$ rpki-client -vvf repo-rpki.idnic.net/repo/fd2b4f77-74d0-4797-aee0-9ea907654730/0/3130332e3132332e38352e302f32342d3234203d3e20313530343939.roa File: 3130332e3132332e38352e302f32342d3234203d3e20313530343939.roa (raw, json) Hash identifier: uwqBwp8xmAtxSQ3/5C3QaJZht8gnRzu1J+NXVbvy6i8= Subject key identifier: 00:4B:40:AD:1B:4A:3A:7E:7D:F1:67:8F:4A:A7:06:AB:27:DF:84:D7 Certificate issuer: /CN=9CD5DECA8E146A0231AE872283EA0F93B5784114 Certificate serial: 60F16B70FD9D689D6689944D61011514D521D24D Authority key identifier: 9C:D5:DE:CA:8E:14:6A:02:31:AE:87:22:83:EA:0F:93:B5:78:41:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9CD5DECA8E146A0231AE872283EA0F93B5784114.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fd2b4f77-74d0-4797-aee0-9ea907654730/0/3130332e3132332e38352e302f32342d3234203d3e20313530343939.roa Signing time: Mon 19 Feb 2024 08:00:01 +0000 ROA not before: Mon 19 Feb 2024 07:55:01 +0000 ROA not after: Mon 17 Feb 2025 08:00:01 +0000 asID: 150499 IP address blocks: 103.123.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fd2b4f77-74d0-4797-aee0-9ea907654730/0/9CD5DECA8E146A0231AE872283EA0F93B5784114.crl rsync://repo-rpki.idnic.net/repo/fd2b4f77-74d0-4797-aee0-9ea907654730/0/9CD5DECA8E146A0231AE872283EA0F93B5784114.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9CD5DECA8E146A0231AE872283EA0F93B5784114.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:f1:6b:70:fd:9d:68:9d:66:89:94:4d:61:01:15:14:d5:21:d2:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9CD5DECA8E146A0231AE872283EA0F93B5784114 Validity Not Before: Feb 19 07:55:01 2024 GMT Not After : Feb 17 08:00:01 2025 GMT Subject: CN=004B40AD1B4A3A7E7DF1678F4AA706AB27DF84D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:9e:4a:86:ee:78:3c:26:3c:cf:5b:c8:0d:76: a4:bf:91:6c:5d:8c:77:ee:6b:10:a6:7c:85:6f:86: c0:d6:25:03:f0:e5:e0:1b:43:42:8d:db:48:09:ac: 05:07:e0:07:5b:f4:29:45:b1:39:f1:ac:0d:db:30: aa:0b:8e:e5:1d:4b:2a:32:55:f6:47:70:51:5e:c2: a0:c9:f6:5d:7e:ff:20:06:14:85:97:1f:9e:c5:fc: 44:c9:a1:e5:ba:cf:00:fe:f1:af:bc:e3:a6:9d:cd: 3e:b3:d5:23:9c:0c:59:9c:6e:de:d8:97:82:47:0d: bf:33:2c:b0:60:08:2c:bb:73:60:90:ea:ee:c1:d3: 20:2d:00:ea:97:52:e3:94:c5:1e:06:7d:7d:69:16: 0d:a4:6e:22:54:ed:a8:2f:3a:95:a5:1e:30:35:1c: fc:73:5b:eb:94:4f:43:b4:28:ff:d4:07:c8:4e:9b: 2a:32:cd:2b:0f:22:ec:a0:85:cc:53:fe:08:5b:6a: 27:b2:c6:4e:7b:74:88:1e:9f:b5:a9:b3:d4:c3:fc: 61:e8:69:45:b3:be:44:d4:70:89:dd:3f:d0:26:82: 97:f4:2c:33:79:ae:58:47:26:7c:0f:71:29:4a:da: ff:05:1c:18:16:7b:0e:f0:ad:ce:04:08:c2:99:21: 40:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:4B:40:AD:1B:4A:3A:7E:7D:F1:67:8F:4A:A7:06:AB:27:DF:84:D7 X509v3 Authority Key Identifier: keyid:9C:D5:DE:CA:8E:14:6A:02:31:AE:87:22:83:EA:0F:93:B5:78:41:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fd2b4f77-74d0-4797-aee0-9ea907654730/0/9CD5DECA8E146A0231AE872283EA0F93B5784114.