$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa File: 3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa (raw, json) Hash identifier: ainzYOWFmRuYIwOjzy7qOOprxvfaT81WL+OFK0r0rV4= Subject key identifier: EC:6C:C3:6B:EC:13:91:C5:90:90:56:41:02:06:13:C6:7F:9F:65:37 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 3218CD0F00D77CF2864D9B2F177D825A7B57D03C Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa Signing time: Thu 11 Jan 2024 08:11:08 +0000 ROA not before: Thu 11 Jan 2024 08:06:08 +0000 ROA not after: Thu 09 Jan 2025 08:11:08 +0000 asID: 7713 IP address blocks: 103.149.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:18:cd:0f:00:d7:7c:f2:86:4d:9b:2f:17:7d:82:5a:7b:57:d0:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Jan 11 08:06:08 2024 GMT Not After : Jan 9 08:11:08 2025 GMT Subject: CN=EC6CC36BEC1391C590905641020613C67F9F6537 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:94:7d:6f:2c:3c:0d:41:22:d3:43:62:be:42: 9c:0e:65:f8:99:86:d1:3c:8f:d6:e7:68:d0:9b:aa: c0:29:be:f2:d6:a1:d6:c4:70:c0:ba:59:a8:2f:31: 47:7e:a2:37:fa:16:0f:33:e4:fc:60:fc:57:db:7d: a8:c5:94:d6:74:a8:fc:ca:df:a9:9f:f6:0e:76:56: 38:fd:db:22:1d:06:f2:d9:96:f5:e2:8d:8e:19:e3: ac:d3:e9:96:1d:e6:2b:7f:5e:be:04:ff:8e:a4:99: 7b:dd:36:bf:aa:9d:a7:a6:cc:24:e9:ae:5d:80:2d: 8c:87:9d:4c:12:0d:fe:80:96:bf:87:c7:24:cb:d4: c8:64:47:ce:c5:cd:ff:26:55:18:36:2d:c4:e0:9d: e3:b8:c3:04:13:1b:17:cb:d7:86:02:b8:b1:33:be: 18:88:52:b3:8e:18:16:8c:0c:13:21:5f:cd:d7:20: 7f:14:89:39:40:f9:c1:f9:f8:48:7e:f5:77:a1:39: 82:13:fb:84:c2:28:fb:c8:6c:6a:b3:81:aa:56:f7: 0f:ec:7a:59:c3:23:ed:12:9b:f6:d0:49:e6:4c:e0: 01:c8:a9:64:1e:64:ac:2d:13:41:a3:76:4c:e7:94: 95:fa:6c:69:2d:f7:13:4d:41:73:74:04:90:57:fe: 33:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:6C:C3:6B:EC:13:91:C5:90:90:56:41:02:06:13:C6:7F:9F:65:37 X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.120.0/24 Signature Algorithm: sha256WithRSAEncryption 79:89:77:fc:07:24:25:e9:ab:86:86:ce:02:ea:b6:64:27:e9: ae:be:97:9c:79:a0:3e:64:50:24:92:73:79:eb:45:0f:94:bd: ce:91:80:36:23:4d:4a:37:66:46:a9:58:7a:de:6e:e7:35:ee: 73:99:13:88:84:1b:74:35:10:56:75:89:81:0c:5a:9b:aa:09: 35:cf:0e:0e:7f:39:a7:1b:3e:5a:a1:f0:32:16:06:07:ba:c3: 17:eb:c6:c0:27:82:b1:07:ed:45:78:3f:9c:27:07:e3:c4:2a: e4:7a:ab:18:bc:d4:86:4b:9a:1a:fc:60:63:b0:3c:a4:2e:5a: 3c:0b:26:1f:40:28:00:04:26:1e:83:52:64:af:a1:2e:c2:aa: cd:f8:0f:4a:70:62:f1:d6:e2:2d:a2:1c:39:ff:ad:4d:71:5c: d5:7a:98:b6:dc:74:0f:6b:c3:65:47:fb:6d:7d:1a:a1:af:4b: 00:01:57:bb:19:06:41:8c:c8:42:d9:35:39:bd:6b:87:6c:68: 98:86:26:c4:54:d4:6e:c5:11:c9:b7:23:9c:06:7d:2a:cf:2c: 4a:32:f5:62:59:66:56:ae:4b:12:19:77:54:6c:e4:18:33:69: 78:ed:39:29:bb:e2:64:98:0d:31:cc:ef:ee:be:e0:ce:d8:1f: 87:87:28:ed -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMhjNDwDXfPKGTZsvF32CWntX0DwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNDAxMTEwODA2MDhaFw0yNTAxMDkwODExMDhaMDMxMTAvBgNV BAMTKEVDNkNDMzZCRUMxMzkxQzU5MDkwNTY0MTAyMDYxM0M2N0Y5RjY1MzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWlH1vLDwNQSLTQ2K+QpwOZfiZ htE8j9bnaNCbqsApvvLWodbEcMC6WagvMUd+ojf6Fg8z5Pxg/FfbfajFlNZ0qPzK 36mf9g52Vjj92yIdBvLZlvXijY4Z46zT6ZYd5it/Xr4E/46kmXvdNr+qnaemzCTp rl2ALYyHnUwSDf6Alr+HxyTL1MhkR87Fzf8mVRg2LcTgneO4wwQTGxfL14YCuLEz vhiIUrOOGBaMDBMhX83XIH8UiTlA+cH5+Eh+9XehOYIT+4TCKPvIbGqzgapW9w/s elnDI+0Sm/bQSeZM4AHIqWQeZKwtE0GjdkznlJX6bGkt9xNNQXN0BJBX/jMZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU7GzDa+wTkcWQkFZBAgYTxn+fZTcwHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4ZDBlNjQwLTIyZTktNDQxYy04 NjM0LWY5NTI1MzA3ZGE3Ni8wLzMxMzAzMzJlMzEzNDM5MmUzMTMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNzM3MzEzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeVeDANBgkqhkiG 9w0BAQsFAAOCAQEAeYl3/AckJemrhobOAuq2ZCfprr6XnHmgPmRQJJJzeetFD5S9 zpGANiNNSjdmRqlYet5u5zXuc5kTiIQbdDUQVnWJgQxam6oJNc8ODn85pxs+WqHw MhYGB7rDF+vGwCeCsQftRXg/nCcH48Qq5HqrGLzUhkuaGvxgY7A8pC5aPAsmH0Ao AAQmHoNSZK+hLsKqzfgPSnBi8dbiLaIcOf+tTXFc1XqYttx0D2vDZUf7bX0aoa9L AAFXuxkGQYzIQtk1Ob1rh2xomIYmxFTUbsURybcjnAZ9Ks8sSjL1YllmVq5LEhl3 VGzkGDNpeO05KbviZJgNMczv7r7gztgfh4co7Q== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:57 2024 by rpki-client on console-ams.rpki-client.org