$ rpki-client -vvf repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/3130332e3134302e37382e302f32332d3234203d3e20313338383733.roa File: 3130332e3134302e37382e302f32332d3234203d3e20313338383733.roa (raw, json) Hash identifier: D1fgcarXEgnnAnhHAtyNJEHbJgDcdr96nDzetTCtw2s= Subject key identifier: 9B:11:37:1E:47:12:4D:34:2E:BD:9D:BD:97:08:E2:00:BC:6B:01:56 Certificate issuer: /CN=45795CE411027C6961B89E9C0FBDB9B73BD61C39 Certificate serial: 03393A368C7979EACA453E92F5D5884CE5D14C92 Authority key identifier: 45:79:5C:E4:11:02:7C:69:61:B8:9E:9C:0F:BD:B9:B7:3B:D6:1C:39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45795CE411027C6961B89E9C0FBDB9B73BD61C39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/3130332e3134302e37382e302f32332d3234203d3e20313338383733.roa Signing time: Mon 01 Jul 2024 01:04:14 +0000 ROA not before: Mon 01 Jul 2024 00:59:14 +0000 ROA not after: Mon 30 Jun 2025 01:04:14 +0000 asID: 138873 IP address blocks: 103.140.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/45795CE411027C6961B89E9C0FBDB9B73BD61C39.crl rsync://repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/45795CE411027C6961B89E9C0FBDB9B73BD61C39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45795CE411027C6961B89E9C0FBDB9B73BD61C39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:39:3a:36:8c:79:79:ea:ca:45:3e:92:f5:d5:88:4c:e5:d1:4c:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45795CE411027C6961B89E9C0FBDB9B73BD61C39 Validity Not Before: Jul 1 00:59:14 2024 GMT Not After : Jun 30 01:04:14 2025 GMT Subject: CN=9B11371E47124D342EBD9DBD9708E200BC6B0156 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:76:b6:b7:55:36:6d:d6:45:75:dd:eb:1b:03: b9:f0:65:e3:b3:d1:d5:a3:49:38:ed:f9:48:b3:7d: 9d:90:71:32:87:28:10:4a:69:5e:fb:be:e7:6f:39: 48:1c:8b:48:12:83:dd:b2:19:41:ed:7a:53:36:db: e6:e0:5b:22:2a:49:cd:f9:ef:65:eb:a4:5d:dc:0c: 5c:83:0e:0a:b5:b1:c9:3f:7a:d4:b9:d4:02:60:08: 49:b1:8b:9b:91:cf:e3:c3:d7:e4:09:47:33:f4:17: c9:87:8f:5f:ee:cd:0c:7a:c1:27:b2:9d:60:b2:cd: 4d:71:15:f9:93:ef:54:a6:e5:21:09:05:0b:ec:d5: 97:71:79:22:ae:3d:5b:dd:55:cd:66:b0:a0:1f:c6: d8:59:d5:74:f0:94:10:24:5f:68:86:d9:6e:4d:6a: 67:f5:64:a4:e7:f7:00:e8:6c:7a:38:96:78:19:8f: 81:56:a0:ee:eb:21:8f:2d:17:c4:2c:ab:ed:fd:00: 59:75:5b:a1:17:b6:ff:81:77:7f:09:08:a2:b9:b6: d0:1d:f7:27:b0:ff:d9:b5:22:4b:cb:3c:01:af:39: 36:6a:14:a9:7b:eb:91:5c:83:2d:17:fe:ad:9b:cf: 93:f7:c8:8f:69:51:9a:a4:a3:7d:10:31:e7:d0:35: 32:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:11:37:1E:47:12:4D:34:2E:BD:9D:BD:97:08:E2:00:BC:6B:01:56 X509v3 Authority Key Identifier: keyid:45:79:5C:E4:11:02:7C:69:61:B8:9E:9C:0F:BD:B9:B7:3B:D6:1C:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/45795CE411027C6961B89E9C0FBDB9B73BD61C39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45795CE411027C6961B89E9C0FBDB9B73BD61C39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/3130332e3134302e37382e302f32332d3234203d3e20313338383733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.78.0/23 