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9CD5DECA8E146A0231AE872283EA0F93B5784114.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fd2b4f77-74d0-4797-aee0-9ea907654730/0/3130332e3132332e38352e302f32342d3234203d3e20313530343939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.85.0/24 Signature Algorithm: sha256WithRSAEncryption ab:6f:42:6a:38:15:e0:8a:18:1b:cd:42:d0:d6:85:45:a6:43: 12:40:e5:73:4c:38:6b:46:df:08:e9:47:e5:4c:70:7b:13:41: ae:18:11:67:ba:b4:42:c3:70:0b:9c:9b:2a:e5:9c:c9:6f:31: b9:a9:c9:5e:87:b6:0b:02:bf:d1:01:cb:7b:fe:e7:f2:51:fb: 47:5b:50:2f:b8:a6:14:57:28:70:13:b0:b9:21:46:8a:6b:b1: 2b:79:4d:1f:6b:a4:ff:32:94:88:12:54:b5:f8:48:72:79:ed: f7:84:dc:86:ac:18:01:06:78:6c:55:21:86:e6:60:7b:c9:21: 4d:bd:12:36:e6:dd:7b:5b:96:f1:5f:86:50:13:7e:a7:d0:6d: c2:12:b4:28:19:85:48:63:b8:55:99:6b:f5:23:94:59:8c:78: 61:b0:f9:c1:e2:4b:57:a5:ee:2b:ed:29:b2:1c:48:a3:df:54: 0f:25:3f:5e:94:b1:ef:ce:8e:3e:19:e5:65:e6:a2:85:69:6c: 76:25:4b:b6:e7:4c:76:b5:6a:62:6d:22:00:9d:34:26:22:97: 9f:df:4d:85:6e:4f:eb:4b:f9:71:4e:74:78:8d:00:9a:75:5e: 2a:62:7b:13:c7:52:45:09:56:7f:2f:78:0e:58:95:e5:15:e9: 90:d0:df:d1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYPFrcP2daJ1miZRNYQEVFNUh0k0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUNENURFQ0E4RTE0NkEwMjMxQUU4NzIyODNFQTBGOTNC NTc4NDExNDAeFw0yNDAyMTkwNzU1MDFaFw0yNTAyMTcwODAwMDFaMDMxMTAvBgNV BAMTKDAwNEI0MEFEMUI0QTNBN0U3REYxNjc4RjRBQTcwNkFCMjdERjg0RDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCznkqG7ng8JjzPW8gNdqS/kWxd jHfuaxCmfIVvhsDWJQPw5eAbQ0KN20gJrAUH4Adb9ClFsTnxrA3bMKoLjuUdSyoy VfZHcFFewqDJ9l1+/yAGFIWXH57F/ETJoeW6zwD+8a+846adzT6z1SOcDFmcbt7Y l4JHDb8zLLBgCCy7c2CQ6u7B0yAtAOqXUuOUxR4GfX1pFg2kbiJU7agvOpWlHjA1 HPxzW+uUT0O0KP/UB8hOmyoyzSsPIuyghcxT/ghbaieyxk57dIgen7Wps9TD/GHo aUWzvkTUcIndP9Amgpf0LDN5rlhHJnwPcSlK2v8FHBgWew7wrc4ECMKZIUAvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUAEtArRtKOn598WePSqcGqyffhNcwHwYDVR0j BBgwFoAUnNXeyo4UagIxrocig+oPk7V4QRQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ZDJiNGY3Ny03NGQwLTQ3OTctYWVlMC05ZWE5MDc2NTQ3MzAvMC85Q0Q1REVDQThF MTQ2QTAyMzFBRTg3MjI4M0VBMEY5M0I1Nzg0MTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUNENURFQ0E4RTE0NkEwMjMxQUU4NzIyODNFQTBGOTNCNTc4 NDExNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZkMmI0Zjc3LTc0ZDAtNDc5Ny1h ZWUwLTllYTkwNzY1NDczMC8wLzMxMzAzMzJlMzEzMjMzMmUzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzQzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3tVMA0GCSqG SIb3DQEBCwUAA4IBAQCrb0JqOBXgihgbzULQ1oVFpkMSQOVzTDhrRt8I6UflTHB7 E0GuGBFnurRCw3ALnJsq5ZzJbzG5qcleh7YLAr/RAct7/ufyUftHW1AvuKYUVyhw E7C5IUaKa7EreU0fa6T/MpSIElS1+Ehyee33hNyGrBgBBnhsVSGG5mB7ySFNvRI2 5t17W5bxX4ZQE36n0G3CErQoGYVIY7hVmWv1I5RZjHhhsPnB4ktXpe4r7SmyHEij 31QPJT9elLHvzo4+GeVl5qKFaWx2JUu250x2tWpibSIAnTQmIpef302Fbk/rS/lx TnR4jQCadV4qYnsTx1JFCVZ/L3gOWJXlFemQ0N/R -----END CERTIFICATE-----Generated at Fri Nov 22 08:13:04 2024 by rpki-client on console-fra.rpki-client.org