$ rpki-client -vvf repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31362e302f32322d3232203d3e20313338303837.roa File: 3130332e3132352e31362e302f32322d3232203d3e20313338303837.roa (raw, json) Hash identifier: HF0dYwlz6vdJov/k+WgwRu0xhExNgUTwhPU6qhbpy2A= Subject key identifier: E7:59:51:9A:77:3B:6E:78:7C:BF:88:1B:8C:37:16:65:BF:4B:60:CC Certificate issuer: /CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB Certificate serial: 4C5D5EA0C6715A78D1547A85EDE639ECA2AEBE4E Authority key identifier: B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31362e302f32322d3232203d3e20313338303837.roa Signing time: Sat 31 Aug 2024 09:01:13 +0000 ROA not before: Sat 31 Aug 2024 08:56:13 +0000 ROA not after: Sat 30 Aug 2025 09:01:13 +0000 asID: 138087 IP address blocks: 103.125.16.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 02:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:5d:5e:a0:c6:71:5a:78:d1:54:7a:85:ed:e6:39:ec:a2:ae:be:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB Validity Not Before: Aug 31 08:56:13 2024 GMT Not After : Aug 30 09:01:13 2025 GMT Subject: CN=E759519A773B6E787CBF881B8C371665BF4B60CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f5:b0:bd:54:eb:d1:4a:b4:4e:13:33:4c:20: b3:19:95:cb:fe:a0:d5:0a:ea:65:cb:f2:fa:e4:96: 2b:11:a4:dd:4c:b0:01:21:f7:5e:9e:64:bd:6f:fa: 27:e1:af:8e:b6:80:9c:61:e1:e1:ce:18:9d:6b:f4: fa:3e:46:a4:0d:65:a3:ef:c2:ea:de:dd:06:ab:66: 53:56:04:4d:f8:f6:46:03:6c:6b:9d:4d:a2:16:ec: 9a:f8:34:08:8f:7f:72:d6:ed:5b:97:c6:68:fc:69: 92:67:08:cd:b7:3d:ec:6d:d1:99:28:31:8b:f6:29: 6c:34:f7:f2:43:ee:17:ff:23:4e:2a:2f:93:22:ee: 9b:d6:e1:80:ca:95:b1:bc:fe:95:5b:03:2b:30:0b: 6e:c0:8c:42:30:20:0b:85:7f:be:9f:57:58:29:5e: 5e:f5:5e:da:bb:c9:32:89:df:70:b1:a5:d7:c2:dd: 16:a5:f6:f0:92:a0:5c:23:41:d7:ef:9b:1d:09:d3: e4:18:80:80:2b:d1:b8:57:2d:22:20:19:4e:c0:b7: e4:33:76:c8:72:c2:e0:e5:0e:66:cb:b5:4e:e2:6a: 29:26:02:33:bf:87:f8:32:99:08:ed:3b:35:ec:ef: a5:35:03:e5:6e:36:0a:5f:32:e7:e1:75:ce:19:71: 9f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:59:51:9A:77:3B:6E:78:7C:BF:88:1B:8C:37:16:65:BF:4B:60:CC X509v3 Authority Key Identifier: keyid:B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31362e302f32322d3232203d3e20313338303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.16.0/22 Signature Algorithm: sha256WithRSAEncryption c9:88:19:3e:c1:9b:c7:15:a8:c0:d5:a0:b2:3c:27:e6:22:ae: bd:a1:99:63:22:60:03:eb:b1:23:53:a9:10:74:d6:ee:f4:b9: 