$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa File: 3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa (raw, json) Hash identifier: 2sCJDv/VLB2+ZucXetRLmjAhwhdmhXnQZHqNCIpfyJU= Subject key identifier: F4:81:56:96:78:77:10:74:2C:63:35:36:D5:37:2E:79:94:D3:8D:73 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 30A38DF81A7E811563FE63D8F9C3A49898D2539C Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa Signing time: Thu 11 Jan 2024 08:12:11 +0000 ROA not before: Thu 11 Jan 2024 08:07:11 +0000 ROA not after: Thu 09 Jan 2025 08:12:11 +0000 asID: 7713 IP address blocks: 103.149.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:a3:8d:f8:1a:7e:81:15:63:fe:63:d8:f9:c3:a4:98:98:d2:53:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Jan 11 08:07:11 2024 GMT Not After : Jan 9 08:12:11 2025 GMT Subject: CN=F4815696787710742C633536D5372E7994D38D73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:64:8c:3c:6b:91:5a:24:bb:e7:61:5f:ba:2d: 64:24:06:7d:f2:b9:99:62:4c:69:f5:3e:12:f5:b7: 00:00:4b:63:5f:36:47:b5:1c:5e:33:93:a4:ff:cd: 76:a0:5e:41:75:88:8c:4f:be:a1:73:fa:4c:ea:48: 90:b0:66:52:e6:ae:42:24:53:0c:00:15:85:61:19: c6:db:0a:10:e8:2e:be:97:3c:16:b4:75:4a:0d:c8: 07:06:f0:66:3e:57:6c:6a:d0:65:ac:a1:96:88:28: f2:56:57:b8:41:51:7a:11:f0:1b:d2:bd:65:47:43: 0b:f7:83:2b:e7:09:fc:81:8a:b5:ae:c1:24:d1:8c: 4d:d2:8b:a8:16:67:25:26:4f:76:78:25:84:d7:e9: 78:a1:6c:ed:e2:48:22:c8:ad:aa:06:ff:71:ab:7c: 33:20:00:40:52:15:e7:76:fa:e1:24:8e:66:d1:f4: 69:59:54:55:1e:c0:68:f9:3b:96:3e:af:bc:b5:b5: 87:92:b5:08:04:77:b9:26:93:cc:6a:ec:6e:b4:cf: 91:95:2b:ed:02:03:63:25:18:1b:6e:f5:c9:b9:c8: 20:91:ba:b0:a4:79:6a:52:23:15:d0:ad:24:e8:bc: 67:a4:ab:1d:c0:a1:67:77:ae:f8:67:23:11:46:36: 88:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:81:56:96:78:77:10:74:2C:63:35:36:D5:37:2E:79:94:D3:8D:73 X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.121.0/24 Signature Algorithm: sha256WithRSAEncryption 34:68:c0:cb:5d:50:a9:e9:7c:07:d3:bd:44:e5:91:c8:a6:5c: b7:03:51:f4:06:08:7e:fb:26:b0:87:a9:6f:1f:53:1e:5c:7d: 49:8c:b4:02:85:ea:18:25:35:de:a3:52:50:76:54:d4:21:de: 72:58:cb:68:0c:e2:01:60:87:d7:c9:5f:f2:5f:aa:39:36:04: b3:9d:fd:0d:ff:84:78:f7:07:85:cb:e2:84:fe:76:a9:67:e3: 95:1f:0c:55:2a:67:55:93:dd:1b:9c:79:a3:b1:01:f2:f5:1a: 51:80:f9:d9:30:e8:47:b3:98:62:ee:4c:65:45:60:45:d0:01: 0c:87:95:a6:32:a0:19:87:0e:57:16:42:48:6e:b5:2c:39:ab: 38:e5:90:30:c9:8a:38:03:96:65:d9:9e:09:3b:d2:65:48:cd: e7:b1:ed:bc:91:8a:d4:da:bc:e9:e6:dc:ce:f8:8a:8e:15:88: 3d:86:73:0a:4e:d0:b1:99:0e:ca:2f:5b:46:2e:3a:45:84:39: b5:da:4d:94:a1:fe:84:c4:2d:cb:6c:2d:70:06:25:5b:b8:d7: 60:b1:7d:12:67:a4:96:eb:5d:8c:a3:96:dd:c9:e8:3f:09:db: 8f:79:c8:63:b0:22:62:3c:f2:37:46:8f:ba:e1:d6:57:e2:b9: e8:18:33:50 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMKON+Bp+gRVj/mPY+cOkmJjSU5wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNDAxMTEwODA3MTFaFw0yNTAxMDkwODEyMTFaMDMxMTAvBgNV BAMTKEY0ODE1Njk2Nzg3NzEwNzQyQzYzMzUzNkQ1MzcyRTc5OTREMzhENzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDZIw8a5FaJLvnYV+6LWQkBn3y uZliTGn1PhL1twAAS2NfNke1HF4zk6T/zXagXkF1iIxPvqFz+kzqSJCwZlLmrkIk UwwAFYVhGcbbChDoLr6XPBa0dUoNyAcG8GY+V2xq0GWsoZaIKPJWV7hBUXoR8BvS vWVHQwv3gyvnCfyBirWuwSTRjE3Si6gWZyUmT3Z4JYTX6XihbO3iSCLIraoG/3Gr fDMgAEBSFed2+uEkjmbR9GlZVFUewGj5O5Y+r7y1tYeStQgEd7kmk8xq7G60z5GV K+0CA2MlGBtu9cm5yCCRurCkeWpSIxXQrSTovGekqx3AoWd3rvhnIxFGNoipAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU9IFWlnh3EHQsYzU21TcueZTTjXMwHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4ZDBlNjQwLTIyZTktNDQxYy04 NjM0LWY5NTI1MzA3ZGE3Ni8wLzMxMzAzMzJlMzEzNDM5MmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNzM3MzEzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeVeTANBgkqhkiG 9w0BAQsFAAOCAQEANGjAy11Qqel8B9O9ROWRyKZctwNR9AYIfvsmsIepbx9THlx9 SYy0AoXqGCU13qNSUHZU1CHecljLaAziAWCH18lf8l+qOTYEs539Df+EePcHhcvi hP52qWfjlR8MVSpnVZPdG5x5o7EB8vUaUYD52TDoR7OYYu5MZUVgRdABDIeVpjKg GYcOVxZCSG61LDmrOOWQMMmKOAOWZdmeCTvSZUjN57HtvJGK1Nq86ebczviKjhWI PYZzCk7QsZkOyi9bRi46RYQ5tdpNlKH+hMQty2wtcAYlW7jXYLF9EmeklutdjKOW 3cnoPwnbj3nIY7AiYjzyN0aPuuHWV+K56BgzUA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:33 2024 by rpki-client on console-fra.rpki-client.org