$ rpki-client -vvf repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/3130332e3133382e3131362e302f32342d3234203d3e20313339343137.roa File: 3130332e3133382e3131362e302f32342d3234203d3e20313339343137.roa (raw, json) Hash identifier: ERgnnP2DMUvjkJUO8ftWwY6M9vchXJuUtSjMd05/XHc= Subject key identifier: 5E:F4:84:85:EB:CC:FE:6D:42:4C:24:BE:95:29:C3:A4:84:FE:C1:EA Certificate issuer: /CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Certificate serial: 6B25E3B906051D4A5A0E14FE2FAAA9D968551F29 Authority key identifier: 8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/3130332e3133382e3131362e302f32342d3234203d3e20313339343137.roa Signing time: Sat 02 Mar 2024 11:00:01 +0000 ROA not before: Sat 02 Mar 2024 10:55:01 +0000 ROA not after: Sat 01 Mar 2025 11:00:01 +0000 asID: 139417 IP address blocks: 103.138.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 05:31:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:25:e3:b9:06:05:1d:4a:5a:0e:14:fe:2f:aa:a9:d9:68:55:1f:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Validity Not Before: Mar 2 10:55:01 2024 GMT Not After : Mar 1 11:00:01 2025 GMT Subject: CN=5EF48485EBCCFE6D424C24BE9529C3A484FEC1EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:55:09:ef:3c:fb:62:4a:5f:88:b0:0e:d8:96: 7c:b7:b3:e2:e2:0c:c9:10:fe:da:0a:cd:04:bf:54: ba:53:73:e6:2f:21:7f:4c:bb:f9:72:f1:06:2a:9c: 31:24:70:37:18:7f:24:23:ce:2f:4b:9b:a9:e5:38: 76:c0:49:5d:00:11:ab:2c:d5:64:d4:67:e1:5c:f8: bb:83:62:76:1e:15:e4:b2:c0:34:ff:f0:7d:74:0c: bb:37:97:ac:0d:3e:73:b7:9d:be:32:3d:f3:06:fb: b0:a5:64:d3:a9:d3:cd:11:1d:b6:7f:ca:4b:fe:fe: 70:c3:ec:00:28:6a:fe:48:9b:6c:e5:df:5e:80:ec: cf:b1:31:c3:92:72:7c:2f:45:0c:e5:80:79:5e:2f: 45:75:83:61:cd:1c:cc:e0:2c:74:cb:ca:18:7c:39: 42:a0:8d:a6:ff:bf:aa:ed:a1:2e:d5:dd:1f:70:a1: 44:01:d5:87:02:41:5a:ec:b7:fe:09:7d:ad:48:40: 51:65:3e:a8:e9:5b:b9:4a:b3:08:15:5b:28:8b:52: b4:51:73:eb:be:5b:62:90:28:ef:ed:63:6c:79:3d: 1b:47:5b:b6:16:d8:9b:84:31:dc:15:f9:88:3c:f8: 89:8b:78:59:ad:41:c0:be:28:04:8f:c3:e0:6d:fe: b8:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:F4:84:85:EB:CC:FE:6D:42:4C:24:BE:95:29:C3:A4:84:FE:C1:EA X509v3 Authority Key Identifier: keyid:8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/3130332e3133382e3131362e302f32342d3234203d3e20313339343137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.138.116.0/24 Signature Algorithm: sha256WithRSAEncryption 82:94:f8:71:b3:1d:5b:d3:6c:0f:a8:44:45:10:08:e1:5d:fa: 3f:6d:41:e1:27:6a:32:2d:f2:87:6b:6d:ce:23:54:d4:87:5d: b3:60:c6:f2:f7:d6:b4:62:3b:6a:80:69:10:f9:c5:17:bd:55: 83:98:a3:78:71:cb:87:6f:0c:ca:c0:23:88:c5:7e:e1:1c:89: 21:17:7e:84:5e:89:75:31:69:f8:83:81:ae:8d:19:37:37:70: 3a:ff:cb:4d:07:68:c0:f6:bc:ba:a4:0e:97:d8:f7:af:37:0e: 77:08:8d:7f:01:65:72:ff:ce:be:e2:b9:34:ae:65:f0:e1:e4: 22:00:f1:13:90:61:88:2c:77:09:ee:6f:25:a5:12:d2:35:e2: 1f:8e:85:3f:f9:6f:d2:00:24:0c:74:c4:d8:48:e2:64:fa:9b: d6:18:09:e3:45:f5:66:81:25:4a:98:d7:e9:ca:82:c1:13:ef: 6d:79:2c:a1:54:99:02:21:78:29:70:ca:f9:28:86:4e:d2:fc: 1d:e7:aa:06:34:e7:51:0d:7e:ff:f4:3e:1b:50:d4:6f:0f:03: 72:30:0c:55:f3:98:cc:f4:d9:02:ef:b2:97:a3:ff:b8:2e:96: cd:e3:bd:aa:70:de:4d:59:8d:e2:6b:da:6a:f3:bd:36:d5:a2: 33:98:e9:37 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUayXjuQYFHUpaDhT+L6qp2WhVHykwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3 MkRBRURENjAeFw0yNDAzMDIxMDU1MDFaFw0yNTAzMDExMTAwMDFaMDMxMTAvBgNV BAMTKDVFRjQ4NDg1RUJDQ0ZFNkQ0MjRDMjRCRTk1MjlDM0E0ODRGRUMxRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0VQnvPPtiSl+IsA7Ylny3s+Li DMkQ/toKzQS/VLpTc+YvIX9Mu/ly8QYqnDEkcDcYfyQjzi9Lm6nlOHbASV0AEass 1WTUZ+Fc+LuDYnYeFeSywDT/8H10DLs3l6wNPnO3nb4yPfMG+7ClZNOp080RHbZ/ ykv+/nDD7AAoav5Im2zl316A7M+xMcOScnwvRQzlgHleL0V1g2HNHMzgLHTLyhh8 OUKgjab/v6rtoS7V3R9woUQB1YcCQVrst/4Jfa1IQFFlPqjpW7lKswgVWyiLUrRR c+u+W2KQKO/tY2x5PRtHW7YW2JuEMdwV+Yg8+ImLeFmtQcC+KASPw+Bt/riNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUXvSEhevM/m1CTCS+lSnDpIT+weowHwYDVR0j BBgwFoAUj8SJnKPWEqRcHB3AKiH2M3La7dYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTQxM2ZmNC0yMDJiLTQ5OTktYjQ1ZC03M2M5NzJmMTAxMTYvMC84RkM0ODk5Q0Ez RDYxMkE0NUMxQzFEQzAyQTIxRjYzMzcyREFFREQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEZDNDg5OUNBM0Q2MTJBNDVDMUMxREMwMkEyMUY2MzM3MkRB RURENi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1NDEzZmY0LTIwMmItNDk5OS1i NDVkLTczYzk3MmYxMDExNi8wLzMxMzAzMzJlMzEzMzM4MmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMxMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABninQwDQYJ KoZIhvcNAQELBQADggEBAIKU+HGzHVvTbA+oREUQCOFd+j9tQeEnajIt8odrbc4j VNSHXbNgxvL31rRiO2qAaRD5xRe9VYOYo3hxy4dvDMrAI4jFfuEciSEXfoReiXUx afiDga6NGTc3cDr/y00HaMD2vLqkDpfY9683DncIjX8BZXL/zr7iuTSuZfDh5CIA 8ROQYYgsdwnubyWlEtI14h+OhT/5b9IAJAx0xNhI4mT6m9YYCeNF9WaBJUqY1+nK gsET7215LKFUmQIheClwyvkohk7S/B3nqgY051ENfv/0PhtQ1G8PA3IwDFXzmMz0 2QLvspej/7guls3jvapw3k1ZjeJr2mrzvTbVojOY6Tc= -----END CERTIFICATE-----Generated at Fri Jun 21 21:25:52 2024 by rpki-client on console-ams.rpki-client.org