$ rpki-client -vvf repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132392e302f32342d3234203d3e203535363835.roa File: 3130332e3130382e3132392e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: rMCEoNf1wNtL9Xq0GiwFXvxNeoAWHkOBKr6mSPuhUTo= Subject key identifier: 34:04:D0:33:4E:95:A6:46:50:3F:E6:45:12:0A:86:0A:1B:97:30:4D Certificate issuer: /CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Certificate serial: 189C2E86340B08CCF71687176E427F50AE86A375 Authority key identifier: 38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132392e302f32342d3234203d3e203535363835.roa Signing time: Wed 01 May 2024 02:00:01 +0000 ROA not before: Wed 01 May 2024 01:55:01 +0000 ROA not after: Wed 30 Apr 2025 02:00:01 +0000 asID: 55685 IP address blocks: 103.108.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:9c:2e:86:34:0b:08:cc:f7:16:87:17:6e:42:7f:50:ae:86:a3:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Validity Not Before: May 1 01:55:01 2024 GMT Not After : Apr 30 02:00:01 2025 GMT Subject: CN=3404D0334E95A646503FE645120A860A1B97304D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e2:83:5b:10:58:8b:f8:52:c9:18:99:47:04: 81:87:d8:37:21:1c:f1:a1:35:be:30:e9:df:e7:c2: 8d:fd:22:9f:ee:70:6f:42:81:d2:d0:72:40:72:0c: 1d:da:25:b4:5e:6f:7a:d7:59:8b:6a:a5:e4:b6:63: f2:3d:d5:2a:2d:5a:5f:aa:de:d8:c5:3e:5d:2d:05: cf:7d:08:40:8d:9d:28:82:ff:d6:48:95:0d:02:19: 94:73:ca:0a:d6:5a:06:1b:c1:78:fe:4c:1b:a8:3e: 56:05:2e:a1:62:89:4c:8c:87:bc:73:80:8d:08:5c: ed:d5:7a:95:fb:d8:7e:88:27:4e:33:25:15:90:2c: 4a:9b:2f:ab:9d:02:be:83:31:59:01:8a:70:1f:1a: 02:6b:c4:17:d4:9e:4e:91:5f:76:9e:36:12:15:91: 4a:d6:ee:ea:da:9d:58:a9:c9:f0:0c:c1:04:17:78: 7b:2d:8c:4a:02:3a:eb:f3:37:1c:79:2f:24:bc:d3: 9c:17:8a:f8:6e:15:10:b6:56:0f:b1:68:f5:9d:30: f0:4a:99:72:08:ba:e0:1d:ec:87:04:d8:64:cd:8c: 92:c1:5a:86:a0:22:3b:e0:7a:93:8d:ce:a1:48:88: f5:68:18:86:82:db:e3:49:70:6d:f7:09:cd:05:b1: c6:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:04:D0:33:4E:95:A6:46:50:3F:E6:45:12:0A:86:0A:1B:97:30:4D X509v3 Authority Key Identifier: keyid:38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3132392e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.129.0/24 Signature Algorithm: sha256WithRSAEncryption 20:de:d2:2c:f2:0e:ae:ab:bc:25:61:8a:c6:9f:2b:7d:49:5a: e6:60:05:fa:da:ca:c6:a4:db:aa:70:da:97:ef:e5:84:e2:9c: 9f:5b:ea:6f:40:0e:a1:6d:59:43:c3:0c:7f:f4:8e:e2:aa:28: 61:16:fd:96:9b:c1:51:7d:bc:e0:51:74:f6:f8:dc:31:1d:fd: b9:21:16:2f:69:cb:d7:c7:e2:c4:bc:1d:3f:6c:19:c2:37:c4: d6:6c:e6:f7:b4:32:20:9c:ce:eb:41:19:ca:01:43:7e:b7:cc: a1:74:22:3f:2a:ba:ac:f4:77:74:07:1c:5f:7b:cf:f5:a0:ed: dd:aa:06:21:02:63:e3:8e:67:45:60:29:c7:e9:0f:66:2f:d8: e7:7b:c8:82:02:3f:06:5d:8e:90:a9:1e:64:fd:95:9d:d5:5d: d7:26:cc:90:c4:5c:19:c3:19:71:0d:06:ae:6e:0f:00:83:f6: 77:d9:c2:b2:ab:fb:08:de:a8:47:c4:8b:64:cd:b9:8e:a9:1e: e2:6b:65:ab:81:3c:f6:6e:4a:23:82:c5:a4:c8:c2:9a:1b:5e: c9:e4:92:e6:a9:2e:6a:1d:be:4d:40:68:2a:99:f0:6f:83:c8: ec:b6:18:9f:66:c7:d1:55:34:0c:74:0c:d3:10:93:b2:c6:23: 47:88:be:1c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGJwuhjQLCMz3FocXbkJ/UK6Go3UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3 MjJDMjk0RDAeFw0yNDA1MDEwMTU1MDFaFw0yNTA0MzAwMjAwMDFaMDMxMTAvBgNV BAMTKDM0MDREMDMzNEU5NUE2NDY1MDNGRTY0NTEyMEE4NjBBMUI5NzMwNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC24oNbEFiL+FLJGJlHBIGH2Dch HPGhNb4w6d/nwo39Ip/ucG9CgdLQckByDB3aJbReb3rXWYtqpeS2Y/I91SotWl+q 3tjFPl0tBc99CECNnSiC/9ZIlQ0CGZRzygrWWgYbwXj+TBuoPlYFLqFiiUyMh7xz gI0IXO3VepX72H6IJ04zJRWQLEqbL6udAr6DMVkBinAfGgJrxBfUnk6RX3aeNhIV kUrW7uranVipyfAMwQQXeHstjEoCOuvzNxx5LyS805wXivhuFRC2Vg+xaPWdMPBK mXIIuuAd7IcE2GTNjJLBWoagIjvgepONzqFIiPVoGIaC2+NJcG33Cc0FscYFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNATQM06VpkZQP+ZFEgqGChuXME0wHwYDVR0j BBgwFoAUOPzqKhyEQ+WQz1Ig572gXXIsKU0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjgwODlhNy0wYTY4LTRkNjctYWRhYi03NmQ3ZDkyNzFmZGUvMC8zOEZDRUEyQTFD ODQ0M0U1OTBDRjUyMjBFN0JEQTA1RDcyMkMyOTRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3MjJD Mjk0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyODA4OWE3LTBhNjgtNGQ2Ny1h ZGFiLTc2ZDdkOTI3MWZkZS8wLzMxMzAzMzJlMzEzMDM4MmUzMTMyMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2yBMA0GCSqG SIb3DQEBCwUAA4IBAQAg3tIs8g6uq7wlYYrGnyt9SVrmYAX62srGpNuqcNqX7+WE 4pyfW+pvQA6hbVlDwwx/9I7iqihhFv2Wm8FRfbzgUXT2+NwxHf25IRYvacvXx+LE vB0/bBnCN8TWbOb3tDIgnM7rQRnKAUN+t8yhdCI/Krqs9Hd0Bxxfe8/1oO3dqgYh AmPjjmdFYCnH6Q9mL9jne8iCAj8GXY6QqR5k/ZWd1V3XJsyQxFwZwxlxDQaubg8A g/Z32cKyq/sI3qhHxItkzbmOqR7ia2WrgTz2bkojgsWkyMKaG17J5JLmqS5qHb5N QGgqmfBvg8jsthifZsfRVTQMdAzTEJOyxiNHiL4c -----END CERTIFICATE-----Generated at Fri May 3 17:52:32 2024 by rpki-client on console-fra.rpki-client.org