$ rpki-client -vvf repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130342e302f32322d3234203d3e20313338303730.roa File: 3130332e3132332e3130342e302f32322d3234203d3e20313338303730.roa (raw, json) Hash identifier: WidEb5Qk7hi5vGeR2fyuZGCUmZH1CLGfw5gxZCIPVm0= Subject key identifier: 86:2E:B8:ED:E4:7B:61:F3:19:97:74:92:2E:7D:9C:35:A9:6F:15:CD Certificate issuer: /CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Certificate serial: 70F3A35B906DE3E4E6B57F5C85E0037804DD937D Authority key identifier: 1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130342e302f32322d3234203d3e20313338303730.roa Signing time: Mon 06 May 2024 11:45:05 +0000 ROA not before: Mon 06 May 2024 11:40:05 +0000 ROA not after: Mon 05 May 2025 11:45:05 +0000 asID: 138070 IP address blocks: 103.123.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:f3:a3:5b:90:6d:e3:e4:e6:b5:7f:5c:85:e0:03:78:04:dd:93:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Validity Not Before: May 6 11:40:05 2024 GMT Not After : May 5 11:45:05 2025 GMT Subject: CN=862EB8EDE47B61F3199774922E7D9C35A96F15CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e5:17:51:af:ee:78:78:45:14:2a:70:e2:62: 35:44:ee:d9:6d:38:1e:08:69:cf:3e:88:6e:f7:24: a8:31:4d:fd:5d:38:cd:a5:fe:7e:ac:d8:0f:ae:5d: aa:59:24:4e:b9:69:f5:b3:cf:37:01:69:42:69:53: 57:9e:6b:72:8a:21:17:a0:b2:e3:e9:9c:0d:fd:8f: 9b:9a:53:b3:9e:f5:ee:36:3a:e0:11:21:96:05:fe: af:68:5f:48:79:2e:0f:f5:80:4c:3e:4e:b2:1e:0d: 3c:a8:e9:6e:54:54:34:02:43:c1:85:3e:e2:39:87: fb:8e:cc:a6:cd:08:88:4d:0c:54:e6:49:3d:92:b7: cd:07:42:cc:36:e0:61:72:14:76:63:10:6f:ec:b7: fb:b7:a1:9f:32:96:1c:4d:31:a9:8e:70:1a:3e:df: 3e:48:ce:64:a2:8c:87:a1:84:4b:2c:55:2b:be:d6: db:25:cb:88:5d:21:df:5c:4b:eb:e3:86:9a:5a:cc: c0:08:a0:4d:f8:ea:a5:d4:d7:6e:04:9b:6d:d3:9b: 9d:48:77:37:03:a2:86:52:8d:15:8f:7f:48:ff:59: 2b:4e:54:6a:86:75:d7:a6:28:1d:a5:b9:d3:b3:2e: e8:2f:e1:92:82:c2:94:b2:85:af:96:db:a2:31:71: a2:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:2E:B8:ED:E4:7B:61:F3:19:97:74:92:2E:7D:9C:35:A9:6F:15:CD X509v3 Authority Key Identifier: keyid:1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130342e302f32322d3234203d3e20313338303730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.104.0/22 Signature Algorithm: sha256WithRSAEncryption 22:1d:21:8c:e4:46:c4:cd:21:0d:8c:4a:4a:c3:70:35:ce:98: 9a:0c:bb:e9:b0:d9:d1:e7:95:05:a0:31:26:3d:86:44:9e:c6: 