$ rpki-client -vvf repo-rpki.idnic.net/repo/e0620cfc-b46c-457c-9fde-297710c546a9/0/3130332e3132312e3138372e302f32342d3234203d3e20313431393039.roa File: 3130332e3132312e3138372e302f32342d3234203d3e20313431393039.roa (raw, json) Hash identifier: GM8ZyITSTfCyHRQhNGDicIsLVNuhcS8vfgPi6Ukh4Jg= Subject key identifier: AE:A8:D1:24:34:B0:A8:3F:9C:8C:51:BC:58:54:29:A0:47:CA:FF:DA Certificate issuer: /CN=473225269441779F80E443B1EA516CC99E4ED4DA Certificate serial: 582978B7A342576C34DF1CDF751FBEB60C99CB6B Authority key identifier: 47:32:25:26:94:41:77:9F:80:E4:43:B1:EA:51:6C:C9:9E:4E:D4:DA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473225269441779F80E443B1EA516CC99E4ED4DA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e0620cfc-b46c-457c-9fde-297710c546a9/0/3130332e3132312e3138372e302f32342d3234203d3e20313431393039.roa Signing time: Fri 24 May 2024 17:00:02 +0000 ROA not before: Fri 24 May 2024 16:55:02 +0000 ROA not after: Fri 23 May 2025 17:00:02 +0000 asID: 141909 IP address blocks: 103.121.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e0620cfc-b46c-457c-9fde-297710c546a9/0/473225269441779F80E443B1EA516CC99E4ED4DA.crl rsync://repo-rpki.idnic.net/repo/e0620cfc-b46c-457c-9fde-297710c546a9/0/473225269441779F80E443B1EA516CC99E4ED4DA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473225269441779F80E443B1EA516CC99E4ED4DA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:29:78:b7:a3:42:57:6c:34:df:1c:df:75:1f:be:b6:0c:99:cb:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473225269441779F80E443B1EA516CC99E4ED4DA Validity Not Before: May 24 16:55:02 2024 GMT Not After : May 23 17:00:02 2025 GMT Subject: CN=AEA8D12434B0A83F9C8C51BC585429A047CAFFDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2c:a2:01:3e:05:f3:1a:ad:cf:c1:79:96:ac: 78:be:66:c3:de:6d:9e:c4:00:b9:47:fa:65:95:14: d8:17:d8:7b:70:23:be:2a:65:a9:e4:b2:e3:59:95: 9e:c6:ac:33:c9:85:13:58:e1:bb:43:1a:3a:8e:65: 4c:db:22:ad:0e:4e:ba:3d:c6:55:ac:30:05:44:09: 34:9b:71:1a:4c:d0:b6:9e:30:63:1b:44:1f:76:da: ca:ba:6c:c1:0a:38:9c:31:e3:0b:cd:bf:7d:e1:bc: 78:78:4d:09:f1:00:7f:51:ac:84:53:cd:b3:99:37: 58:c2:a8:c6:ed:dc:ee:94:1a:b8:e8:47:da:3f:64: 75:4c:14:37:81:75:c2:b1:9e:00:79:e8:ec:a9:9e: 6a:b6:29:cd:e0:d7:b3:e3:b3:33:0c:12:af:6c:84: 13:d7:e8:51:65:07:92:db:09:05:d0:26:ad:d3:c1: 6e:6a:6a:c4:42:12:23:16:20:0e:91:5c:8c:0d:a2: 58:a3:e1:4a:82:8d:00:0b:7f:b0:63:f9:74:e0:f0: b2:1e:e4:3d:04:7c:45:d0:b7:4b:1b:89:67:07:22: 23:38:e1:cc:d0:69:b2:b6:61:5a:04:bc:e9:87:17: 09:09:46:76:df:df:de:7d:a3:df:85:cf:ac:f0:79: b9:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:A8:D1:24:34:B0:A8:3F:9C:8C:51:BC:58:54:29:A0:47:CA:FF:DA X509v3 Authority Key Identifier: keyid:47:32:25:26:94:41:77:9F:80:E4:43:B1:EA:51:6C:C9:9E:4E:D4:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e0620cfc-b46c-457c-9fde-297710c546a9/0/473225269441779F80E443B1EA516CC99E4ED4DA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473225269441779F80E443B1EA516CC99E4ED4DA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e0620cfc-b46c-457c-9fde-297710c546a9/0/3130332e3132312e3138372e302f32342d3234203d3e20313431393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.187.