$ rpki-client -vvf repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32342d3234203d3e203233393437.roa File: 3130332e3134382e3139382e302f32342d3234203d3e203233393437.roa (raw, json) Hash identifier: GWQscMoRwA26t3ilcn7ceKBW6qj1NIHcA+fjb8FfPGo= Subject key identifier: 0A:74:E1:ED:FD:43:24:4B:64:FF:22:74:B5:14:C1:27:CF:14:1E:7C Certificate issuer: /CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Certificate serial: 1C4C8BD824E8700E6DD17E74E9548CD73CBF56A9 Authority key identifier: 08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32342d3234203d3e203233393437.roa Signing time: Mon 15 Jan 2024 04:01:20 +0000 ROA not before: Mon 15 Jan 2024 03:56:20 +0000 ROA not after: Mon 13 Jan 2025 04:01:20 +0000 asID: 23947 IP address blocks: 103.148.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 23:52:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:4c:8b:d8:24:e8:70:0e:6d:d1:7e:74:e9:54:8c:d7:3c:bf:56:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Validity Not Before: Jan 15 03:56:20 2024 GMT Not After : Jan 13 04:01:20 2025 GMT Subject: CN=0A74E1EDFD43244B64FF2274B514C127CF141E7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b8:08:4b:56:3e:13:b7:10:04:34:3d:74:26: 2b:71:8e:0b:4a:e0:ef:9c:b0:b6:c4:f9:3b:c8:16: 40:6e:9d:33:45:19:0f:ca:6b:83:6a:5f:db:82:22: b0:84:67:ad:e8:cd:b4:11:7c:e8:6a:80:b3:6d:67: 37:71:d1:76:c3:8d:bb:4c:12:35:f2:9f:21:bb:ea: be:8d:e4:f6:84:d4:a7:6c:6f:77:5d:31:cf:ab:fe: 62:ff:a9:8c:79:f0:d9:e1:a2:27:64:a1:f7:65:21: 84:3f:5c:8b:a7:62:00:bc:76:7a:89:2c:59:5d:b7: 29:5d:f9:b9:48:44:3b:03:35:0c:38:f5:bc:48:65: f3:b7:d3:38:a6:47:a1:27:35:fc:b8:08:fa:fe:f5: e9:f0:04:ea:10:f0:99:36:1c:41:06:0d:45:b1:b6: 38:bc:07:ed:13:81:f4:ee:43:2b:c2:dd:5d:7e:2b: 7a:f0:dd:dd:ed:e9:67:ad:20:1d:65:00:cc:42:32: 80:de:05:f6:30:98:6f:df:2b:03:85:4a:90:c3:e8: 56:e5:37:3e:95:93:45:f4:43:36:8a:07:df:54:91: 2d:fa:59:40:a8:f1:62:d5:2c:c4:bd:ea:fc:ea:55: d3:e7:e4:45:73:3f:ed:0b:df:6e:8c:67:f3:c0:71: 1a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:74:E1:ED:FD:43:24:4B:64:FF:22:74:B5:14:C1:27:CF:14:1E:7C X509v3 Authority Key Identifier: keyid:08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32342d3234203d3e203233393437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.198.0/24 Signature Algorithm: sha256WithRSAEncryption 29:f7:fb:cf:ed:ce:3d:76:24:57:b0:8e:04:98:e2:47:cc:5a: cd:9e:1b:eb:1d:91:1c:83:0d:35:a2:2f:1d:c4:0a:0a:dc:96: cb:57:22:d6:85:e0:ef:83:49:10:71:d8:e7:d7:2c:64:f5:4f: 