$ rpki-client -vvf repo-rpki.idnic.net/repo/e9f575db-c738-4b8e-b36a-6b020c66849d/0/3130332e3134342e3132382e302f32332d3233203d3e20313339343333.roa File: 3130332e3134342e3132382e302f32332d3233203d3e20313339343333.roa (raw, json) Hash identifier: fPtFW64rMVWWTfe0idTINB3BUS2Ju2ivrfcwXSv84rI= Subject key identifier: 53:7E:2D:E5:AE:6A:B1:41:2F:2D:75:E4:9C:0A:16:CB:3C:B7:19:73 Certificate issuer: /CN=C7F3F7AC648C6073C7FE736271A1A8E7277962B7 Certificate serial: 49CFA6C46C283A74F96B1C65DE678D9179382E74 Authority key identifier: C7:F3:F7:AC:64:8C:60:73:C7:FE:73:62:71:A1:A8:E7:27:79:62:B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F3F7AC648C6073C7FE736271A1A8E7277962B7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e9f575db-c738-4b8e-b36a-6b020c66849d/0/3130332e3134342e3132382e302f32332d3233203d3e20313339343333.roa Signing time: Mon 14 Oct 2024 09:00:01 +0000 ROA not before: Mon 14 Oct 2024 08:55:01 +0000 ROA not after: Mon 13 Oct 2025 09:00:01 +0000 asID: 139433 IP address blocks: 103.144.128.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e9f575db-c738-4b8e-b36a-6b020c66849d/0/C7F3F7AC648C6073C7FE736271A1A8E7277962B7.crl rsync://repo-rpki.idnic.net/repo/e9f575db-c738-4b8e-b36a-6b020c66849d/0/C7F3F7AC648C6073C7FE736271A1A8E7277962B7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F3F7AC648C6073C7FE736271A1A8E7277962B7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:cf:a6:c4:6c:28:3a:74:f9:6b:1c:65:de:67:8d:91:79:38:2e:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C7F3F7AC648C6073C7FE736271A1A8E7277962B7 Validity Not Before: Oct 14 08:55:01 2024 GMT Not After : Oct 13 09:00:01 2025 GMT Subject: CN=537E2DE5AE6AB1412F2D75E49C0A16CB3CB71973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:32:65:d8:d7:b3:3b:08:56:ff:b9:e2:36:35: 73:36:d9:d0:29:74:19:e1:5e:70:22:e5:5c:73:a2: 5a:92:08:34:25:a4:0b:f9:e3:e2:4a:3b:34:46:9c: 6b:bf:16:33:8c:7f:95:d0:b7:31:4f:e0:dd:ae:07: e1:0e:64:42:d1:9d:73:9a:01:94:bd:13:14:13:20: 6a:2a:c8:da:b7:d1:be:c5:b2:5a:3f:df:c0:f6:5a: 7a:f6:bb:32:aa:44:bc:13:14:7b:99:c5:3c:fa:99: a1:a3:ab:ae:5c:3d:96:ee:ca:86:bb:5e:3f:79:03: 25:d5:05:fc:42:15:62:8d:7d:02:2d:03:09:c4:02: 3d:a1:74:a9:f1:4e:1c:13:85:11:f3:b2:e7:f0:83: fe:04:ec:a1:ba:50:cd:75:d3:e6:a4:fb:02:d5:5e: fd:08:15:cf:ca:eb:30:50:06:97:ca:6c:fd:b6:d2: f6:7d:66:83:23:a1:f0:84:53:62:12:00:f8:47:17: c2:73:63:55:dc:ca:8d:32:f9:d6:02:3a:47:56:a2: b0:01:04:cf:bc:0e:c8:e0:81:26:23:b8:ad:cd:ea: 5e:22:85:03:84:43:f5:82:3a:33:89:97:e3:5d:9b: 92:75:ad:85:a3:9e:d7:4a:23:36:1e:32:e9:82:58: 3c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:7E:2D:E5:AE:6A:B1:41:2F:2D:75:E4:9C:0A:16:CB:3C:B7:19:73 X509v3 Authority Key Identifier: