$ rpki-client -vvf repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130352e302f32342d3234203d3e20313338303730.roa File: 3130332e3132332e3130352e302f32342d3234203d3e20313338303730.roa (raw, json) Hash identifier: 3PS0oz/pScPQzie5Mti3z4hmWgtkSmXElwu/lAFPvxo= Subject key identifier: 43:E3:76:81:EC:ED:33:47:0F:DD:67:74:5C:41:C9:AC:A9:5B:69:79 Certificate issuer: /CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Certificate serial: 3CE92BF1D89BC6AE987AB17EBADDEBD76041C330 Authority key identifier: 1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130352e302f32342d3234203d3e20313338303730.roa Signing time: Mon 01 Jul 2024 01:05:05 +0000 ROA not before: Mon 01 Jul 2024 01:00:05 +0000 ROA not after: Mon 30 Jun 2025 01:05:05 +0000 asID: 138070 IP address blocks: 103.123.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:e9:2b:f1:d8:9b:c6:ae:98:7a:b1:7e:ba:dd:eb:d7:60:41:c3:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Validity Not Before: Jul 1 01:00:05 2024 GMT Not After : Jun 30 01:05:05 2025 GMT Subject: CN=43E37681ECED33470FDD67745C41C9ACA95B6979 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:77:26:58:21:81:63:cd:51:81:49:90:ee:0b: 54:0c:59:ae:ec:cc:ff:2a:ff:f9:45:00:1c:88:66: c2:be:ca:60:27:32:5f:9d:b4:0b:e8:4c:c7:ee:65: cf:40:1a:82:0f:ef:4c:92:59:a6:e5:60:46:6d:af: 0a:9b:e7:fc:65:7a:4f:43:66:9b:12:95:fd:b5:f9: e4:d0:8e:de:a3:9b:5f:7b:82:e0:ff:6e:0f:19:49: e4:d6:f6:2e:ea:85:69:52:49:c0:0b:86:83:9f:92: e3:38:3e:8c:ec:b7:82:b3:88:cb:8b:52:de:11:41: 95:a4:a9:91:2d:ce:af:42:81:e7:82:5f:11:ac:00: af:1d:dc:80:31:1c:f3:2b:47:21:7c:8e:e2:14:a9: d2:1d:1f:2d:05:7a:41:00:6f:43:02:39:af:87:59: d7:84:b4:15:6d:19:69:99:29:35:3d:45:2a:14:93: ee:72:ab:7c:c9:9a:28:e8:5b:8d:6b:9b:02:56:78: e7:9a:7d:53:7e:1d:8f:46:7d:05:a8:c6:ba:7a:3d: d7:f5:92:0f:1b:30:53:7c:6d:91:8d:c7:6f:15:bb: a5:07:5c:71:36:b6:fe:b6:62:15:6d:97:86:d9:16: 41:2d:72:ba:01:df:55:45:88:63:44:ce:70:bc:7c: 6a:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:E3:76:81:EC:ED:33:47:0F:DD:67:74:5C:41:C9:AC:A9:5B:69:79 X509v3 Authority Key Identifier: keyid:1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/3130332e3132332e3130352e302f32342d3234203d3e20313338303730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.105.0/24 Signature Algorithm: sha256WithRSAEncryption 79:89:a6:5a:c3:24:2e:84:56:d4:43:d2:91:42:aa:97:7c:6b: e5:29:5f:ce:c2:7f:7a:8b:70:64:2a:58:a7:df:33:f1:4a:1d: