$ rpki-client -vvf repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31362e302f32332d3233203d3e20313338303837.roa File: 3130332e3132352e31362e302f32332d3233203d3e20313338303837.roa (raw, json) Hash identifier: 5VwR7HDfdfAKISy+dHdojCP894McL9XrCePHeKrbz6E= Subject key identifier: 1B:29:99:81:96:E8:76:79:E3:F0:2D:EE:52:18:A1:79:6F:B6:A9:4D Certificate issuer: /CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB Certificate serial: 0BFE536339EDB027BB3112F9F981753DE19BE6A1 Authority key identifier: B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31362e302f32332d3233203d3e20313338303837.roa Signing time: Sat 31 Aug 2024 09:01:13 +0000 ROA not before: Sat 31 Aug 2024 08:56:13 +0000 ROA not after: Sat 30 Aug 2025 09:01:13 +0000 asID: 138087 IP address blocks: 103.125.16.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:fe:53:63:39:ed:b0:27:bb:31:12:f9:f9:81:75:3d:e1:9b:e6:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB Validity Not Before: Aug 31 08:56:13 2024 GMT Not After : Aug 30 09:01:13 2025 GMT Subject: CN=1B29998196E87679E3F02DEE5218A1796FB6A94D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f8:b6:98:ca:f3:99:c6:f2:2b:8d:4a:66:de: 82:e2:b0:0c:69:ce:54:99:64:0d:c6:a7:9b:ba:f0: 0d:68:ad:99:b9:32:09:13:63:63:0e:62:d4:f9:39: 16:c4:cb:25:4a:53:06:09:e8:68:cd:77:56:eb:7e: c8:ae:2e:ff:22:4d:84:59:de:bc:64:ee:11:49:df: 32:1a:09:5c:53:31:87:fb:8c:d8:e7:20:9a:55:53: 59:bf:5b:e9:1e:d4:41:41:38:c1:07:4e:ed:12:61: ce:d9:a7:5e:48:b5:ee:a1:e6:a9:87:86:1f:47:11: 42:1e:63:02:90:82:7e:ee:a9:a5:34:43:cd:98:0c: 00:5a:70:5a:ff:98:17:48:7a:8d:36:92:c3:47:c1: 1e:fb:58:e5:28:0c:e5:08:b6:32:9f:ea:34:c4:47: 63:81:f8:0b:ee:3f:da:13:fe:a7:a1:cb:68:d7:40: 6f:b5:16:4f:7f:73:18:57:33:13:b8:e2:83:17:34: 1c:97:16:9a:db:1b:df:a2:dc:db:9d:4c:d6:5c:c0: 88:67:83:02:d3:61:73:f4:ce:18:9a:44:cf:84:db: b6:56:f3:a4:f8:60:01:f6:d6:cf:30:b2:d3:9f:6a: 7e:13:78:42:32:7a:11:31:9b:c5:8a:63:eb:a3:85: b5:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:29:99:81:96:E8:76:79:E3:F0:2D:EE:52:18:A1:79:6F:B6:A9:4D X509v3 Authority Key Identifier: keyid:B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31362e302f32332d3233203d3e20313338303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.16.0/23 Signature Algorithm: sha256WithRSAEncryption 56:a5:11:58:e1:e7:e3:c6:fb:17:b3:f2:3e:95:ea:6e:7e:6d: 28:66:94:b9:cc:38:8a:4b:21:7d:72:86:18:38:3e:1e:33:13: b0:a3:22:a7:ac:62:34:e2:52:a4:81:8c:00:23:cc:28:65:63: 2f:31:81:8f:22:cb:14:9a:19:63:68:bd:9a:6f:01:97:89:26: 6d:bb:91:e4:c9:7a:07:d3:32:99:99:d8:ba:1b:2c:5d:3e:ec: 83:34:88:d2:f6:18:56:b5:fd:67:ec:74:9c:51:fd:d4:13:11: 1b:0c:d3:5a:1f:e9:fa:b3:34:01:41:06:d4:c7:e2:c6:80:36: 13:3b:44:26:f7:e7:07:4c:8a:a8:f9:d4:63:ec:70:3b:d0:b5: d3:1b:3d:aa:ff:47:10:c9:8d:32:ee:cd:2e:6c:91:b1:d3:b2: 6a:fa:da:ae:89:76:68:e1:b4:7d:e2:ef:c5:d3:b2:2d:63:a7: 7c:c0:36:99:12:c5:96:01:43:fc:8a:fc:85:ac:67:5e:cf:1c: 57:66:31:7a:15:92:fd:47:e5:3a:58:65:bf:06:7f:3b:28:05: 89:45:c6:51:a0:a4:3d:db:a1:be:c6:81:49:13:ad:e4:c9:a2: 48:1b:f9:3e:31:6d:b1:ab:7a:0c:47:c8:06:6c:4a:96:52:41: c5:57:1c:16 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUC/5TYzntsCe7MRL5+YF1PeGb5qEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0 RDBFMTREQjAeFw0yNDA4MzEwODU2MTNaFw0yNTA4MzAwOTAxMTNaMDMxMTAvBgNV BAMTKDFCMjk5OTgxOTZFODc2NzlFM0YwMkRFRTUyMThBMTc5NkZCNkE5NEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn+LaYyvOZxvIrjUpm3oLisAxp zlSZZA3Gp5u68A1orZm5MgkTY2MOYtT5ORbEyyVKUwYJ6GjNd1brfsiuLv8iTYRZ 3rxk7hFJ3zIaCVxTMYf7jNjnIJpVU1m/W+ke1EFBOMEHTu0SYc7Zp15Ite6h5qmH hh9HEUIeYwKQgn7uqaU0Q82YDABacFr/mBdIeo02ksNHwR77WOUoDOUItjKf6jTE R2OB+AvuP9oT/qehy2jXQG+1Fk9/cxhXMxO44oMXNByXFprbG9+i3NudTNZcwIhn gwLTYXP0zhiaRM+E27ZW86T4YAH21s8wstOfan4TeEIyehExm8WKY+ujhbXXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGymZgZbodnnj8C3uUhiheW+2qU0wHwYDVR0j BBgwFoAUs6loax6V3LaHcq2lW7E4rk0OFNswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NThkNmRjYS02ZDdiLTQ4MTEtODYyYi0wZGM1ZDU3ZmEyZDkvMC9CM0E5Njg2QjFF OTVEQ0I2ODc3MkFEQTU1QkIxMzhBRTREMEUxNERCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0RDBF MTREQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1OGQ2ZGNhLTZkN2ItNDgxMS04 NjJiLTBkYzVkNTdmYTJkOS8wLzMxMzAzMzJlMzEzMjM1MmUzMTM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM4MzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ30QMA0GCSqG SIb3DQEBCwUAA4IBAQBWpRFY4efjxvsXs/I+lepufm0oZpS5zDiKSyF9coYYOD4e MxOwoyKnrGI04lKkgYwAI8woZWMvMYGPIssUmhljaL2abwGXiSZtu5HkyXoH0zKZ mdi6GyxdPuyDNIjS9hhWtf1n7HScUf3UExEbDNNaH+n6szQBQQbUx+LGgDYTO0Qm 9+cHTIqo+dRj7HA70LXTGz2q/0cQyY0y7s0ubJGx07Jq+tquiXZo4bR94u/F07It Y6d8wDaZEsWWAUP8ivyFrGdezxxXZjF6FZL9R+U6WGW/Bn87KAWJRcZRoKQ926G+ xoFJE63kyaJIG/k+MW2xq3oMR8gGbEqWUkHFVxwW -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:58 2024 by rpki-client on console-fra.rpki-client.org