16:45:a9:1c:04:05:7a:b0:5f:88:2e:f2:76:10:2a:64:fd:c3: 6b:ff:01:53:5d:8b:ff:02:5f:ac:93:57:45:61:86:8b:45:19: 88:29:d5:da:3b:55:d6:ca:ac:33:ab:cf:7e:4d:83:60:79:81: 10:4b:88:aa:ed:ce:36:cb:ca:45:bb:ff:e2:4a:a1:37:3d:76: 45:37:3b:2b:aa:02:a8:b9:9c:d3:93:22:f1:c4:9b:b3:0d:37: cd:d9:22:73:df:b0:e0:94:97:6f:d1:f3:11:be:fe:4d:b7:60: e3:74:17:95:ed:1e:06:e6:d3:05:58:65:11:e0:3b:22:5c:ab: 25:80:f9:20:4f:a0:9b:bc:46:d9:ba:18:28:c3:2d:b6:21:08: 39:eb:15:f5:a9:77:c5:01:c9:fb:ad:9d:da:22:5f:32:7f:a0: 8c:57:2a:c7:dc:f4:57:98:1b:d8:98:8f:2d:23:5f:81:7b:3e: 33:55:be:b7:8d:71:17:e1:14:2b:dc:ad:2f:5a:ec:5b:22:9a: cc:ea:b3:8b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHEyL2CTocA5t0X506VSM1zy/VqkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhEMDdGMDEwREEyODExMkE5NEU4ODAwQzMxN0I4REY3 RjFBQkY0MzAeFw0yNDAxMTUwMzU2MjBaFw0yNTAxMTMwNDAxMjBaMDMxMTAvBgNV BAMTKDBBNzRFMUVERkQ0MzI0NEI2NEZGMjI3NEI1MTRDMTI3Q0YxNDFFN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCouAhLVj4TtxAEND10JitxjgtK 4O+csLbE+TvIFkBunTNFGQ/Ka4NqX9uCIrCEZ63ozbQRfOhqgLNtZzdx0XbDjbtM EjXynyG76r6N5PaE1Kdsb3ddMc+r/mL/qYx58NnhoidkofdlIYQ/XIunYgC8dnqJ LFldtyld+blIRDsDNQw49bxIZfO30zimR6EnNfy4CPr+9enwBOoQ8Jk2HEEGDUWx tji8B+0TgfTuQyvC3V1+K3rw3d3t6WetIB1lAMxCMoDeBfYwmG/fKwOFSpDD6Fbl Nz6Vk0X0QzaKB99UkS36WUCo8WLVLMS96vzqVdPn5EVzP+0L326MZ/PAcRoHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCnTh7f1DJEtk/yJ0tRTBJ88UHnwwHwYDVR0j BBgwFoAUCNB/AQ2igRKpTogAwxe4338av0MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGMyYTEzYi0xZjQwLTRjMDMtYmMzNS1mNjk2MTUxNmQ0ZDkvMC8wOEQwN0YwMTBE QTI4MTEyQTk0RTg4MDBDMzE3QjhERjdGMUFCRjQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDhEMDdGMDEwREEyODExMkE5NEU4ODAwQzMxN0I4REY3RjFB QkY0My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwYzJhMTNiLTFmNDAtNGMwMy1i YzM1LWY2OTYxNTE2ZDRkOS8wLzMxMzAzMzJlMzEzNDM4MmUzMTM5MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMjMzMzkzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5TGMA0GCSqG SIb3DQEBCwUAA4IBAQAp9/vP7c49diRXsI4EmOJHzFrNnhvrHZEcgw01oi8dxAoK 3JbLVyLWheDvg0kQcdjn1yxk9U8WRakcBAV6sF+ILvJ2ECpk/cNr/wFTXYv/Al+s k1dFYYaLRRmIKdXaO1XWyqwzq89+TYNgeYEQS4iq7c42y8pFu//iSqE3PXZFNzsr qgKouZzTkyLxxJuzDTfN2SJz37DglJdv0fMRvv5Nt2DjdBeV7R4G5tMFWGUR4Dsi XKslgPkgT6CbvEbZuhgowy22IQg56xX1qXfFAcn7rZ3aIl8yf6CMVyrH3PRXmBvY mI8tI1+Bez4zVb63jXEX4RQr3K0vWuxbIprM6rOL -----END CERTIFICATE-----Generated at Fri May 17 15:21:32 2024 by rpki-client on console-ams.rpki-client.org