5b:2a:c6:2c:0a:4d:f9:27:94:c5:88:7c:81:98:99:37:5f:7e: 77:88:09:1d:bb:1c:f5:0f:0b:11:ee:1c:c8:11:e2:d4:8d:95: a8:fd:96:4f:6c:15:9f:82:cc:d4:a3:4d:ba:06:1a:c7:50:1c: ff:65:dd:41:ca:3e:49:cc:95:fb:7b:1f:a8:8b:cb:fc:bd:55: 57:34:a4:f1:23:23:0b:9f:e2:b7:04:46:5c:f7:79:97:58:c2: 5f:e7:b7:b4:e9:af:dd:ae:ce:49:ee:a9:05:ee:0e:fd:58:69: b2:8c:e0:fa:fa:bb:64:45:08:aa:1d:f5:b8:1f:b4:6b:17:19: 64:2e:19:f9:d0:9c:e6:f9:8f:70:26:36:7f:f3:ae:06:9e:5b: 01:c2:52:28:cc:5f:99:6b:33:15:a7:7b:9c:43:1f:94:b7:b5: e3:fc:ca:89:e7:d2:0a:35:3d:cc:55:c2:8c:bd:3c:58:35:b5: f6:88:d6:69:f8:ab:fa:1f:f5:3d:f3:91:04:82:d3:77:62:b6: ae:73:95:b6:68:88:cf:2f:ac:96:8e:b2:7a:bc:96:c2:0e:42: fc:f5:e7:21 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcPOjW5Bt4+TmtX9cheADeATdk30wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEy QjRCMkRFRDAeFw0yNDA1MDYxMTQwMDVaFw0yNTA1MDUxMTQ1MDVaMDMxMTAvBgNV BAMTKDg2MkVCOEVERTQ3QjYxRjMxOTk3NzQ5MjJFN0Q5QzM1QTk2RjE1Q0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC35RdRr+54eEUUKnDiYjVE7tlt OB4Iac8+iG73JKgxTf1dOM2l/n6s2A+uXapZJE65afWzzzcBaUJpU1eea3KKIReg suPpnA39j5uaU7Oe9e42OuARIZYF/q9oX0h5Lg/1gEw+TrIeDTyo6W5UVDQCQ8GF PuI5h/uOzKbNCIhNDFTmST2St80HQsw24GFyFHZjEG/st/u3oZ8ylhxNMamOcBo+ 3z5IzmSijIehhEssVSu+1tsly4hdId9cS+vjhppazMAIoE346qXU124Em23Tm51I dzcDooZSjRWPf0j/WStOVGqGddemKB2ludOzLugv4ZKCwpSyha+W26IxcaLjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUhi647eR7YfMZl3SSLn2cNalvFc0wHwYDVR0j BBgwFoAUHKnkBxAmLadRpn6TJHfW4StLLe0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YWQ2N2Q1Zi01NzEzLTQxNTMtODcxYi0xYjAwOGY3ZmZkZDIvMC8xQ0E5RTQwNzEw MjYyREE3NTFBNjdFOTMyNDc3RDZFMTJCNEIyREVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEyQjRC MkRFRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhZDY3ZDVmLTU3MTMtNDE1My04 NzFiLTFiMDA4ZjdmZmRkMi8wLzMxMzAzMzJlMzEzMjMzMmUzMTMwMzQyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJne2gwDQYJ KoZIhvcNAQELBQADggEBACIdIYzkRsTNIQ2MSkrDcDXOmJoMu+mw2dHnlQWgMSY9 hkSexlsqxiwKTfknlMWIfIGYmTdffneICR27HPUPCxHuHMgR4tSNlaj9lk9sFZ+C zNSjTboGGsdQHP9l3UHKPknMlft7H6iLy/y9VVc0pPEjIwuf4rcERlz3eZdYwl/n t7Tpr92uzknuqQXuDv1YabKM4Pr6u2RFCKod9bgftGsXGWQuGfnQnOb5j3AmNn/z rgaeWwHCUijMX5lrMxWne5xDH5S3teP8yonn0go1PcxVwoy9PFg1tfaI1mn4q/of 9T3zkQSC03ditq5zlbZoiM8vrJaOsnq8lsIOQvz15yE= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:39 2024 by rpki-client on console-ams.rpki-client.org