$ rpki-client -vvf repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/3130332e3133382e36382e302f32332d3234203d3e20313338383432.roa File: 3130332e3133382e36382e302f32332d3234203d3e20313338383432.roa (raw, json) Hash identifier: Bp8Mfjyw5kTlwKqZsS0YcdD0zxqotHGHvN6sZewOpvY= Subject key identifier: F2:24:91:33:7B:07:67:C5:0C:03:8D:F7:66:DA:05:9B:96:E7:95:D0 Certificate issuer: /CN=251859FA726E84EB8EF1585C6B1F3D925581A938 Certificate serial: 7340890A7B6D98EB1F8FB84823FD6765B7531E27 Authority key identifier: 25:18:59:FA:72:6E:84:EB:8E:F1:58:5C:6B:1F:3D:92:55:81:A9:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/251859FA726E84EB8EF1585C6B1F3D925581A938.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/3130332e3133382e36382e302f32332d3234203d3e20313338383432.roa Signing time: Fri 13 Sep 2024 13:00:01 +0000 ROA not before: Fri 13 Sep 2024 12:55:01 +0000 ROA not after: Fri 12 Sep 2025 13:00:01 +0000 asID: 138842 IP address blocks: 103.138.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/251859FA726E84EB8EF1585C6B1F3D925581A938.crl rsync://repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/251859FA726E84EB8EF1585C6B1F3D925581A938.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/251859FA726E84EB8EF1585C6B1F3D925581A938.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:40:89:0a:7b:6d:98:eb:1f:8f:b8:48:23:fd:67:65:b7:53:1e:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=251859FA726E84EB8EF1585C6B1F3D925581A938 Validity Not Before: Sep 13 12:55:01 2024 GMT Not After : Sep 12 13:00:01 2025 GMT Subject: CN=F22491337B0767C50C038DF766DA059B96E795D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c9:32:d7:0d:a0:15:eb:7a:b5:68:ed:c3:53: 13:4f:a7:98:c1:5d:b2:ce:8b:8e:c3:39:1b:d6:e5: 90:db:0f:6c:13:94:4a:cb:c3:73:28:a5:19:cd:a5: 6c:2d:de:7a:24:d0:c0:39:fe:02:de:27:99:76:c9: 7c:72:41:d9:85:23:b9:74:bd:f0:62:c0:31:1d:53: 12:ce:4e:5a:b1:a2:10:92:b3:85:a6:06:a0:b1:d1: 9d:39:22:04:82:6c:5c:9f:0f:c2:30:3c:8d:50:30: 75:39:d7:24:e5:3e:67:71:16:27:81:93:e4:f5:b6: b3:0e:05:9d:30:b5:7a:8f:f7:f4:0d:f0:51:69:38: cc:a2:bd:9d:9e:90:a0:83:51:32:59:86:72:df:c1: ff:68:33:4c:9d:cd:56:5c:51:ab:b6:5d:cd:4f:92: fd:b9:52:e6:f2:24:9f:3d:9a:81:a7:09:2d:44:7b: 8b:fa:e3:ca:2a:8d:42:74:e0:e8:5a:5e:c4:f3:00: 6a:4d:33:32:a1:f4:72:56:cf:c1:f4:7b:c4:77:4e: 33:b1:10:68:10:ee:ea:77:9d:83:61:b6:bb:58:da: bf:f3:ab:c2:c1:e4:35:ba:cf:a1:3e:e3:bd:f7:4e: be:32:df:de:3c:bc:0f:13:43:f4:8f:0f:55:3e:fd: d8:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:24:91:33:7B:07:67:C5:0C:03:8D:F7:66:DA:05:9B:96:E7:95:D0 X509v3 Authority Key Identifier: keyid:25:18:59:FA:72:6E:84:EB:8E:F1:58:5C:6B:1F:3D:92:55:81:A9:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/251859FA726E84EB8EF1585C6B1F3D925581A938.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/251859FA726E84EB8EF1585C6B1F3D925581A938.