c4:ec:ff:9c:9c:33:5c:98:7e:0b:53:10:82:f4:c6:07:e1:d1: 56:60:2e:ac:15:a2:78:da:6b:ad:5c:b2:05:06:57:94:06:7e: 76:e6:55:cf:d3:d2:ea:08:9f:76:2f:f6:ad:0f:8f:cf:b6:63: ec:fb:a3:68:e9:17:c2:6b:7e:8a:62:0d:3d:21:20:18:e8:ce: 09:ce:9b:6b:5a:c6:22:b3:24:bf:31:f8:e8:ab:5d:17:48:6f: 8d:5b:74:8e:84:f6:80:26:6e:d4:6d:ee:a9:9c:84:59:a7:e4: d5:5d:2d:35:d6:a5:a7:70:e8:05:9f:4b:2a:f3:01:08:88:36: cc:fd:c1:8b:41:d7:12:1e:c6:c2:f1:41:ec:fe:c5:92:74:26: 40:4c:de:82:d0:c3:b6:91:26:44:2d:a1:10:62:80:21:7a:81: 2e:3c:b6:65:cd:fd:e1:7a:93:ea:8c:54:d3:7e:e0:5d:33:80: b6:f4:a5:34:52:15:48:a9:f2:30:21:1a:c3:6b:40:b0:5b:59: 15:94:db:9e:33:2a:9c:ef:cc:db:bd:7d:6c:ad:9f:5e:05:83: 43:f6:6a:a5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPOkr8dibxq6YerF+ut3r12BBwzAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEy QjRCMkRFRDAeFw0yNDA3MDEwMTAwMDVaFw0yNTA2MzAwMTA1MDVaMDMxMTAvBgNV BAMTKDQzRTM3NjgxRUNFRDMzNDcwRkRENjc3NDVDNDFDOUFDQTk1QjY5NzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDndyZYIYFjzVGBSZDuC1QMWa7s zP8q//lFAByIZsK+ymAnMl+dtAvoTMfuZc9AGoIP70ySWablYEZtrwqb5/xlek9D ZpsSlf21+eTQjt6jm197guD/bg8ZSeTW9i7qhWlSScALhoOfkuM4Pozst4KziMuL Ut4RQZWkqZEtzq9CgeeCXxGsAK8d3IAxHPMrRyF8juIUqdIdHy0FekEAb0MCOa+H WdeEtBVtGWmZKTU9RSoUk+5yq3zJmijoW41rmwJWeOeafVN+HY9GfQWoxrp6Pdf1 kg8bMFN8bZGNx28Vu6UHXHE2tv62YhVtl4bZFkEtcroB31VFiGNEznC8fGoZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUQ+N2geztM0cP3Wd0XEHJrKlbaXkwHwYDVR0j BBgwFoAUHKnkBxAmLadRpn6TJHfW4StLLe0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YWQ2N2Q1Zi01NzEzLTQxNTMtODcxYi0xYjAwOGY3ZmZkZDIvMC8xQ0E5RTQwNzEw MjYyREE3NTFBNjdFOTMyNDc3RDZFMTJCNEIyREVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUNBOUU0MDcxMDI2MkRBNzUxQTY3RTkzMjQ3N0Q2RTEyQjRC MkRFRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhZDY3ZDVmLTU3MTMtNDE1My04 NzFiLTFiMDA4ZjdmZmRkMi8wLzMxMzAzMzJlMzEzMjMzMmUzMTMwMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABne2kwDQYJ KoZIhvcNAQELBQADggEBAHmJplrDJC6EVtRD0pFCqpd8a+UpX87Cf3qLcGQqWKff M/FKHcTs/5ycM1yYfgtTEIL0xgfh0VZgLqwVonjaa61csgUGV5QGfnbmVc/T0uoI n3Yv9q0Pj8+2Y+z7o2jpF8JrfopiDT0hIBjozgnOm2taxiKzJL8x+OirXRdIb41b dI6E9oAmbtRt7qmchFmn5NVdLTXWpadw6AWfSyrzAQiINsz9wYtB1xIexsLxQez+ xZJ0JkBM3oLQw7aRJkQtoRBigCF6gS48tmXN/eF6k+qMVNN+4F0zgLb0pTRSFUip 8jAhGsNrQLBbWRWU254zKpzvzNu9fWytn14Fg0P2aqU= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:39 2024 by rpki-client on console-ams.rpki-client.org