$ rpki-client -vvf repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31372e302f32342d3234203d3e20313338303837.roa File: 3130332e3132352e31372e302f32342d3234203d3e20313338303837.roa (raw, json) Hash identifier: 7kMgl/NBAAfJwU+xnPHcsFS6CNKIZl6ydoYTByVrcR4= Subject key identifier: A6:3E:EE:06:16:78:AB:05:D9:18:F3:04:9E:95:21:FB:BE:9C:39:C9 Certificate issuer: /CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB Certificate serial: 6EFE42F0537751F4FAABF580CA11E27E40F56524 Authority key identifier: B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31372e302f32342d3234203d3e20313338303837.roa Signing time: Fri 15 Nov 2024 11:00:01 +0000 ROA not before: Fri 15 Nov 2024 10:55:01 +0000 ROA not after: Fri 14 Nov 2025 11:00:01 +0000 asID: 138087 IP address blocks: 103.125.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 02:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:fe:42:f0:53:77:51:f4:fa:ab:f5:80:ca:11:e2:7e:40:f5:65:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB Validity Not Before: Nov 15 10:55:01 2024 GMT Not After : Nov 14 11:00:01 2025 GMT Subject: CN=A63EEE061678AB05D918F3049E9521FBBE9C39C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:9a:d2:d6:51:89:dd:97:12:fa:6b:27:c3:6f: 99:8d:3b:06:db:7d:55:78:c9:f3:bf:b9:f0:da:68: 16:b2:10:de:63:08:90:25:25:1a:60:fa:d5:1c:82: 0f:3a:13:eb:0b:67:37:70:b5:a1:f8:fb:d1:45:4a: e4:40:79:25:61:e2:6e:4d:60:d6:9b:0c:e6:b9:93: 84:9d:a7:64:be:62:91:49:1b:7e:65:90:13:1d:cc: 43:ef:f7:d4:a1:a1:90:99:28:4e:06:a3:cb:23:46: 5d:0a:50:a9:5d:ba:ae:58:9b:c4:2a:1c:fd:8c:b6: 0e:72:05:6e:d0:7d:12:27:cc:a5:55:49:a3:a0:9e: e7:4e:b5:87:7b:16:a4:1d:c0:f0:52:b6:66:e0:f9: 64:50:c0:4d:4b:60:55:8e:4e:94:0a:a9:74:d2:67: a6:38:94:71:5f:91:4a:66:5b:33:33:be:d1:7d:b9: e5:8c:b6:e1:b2:e1:88:a4:5e:36:a7:32:49:03:83: c1:a0:6e:da:6a:8e:6a:b5:53:8a:72:a0:24:50:f5: 1d:bc:b7:51:b9:5f:d0:ff:ba:d4:63:c8:b0:6c:9b: 6f:85:48:1f:9b:a4:dc:7c:16:32:f5:51:d8:66:d8: 69:a2:45:fd:6a:30:50:74:57:8f:e7:47:c1:9e:a8: 71:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:3E:EE:06:16:78:AB:05:D9:18:F3:04:9E:95:21:FB:BE:9C:39:C9 X509v3 Authority Key Identifier: keyid:B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31372e302f32342d3234203d3e20313338303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.17.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:cd:b3:f2:9c:ad:58:67:76:bf:be:e4:b6:03:4b:70:ee:63: 3f:0c:36:ab:fb:cc:8c:84:f8:ae:a4:62:42:8f:96:99:41:a5: 66:17:96:95:0e:32:43:b1:03:8f:3b:ac:52:d7:23:09:70:f9: 07:9a:46:76:01:f9:24:27:a6:dc:48:1d:e7:d7:ea:77:dd:7e: fa:de:70:4e:8c:98:c6:fd:44:f2:71:f3:db:e2:58:8f:0b:94: dc:cd:77:c8:ef:77:da:15:df:09:bc:8e:88:3c:15:35:fb:ca: 60:83:fa:90:63:c3:52:e0:09:7d:2a:3a:8f:bd:d8:6d:4b:68: be:b9:9c:24:3a:f7:a2:9f:44:8a:6d:88:c3:79:2c:8a:a1:c5: 5e:d4:5b:de:d5:2c:d9:a6:c6:c8:54:f1:85:c8:d9:e9:31:0b: 41:8a:06:85:fe:77:ed:72:59:69:34:ad:c1:fb:4a:2b:72:e7: b5:00:b9:ca:04:8d:71:40:62:4c:cd:e1:2e:5b:da:79:9f:11: 64:4f:cb:09:b7:a3:c2:26:c7:ce:91:ed:89:37:a6:a0:17:ec: d6:4a:6c:b4:ab:50:c8:ac:7e:07:ea:f1:2e:70:99:67:e4:0d: 0d:62:db:8c:c5:a3:bb:75:14:26:3c:54:83:87:d0:b1:22:d3: 94:9b:cb:1c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbv5C8FN3UfT6q/WAyhHifkD1ZSQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0 RDBFMTREQjAeFw0yNDExMTUxMDU1MDFaFw0yNTExMTQxMTAwMDFaMDMxMTAvBgNV BAMTKEE2M0VFRTA2MTY3OEFCMDVEOTE4RjMwNDlFOTUyMUZCQkU5QzM5QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbmtLWUYndlxL6ayfDb5mNOwbb fVV4yfO/ufDaaBayEN5jCJAlJRpg+tUcgg86E+sLZzdwtaH4+9FFSuRAeSVh4m5N YNabDOa5k4Sdp2S+YpFJG35lkBMdzEPv99ShoZCZKE4Go8sjRl0KUKlduq5Ym8Qq HP2Mtg5yBW7QfRInzKVVSaOgnudOtYd7FqQdwPBStmbg+WRQwE1LYFWOTpQKqXTS Z6Y4lHFfkUpmWzMzvtF9ueWMtuGy4YikXjanMkkDg8Ggbtpqjmq1U4pyoCRQ9R28 t1G5X9D/utRjyLBsm2+FSB+bpNx8FjL1Udhm2GmiRf1qMFB0V4/nR8GeqHHNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpj7uBhZ4qwXZGPMEnpUh+76cOckwHwYDVR0j BBgwFoAUs6loax6V3LaHcq2lW7E4rk0OFNswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NThkNmRjYS02ZDdiLTQ4MTEtODYyYi0wZGM1ZDU3ZmEyZDkvMC9CM0E5Njg2QjFF OTVEQ0I2ODc3MkFEQTU1QkIxMzhBRTREMEUxNERCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0RDBF MTREQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1OGQ2ZGNhLTZkN2ItNDgxMS04 NjJiLTBkYzVkNTdmYTJkOS8wLzMxMzAzMzJlMzEzMjM1MmUzMTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ30RMA0GCSqG SIb3DQEBCwUAA4IBAQCMzbPynK1YZ3a/vuS2A0tw7mM/DDar+8yMhPiupGJCj5aZ QaVmF5aVDjJDsQOPO6xS1yMJcPkHmkZ2AfkkJ6bcSB3n1+p33X763nBOjJjG/UTy cfPb4liPC5TczXfI73faFd8JvI6IPBU1+8pgg/qQY8NS4Al9KjqPvdhtS2i+uZwk Ovein0SKbYjDeSyKocVe1Fve1SzZpsbIVPGFyNnpMQtBigaF/nftcllpNK3B+0or cue1ALnKBI1xQGJMzeEuW9p5nxFkT8sJt6PCJsfOke2JN6agF+zWSmy0q1DIrH4H 6vEucJln5A0NYtuMxaO7dRQmPFSDh9CxItOUm8sc -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:57 2024 by rpki-client on console-ams.rpki-client.org