$ rpki-client -vvf repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/3130332e3132322e3132312e302f32342d3234203d3e20313338303836.roa File: 3130332e3132322e3132312e302f32342d3234203d3e20313338303836.roa (raw, json) Hash identifier: X3Kfrvlbc3BS006u0JOxckKu04Zt9Mkdi7VKYvDdVTw= Subject key identifier: 40:D5:BD:B6:E2:14:D5:D1:CB:AE:68:3F:FB:05:D1:3E:72:D3:97:C6 Certificate issuer: /CN=408585C1D62A4F618C0424E9BEDC3B91411C2276 Certificate serial: 6659569F17BA27BBBAE293F991B3BFB55AAC86E1 Authority key identifier: 40:85:85:C1:D6:2A:4F:61:8C:04:24:E9:BE:DC:3B:91:41:1C:22:76 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408585C1D62A4F618C0424E9BEDC3B91411C2276.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/3130332e3132322e3132312e302f32342d3234203d3e20313338303836.roa Signing time: Fri 05 Apr 2024 04:02:34 +0000 ROA not before: Fri 05 Apr 2024 03:57:34 +0000 ROA not after: Fri 04 Apr 2025 04:02:34 +0000 asID: 138086 IP address blocks: 103.122.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/408585C1D62A4F618C0424E9BEDC3B91411C2276.crl rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/408585C1D62A4F618C0424E9BEDC3B91411C2276.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408585C1D62A4F618C0424E9BEDC3B91411C2276.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 20:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:59:56:9f:17:ba:27:bb:ba:e2:93:f9:91:b3:bf:b5:5a:ac:86:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408585C1D62A4F618C0424E9BEDC3B91411C2276 Validity Not Before: Apr 5 03:57:34 2024 GMT Not After : Apr 4 04:02:34 2025 GMT Subject: CN=40D5BDB6E214D5D1CBAE683FFB05D13E72D397C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ae:ed:a5:0d:72:63:54:67:f9:1e:36:1f:cc: cf:a0:13:38:90:8b:7d:70:7f:6b:97:84:61:f2:f4: 23:bb:e5:d7:8a:29:2a:dd:de:6a:ab:f4:0c:01:1c: a5:de:99:00:25:05:97:97:82:68:a5:b8:06:c3:34: c4:4e:24:1e:a1:eb:3d:b4:bb:30:ed:09:7b:44:5c: a2:c4:b4:e2:5b:34:93:e4:4d:71:11:ef:56:72:db: 33:f7:9f:7c:94:8a:0a:d2:be:e3:27:a0:b0:bf:be: 78:17:63:44:cc:5a:a9:61:25:5e:c8:09:90:1d:49: 27:71:cb:3a:fd:f7:d3:df:bd:ef:f5:e9:20:d9:f0: 8d:5f:e7:d9:6e:ac:79:dc:d6:77:ec:29:49:65:46: 2f:1c:48:97:00:ae:6e:e4:51:dd:ee:29:a1:4c:78: b7:53:f7:b9:92:94:c2:d4:e8:bb:90:94:50:1f:b6: 54:f0:75:01:65:fe:16:d7:01:00:2d:31:20:9c:e4: e4:23:21:ac:cf:bb:7a:20:74:b6:0a:92:29:fa:53: 06:76:75:c6:26:3a:45:02:ae:d4:9e:7f:29:51:c4: d3:48:0e:63:ae:ab:b7:c9:20:3d:a4:21:dc:27:b9: fe:26:72:eb:52:2b:ad:ab:2c:75:c2:00:63:a0:9a: 1a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:D5:BD:B6:E2:14:D5:D1:CB:AE:68:3F:FB:05:D1:3E:72:D3:97:C6 X509v3 Authority Key Identifier: keyid:40:85:85:C1:D6:2A:4F:61:8C:04:24:E9:BE:DC:3B:91:41:1C:22:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/408585C1D62A4F618C0424E9BEDC3B91411C2276.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408585C1D62A4F618C0424E9BEDC3B91411C2276.