$ rpki-client -vvf repo-rpki.idnic.net/repo/ee895ceb-2777-4ad9-92db-4873e485c1f6/0/3130332e3132312e3138302e302f32332d3234203d3e20313335343738.roa File: 3130332e3132312e3138302e302f32332d3234203d3e20313335343738.roa (raw, json) Hash identifier: VBSCh7JyflinLpdA6yiAmRpRBmjJtrniSlkUrQGPstE= Subject key identifier: 05:CB:3C:3D:5A:1B:7B:79:16:E4:28:97:C7:D4:FF:B3:45:B9:D0:E0 Certificate issuer: /CN=AE7B61A9C16793784CC25CEC0295516C69FF5E20 Certificate serial: 5933DBA8083F1FE70FE8BF18D67DF97A127532B0 Authority key identifier: AE:7B:61:A9:C1:67:93:78:4C:C2:5C:EC:02:95:51:6C:69:FF:5E:20 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE7B61A9C16793784CC25CEC0295516C69FF5E20.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ee895ceb-2777-4ad9-92db-4873e485c1f6/0/3130332e3132312e3138302e302f32332d3234203d3e20313335343738.roa Signing time: Wed 03 Jan 2024 08:02:01 +0000 ROA not before: Wed 03 Jan 2024 07:57:01 +0000 ROA not after: Wed 01 Jan 2025 08:02:01 +0000 asID: 135478 IP address blocks: 103.121.180.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ee895ceb-2777-4ad9-92db-4873e485c1f6/0/AE7B61A9C16793784CC25CEC0295516C69FF5E20.crl rsync://repo-rpki.idnic.net/repo/ee895ceb-2777-4ad9-92db-4873e485c1f6/0/AE7B61A9C16793784CC25CEC0295516C69FF5E20.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE7B61A9C16793784CC25CEC0295516C69FF5E20.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:47:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:33:db:a8:08:3f:1f:e7:0f:e8:bf:18:d6:7d:f9:7a:12:75:32:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE7B61A9C16793784CC25CEC0295516C69FF5E20 Validity Not Before: Jan 3 07:57:01 2024 GMT Not After : Jan 1 08:02:01 2025 GMT Subject: CN=05CB3C3D5A1B7B7916E42897C7D4FFB345B9D0E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f9:4d:d7:07:44:23:ab:cd:7b:56:eb:5f:0b: d1:a8:9f:c1:8d:fc:6d:c7:2f:65:31:a5:1b:23:02: ab:d1:f0:24:bb:2f:e0:85:a0:78:d9:b0:9a:ff:bd: 47:01:fa:55:e6:14:2f:8d:ea:b2:86:8f:07:74:71: fc:69:13:f8:81:06:59:e4:85:9d:61:f7:a9:2d:da: d1:65:63:c9:75:84:04:8b:73:59:f5:60:97:e7:b9: a0:d7:6f:41:f6:c3:1c:1c:8f:3c:82:79:6d:1d:fd: 3e:0b:0d:e5:c7:57:f4:24:d3:24:62:3e:27:71:33: a2:d5:45:f7:1a:45:87:fb:65:38:32:04:09:4e:80: a0:ad:a2:5c:68:65:98:4a:f8:10:34:7e:ce:06:ff: b8:3e:30:a2:e4:8c:85:1a:97:6c:37:f0:9f:37:93: 52:b9:e9:7a:04:64:db:ba:3d:98:fc:7c:16:28:5f: 6b:dd:3c:13:fd:58:b3:d9:dd:97:c8:16:87:bd:6e: d2:03:d6:2e:d0:00:59:26:4a:13:7a:bc:e9:98:9b: 62:7c:40:81:d5:c3:23:59:3d:cc:5b:86:2f:c7:57: 73:cb:98:e1:31:29:22:ca:f8:12:50:c6:e9:d1:24: 4c:65:31:2e:79:df:e3:9e:89:73:1b:49:f3:7f:2d: b2:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:CB:3C:3D:5A:1B:7B:79:16:E4:28:97:C7:D4:FF:B3:45:B9:D0:E0 X509v3 Authority Key Identifier: keyid:AE:7B:61:A9:C1:67:93:78:4C:C2:5C:EC:02:95:51:6C:69:FF:5E:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ee895ceb-2777-4ad9-92db-4873e485c1f6/0/AE7B61A9C16793784CC25CEC0295516C69FF5E20.