keyid:C7:F3:F7:AC:64:8C:60:73:C7:FE:73:62:71:A1:A8:E7:27:79:62:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e9f575db-c738-4b8e-b36a-6b020c66849d/0/C7F3F7AC648C6073C7FE736271A1A8E7277962B7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F3F7AC648C6073C7FE736271A1A8E7277962B7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e9f575db-c738-4b8e-b36a-6b020c66849d/0/3130332e3134342e3132382e302f32332d3233203d3e20313339343333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.128.0/23 Signature Algorithm: sha256WithRSAEncryption ad:15:21:48:ec:81:b4:e1:7f:37:88:88:d8:31:93:b4:4b:44: d8:80:ee:0f:a2:44:4c:b3:f4:6a:d7:4c:b7:fe:73:9e:d9:f5: f2:fc:dd:e3:33:ff:b8:3b:ee:da:48:5b:57:ca:43:c9:63:e5: 69:cf:e9:8f:68:bb:b6:ec:a1:fb:fd:db:bd:eb:a5:a1:75:b7: 31:9b:b3:df:06:97:3f:33:b9:1e:76:e9:54:2e:2f:c0:65:77: 8c:de:b9:b5:ce:0a:bf:1d:06:37:82:a9:e1:05:30:89:06:92: 23:7c:3c:8d:84:79:3b:c9:4d:3d:ea:be:38:e4:10:8c:98:2c: de:1c:9f:64:2f:42:b9:fb:c7:42:aa:c8:9a:ea:33:e3:6b:54: ee:20:d0:5f:54:a5:4e:5d:5c:03:55:13:5b:71:97:d6:d3:d7: 74:82:e6:70:62:ab:94:1d:f0:f0:83:ec:57:d6:0d:c1:81:e1: e1:c9:51:41:d7:3b:08:79:3e:d9:d8:06:8b:af:7f:f3:71:f2: 6c:97:95:22:33:4e:86:87:7c:f3:ce:10:68:65:18:2e:57:49: 1f:ca:85:0a:d0:bc:1e:90:64:f2:fd:12:f9:90:88:49:3e:58: c2:93:59:8e:f1:bd:38:8f:2f:d9:39:de:51:5a:1c:e7:e7:9c: 8b:d2:d1:2c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSc+mxGwoOnT5axxl3meNkXk4LnQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzdGM0Y3QUM2NDhDNjA3M0M3RkU3MzYyNzFBMUE4RTcy Nzc5NjJCNzAeFw0yNDEwMTQwODU1MDFaFw0yNTEwMTMwOTAwMDFaMDMxMTAvBgNV BAMTKDUzN0UyREU1QUU2QUIxNDEyRjJENzVFNDlDMEExNkNCM0NCNzE5NzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMMmXY17M7CFb/ueI2NXM22dAp dBnhXnAi5VxzolqSCDQlpAv54+JKOzRGnGu/FjOMf5XQtzFP4N2uB+EOZELRnXOa AZS9ExQTIGoqyNq30b7Fslo/38D2Wnr2uzKqRLwTFHuZxTz6maGjq65cPZbuyoa7 Xj95AyXVBfxCFWKNfQItAwnEAj2hdKnxThwThRHzsufwg/4E7KG6UM110+ak+wLV Xv0IFc/K6zBQBpfKbP220vZ9ZoMjofCEU2ISAPhHF8JzY1Xcyo0y+dYCOkdWorAB BM+8DsjggSYjuK3N6l4ihQOEQ/WCOjOJl+Ndm5J1rYWjntdKIzYeMumCWDyNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUU34t5a5qsUEvLXXknAoWyzy3GXMwHwYDVR0j BBgwFoAUx/P3rGSMYHPH/nNicaGo5yd5YrcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l OWY1NzVkYi1jNzM4LTRiOGUtYjM2YS02YjAyMGM2Njg0OWQvMC9DN0YzRjdBQzY0 OEM2MDczQzdGRTczNjI3MUExQThFNzI3Nzk2MkI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzdGM0Y3QUM2NDhDNjA3M0M3RkU3MzYyNzFBMUE4RTcyNzc5 NjJCNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U5ZjU3NWRiLWM3MzgtNGI4ZS1i MzZhLTZiMDIwYzY2ODQ5ZC8wLzMxMzAzMzJlMzEzNDM0MmUzMTMyMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzkzNDMzMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnkIAwDQYJ KoZIhvcNAQELBQADggEBAK0VIUjsgbThfzeIiNgxk7RLRNiA7g+iREyz9GrXTLf+ c57Z9fL83eMz/7g77tpIW1fKQ8lj5WnP6Y9ou7bsofv9273rpaF1tzGbs98Glz8z uR526VQuL8Bld4zeubXOCr8dBjeCqeEFMIkGkiN8PI2EeTvJTT3qvjjkEIyYLN4c n2QvQrn7x0KqyJrqM+NrVO4g0F9UpU5dXANVE1txl9bT13SC5nBiq5Qd8PCD7FfW DcGB4eHJUUHXOwh5PtnYBouvf/Nx8myXlSIzToaHfPPOEGhlGC5XSR/KhQrQvB6Q ZPL9EvmQiEk+WMKTWY7xvTiPL9k53lFaHOfnnIvS0Sw= -----END CERTIFICATE-----Generated at Mon Nov 25 23:58:45 2024 by rpki-client on console-fra.rpki-client.org