9e:63:0d:cf:7e:a0:af:1f:15:cf:e6:84:8b:d6:ab:a8:3a:de: e5:d7:58:80:c2:9f:81:ed:14:d3:76:96:a2:02:f9:d2:54:a5: 39:92:a1:17:32:4b:7a:36:f7:46:20:6a:97:00:30:76:34:02: d2:34:3c:23:82:7f:72:3b:93:20:86:b6:a7:ef:bb:c7:38:0e: e9:b3:04:93:07:5a:64:d8:e6:0f:72:29:b5:2d:01:32:0c:44: 1a:5d:1a:4d:b0:10:6f:06:b1:2d:df:41:e8:b8:1e:9c:9d:68: a1:10:d7:d5:45:16:b3:99:96:26:17:c0:6f:67:53:53:4e:79: 61:f8:18:cf:16:0f:9e:d1:59:f7:3a:63:e7:ae:c1:24:1b:d3: 8e:6d:e6:0a:84:ff:af:0a:1f:e6:0e:50:c1:96:8c:00:53:9e: 5c:85:c5:80:ba:80:9f:49:1f:f9:03:c6:63:1e:6a:dc:8e:56: 0a:4f:ff:c1:6a:5b:37:81:df:83:83:96:ff:05:d3:6e:37:a4: 6c:e3:95:a7:64:6c:e3:84:04:6b:b0:88:b6:6f:58:ba:1f:71: 9a:f1:67:7b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTF1eoMZxWnjRVHqF7eY57KKuvk4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0 RDBFMTREQjAeFw0yNDA4MzEwODU2MTNaFw0yNTA4MzAwOTAxMTNaMDMxMTAvBgNV BAMTKEU3NTk1MTlBNzczQjZFNzg3Q0JGODgxQjhDMzcxNjY1QkY0QjYwQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC99bC9VOvRSrROEzNMILMZlcv+ oNUK6mXL8vrklisRpN1MsAEh916eZL1v+ifhr462gJxh4eHOGJ1r9Po+RqQNZaPv wure3QarZlNWBE349kYDbGudTaIW7Jr4NAiPf3LW7VuXxmj8aZJnCM23Pext0Zko MYv2KWw09/JD7hf/I04qL5Mi7pvW4YDKlbG8/pVbAyswC27AjEIwIAuFf76fV1gp Xl71Xtq7yTKJ33CxpdfC3Ral9vCSoFwjQdfvmx0J0+QYgIAr0bhXLSIgGU7At+Qz dshywuDlDmbLtU7iaikmAjO/h/gymQjtOzXs76U1A+VuNgpfMufhdc4ZcZ93AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU51lRmnc7bnh8v4gbjDcWZb9LYMwwHwYDVR0j BBgwFoAUs6loax6V3LaHcq2lW7E4rk0OFNswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NThkNmRjYS02ZDdiLTQ4MTEtODYyYi0wZGM1ZDU3ZmEyZDkvMC9CM0E5Njg2QjFF OTVEQ0I2ODc3MkFEQTU1QkIxMzhBRTREMEUxNERCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0RDBF MTREQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1OGQ2ZGNhLTZkN2ItNDgxMS04 NjJiLTBkYzVkNTdmYTJkOS8wLzMxMzAzMzJlMzEzMjM1MmUzMTM2MmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzEzMzM4MzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ30QMA0GCSqG SIb3DQEBCwUAA4IBAQDJiBk+wZvHFajA1aCyPCfmIq69oZljImAD67EjU6kQdNbu 9LmeYw3PfqCvHxXP5oSL1quoOt7l11iAwp+B7RTTdpaiAvnSVKU5kqEXMkt6NvdG IGqXADB2NALSNDwjgn9yO5Mghran77vHOA7pswSTB1pk2OYPcim1LQEyDEQaXRpN sBBvBrEt30HouB6cnWihENfVRRazmZYmF8BvZ1NTTnlh+BjPFg+e0Vn3OmPnrsEk G9OObeYKhP+vCh/mDlDBlowAU55chcWAuoCfSR/5A8ZjHmrcjlYKT//Bals3gd+D g5b/BdNuN6Rs45WnZGzjhARrsIi2b1i6H3Ga8Wd7 -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:56 2024 by rpki-client on console-ams.rpki-client.org