$ rpki-client -vvf repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/3130332e3134312e32302e302f32332d3233203d3e20313338383837.roa File: 3130332e3134312e32302e302f32332d3233203d3e20313338383837.roa (raw, json) Hash identifier: JOw9fnf2+llt+bHgY5YC1ivMLd9ZzOF5XKFMaUzNn4I= Subject key identifier: EC:05:59:20:75:D0:CA:99:3B:26:F6:98:4A:49:75:56:FF:88:6D:21 Certificate issuer: /CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D Certificate serial: 71651B9D992DBB8E76A2256B44AE59D17A8EBBE7 Authority key identifier: 80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/3130332e3134312e32302e302f32332d3233203d3e20313338383837.roa Signing time: Fri 30 Aug 2024 16:02:04 +0000 ROA not before: Fri 30 Aug 2024 15:57:04 +0000 ROA not after: Fri 29 Aug 2025 16:02:04 +0000 asID: 138887 IP address blocks: 103.141.20.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.crl rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:65:1b:9d:99:2d:bb:8e:76:a2:25:6b:44:ae:59:d1:7a:8e:bb:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80F9ED59290AD77DE2856ECFD8340E28FF858E3D Validity Not Before: Aug 30 15:57:04 2024 GMT Not After : Aug 29 16:02:04 2025 GMT Subject: CN=EC05592075D0CA993B26F6984A497556FF886D21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:16:b8:ec:78:66:81:b2:7f:fa:b1:a4:c9:bb: 79:64:05:f8:d5:f7:c6:7a:1e:b4:12:e7:31:a2:e0: c6:a4:0a:28:50:e9:1d:a2:76:32:05:cb:b9:98:f5: a5:96:9c:5d:62:ef:08:c5:89:f2:f0:29:27:1b:c0: d6:70:6e:d7:b7:73:5b:93:c2:58:bb:43:b8:d1:53: ce:70:30:12:1c:17:cf:df:e3:88:14:3c:c9:3c:1a: 33:00:7b:c8:f7:37:5d:ab:bd:2b:69:2e:f2:67:2c: 38:f5:ea:5a:aa:93:37:4e:21:39:8d:30:6c:8a:fb: 78:ef:ef:0f:d9:2a:2a:d7:01:f7:d9:3f:21:fd:70: 43:a9:66:2c:c0:05:da:94:5a:d4:6a:d0:ee:f2:b8: 1a:58:9d:90:bb:d2:5f:8f:5b:d6:1d:c5:6e:b8:d3: 65:a6:50:31:3a:1a:69:7b:b7:8f:96:d6:d2:bd:30: 79:60:1d:56:3f:b9:df:78:52:c5:50:1b:57:94:31: f1:c3:a0:85:41:d3:56:69:80:ec:2f:7c:1e:ac:93: 52:d4:e8:68:d1:8b:d7:a6:59:e4:a7:3d:e0:85:46: d9:21:7c:8a:04:cd:85:b6:3c:3c:1d:35:3c:2a:88: b1:7d:16:8e:cc:4e:2c:dc:a2:d6:30:b4:a4:c3:22: a2:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:05:59:20:75:D0:CA:99:3B:26:F6:98:4A:49:75:56:FF:88:6D:21 X509v3 Authority Key Identifier: keyid:80:F9:ED:59:29:0A:D7:7D:E2:85:6E:CF:D8:34:0E:28:FF:85:8E:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/80F9ED59290AD77DE2856ECFD8340E28FF858E3D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c07c88da-2b56-487e-9efe-571170b10286/0/3130332e3134312e32302e302f32332d3233203d3e20313338383837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.141.20.0/23 Signature Algorithm: sha256WithRSAEncryption 