzr0Gg/H/yoTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUFDxNADn/s38sYahDu52oqS+VylowHwYDVR0j BBgwFoAUoBtnFaWynyPTPHC05ZE1sPoiMfUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NDkxMmM5Yi1kY2U0LTQwZTYtOTU4OC1kN2NhOGMzN2VmNGQvMC9BMDFCNjcxNUE1 QjI5RjIzRDMzQzcwQjRFNTkxMzVCMEZBMjIzMUY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTAxQjY3MTVBNUIyOUYyM0QzM0M3MEI0RTU5MTM1QjBGQTIy MzFGNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I0OTEyYzliLWRjZTQtNDBlNi05 NTg4LWQ3Y2E4YzM3ZWY0ZC8wLzMxMzAzMzJlMzEzMzM5MmUzMjMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzNTMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABni88wDQYJ KoZIhvcNAQELBQADggEBAJllSxDR7SM8/juVz6jWv6BgMHtNatBv+j4E4jqN/g8J leQNU69I5k6CF8SgkKmg1JZL/e6XmBx4DGQ1mH0sfKpEO0sMlXJr13p+kkKwZuNS QFmRTKF3iA6i4Lx9ylADTqDLlcyn/lq7SxnOYxy+2gUn3mRtehlC1nQLMmDzv5Fp Kvi/gRb30xM8Ps65Syjn+jjzqmbCu24nhKG/ZCPNagx1T3leD/lDJLWp5A9SQnP3 sMTI8WLQVMqIm3wV0cQkg0upkmA8X4rKQUMwvNbjMy6BEyl/xj+ieku12WT2mQlW kn/B6+I1LsHCyw6bnDI5h7nh5yfXE3nU68JgblMMcgg= -----END CERTIFICATE-----Generated at Sat Jun 22 10:58:26 2024 by rpki-client on console-fra.rpki-client.org