$ rpki-client -vvf repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130342e302f32342d3234203d3e20313338303730.roa File: 3130332e3132332e3130342e302f32342d3234203d3e20313338303730.roa (raw, json) Hash identifier: uDKGCmtuAh53SMb+C/Ryy+REf5CV1In4kTPm6c1f6Xc= Subject key identifier: CB:68:14:34:01:E6:FA:8D:63:C1:23:23:FF:38:3C:D6:AC:A9:9E:1B Certificate issuer: /CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Certificate serial: 234102EC7B808DB5BB4E2D62DAE1795161F79540 Authority key identifier: 1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130342e302f32342d3234203d3e20313338303730.roa Signing time: Mon 01 Jul 2024 01:05:05 +0000 ROA not before: Mon 01 Jul 2024 01:00:05 +0000 ROA not after: Mon 30 Jun 2025 01:05:05 +0000 asID: 138070 IP address blocks: 103.123.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:41:02:ec:7b:80:8d:b5:bb:4e:2d:62:da:e1:79:51:61:f7:95:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Validity Not Before: Jul 1 01:00:05 2024 GMT Not After : Jun 30 01:05:05 2025 GMT Subject: CN=CB68143401E6FA8D63C12323FF383CD6ACA99E1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:90:34:eb:a2:38:06:18:10:68:ad:2a:65:38: 2d:ba:d4:1d:57:5c:0e:68:cf:cf:98:3d:a2:92:fd: 68:b5:1c:68:96:4a:29:1d:b3:eb:28:3a:84:46:97: b3:e5:8a:b7:a3:91:ee:3c:39:80:dd:5e:fd:0f:da: a5:94:a7:30:f6:cd:82:27:de:b2:ca:4f:66:7f:c3: 03:d1:e7:ba:dc:db:66:8c:58:2c:58:e6:1b:be:c9: 6a:0d:52:8f:11:a1:af:35:99:42:09:0b:3b:b7:4a: b0:93:a0:70:76:b5:e6:60:d1:27:80:a9:7a:82:ba: fd:25:49:68:6c:fe:34:c9:9c:a9:93:64:38:26:7e: d4:1b:d1:55:a1:36:c1:5d:05:2d:8e:61:3b:72:3d: b3:43:22:cb:f0:ca:72:ee:1b:74:87:36:02:df:27: 5e:22:6f:88:a8:6e:eb:48:ed:19:a6:0c:75:5b:f3: af:86:b2:79:bd:7a:78:72:2e:75:51:ee:a2:e7:3d: 57:6c:5d:5b:fc:53:53:58:d7:4d:43:28:90:1b:69: 02:35:ef:cb:5e:8e:b1:a5:9f:c0:5a:30:5c:c1:1d: 63:9f:e6:59:4a:bf:64:96:3b:d5:6a:29:20:3b:28: 51:20:a6:b9:a1:f1:10:77:65:1e:ce:96:ac:a3:66: 01:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:68:14:34:01:E6:FA:8D:63:C1:23:23:FF:38:3C:D6:AC:A9:9E:1B X509v3 Authority Key Identifier: keyid:1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130342e302f32342d3234203d3e20313338303730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.104.0/24 Signature Algorithm: sha256WithRSAEncryption 02:ba:c6:c8:b2:80:ae:2e:23:02:b1:80:62:9d:73:2b:db:bd: b7:ba:21:3c:a3:7b:c7:db:e5:74:94:72:1d:80:5c:36:aa:35: c2:62:e4:4c:76:a1:42:74:54:3c:29:7b:80:f9:af:08:e3:1c: ae:d7:66:49:b5:1e:20:ef:c9:42:b7:fa:11:5d:9d:2d:cc:75: c1:b3:90:e0:4e:51:a6:9f:a9:25:f2:ff:5a:0e:ad:a0:9b:94: 47:65:76:34:86:4a:bc:32:4d:64:9e:7b:a0:1a:0d:08:da:fc: 91:7a:be:6f:16:dc:30:41:1a:45:8c:d3:f7:66:99:ee:17:cd: b8:19:45:95:51:95:16:86:53:96:f1:3e:8f:65:d8:06:6c:59: 9b:61:9b:8d:cb:1e:77:4e:b4:7b:e3:4b:1a:c8:ab:e2:57:ef: 17:4a:24:59:e6:f6:f4:1f:f4:4b:4a:0f:9b:d0:7f:fc:49:60: 82:be:3e:f5:fb:2a:af:13:73:2e:97:58:af:01:ed:1a:e9:84: 54:87:6a:58:5e:63:28:70:d9:b6:51:bb:d7:a7:f1:14:be:72: 1c:44:c3:b8:01:60:63:b4:dc:1b:cd:3b:49:6b:5f:05:52:1c: d3:ed:36:bb:4e:1d:f5:ee:91:2b:37:67:bd:5b:83:3c:34:c1: 1c:5d:ce:03 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUI0EC7HuAjbW7Ti1i2uF5UWH3lUAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEy QjRCMkRFRDAeFw0yNDA3MDEwMTAwMDVaFw0yNTA2MzAwMTA1MDVaMDMxMTAvBgNV BAMTKENCNjgxNDM0MDFFNkZBOEQ2M0MxMjMyM0ZGMzgzQ0Q2QUNBOTlFMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfkDTrojgGGBBorSplOC261B1X XA5oz8+YPaKS/Wi1HGiWSikds+soOoRGl7Plirejke48OYDdXv0P2qWUpzD2zYIn 3rLKT2Z/wwPR57rc22aMWCxY5hu+yWoNUo8Roa81mUIJCzu3SrCToHB2teZg0SeA qXqCuv0lSWhs/jTJnKmTZDgmftQb0VWhNsFdBS2OYTtyPbNDIsvwynLuG3SHNgLf J14ib4iobutI7RmmDHVb86+Gsnm9enhyLnVR7qLnPVdsXVv8U1NY101DKJAbaQI1 78tejrGln8BaMFzBHWOf5llKv2SWO9VqKSA7KFEgprmh8RB3ZR7OlqyjZgH3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUy2gUNAHm+o1jwSMj/zg81qypnhswHwYDVR0j BBgwFoAUHKnkBxAmLadRpn6TJHfW4StLLe0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YWQ2N2Q1Zi01NzEzLTQxNTMtODcxYi0xYjAwOGY3ZmZkZDIvMC8xQ0E5RTQwNzEw MjYyREE3NTFBNjdFOTMyNDc3RDZFMTJCNEIyREVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEyQjRC MkRFRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhZDY3ZDVmLTU3MTMtNDE1My04 NzFiLTFiMDA4ZjdmZmRkMi8wLzMxMzAzMzJlMzEzMjMzMmUzMTMwMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABne2gwDQYJ KoZIhvcNAQELBQADggEBAAK6xsiygK4uIwKxgGKdcyvbvbe6ITyje8fb5XSUch2A XDaqNcJi5Ex2oUJ0VDwpe4D5rwjjHK7XZkm1HiDvyUK3+hFdnS3MdcGzkOBOUaaf qSXy/1oOraCblEdldjSGSrwyTWSee6AaDQja/JF6vm8W3DBBGkWM0/dmme4XzbgZ RZVRlRaGU5bxPo9l2AZsWZthm43LHndOtHvjSxrIq+JX7xdKJFnm9vQf9EtKD5vQ f/xJYIK+PvX7Kq8Tcy6XWK8B7RrphFSHalheYyhw2bZRu9en8RS+chxEw7gBYGO0 3BvNO0lrXwVSHNPtNrtOHfXukSs3Z71bgzw0wRxdzgM= -----END CERTIFICATE-----Generated at Fri Nov 22 06:56:26 2024 by rpki-client on console-fra.rpki-client.org