$ rpki-client -vvf repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3133312e302f32342d3234203d3e203535363835.roa File: 3130332e3130382e3133312e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: y4CphY2Eja4IBmaWSAMBzGabm9Rl4RkxNrghgS2laKY= Subject key identifier: 68:62:CE:C6:DE:A5:DE:BD:78:40:63:1A:C2:2D:5F:8D:DF:EC:3C:8B Certificate issuer: /CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Certificate serial: 27961CA3A7B4EE35C3B31B9B70E5548F11B340F0 Authority key identifier: 38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3133312e302f32342d3234203d3e203535363835.roa Signing time: Wed 01 May 2024 02:00:01 +0000 ROA not before: Wed 01 May 2024 01:55:01 +0000 ROA not after: Wed 30 Apr 2025 02:00:01 +0000 asID: 55685 IP address blocks: 103.108.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:96:1c:a3:a7:b4:ee:35:c3:b3:1b:9b:70:e5:54:8f:11:b3:40:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Validity Not Before: May 1 01:55:01 2024 GMT Not After : Apr 30 02:00:01 2025 GMT Subject: CN=6862CEC6DEA5DEBD7840631AC22D5F8DDFEC3C8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c5:48:dc:4d:87:45:8a:73:64:72:ce:cc:fd: b8:0a:7e:82:cc:4a:75:b1:3a:83:d2:c9:db:15:88: 15:0d:d7:0e:dc:c4:ac:3d:de:f2:51:a6:d9:a2:31: e5:b0:ee:4f:26:f8:87:a0:d2:52:f4:70:81:da:36: 4a:a7:1b:02:90:38:f2:7a:d8:8c:3b:de:14:32:04: 3a:56:5f:6c:f6:dc:16:58:f6:3a:9f:73:59:8b:d5: e4:08:71:48:11:aa:31:6c:91:87:f4:23:2e:78:57: 0e:73:4c:77:42:a7:b7:4a:51:f6:de:ed:15:92:8a: 08:95:8e:34:6d:3d:27:7b:78:da:a4:aa:f8:fd:fa: 9d:43:ab:dd:67:ba:13:2f:ac:50:dd:46:8e:53:35: 55:00:44:71:c4:07:3e:dc:cf:7c:8a:1f:cc:49:75: 67:9c:22:dd:7b:06:83:a1:11:9f:af:4f:68:70:d4: 25:9c:57:8e:d6:f3:15:82:38:9d:85:b3:8f:66:94: 02:d2:5f:15:c2:0a:b4:fb:7c:89:08:03:45:88:b6: a4:74:79:97:ee:ca:8e:21:f1:c8:f8:a4:02:8f:a8: cc:b9:89:3b:82:c7:9f:c1:e5:a1:47:89:83:ed:cb: ce:8b:be:66:bf:0a:90:a0:95:eb:ae:44:e8:3e:83: 95:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:62:CE:C6:DE:A5:DE:BD:78:40:63:1A:C2:2D:5F:8D:DF:EC:3C:8B X509v3 Authority Key Identifier: keyid:38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3133312e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.131.0/24 Signature Algorithm: sha256WithRSAEncryption 74:da:c0:b1:2d:ee:89:30:7c:f5:cc:08:32:e3:99:d8:96:f0: f5:dc:f5:69:f1:9b:58:68:e7:3f:43:1a:e8:d6:f5:9f:f3:dd: 3b:6a:e9:1e:f3:10:aa:6b:04:df:ff:de:f5:1c:78:3b:d6:48: f8:d9:98:9b:19:29:b1:72:dd:44:e4:0d:3e:82:04:c4:95:cc: f4:01:2f:bc:73:f8:53:c5:10:8d:0d:4c:c3:ef:d1:f4:2c:d3: 1e:17:ed:fd:7d:d3:b4:cf:41:db:68:b5:7d:d7:58:ed:f3:46: fe:22:03:72:bc:32:67:71:d4:f2:55:fc:a6:56:8a:99:22:a6: 36:3d:82:98:33:75:7e:44:a3:db:42:37:f3:4a:d1:e4:82:b2: 95:3a:d8:d7:e4:ad:92:d6:9b:2f:fb:9e:40:a1:4b:ac:52:74: 2d:9a:5f:01:98:9d:f9:90:c5:89:9c:b8:86:60:c0:47:4a:ef: 6d:9c:c5:36:1b:6c:a2:4a:c0:67:5b:c1:10:9b:b2:80:02:ee: 54:53:df:a6:dd:5e:46:f1:1c:a0:39:9c:fb:cf:be:ff:3a:4b: 8c:59:58:99:0a:32:3c:d2:02:28:dc:b6:b7:28:03:e0:27:78: d7:6f:18:34:62:f4:e2:19:a6:82:97:b4:cc:69:4a:16:bf:21: 9c:11:b7:09 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJ5Yco6e07jXDsxubcOVUjxGzQPAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3 MjJDMjk0RDAeFw0yNDA1MDEwMTU1MDFaFw0yNTA0MzAwMjAwMDFaMDMxMTAvBgNV BAMTKDY4NjJDRUM2REVBNURFQkQ3ODQwNjMxQUMyMkQ1RjhEREZFQzNDOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBxUjcTYdFinNkcs7M/bgKfoLM SnWxOoPSydsViBUN1w7cxKw93vJRptmiMeWw7k8m+Ieg0lL0cIHaNkqnGwKQOPJ6 2Iw73hQyBDpWX2z23BZY9jqfc1mL1eQIcUgRqjFskYf0Iy54Vw5zTHdCp7dKUfbe 7RWSigiVjjRtPSd7eNqkqvj9+p1Dq91nuhMvrFDdRo5TNVUARHHEBz7cz3yKH8xJ dWecIt17BoOhEZ+vT2hw1CWcV47W8xWCOJ2Fs49mlALSXxXCCrT7fIkIA0WItqR0 eZfuyo4h8cj4pAKPqMy5iTuCx5/B5aFHiYPty86Lvma/CpCgleuuROg+g5WtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaGLOxt6l3r14QGMawi1fjd/sPIswHwYDVR0j BBgwFoAUOPzqKhyEQ+WQz1Ig572gXXIsKU0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjgwODlhNy0wYTY4LTRkNjctYWRhYi03NmQ3ZDkyNzFmZGUvMC8zOEZDRUEyQTFD ODQ0M0U1OTBDRjUyMjBFN0JEQTA1RDcyMkMyOTRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3MjJD Mjk0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyODA4OWE3LTBhNjgtNGQ2Ny1h ZGFiLTc2ZDdkOTI3MWZkZS8wLzMxMzAzMzJlMzEzMDM4MmUzMTMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2yDMA0GCSqG SIb3DQEBCwUAA4IBAQB02sCxLe6JMHz1zAgy45nYlvD13PVp8ZtYaOc/Qxro1vWf 8907auke8xCqawTf/971HHg71kj42ZibGSmxct1E5A0+ggTElcz0AS+8c/hTxRCN DUzD79H0LNMeF+39fdO0z0HbaLV911jt80b+IgNyvDJncdTyVfymVoqZIqY2PYKY M3V+RKPbQjfzStHkgrKVOtjX5K2S1psv+55AoUusUnQtml8BmJ35kMWJnLiGYMBH Su9tnMU2G2yiSsBnW8EQm7KAAu5UU9+m3V5G8RygOZz7z77/OkuMWViZCjI80gIo 3La3KAPgJ3jXbxg0YvTiGaaCl7TMaUoWvyGcEbcJ -----END CERTIFICATE-----Generated at Fri May 3 15:16:06 2024 by rpki-client on console-ams.rpki-client.org