Signature Algorithm: sha256WithRSAEncryption 81:d1:5a:ed:f0:c3:15:93:7e:87:4a:e1:02:52:d6:c8:6a:21: 13:ad:94:e4:8b:54:4b:2c:c2:b1:d9:e5:9f:1e:53:19:24:56: 98:19:ed:2f:15:5f:a1:55:9c:fa:0f:6d:a0:87:87:c7:9e:ef: ea:3e:3f:9a:0b:e1:4e:3f:16:f1:96:fc:82:4a:7f:48:89:aa: 03:3a:35:ca:13:50:bc:58:5e:a6:2d:61:10:27:fc:42:9a:ab: b6:95:d4:23:8d:8a:30:0a:38:01:8f:d1:b3:b9:ad:51:9d:42: 61:2b:a8:bc:5d:3a:f2:75:61:a1:41:49:f3:57:7b:87:0f:55: ea:1e:a3:ca:ef:80:88:c7:6c:d3:90:c8:b8:0c:6b:c8:f7:65: a5:c0:da:c3:78:89:66:45:08:0c:ec:a3:66:e2:80:60:af:c9: c5:96:d9:13:47:e9:bf:1f:28:0b:c8:e5:74:8e:af:73:9d:a4: ab:49:0e:f7:7d:3d:6e:5a:60:13:73:99:f5:fb:ad:c8:81:56: dc:d6:7a:ab:88:8d:37:d5:72:9b:0d:a9:aa:52:3c:7f:86:b9: 45:b7:0d:93:7c:ea:53:b5:7a:4a:e2:0a:85:d0:23:7c:cc:0f: 43:f6:8a:f2:59:88:48:6e:a8:c8:84:c6:d4:f6:d3:92:df:92: 09:cd:3f:d7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUAzk6Nox5eerKRT6S9dWITOXRTJIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU3OTVDRTQxMTAyN0M2OTYxQjg5RTlDMEZCREI5Qjcz QkQ2MUMzOTAeFw0yNDA3MDEwMDU5MTRaFw0yNTA2MzAwMTA0MTRaMDMxMTAvBgNV BAMTKDlCMTEzNzFFNDcxMjREMzQyRUJEOURCRDk3MDhFMjAwQkM2QjAxNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUdra3VTZt1kV13esbA7nwZeOz 0dWjSTjt+UizfZ2QcTKHKBBKaV77vudvOUgci0gSg92yGUHtelM22+bgWyIqSc35 72XrpF3cDFyDDgq1sck/etS51AJgCEmxi5uRz+PD1+QJRzP0F8mHj1/uzQx6wSey nWCyzU1xFfmT71Sm5SEJBQvs1ZdxeSKuPVvdVc1msKAfxthZ1XTwlBAkX2iG2W5N amf1ZKTn9wDobHo4lngZj4FWoO7rIY8tF8Qsq+39AFl1W6EXtv+Bd38JCKK5ttAd 9yew/9m1IkvLPAGvOTZqFKl765Fcgy0X/q2bz5P3yI9pUZqko30QMefQNTLTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmxE3HkcSTTQuvZ29lwjiALxrAVYwHwYDVR0j BBgwFoAURXlc5BECfGlhuJ6cD725tzvWHDkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NzNhYjc5ZC0wMGQ1LTQ5Y2ItYWMxMC0zYmQ0ZjIzODZiYzYvMC80NTc5NUNFNDEx MDI3QzY5NjFCODlFOUMwRkJEQjlCNzNCRDYxQzM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU3OTVDRTQxMTAyN0M2OTYxQjg5RTlDMEZCREI5QjczQkQ2 MUMzOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3M2FiNzlkLTAwZDUtNDljYi1h YzEwLTNiZDRmMjM4NmJjNi8wLzMxMzAzMzJlMzEzNDMwMmUzNzM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM4MzgzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4xOMA0GCSqG SIb3DQEBCwUAA4IBAQCB0Vrt8MMVk36HSuECUtbIaiETrZTki1RLLMKx2eWfHlMZ JFaYGe0vFV+hVZz6D22gh4fHnu/qPj+aC+FOPxbxlvyCSn9IiaoDOjXKE1C8WF6m LWEQJ/xCmqu2ldQjjYowCjgBj9Gzua1RnUJhK6i8XTrydWGhQUnzV3uHD1XqHqPK 74CIx2zTkMi4DGvI92WlwNrDeIlmRQgM7KNm4oBgr8nFltkTR+m/HygLyOV0jq9z naSrSQ73fT1uWmATc5n1+63IgVbc1nqriI031XKbDamqUjx/hrlFtw2TfOpTtXpK 4gqF0CN8zA9D9oryWYhIbqjIhMbU9tOS35IJzT/X -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org