$ rpki-client -vvf repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132382e302f32322d3234203d3e203535363835.roa File: 3130332e3130382e3132382e302f32322d3234203d3e203535363835.roa (raw, json) Hash identifier: Aee1Gbvr0vnI5GFSyf+LnZ8/t7rv6DOLKw6Sm7B4cvg= Subject key identifier: 06:59:A3:07:86:01:8F:82:BC:DB:D7:6F:12:FF:34:08:15:D8:3D:11 Certificate issuer: /CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Certificate serial: 1A088A1AC3FD749ECE348514838D4548D505BAFA Authority key identifier: 38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132382e302f32322d3234203d3e203535363835.roa Signing time: Wed 01 May 2024 02:00:01 +0000 ROA not before: Wed 01 May 2024 01:55:01 +0000 ROA not after: Wed 30 Apr 2025 02:00:01 +0000 asID: 55685 IP address blocks: 103.108.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:08:8a:1a:c3:fd:74:9e:ce:34:85:14:83:8d:45:48:d5:05:ba:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Validity Not Before: May 1 01:55:01 2024 GMT Not After : Apr 30 02:00:01 2025 GMT Subject: CN=0659A30786018F82BCDBD76F12FF340815D83D11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a0:f9:77:4f:ba:14:b0:6c:31:e9:88:13:27: de:8a:4b:2f:23:c4:f8:cd:27:0f:28:9f:d8:af:92: 07:ed:ed:5b:1f:e3:15:98:ed:13:17:76:f4:8b:6e: 02:7a:78:e4:aa:83:a7:f8:47:36:0d:dd:ba:a0:7e: df:de:a8:f9:25:4e:95:b5:37:24:3c:e1:04:53:37: 62:a2:46:45:95:e0:1c:8d:61:50:13:4a:64:bb:fa: 04:ce:74:90:c3:df:b0:b4:3d:a0:52:f5:99:b2:0c: f1:77:97:31:df:46:fd:96:67:93:fd:b6:e6:6a:95: 13:2e:cd:59:d2:13:e9:61:50:43:85:56:0c:b6:0b: 65:4a:c0:b1:aa:28:de:ad:9f:b3:58:6d:1d:a8:7c: cc:ea:fd:54:98:41:e3:54:8b:20:fd:1e:04:55:e8: 6d:30:55:50:e7:56:bc:76:7e:14:ef:38:3b:a6:43: 52:be:ca:15:4a:18:06:b1:bc:b9:30:f7:50:f4:2a: 05:da:8f:8d:3e:76:e4:ac:ab:9c:4e:70:95:53:27: e0:59:a9:68:ed:c5:dc:3d:56:ed:c2:e1:40:8b:76: ad:07:d6:65:5e:b0:61:1d:af:7e:15:73:aa:9c:da: ab:ad:45:58:5a:1e:cc:3a:ee:4e:9c:87:26:20:5f: 40:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:59:A3:07:86:01:8F:82:BC:DB:D7:6F:12:FF:34:08:15:D8:3D:11 X509v3 Authority Key Identifier: keyid:38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132382e302f32322d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.128.0/22 Signature Algorithm: sha256WithRSAEncryption 77:44:74:0f:b4:5f:f2:cc:c4:38:40:33:3e:f3:dd:a6:bc:da: 9b:29:fd:76:7c:93:44:e4:34:eb:4f:a6:18:72:6d:5f:26:4c: b0:93:1b:0c:df:4a:eb:f4:41:9a:0f:c3:2a:81:a1:0e:6d:81: f5:ab:37:77:9f:5a:1b:ab:4f:23:f1:24:a2:65:a0:fa:01:e7: ce:9a:cd:ab:42:7b:c5:ac:0b:ad:77:14:8b:45:c4:25:c8:36: 7c:c0:4d:c9:11:95:b7:99:59:32:33:6d:da:67:12:d0:6e:7f: e2:aa:3d:65:0c:68:3b:e1:51:f8:67:d4:b8:7a:71:07:d6:06: 9f:c4:32:ec:c6:c0:0f:51:28:47:e3:4a:3f:9c:b7:b4:8b:2a: e2:00:77:7a:d3:36:6c:39:bb:33:de:a3:14:10:49:e2:6f:d6: 47:ae:ae:83:a9:60:e9:33:76:2e:33:3a:5c:18:73:b1:90:16: 85:c2:a5:66:fa:d7:99:0f:04:35:ed:71:39:cf:28:3e:18:86: 87:f6:7c:33:24:61:03:e4:5e:aa:8a:e9:6c:8b:7f:90:75:3f: 1c:ce:48:c2:3d:96:e4:26:d4:22:18:c0:c8:e1:65:84:9e:a9: 4f:19:93:b5:a6:4f:cc:b8:19:44:a0:b2:52:a8:19:52:53:f5: 73:26:64:37 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGgiKGsP9dJ7ONIUUg41FSNUFuvowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3 MjJDMjk0RDAeFw0yNDA1MDEwMTU1MDFaFw0yNTA0MzAwMjAwMDFaMDMxMTAvBgNV BAMTKDA2NTlBMzA3ODYwMThGODJCQ0RCRDc2RjEyRkYzNDA4MTVEODNEMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCioPl3T7oUsGwx6YgTJ96KSy8j xPjNJw8on9ivkgft7Vsf4xWY7RMXdvSLbgJ6eOSqg6f4RzYN3bqgft/eqPklTpW1 NyQ84QRTN2KiRkWV4ByNYVATSmS7+gTOdJDD37C0PaBS9ZmyDPF3lzHfRv2WZ5P9 tuZqlRMuzVnSE+lhUEOFVgy2C2VKwLGqKN6tn7NYbR2ofMzq/VSYQeNUiyD9HgRV 6G0wVVDnVrx2fhTvODumQ1K+yhVKGAaxvLkw91D0KgXaj40+duSsq5xOcJVTJ+BZ qWjtxdw9Vu3C4UCLdq0H1mVesGEdr34Vc6qc2qutRVhaHsw67k6chyYgX0BlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBlmjB4YBj4K829dvEv80CBXYPREwHwYDVR0j BBgwFoAUOPzqKhyEQ+WQz1Ig572gXXIsKU0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjgwODlhNy0wYTY4LTRkNjctYWRhYi03NmQ3ZDkyNzFmZGUvMC8zOEZDRUEyQTFD ODQ0M0U1OTBDRjUyMjBFN0JEQTA1RDcyMkMyOTRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3MjJD Mjk0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyODA4OWE3LTBhNjgtNGQ2Ny1h ZGFiLTc2ZDdkOTI3MWZkZS8wLzMxMzAzMzJlMzEzMDM4MmUzMTMyMzgyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ2yAMA0GCSqG SIb3DQEBCwUAA4IBAQB3RHQPtF/yzMQ4QDM+892mvNqbKf12fJNE5DTrT6YYcm1f JkywkxsM30rr9EGaD8MqgaEObYH1qzd3n1obq08j8SSiZaD6AefOms2rQnvFrAut dxSLRcQlyDZ8wE3JEZW3mVkyM23aZxLQbn/iqj1lDGg74VH4Z9S4enEH1gafxDLs xsAPUShH40o/nLe0iyriAHd60zZsObsz3qMUEEnib9ZHrq6DqWDpM3YuMzpcGHOx kBaFwqVm+teZDwQ17XE5zyg+GIaH9nwzJGED5F6qiulsi3+QdT8czkjCPZbkJtQi GMDI4WWEnqlPGZO1pk/MuBlEoLJSqBlSU/VzJmQ3 -----END CERTIFICATE-----Generated at Fri May 3 17:52:32 2024 by rpki-client on console-fra.rpki-client.org