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE7B61A9C16793784CC25CEC0295516C69FF5E20.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ee895ceb-2777-4ad9-92db-4873e485c1f6/0/3130332e3132312e3138302e302f32332d3234203d3e20313335343738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.180.0/23 Signature Algorithm: sha256WithRSAEncryption 60:17:ac:26:88:94:47:f6:1c:27:a5:2f:2a:bc:bd:93:14:fa: 6a:7e:c2:4d:74:d7:7b:b5:4e:b0:15:39:4a:3f:02:3f:d6:cf: 04:02:f3:33:5a:eb:e7:45:a8:d1:da:7d:33:7a:e4:6d:0d:b3: 58:83:8a:39:83:bc:87:f3:ae:a4:53:31:6e:b5:dc:91:24:36: 3b:29:0a:11:53:eb:9f:8b:13:7e:99:d6:3e:13:cf:e0:4b:e4: 9a:58:4f:41:3a:96:a1:64:17:26:ca:5c:58:41:d0:82:de:a8: c6:d7:43:cd:e2:be:a4:51:1d:5f:b7:88:d4:3d:c9:30:c2:8a: 4f:68:f5:94:15:cb:72:79:99:b7:21:a6:51:be:ec:d0:2e:cb: 42:87:24:d7:0d:19:2a:c4:49:2d:08:0a:93:5b:50:15:91:97: 1e:86:1c:77:50:e0:0c:3b:8d:0b:4f:49:11:0d:fd:f4:d8:1e: 3f:4e:5e:46:da:b4:ff:34:3a:79:c7:be:15:0b:ae:44:60:38: 20:37:34:38:c5:b4:f4:3d:6f:aa:cb:9c:b2:c4:c4:fb:59:bb: c4:4a:92:16:61:c7:25:1e:af:8c:48:fb:23:6a:cf:9a:ad:62: 6e:6d:ae:b9:65:ad:48:ee:92:be:69:fc:4a:4e:e9:46:93:6b: 28:02:77:03 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWTPbqAg/H+cP6L8Y1n35ehJ1MrAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU3QjYxQTlDMTY3OTM3ODRDQzI1Q0VDMDI5NTUxNkM2 OUZGNUUyMDAeFw0yNDAxMDMwNzU3MDFaFw0yNTAxMDEwODAyMDFaMDMxMTAvBgNV BAMTKDA1Q0IzQzNENUExQjdCNzkxNkU0Mjg5N0M3RDRGRkIzNDVCOUQwRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT+U3XB0Qjq817VutfC9Gon8GN /G3HL2UxpRsjAqvR8CS7L+CFoHjZsJr/vUcB+lXmFC+N6rKGjwd0cfxpE/iBBlnk hZ1h96kt2tFlY8l1hASLc1n1YJfnuaDXb0H2wxwcjzyCeW0d/T4LDeXHV/Qk0yRi PidxM6LVRfcaRYf7ZTgyBAlOgKCtolxoZZhK+BA0fs4G/7g+MKLkjIUal2w38J83 k1K56XoEZNu6PZj8fBYoX2vdPBP9WLPZ3ZfIFoe9btID1i7QAFkmShN6vOmYm2J8 QIHVwyNZPcxbhi/HV3PLmOExKSLK+BJQxunRJExlMS553+OeiXMbSfN/LbJ1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBcs8PVobe3kW5CiXx9T/s0W50OAwHwYDVR0j BBgwFoAUrnthqcFnk3hMwlzsApVRbGn/XiAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZTg5NWNlYi0yNzc3LTRhZDktOTJkYi00ODczZTQ4NWMxZjYvMC9BRTdCNjFBOUMx Njc5Mzc4NENDMjVDRUMwMjk1NTE2QzY5RkY1RTIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUU3QjYxQTlDMTY3OTM3ODRDQzI1Q0VDMDI5NTUxNkM2OUZG NUUyMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VlODk1Y2ViLTI3NzctNGFkOS05 MmRiLTQ4NzNlNDg1YzFmNi8wLzMxMzAzMzJlMzEzMjMxMmUzMTM4MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM3Mzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnebQwDQYJ KoZIhvcNAQELBQADggEBAGAXrCaIlEf2HCelLyq8vZMU+mp+wk1013u1TrAVOUo/ Aj/WzwQC8zNa6+dFqNHafTN65G0Ns1iDijmDvIfzrqRTMW613JEkNjspChFT65+L E36Z1j4Tz+BL5JpYT0E6lqFkFybKXFhB0ILeqMbXQ83ivqRRHV+3iNQ9yTDCik9o 9ZQVy3J5mbchplG+7NAuy0KHJNcNGSrESS0ICpNbUBWRlx6GHHdQ4Aw7jQtPSREN /fTYHj9OXkbatP80OnnHvhULrkRgOCA3NDjFtPQ9b6rLnLLExPtZu8RKkhZhxyUe r4xI+yNqz5qtYm5trrllrUjukr5p/EpO6UaTaygCdwM= -----END CERTIFICATE-----Generated at Fri Nov 22 03:59:57 2024 by rpki-client on console-ams.rpki-client.org