$ rpki-client -vvf repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31382e302f32342d3234203d3e20313338303837.roa File: 3130332e3132352e31382e302f32342d3234203d3e20313338303837.roa (raw, json) Hash identifier: hct67R+/IHQnDXwJng2i3aVC3dkkDuKgbstOBDaR5yg= Subject key identifier: FD:04:8B:67:12:72:59:C8:F2:0F:56:53:A1:20:94:8A:54:EE:51:F1 Certificate issuer: /CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB Certificate serial: 2316A5F282325677EDF1209DA4B5B438CBB69FDC Authority key identifier: B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31382e302f32342d3234203d3e20313338303837.roa Signing time: Fri 15 Nov 2024 11:00:01 +0000 ROA not before: Fri 15 Nov 2024 10:55:01 +0000 ROA not after: Fri 14 Nov 2025 11:00:01 +0000 asID: 138087 IP address blocks: 103.125.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:16:a5:f2:82:32:56:77:ed:f1:20:9d:a4:b5:b4:38:cb:b6:9f:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB Validity Not Before: Nov 15 10:55:01 2024 GMT Not After : Nov 14 11:00:01 2025 GMT Subject: CN=FD048B67127259C8F20F5653A120948A54EE51F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:16:33:a4:e5:20:51:0f:9c:64:0c:03:7c:ef: eb:44:60:1f:ec:26:f4:94:e0:e3:0c:bc:ae:08:90: 8c:87:6a:31:91:95:b3:62:80:f6:22:0e:35:95:3c: 64:68:80:b1:d6:19:f2:16:d1:d0:6c:8a:08:4b:74: b9:cc:26:d0:a6:e7:48:96:74:39:90:0a:35:a9:d3: b9:7d:9f:65:46:b7:13:af:5f:e9:e2:42:a8:fd:0d: ec:cf:b4:61:82:dc:93:e9:fb:48:f5:be:b1:9a:cc: 8b:96:8e:b9:48:46:ce:ea:f6:3e:7f:ad:00:6a:0c: c3:2b:ee:94:23:e6:99:c1:14:ec:70:93:1f:d1:b2: d2:ee:e1:e4:db:fa:08:e4:36:a6:cc:71:43:06:45: 1d:a2:ff:a6:8b:fc:19:f6:ac:73:4b:72:7c:68:38: 75:e1:8b:3a:b7:3e:f8:2f:be:2f:5c:0d:a7:c8:d0: 7d:d5:01:60:44:f4:8e:22:02:a3:24:37:c0:78:1e: 62:87:43:24:06:22:cc:5c:d4:38:e7:84:25:9b:eb: 4a:b4:5a:b3:20:34:f6:b5:92:25:76:38:7c:51:d4: 92:ee:ce:7a:49:56:ca:b8:e3:0d:97:ec:e4:15:f7: 78:af:b1:d9:74:a2:fb:36:b6:35:40:70:65:d7:06: 3a:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:04:8B:67:12:72:59:C8:F2:0F:56:53:A1:20:94:8A:54:EE:51:F1 X509v3 Authority Key Identifier: keyid:B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/3130332e3132352e31382e302f32342d3234203d3e20313338303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.18.0/24 Signature Algorithm: sha256WithRSAEncryption 46:b7:24:c0:9e:10:c1:11:18:59:bd:47:4f:cf:0b:a2:fe:6f: 71:60:b5:34:2b:c8:c7:3f:2f:ef:4b:76:47:1e:5a:9c:d2:c8: c3:13:86:d8:63:af:8d:80:b7:15:7a:2c:b0:02:cc:22:96:fb: 