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d93674a6-114f-4bb5-85bb-cbb67db2a955/0/3130332e3133382e36382e302f32332d3234203d3e20313338383432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.138.68.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:4a:87:49:54:f2:b6:5c:57:e8:a3:91:cc:ab:f6:1d:86:c8: 62:de:43:78:5b:60:4d:5b:cd:67:09:0f:55:95:dc:a3:f4:c4: 25:b0:35:b6:fd:39:69:bf:0b:d3:5c:93:65:b1:0e:ce:23:61: e4:48:09:d3:c8:83:71:1e:22:32:06:eb:d4:8c:a5:14:79:47: 8e:40:8a:c9:7e:6a:ce:b4:dd:ee:26:75:7a:df:3c:4e:09:3a: 2f:d5:69:ce:8f:66:cf:76:33:36:62:44:4a:29:33:49:d9:ca: e4:b7:07:aa:81:35:59:dd:79:bf:ee:e1:40:f6:20:3a:a7:31: 2b:49:b1:7d:e0:1b:bf:f3:61:e7:06:f9:c6:eb:e0:e9:8d:b1: 79:e6:b5:27:b4:40:4c:fb:0f:59:76:b1:3b:73:ad:cb:b7:47: fc:df:0d:18:89:a1:a8:41:74:cd:17:a3:45:e6:ef:22:c0:6c: 65:c8:56:6d:00:a8:f8:ec:31:9a:00:25:e7:91:9c:36:9d:df: c8:1e:0f:7e:29:e6:27:92:07:55:09:e7:f6:0e:c5:8b:ac:d6: ef:5a:be:63:f7:f4:30:63:2f:ad:1f:eb:ff:b2:9e:bb:30:d8: 59:ff:ca:0b:24:73:9b:44:8a:8a:c9:d7:7c:40:b9:16:a0:79: 70:13:2f:38 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUc0CJCnttmOsfj7hII/1nZbdTHicwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUxODU5RkE3MjZFODRFQjhFRjE1ODVDNkIxRjNEOTI1 NTgxQTkzODAeFw0yNDA5MTMxMjU1MDFaFw0yNTA5MTIxMzAwMDFaMDMxMTAvBgNV BAMTKEYyMjQ5MTMzN0IwNzY3QzUwQzAzOERGNzY2REEwNTlCOTZFNzk1RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoyTLXDaAV63q1aO3DUxNPp5jB XbLOi47DORvW5ZDbD2wTlErLw3MopRnNpWwt3nok0MA5/gLeJ5l2yXxyQdmFI7l0 vfBiwDEdUxLOTlqxohCSs4WmBqCx0Z05IgSCbFyfD8IwPI1QMHU51yTlPmdxFieB k+T1trMOBZ0wtXqP9/QN8FFpOMyivZ2ekKCDUTJZhnLfwf9oM0ydzVZcUau2Xc1P kv25UubyJJ89moGnCS1Ee4v648oqjUJ04OhaXsTzAGpNMzKh9HJWz8H0e8R3TjOx EGgQ7up3nYNhtrtY2r/zq8LB5DW6z6E+4733Tr4y3948vA8TQ/SPD1U+/diBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU8iSRM3sHZ8UMA433ZtoFm5bnldAwHwYDVR0j BBgwFoAUJRhZ+nJuhOuO8Vhcax89klWBqTgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k OTM2NzRhNi0xMTRmLTRiYjUtODViYi1jYmI2N2RiMmE5NTUvMC8yNTE4NTlGQTcy NkU4NEVCOEVGMTU4NUM2QjFGM0Q5MjU1ODFBOTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjUxODU5RkE3MjZFODRFQjhFRjE1ODVDNkIxRjNEOTI1NTgx QTkzOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5MzY3NGE2LTExNGYtNGJiNS04 NWJiLWNiYjY3ZGIyYTk1NS8wLzMxMzAzMzJlMzEzMzM4MmUzNjM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4pEMA0GCSqG SIb3DQEBCwUAA4IBAQAtSodJVPK2XFfoo5HMq/Ydhshi3kN4W2BNW81nCQ9Vldyj 9MQlsDW2/TlpvwvTXJNlsQ7OI2HkSAnTyINxHiIyBuvUjKUUeUeOQIrJfmrOtN3u JnV63zxOCTov1WnOj2bPdjM2YkRKKTNJ2crktweqgTVZ3Xm/7uFA9iA6pzErSbF9 4Bu/82HnBvnG6+DpjbF55rUntEBM+w9ZdrE7c63Lt0f83w0YiaGoQXTNF6NF5u8i wGxlyFZtAKj47DGaACXnkZw2nd/IHg9+KeYnkgdVCef2DsWLrNbvWr5j9/QwYy+t H+v/sp67MNhZ/8oLJHObRIqKydd8QLkWoHlwEy84 -----END CERTIFICATE-----Generated at Sun Nov 24 21:43:11 2024 by rpki-client on console-ams.rpki-client.org