03:f9:30:46:98:58:1e:a3:d3:7d:bd:9b:c0:bd:3d:e4:43:80: dd:f7:08:39:29:8c:02:e6:d3:f1:22:47:7d:03:50:b7:ed:cf: a5:e7:31:5c:0d:89:b9:f8:20:f3:1a:55:78:33:92:c2:59:b5: 50:88:a4:93:b6:e1:f3:e7:8c:89:6d:de:6e:27:37:35:ae:a1: c1:19:22:76:09:8e:d8:4a:ca:ca:18:78:8d:95:9e:8d:7b:86: 08:9e:5c:1e:53:7d:d5:31:0a:92:c3:17:16:df:27:94:77:d1: 3b:b2:1e:cb:a2:00:aa:05:b5:63:37:40:a5:02:a4:78:7d:71: 10:75:c7:e1:ae:91:66:34:49:fe:96:13:07:a3:b2:04:d5:76: ff:66:05:6d:10:28:8c:0a:19:e6:94:ca:24:e0:8f:c7:95:2f: 98:e4:e1:bd:20:a8:67:7b:24:73:2a:14:02:bf:92:7e:da:b3: 4f:f5:48:80:dc:1d:fe:da:10:d9:a5:32:ee:e4:2d:b2:72:4d: dc:b3:2c:71:cd:f9:83:32:a6:04:50:43:5d:d5:82:bd:61:5e: 36:aa:f9:f6:34:d7:d5:07:0f:e6:ae:b2:17:3d:b7:6b:8d:4c: b3:14:93:30:d7:c1:a4:9e:c8:fe:19:6e:5f:7e:77:63:50:27: 39:82:8b:ba -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcWUbnZktu452oiVrRK5Z0XqOu+cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODBGOUVENTkyOTBBRDc3REUyODU2RUNGRDgzNDBFMjhG Rjg1OEUzRDAeFw0yNDA4MzAxNTU3MDRaFw0yNTA4MjkxNjAyMDRaMDMxMTAvBgNV BAMTKEVDMDU1OTIwNzVEMENBOTkzQjI2RjY5ODRBNDk3NTU2RkY4ODZEMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeFrjseGaBsn/6saTJu3lkBfjV 98Z6HrQS5zGi4MakCihQ6R2idjIFy7mY9aWWnF1i7wjFifLwKScbwNZwbte3c1uT wli7Q7jRU85wMBIcF8/f44gUPMk8GjMAe8j3N12rvStpLvJnLDj16lqqkzdOITmN MGyK+3jv7w/ZKirXAffZPyH9cEOpZizABdqUWtRq0O7yuBpYnZC70l+PW9YdxW64 02WmUDE6Gml7t4+W1tK9MHlgHVY/ud94UsVQG1eUMfHDoIVB01ZpgOwvfB6sk1LU 6GjRi9emWeSnPeCFRtkhfIoEzYW2PDwdNTwqiLF9Fo7MTizcotYwtKTDIqL9AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU7AVZIHXQypk7JvaYSkl1Vv+IbSEwHwYDVR0j BBgwFoAUgPntWSkK133ihW7P2DQOKP+Fjj0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j MDdjODhkYS0yYjU2LTQ4N2UtOWVmZS01NzExNzBiMTAyODYvMC84MEY5RUQ1OTI5 MEFENzdERTI4NTZFQ0ZEODM0MEUyOEZGODU4RTNELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODBGOUVENTkyOTBBRDc3REUyODU2RUNGRDgzNDBFMjhGRjg1 OEUzRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MwN2M4OGRhLTJiNTYtNDg3ZS05 ZWZlLTU3MTE3MGIxMDI4Ni8wLzMxMzAzMzJlMzEzNDMxMmUzMjMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM4MzgzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ40UMA0GCSqG SIb3DQEBCwUAA4IBAQAD+TBGmFgeo9N9vZvAvT3kQ4Dd9wg5KYwC5tPxIkd9A1C3 7c+l5zFcDYm5+CDzGlV4M5LCWbVQiKSTtuHz54yJbd5uJzc1rqHBGSJ2CY7YSsrK GHiNlZ6Ne4YInlweU33VMQqSwxcW3yeUd9E7sh7LogCqBbVjN0ClAqR4fXEQdcfh rpFmNEn+lhMHo7IE1Xb/ZgVtECiMChnmlMok4I/HlS+Y5OG9IKhneyRzKhQCv5J+ 2rNP9UiA3B3+2hDZpTLu5C2yck3csyxxzfmDMqYEUENd1YK9YV42qvn2NNfVBw/m rrIXPbdrjUyzFJMw18Gknsj+GW5ffndjUCc5gou6 -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:52 2024 by rpki-client on console-fra.rpki-client.org