65:0c:2b:a6:e9:96:43:0b:3d:ad:87:45:2e:61:48:7a:6f:1b: 0d:c7:d3:10:58:ed:ce:2b:0b:4d:bd:03:1f:c6:46:0d:f8:7c: 15:df:ae:a4:66:30:a4:66:30:48:20:68:d0:a2:4a:f2:02:20: 40:02:dd:b1:ce:25:54:14:27:af:b2:c8:a7:02:00:23:b8:b4: 2d:83:d1:43:82:82:3d:6c:4b:06:27:74:7a:8b:58:d3:67:38: bb:e3:db:25:85:19:7d:fc:44:ea:9e:76:01:20:3b:8a:6d:41: 03:be:7a:1f:fa:1b:bc:c6:99:82:a2:12:e3:de:ab:46:97:eb: 6b:c7:fc:0f:05:2d:c0:df:44:c2:59:d4:ac:b9:77:fe:a0:5b: 48:a9:7d:69:11:e1:d1:a6:75:fb:43:a7:e5:dd:36:2b:f0:6f: 72:d2:c9:9b:93:5b:fd:c1:42:1a:39:bc:35:2b:5c:6b:74:f9: 68:39:9b:b5:98:ba:88:1c:99:29:02:2e:ee:22:f1:ad:66:35: 4c:ac:6f:9b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIxal8oIyVnft8SCdpLW0OMu2n9wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0 RDBFMTREQjAeFw0yNDExMTUxMDU1MDFaFw0yNTExMTQxMTAwMDFaMDMxMTAvBgNV BAMTKEZEMDQ4QjY3MTI3MjU5QzhGMjBGNTY1M0ExMjA5NDhBNTRFRTUxRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeFjOk5SBRD5xkDAN87+tEYB/s JvSU4OMMvK4IkIyHajGRlbNigPYiDjWVPGRogLHWGfIW0dBsighLdLnMJtCm50iW dDmQCjWp07l9n2VGtxOvX+niQqj9DezPtGGC3JPp+0j1vrGazIuWjrlIRs7q9j5/ rQBqDMMr7pQj5pnBFOxwkx/RstLu4eTb+gjkNqbMcUMGRR2i/6aL/Bn2rHNLcnxo OHXhizq3Pvgvvi9cDafI0H3VAWBE9I4iAqMkN8B4HmKHQyQGIsxc1DjnhCWb60q0 WrMgNPa1kiV2OHxR1JLuznpJVsq44w2X7OQV93ivsdl0ovs2tjVAcGXXBjrjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU/QSLZxJyWcjyD1ZToSCUilTuUfEwHwYDVR0j BBgwFoAUs6loax6V3LaHcq2lW7E4rk0OFNswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NThkNmRjYS02ZDdiLTQ4MTEtODYyYi0wZGM1ZDU3ZmEyZDkvMC9CM0E5Njg2QjFF OTVEQ0I2ODc3MkFEQTU1QkIxMzhBRTREMEUxNERCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjNBOTY4NkIxRTk1RENCNjg3NzJBREE1NUJCMTM4QUU0RDBF MTREQi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1OGQ2ZGNhLTZkN2ItNDgxMS04 NjJiLTBkYzVkNTdmYTJkOS8wLzMxMzAzMzJlMzEzMjM1MmUzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM4MzAzODM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ30SMA0GCSqG SIb3DQEBCwUAA4IBAQBGtyTAnhDBERhZvUdPzwui/m9xYLU0K8jHPy/vS3ZHHlqc 0sjDE4bYY6+NgLcVeiywAswilvtlDCum6ZZDCz2th0UuYUh6bxsNx9MQWO3OKwtN vQMfxkYN+HwV366kZjCkZjBIIGjQokryAiBAAt2xziVUFCevssinAgAjuLQtg9FD goI9bEsGJ3R6i1jTZzi749slhRl9/ETqnnYBIDuKbUEDvnof+hu8xpmCohLj3qtG l+trx/wPBS3A30TCWdSsuXf+oFtIqX1pEeHRpnX7Q6fl3TYr8G9y0smbk1v9wUIa Obw1K1xrdPloOZu1mLqIHJkpAi7uIvGtZjVMrG+b -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:58 2024 by rpki-client on console-fra.rpki-client.org