$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa File: 3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa (raw, json) Hash identifier: RZP1u67IkDY1VxYw8axwNJaL5jYZcoL8kOhW1c7O+Eg= Subject key identifier: 1B:A4:31:A5:B0:2E:23:1F:C8:C6:2B:03:0F:C5:B0:FC:6D:D2:2C:5A Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 76901D42D92DE3CBAC3805740AB1753C4145AD01 Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa Signing time: Fri 22 Nov 2024 10:02:38 +0000 ROA not before: Fri 22 Nov 2024 09:57:38 +0000 ROA not after: Fri 21 Nov 2025 10:02:38 +0000 asID: 140023 IP address blocks: 103.149.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:90:1d:42:d9:2d:e3:cb:ac:38:05:74:0a:b1:75:3c:41:45:ad:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Nov 22 09:57:38 2024 GMT Not After : Nov 21 10:02:38 2025 GMT Subject: CN=1BA431A5B02E231FC8C62B030FC5B0FC6DD22C5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f3:2e:8c:a1:94:ce:f1:5a:04:95:e6:55:0c: 31:5d:da:03:71:c8:4d:96:e8:71:c5:86:72:84:58: b9:f4:8d:ec:0d:84:85:18:60:5c:ff:03:aa:48:bc: 69:c0:9d:4a:b7:ef:f5:63:9f:04:73:74:f1:a9:47: 3f:21:b2:50:6a:eb:25:1f:8e:bc:0a:fa:8b:3e:42: b8:ba:f3:48:af:fb:ff:77:21:55:f7:1d:dc:8c:40: d2:1e:a8:97:59:51:37:d8:a4:43:34:52:35:65:90: 5b:e5:89:61:21:d7:b3:f6:d5:fb:40:2d:67:3b:6d: 84:d9:e1:d7:b0:0e:51:d9:cf:76:98:e9:f4:e1:48: 9e:a7:2a:78:80:c6:6a:2a:a7:30:57:3a:25:46:bb: 0d:37:11:a8:a8:72:b9:7c:42:3b:5f:86:af:b5:e2: 6c:c5:29:06:fa:72:5a:37:22:13:8e:d4:ff:bd:77: d1:2a:42:93:9b:56:ff:04:e4:3a:c4:39:80:20:77: 30:26:84:17:78:8e:b7:58:1a:65:ea:cb:26:43:ab: da:65:2d:7e:1c:62:9b:65:04:99:c5:75:e7:e9:d4: a3:f8:0a:48:b1:17:cf:d4:56:a0:f2:9d:03:a4:b4: c2:09:f2:a0:b6:8a:11:73:2e:5d:c7:96:7c:bd:1a: 93:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:A4:31:A5:B0:2E:23:1F:C8:C6:2B:03:0F:C5:B0:FC:6D:D2:2C:5A X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.120.0/23 Signature Algorithm: sha256WithRSAEncryption 09:32:4c:b9:82:3e:bc:84:b9:d0:80:21:9b:10:7c:23:c7:93: a6:0a:03:bf:fc:3d:8f:a2:61:50:a6:1b:87:86:7c:80:89:62: bb:68:64:41:6e:86:bb:cd:67:d8:e3:bb:c7:27:dd:d1:cc:fc: 5b:d0:5f:e6:4d:de:78:66:e4:7f:52:60:ff:d7:b5:05:d0:ea: 51:91:c0:e0:11:60:43:af:dc:83:10:e8:47:9b:f5:22:26:10: 58:80:f1:5d:3c:cd:50:fa:d0:e3:78:1d:7d:33:64:58:a9:3c: 65:92:89:6c:18:37:f2:f9:5f:a5:fd:a4:e7:bf:54:d9:bc:a4: 98:53:88:c5:9a:48:cc:6e:5d:b5:70:07:81:46:f2:bd:9b:9a: b7:41:11:30:a3:9b:37:a0:4d:9c:a2:4d:86:f4:47:e5:f7:71: 4c:db:49:3e:57:e7:aa:98:2f:5e:30:43:d1:31:24:d9:48:fb: 9d:f2:69:66:d9:a4:c3:b9:8f:ad:ed:dc:46:3d:5c:75:79:c8: fa:b9:10:70:d3:78:28:9d:be:cf:62:96:45:71:4c:aa:28:d8: 21:8c:94:4e:fb:73:84:53:f1:9e:dd:5f:d1:e1:51:df:11:a8: aa:91:59:96:6e:45:ee:4b:5a:9a:47:26:2c:3d:c9:c9:e4:27: cc:8a:8a:da -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdpAdQtkt48usOAV0CrF1PEFFrQEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNDExMjIwOTU3MzhaFw0yNTExMjExMDAyMzhaMDMxMTAvBgNV BAMTKDFCQTQzMUE1QjAyRTIzMUZDOEM2MkIwMzBGQzVCMEZDNkREMjJDNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE8y6MoZTO8VoEleZVDDFd2gNx yE2W6HHFhnKEWLn0jewNhIUYYFz/A6pIvGnAnUq37/VjnwRzdPGpRz8hslBq6yUf jrwK+os+Qri680iv+/93IVX3HdyMQNIeqJdZUTfYpEM0UjVlkFvliWEh17P21ftA LWc7bYTZ4dewDlHZz3aY6fThSJ6nKniAxmoqpzBXOiVGuw03Eaiocrl8Qjtfhq+1 4mzFKQb6clo3IhOO1P+9d9EqQpObVv8E5DrEOYAgdzAmhBd4jrdYGmXqyyZDq9pl LX4cYptlBJnFdefp1KP4CkixF8/UVqDynQOktMIJ8qC2ihFzLl3Hlny9GpNxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUG6QxpbAuIx/IxisDD8Ww/G3SLFowHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4ZDBlNjQwLTIyZTktNDQxYy04 NjM0LWY5NTI1MzA3ZGE3Ni8wLzMxMzAzMzJlMzEzNDM5MmUzMTMyMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzAzMDMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlXgwDQYJ KoZIhvcNAQELBQADggEBAAkyTLmCPryEudCAIZsQfCPHk6YKA7/8PY+iYVCmG4eG fICJYrtoZEFuhrvNZ9jju8cn3dHM/FvQX+ZN3nhm5H9SYP/XtQXQ6lGRwOARYEOv 3IMQ6Eeb9SImEFiA8V08zVD60ON4HX0zZFipPGWSiWwYN/L5X6X9pOe/VNm8pJhT iMWaSMxuXbVwB4FG8r2bmrdBETCjmzegTZyiTYb0R+X3cUzbST5X56qYL14wQ9Ex JNlI+53yaWbZpMO5j63t3EY9XHV5yPq5EHDTeCidvs9ilkVxTKoo2CGMlE77c4RT 8Z7dX9HhUd8RqKqRWZZuRe5LWppHJiw9ycnkJ8yKito= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:57 2024 by rpki-client on console-ams.rpki-client.org