$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa File: 3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: /Yf2UlWt9gQIJc10zBIWfHMTRjWsBAQPZb2JGJfsgWo= Subject key identifier: 4B:9B:50:BE:C4:3F:5A:1B:45:8C:D5:64:44:C9:4E:05:F4:50:DA:10 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 38B5BAD35D6193819699903C255451377EE6EC95 Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa Signing time: Thu 11 Jan 2024 08:15:27 +0000 ROA not before: Thu 11 Jan 2024 08:10:27 +0000 ROA not after: Thu 09 Jan 2025 08:15:27 +0000 asID: 139952 IP address blocks: 103.149.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:b5:ba:d3:5d:61:93:81:96:99:90:3c:25:54:51:37:7e:e6:ec:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Jan 11 08:10:27 2024 GMT Not After : Jan 9 08:15:27 2025 GMT Subject: CN=4B9B50BEC43F5A1B458CD56444C94E05F450DA10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:0d:74:20:9e:92:9e:77:ca:5c:b8:0e:40:a7: 39:8a:02:8a:80:98:25:b1:1e:8d:67:9d:78:ee:f3: 53:03:ad:fb:de:7f:21:98:20:43:8f:61:dd:1a:35: d5:93:5a:c7:94:c8:2c:37:42:12:5c:79:cf:02:e0: 3b:91:d7:ae:e7:d5:25:30:ca:d7:f6:cf:15:62:66: f4:f9:2b:ae:d5:36:92:9e:56:9f:b6:7e:d8:fe:c4: 50:e6:7f:d1:79:47:54:f2:d1:69:3c:34:b0:9f:84: b7:02:0d:0c:8a:e4:b2:4d:db:13:55:49:1a:60:49: 94:b8:3c:b9:c2:b7:76:f1:d3:86:ef:ff:6a:cf:78: f5:31:71:63:94:aa:1f:b4:62:1e:31:5b:08:99:3f: 18:94:d1:5e:f2:7c:e4:7e:82:a7:59:45:3b:79:55: 95:db:fb:51:7b:da:89:69:c3:42:10:e6:db:9a:4e: 6f:04:bd:0c:8a:d4:b0:11:2c:14:11:0c:e9:a9:f5: 87:9b:b5:f5:fa:40:b1:f9:5b:4b:f6:2b:cb:04:6e: 57:ba:23:43:7b:3b:ea:94:98:6b:09:00:a9:ee:31: 4a:84:aa:3b:ad:0d:51:4d:00:c0:04:10:38:f4:69: 30:85:10:cb:ab:81:d3:77:41:10:3a:ba:5e:bb:a3: 77:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:9B:50:BE:C4:3F:5A:1B:45:8C:D5:64:44:C9:4E:05:F4:50:DA:10 X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.121.0/24 Signature Algorithm: sha256WithRSAEncryption 91:93:ce:5a:2b:9b:08:1e:56:05:a7:de:de:67:33:31:50:13: 0b:b0:e6:53:51:42:6b:a8:33:8a:3e:9d:6e:24:fd:32:3a:c5: 97:2e:9e:e1:d2:46:83:13:87:33:06:05:c8:df:6a:d1:a4:f9: bc:7a:4f:33:6d:70:66:2b:1b:da:6b:14:de:04:61:38:cd:63: 92:89:87:c2:f7:df:c9:1d:fd:a8:ef:cc:1f:e0:ca:cd:75:df: 68:74:a3:99:f4:36:13:25:0b:95:fa:8a:95:f5:ce:ac:13:6e: 01:aa:76:f7:07:0c:89:b2:71:04:e4:3d:e7:b0:31:6a:df:07: 5b:ca:db:b8:6e:f7:3a:89:81:ef:cd:dc:a1:a5:18:49:3a:87: 06:80:e9:ed:72:28:5a:cd:fb:ab:e0:7e:04:31:90:a1:30:ef: b5:42:12:f3:08:f3:1d:f2:dc:fc:80:4b:bc:9e:96:6f:4e:7b: ca:a7:49:e6:42:58:8f:7b:4c:f8:95:05:51:a7:56:37:d9:fb: b3:fd:c7:45:04:51:54:c5:80:8a:5f:50:3d:ac:eb:02:8d:3e: 0f:4b:0b:4c:db:26:66:c4:25:70:fb:f1:17:3c:0e:fa:c3:6b: 0e:92:a8:d8:b4:80:22:96:79:1d:9b:8e:f5:0f:9e:d8:62:04: d8:00:79:4a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOLW6011hk4GWmZA8JVRRN37m7JUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNDAxMTEwODEwMjdaFw0yNTAxMDkwODE1MjdaMDMxMTAvBgNV BAMTKDRCOUI1MEJFQzQzRjVBMUI0NThDRDU2NDQ0Qzk0RTA1RjQ1MERBMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaDXQgnpKed8pcuA5ApzmKAoqA mCWxHo1nnXju81MDrfvefyGYIEOPYd0aNdWTWseUyCw3QhJcec8C4DuR167n1SUw ytf2zxViZvT5K67VNpKeVp+2ftj+xFDmf9F5R1Ty0Wk8NLCfhLcCDQyK5LJN2xNV SRpgSZS4PLnCt3bx04bv/2rPePUxcWOUqh+0Yh4xWwiZPxiU0V7yfOR+gqdZRTt5 VZXb+1F72olpw0IQ5tuaTm8EvQyK1LARLBQRDOmp9YebtfX6QLH5W0v2K8sEble6 I0N7O+qUmGsJAKnuMUqEqjutDVFNAMAEEDj0aTCFEMurgdN3QRA6ul67o3fDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUS5tQvsQ/WhtFjNVkRMlOBfRQ2hAwHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4ZDBlNjQwLTIyZTktNDQxYy04 NjM0LWY5NTI1MzA3ZGE3Ni8wLzMxMzAzMzJlMzEzNDM5MmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnlXkwDQYJ KoZIhvcNAQELBQADggEBAJGTzlormwgeVgWn3t5nMzFQEwuw5lNRQmuoM4o+nW4k /TI6xZcunuHSRoMThzMGBcjfatGk+bx6TzNtcGYrG9prFN4EYTjNY5KJh8L338kd /ajvzB/gys1132h0o5n0NhMlC5X6ipX1zqwTbgGqdvcHDImycQTkPeewMWrfB1vK 27hu9zqJge/N3KGlGEk6hwaA6e1yKFrN+6vgfgQxkKEw77VCEvMI8x3y3PyAS7ye lm9Oe8qnSeZCWI97TPiVBVGnVjfZ+7P9x0UEUVTFgIpfUD2s6wKNPg9LC0zbJmbE JXD78Rc8DvrDaw6SqNi0gCKWeR2bjvUPnthiBNgAeUo= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:57 2024 by rpki-client on console-ams.rpki-client.org