$ rpki-client -vvf repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/3130332e3130322e3134312e302f32342d3234203d3e20313336383534.roa File: 3130332e3130322e3134312e302f32342d3234203d3e20313336383534.roa (raw, json) Hash identifier: mV8i/EO0vKXAqog2A9Ff9pvzBgEbWta8UMe4Pv/2R6U= Subject key identifier: 3F:B8:42:64:94:B1:D3:16:E0:56:8C:9D:06:50:D1:C4:EE:F6:AF:7C Certificate issuer: /CN=1D6001A4F46548B37ED871CA5CF088F7AF50D754 Certificate serial: 5A8AD8743DB5219FFFBF4BD82A069261DC13BCE4 Authority key identifier: 1D:60:01:A4:F4:65:48:B3:7E:D8:71:CA:5C:F0:88:F7:AF:50:D7:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D6001A4F46548B37ED871CA5CF088F7AF50D754.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/3130332e3130322e3134312e302f32342d3234203d3e20313336383534.roa Signing time: Tue 27 Feb 2024 09:02:01 +0000 ROA not before: Tue 27 Feb 2024 08:57:01 +0000 ROA not after: Tue 25 Feb 2025 09:02:01 +0000 asID: 136854 IP address blocks: 103.102.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/1D6001A4F46548B37ED871CA5CF088F7AF50D754.crl rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/1D6001A4F46548B37ED871CA5CF088F7AF50D754.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D6001A4F46548B37ED871CA5CF088F7AF50D754.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:8a:d8:74:3d:b5:21:9f:ff:bf:4b:d8:2a:06:92:61:dc:13:bc:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D6001A4F46548B37ED871CA5CF088F7AF50D754 Validity Not Before: Feb 27 08:57:01 2024 GMT Not After : Feb 25 09:02:01 2025 GMT Subject: CN=3FB8426494B1D316E0568C9D0650D1C4EEF6AF7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:03:c4:15:2f:f4:71:db:94:b3:29:a3:45:86: cf:e2:e6:bb:60:1f:ce:a3:93:01:89:58:cb:af:01: 14:f0:6a:c1:95:c4:4f:6a:a1:2f:03:a2:cc:ab:b0: dd:f4:5c:ab:d0:aa:4f:7a:a9:a8:3d:ca:29:10:a1: 96:50:f4:2d:86:08:7b:23:98:44:50:58:1c:68:d1: 96:ee:aa:ab:e1:ff:e8:aa:e0:ff:37:c9:fd:c1:9e: 9b:f0:d7:85:3c:07:5a:59:8d:38:1b:54:94:8f:95: e3:92:a1:d1:aa:79:e3:21:87:e5:1a:ae:c3:42:9e: 2c:b4:81:d6:8b:eb:d4:5a:b6:f3:e3:86:61:03:42: 83:11:57:09:5d:09:d9:1a:22:be:5b:a2:eb:c9:67: 59:97:c9:f4:a4:7a:7f:79:c2:57:6b:3e:8f:c7:a5: fa:44:50:8b:24:95:c7:93:08:9f:71:79:d3:09:28: dc:0b:f1:5e:3f:5a:54:8f:e2:7f:5a:ea:93:cb:e7: 52:b6:0b:0b:e3:98:58:cb:23:4c:97:78:b1:dd:9a: 96:75:30:8d:10:c2:43:c8:46:76:a3:f2:f8:a6:54: b8:fa:6e:9c:ac:14:dd:84:80:12:e6:34:6d:19:7d: 67:eb:a0:41:85:c5:de:ab:34:37:78:1a:a4:90:66: c8:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:B8:42:64:94:B1:D3:16:E0:56:8C:9D:06:50:D1:C4:EE:F6:AF:7C X509v3 Authority Key Identifier: keyid:1D:60:01:A4:F4:65:48:B3:7E:D8:71:CA:5C:F0:88:F7:AF:50:D7:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/1D6001A4F46548B37ED871CA5CF088F7AF50D754.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D6001A4F46548B37ED871CA5CF088F7AF50D754.