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:3d:df:cf:f3:0b:97:1a:9b:40:8f:d6:10:80:3b:cf:be:ca: a9:f3:6c:16:9a:3c:b2:2d:55:16:6a:c2:15:51:e0:92:d1:af: e4:f0:9a:e1:c0:2c:7b:01:36:bc:52:c3:aa:a8:48:ce:ed:95: 6f:39:b9:43:97:83:6b:1d:87:84:72:b0:37:4e:80:d5:93:e7: 82:ba:95:c9:3c:0a:b5:e5:0d:6f:c1:be:ac:c6:38:03:cf:5c: 12:bc:4f:3e:e1:24:7e:73:18:c2:be:3f:ab:4e:19:b9:67:7b: 25:26:4f:44:6f:97:d8:52:7d:3f:1e:e3:1b:e6:7e:f7:d2:a3: e2:85:4a:c8:d0:d3:a7:43:04:df:c0:83:48:ce:58:47:01:84: 05:4f:f6:87:2f:13:b9:a7:e1:83:f4:c6:e4:4a:4b:89:76:18: dd:ef:46:20:09:6a:06:47:5b:91:64:17:67:79:0c:86:2e:8d: 24:0b:dd:52:78:65:3d:34:2b:9b:b3:29:9e:08:0f:a3:55:16: a2:1f:e6:98:bc:22:20:54:14:d7:6f:95:55:2c:39:c4:af:ae: 08:a9:35:f5:1c:19:d6:3a:86:10:1c:ad:8a:07:28:d2:03:36: eb:6e:19:68:ab:ae:99:1c:36:b1:73:d8:f5:36:32:5f:7a:c4: a8:c2:31:4f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWCl4t6NCV2w03xzfdR++tgyZy2swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczMjI1MjY5NDQxNzc5RjgwRTQ0M0IxRUE1MTZDQzk5 RTRFRDREQTAeFw0yNDA1MjQxNjU1MDJaFw0yNTA1MjMxNzAwMDJaMDMxMTAvBgNV BAMTKEFFQThEMTI0MzRCMEE4M0Y5QzhDNTFCQzU4NTQyOUEwNDdDQUZGREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnLKIBPgXzGq3PwXmWrHi+ZsPe bZ7EALlH+mWVFNgX2HtwI74qZanksuNZlZ7GrDPJhRNY4btDGjqOZUzbIq0OTro9 xlWsMAVECTSbcRpM0LaeMGMbRB922sq6bMEKOJwx4wvNv33hvHh4TQnxAH9RrIRT zbOZN1jCqMbt3O6UGrjoR9o/ZHVMFDeBdcKxngB56Oypnmq2Kc3g17PjszMMEq9s hBPX6FFlB5LbCQXQJq3TwW5qasRCEiMWIA6RXIwNolij4UqCjQALf7Bj+XTg8LIe 5D0EfEXQt0sbiWcHIiM44czQabK2YVoEvOmHFwkJRnbf3959o9+Fz6zwebnBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUrqjRJDSwqD+cjFG8WFQpoEfK/9owHwYDVR0j BBgwFoAURzIlJpRBd5+A5EOx6lFsyZ5O1NowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l MDYyMGNmYy1iNDZjLTQ1N2MtOWZkZS0yOTc3MTBjNTQ2YTkvMC80NzMyMjUyNjk0 NDE3NzlGODBFNDQzQjFFQTUxNkNDOTlFNEVENERBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczMjI1MjY5NDQxNzc5RjgwRTQ0M0IxRUE1MTZDQzk5RTRF RDREQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwNjIwY2ZjLWI0NmMtNDU3Yy05 ZmRlLTI5NzcxMGM1NDZhOS8wLzMxMzAzMzJlMzEzMjMxMmUzMTM4MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTMwMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnebswDQYJ KoZIhvcNAQELBQADggEBADo938/zC5cam0CP1hCAO8++yqnzbBaaPLItVRZqwhVR 4JLRr+TwmuHALHsBNrxSw6qoSM7tlW85uUOXg2sdh4RysDdOgNWT54K6lck8CrXl DW/BvqzGOAPPXBK8Tz7hJH5zGMK+P6tOGblneyUmT0Rvl9hSfT8e4xvmfvfSo+KF SsjQ06dDBN/Ag0jOWEcBhAVP9ocvE7mn4YP0xuRKS4l2GN3vRiAJagZHW5FkF2d5 DIYujSQL3VJ4ZT00K5uzKZ4ID6NVFqIf5pi8IiBUFNdvlVUsOcSvrgipNfUcGdY6 hhAcrYoHKNIDNutuGWirrpkcNrFz2PU2Ml96xKjCMU8= -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:44 2024 by rpki-client on console-fra.rpki-client.org