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7e26c83-5ed2-4c8b-8a03-6cb00d1ed338/0/3130332e3132322e3132312e302f32342d3234203d3e20313338303836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.121.0/24 Signature Algorithm: sha256WithRSAEncryption ac:71:8c:15:f8:e9:4d:b8:1d:f0:80:de:b0:a0:9a:6d:76:a7: 30:62:a3:11:bc:f2:df:99:9f:1e:8f:fb:91:9c:3a:dc:d2:a5: 97:c8:26:35:25:4a:8f:d9:b5:0c:61:dc:22:53:78:56:e8:61: 6d:50:b9:0f:4e:30:64:10:aa:07:de:60:1f:d7:6b:df:d6:78: 43:d8:3f:09:99:7d:90:0e:21:39:e9:c4:1f:fe:f6:98:b8:05: 43:4a:fd:e8:7f:18:05:e5:5f:9d:4d:5a:d8:cf:63:cb:b8:3a: 15:0a:bf:9e:16:06:33:96:cd:46:e7:a7:26:ca:ba:cb:76:95: 06:62:eb:9d:2a:24:24:c7:ea:92:1a:ff:f1:95:87:1d:7b:aa: 40:d2:4b:4b:e7:b8:ed:95:b1:74:be:5f:fb:77:3c:fd:14:3b: fb:b1:90:0b:07:d5:83:89:ed:54:2a:b6:53:54:f8:0e:f2:ea: db:7c:72:9e:8a:8c:75:3b:23:47:d8:74:ab:3a:b1:aa:c1:e4: d2:f5:91:95:fd:5e:bf:20:42:06:67:a9:73:59:a6:e7:3a:fa: b3:4e:4e:b4:3b:c6:59:0b:3f:66:e1:68:55:db:36:91:4f:6d: aa:5d:19:5a:28:e4:76:17:2a:4b:87:52:0f:ef:93:23:f6:55: 7e:a7:df:0f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZllWnxe6J7u64pP5kbO/tVqshuEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4NTg1QzFENjJBNEY2MThDMDQyNEU5QkVEQzNCOTE0 MTFDMjI3NjAeFw0yNDA0MDUwMzU3MzRaFw0yNTA0MDQwNDAyMzRaMDMxMTAvBgNV BAMTKDQwRDVCREI2RTIxNEQ1RDFDQkFFNjgzRkZCMDVEMTNFNzJEMzk3QzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4ru2lDXJjVGf5HjYfzM+gEziQ i31wf2uXhGHy9CO75deKKSrd3mqr9AwBHKXemQAlBZeXgmiluAbDNMROJB6h6z20 uzDtCXtEXKLEtOJbNJPkTXER71Zy2zP3n3yUigrSvuMnoLC/vngXY0TMWqlhJV7I CZAdSSdxyzr999Pfve/16SDZ8I1f59lurHnc1nfsKUllRi8cSJcArm7kUd3uKaFM eLdT97mSlMLU6LuQlFAftlTwdQFl/hbXAQAtMSCc5OQjIazPu3ogdLYKkin6UwZ2 dcYmOkUCrtSefylRxNNIDmOuq7fJID2kIdwnuf4mcutSK62rLHXCAGOgmhodAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUQNW9tuIU1dHLrmg/+wXRPnLTl8YwHwYDVR0j BBgwFoAUQIWFwdYqT2GMBCTpvtw7kUEcInYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i N2UyNmM4My01ZWQyLTRjOGItOGEwMy02Y2IwMGQxZWQzMzgvMC80MDg1ODVDMUQ2 MkE0RjYxOEMwNDI0RTlCRURDM0I5MTQxMUMyMjc2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDA4NTg1QzFENjJBNEY2MThDMDQyNEU5QkVEQzNCOTE0MTFD MjI3Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3ZTI2YzgzLTVlZDItNGM4Yi04 YTAzLTZjYjAwZDFlZDMzOC8wLzMxMzAzMzJlMzEzMjMyMmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnenkwDQYJ KoZIhvcNAQELBQADggEBAKxxjBX46U24HfCA3rCgmm12pzBioxG88t+Znx6P+5Gc OtzSpZfIJjUlSo/ZtQxh3CJTeFboYW1QuQ9OMGQQqgfeYB/Xa9/WeEPYPwmZfZAO ITnpxB/+9pi4BUNK/eh/GAXlX51NWtjPY8u4OhUKv54WBjOWzUbnpybKust2lQZi 650qJCTH6pIa//GVhx17qkDSS0vnuO2VsXS+X/t3PP0UO/uxkAsH1YOJ7VQqtlNU +A7y6tt8cp6KjHU7I0fYdKs6sarB5NL1kZX9Xr8gQgZnqXNZpuc6+rNOTrQ7xlkL P2bhaFXbNpFPbapdGVoo5HYXKkuHUg/vkyP2VX6n3w8= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:35 2024 by rpki-client on console-ams.rpki-client.org