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b5632d99-32b2-467b-b7fe-0d25f853bfa6/0/3130332e3130322e3134312e302f32342d3234203d3e20313336383534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.141.0/24 Signature Algorithm: sha256WithRSAEncryption a7:83:40:b6:7c:6c:01:17:f6:07:9a:91:2d:d0:04:45:b2:d1: 25:01:bb:0d:55:0b:b5:e7:8a:ad:ce:f5:20:25:3b:da:ca:77: b5:59:4c:22:00:df:6a:0c:19:59:97:06:d4:b5:d6:86:df:60: c8:e4:f6:cc:d1:7a:97:fd:dd:7a:95:69:73:dc:48:63:6c:e7: 34:10:21:d2:da:04:f9:b0:e4:b0:13:e4:24:4f:6a:19:1c:ea: 1d:3f:5e:fb:f8:ef:59:a0:91:bc:35:42:71:86:a9:c9:54:b3: 44:d4:8d:a9:be:ce:2d:72:96:d9:3f:f0:7a:1f:c8:86:45:50: ce:56:bf:ef:d4:35:bb:db:f4:7e:6d:50:a7:0a:ad:e0:84:8f: 10:06:a7:e3:d6:79:41:5f:9c:bb:04:70:f0:8a:af:c5:5c:f7: 50:06:87:41:3f:fc:99:8c:b4:2c:8d:5e:8a:81:d1:f0:3c:ec: 9c:9b:b9:2b:b7:d1:d3:fe:2a:15:5b:00:22:60:fd:ad:a5:09: 2a:df:a7:26:f2:f3:3a:1a:bc:73:54:09:40:dd:1a:de:25:8b: 92:99:7a:38:55:d9:9d:50:a5:2c:ce:2c:cf:90:a2:d5:99:c9: 69:58:46:55:76:ae:ae:14:a3:c2:44:03:12:86:28:fe:0f:52: 08:e4:54:9d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWorYdD21IZ//v0vYKgaSYdwTvOQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ2MDAxQTRGNDY1NDhCMzdFRDg3MUNBNUNGMDg4RjdB RjUwRDc1NDAeFw0yNDAyMjcwODU3MDFaFw0yNTAyMjUwOTAyMDFaMDMxMTAvBgNV BAMTKDNGQjg0MjY0OTRCMUQzMTZFMDU2OEM5RDA2NTBEMUM0RUVGNkFGN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeA8QVL/Rx25SzKaNFhs/i5rtg H86jkwGJWMuvARTwasGVxE9qoS8DosyrsN30XKvQqk96qag9yikQoZZQ9C2GCHsj mERQWBxo0Zbuqqvh/+iq4P83yf3Bnpvw14U8B1pZjTgbVJSPleOSodGqeeMhh+Ua rsNCniy0gdaL69RatvPjhmEDQoMRVwldCdkaIr5bouvJZ1mXyfSken95wldrPo/H pfpEUIsklceTCJ9xedMJKNwL8V4/WlSP4n9a6pPL51K2CwvjmFjLI0yXeLHdmpZ1 MI0QwkPIRnaj8vimVLj6bpysFN2EgBLmNG0ZfWfroEGFxd6rNDd4GqSQZshRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUP7hCZJSx0xbgVoydBlDRxO72r3wwHwYDVR0j BBgwFoAUHWABpPRlSLN+2HHKXPCI969Q11QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTYzMmQ5OS0zMmIyLTQ2N2ItYjdmZS0wZDI1Zjg1M2JmYTYvMC8xRDYwMDFBNEY0 NjU0OEIzN0VEODcxQ0E1Q0YwODhGN0FGNTBENzU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQ2MDAxQTRGNDY1NDhCMzdFRDg3MUNBNUNGMDg4RjdBRjUw RDc1NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1NjMyZDk5LTMyYjItNDY3Yi1i N2ZlLTBkMjVmODUzYmZhNi8wLzMxMzAzMzJlMzEzMDMyMmUzMTM0MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzODM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnZo0wDQYJ KoZIhvcNAQELBQADggEBAKeDQLZ8bAEX9geakS3QBEWy0SUBuw1VC7Xniq3O9SAl O9rKd7VZTCIA32oMGVmXBtS11obfYMjk9szRepf93XqVaXPcSGNs5zQQIdLaBPmw 5LAT5CRPahkc6h0/Xvv471mgkbw1QnGGqclUs0TUjam+zi1yltk/8HofyIZFUM5W v+/UNbvb9H5tUKcKreCEjxAGp+PWeUFfnLsEcPCKr8Vc91AGh0E//JmMtCyNXoqB 0fA87JybuSu30dP+KhVbACJg/a2lCSrfpyby8zoavHNUCUDdGt4li5KZejhV2Z1Q pSzOLM+QotWZyWlYRlV2rq4Uo8JEAxKGKP4PUgjkVJ0= -----END CERTIFICATE-----Generated at Sun Nov 24 14:55:03 2024 by rpki-client on console-fra.rpki-client.org