$ rpki-client -vvf repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3234372e34322e302f32342d3234203d3e203535363835.roa File: 3130332e3234372e34322e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: PNswnDB59dy0WIKijBxTcNq2tOLHRD7Xyj3sC7yk3sw= Subject key identifier: 16:13:3F:88:9A:98:88:FF:7A:07:39:9C:B8:31:6E:1F:9C:27:4E:35 Certificate issuer: /CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Certificate serial: 28736474BE4B6EDD12177CB637F74648E78978B5 Authority key identifier: 38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3234372e34322e302f32342d3234203d3e203535363835.roa Signing time: Wed 01 May 2024 04:00:04 +0000 ROA not before: Wed 01 May 2024 03:55:04 +0000 ROA not after: Wed 30 Apr 2025 04:00:04 +0000 asID: 55685 IP address blocks: 103.247.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:73:64:74:be:4b:6e:dd:12:17:7c:b6:37:f7:46:48:e7:89:78:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Validity Not Before: May 1 03:55:04 2024 GMT Not After : Apr 30 04:00:04 2025 GMT Subject: CN=16133F889A9888FF7A07399CB8316E1F9C274E35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a0:64:d2:64:27:37:11:8a:07:59:e5:57:8c: 5d:8d:1e:1d:7f:46:21:1c:05:d9:f1:15:26:be:32: 6b:71:00:58:6a:f2:c8:ef:97:28:6a:68:10:f9:ef: 59:33:35:69:43:aa:64:93:00:06:56:13:61:e8:bc: 4d:c4:47:9b:00:f9:30:d0:fd:18:0e:04:9d:6b:02: 78:09:9f:b1:57:3c:ab:a7:27:54:5e:e6:a4:e4:e1: 73:d9:8b:0a:59:a9:68:26:82:32:98:fb:4d:72:64: 23:c4:51:14:a8:1e:b7:44:8f:92:d1:5b:ae:9f:c9: 40:37:4b:91:ea:e8:df:48:1f:bc:8b:31:b5:42:70: ed:ca:d2:cb:ea:78:b4:0a:b4:be:a8:f2:d1:ae:1d: 86:65:59:1f:27:68:4f:bb:32:8d:25:81:4e:61:83: 4e:3b:dd:75:fe:22:1a:2f:99:6e:40:14:a9:01:d6: fb:2a:21:14:33:cb:57:4b:15:55:0c:56:69:1f:90: 1e:27:fb:f9:37:9e:18:e1:6b:7f:8b:d8:f4:f8:5f: 01:93:8d:c8:a4:12:47:f7:0c:2e:0f:c2:5a:41:11: e1:bc:bd:1c:2d:73:84:66:ae:c8:89:ee:0a:76:83: fb:1f:56:8c:48:92:12:2a:00:87:38:e7:e5:d3:b3: b0:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:13:3F:88:9A:98:88:FF:7A:07:39:9C:B8:31:6E:1F:9C:27:4E:35 X509v3 Authority Key Identifier: keyid:38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3234372e34322e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.42.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:c7:31:4c:b0:30:9a:0c:27:39:14:9d:f8:8e:44:40:0d:6b: c3:f5:6b:8e:fd:25:99:50:18:c7:6d:e1:c2:43:9f:de:f0:a8: 3d:03:db:db:fb:d3:51:28:ec:84:bd:93:94:e5:ad:47:b9:7f: af:11:61:32:79:70:58:f9:32:8f:06:60:ee:03:58:42:2f:20: 68:e4:78:ba:50:1c:f2:6c:e2:87:66:30:1f:cb:96:69:58:72: e1:9e:a7:29:1e:a2:c9:e0:94:4b:31:f1:aa:47:53:2e:2e:53: 3e:ab:27:16:db:22:aa:98:ed:d6:4a:fb:6b:d4:9b:5d:85:cc: 3b:d5:80:e8:24:ab:07:8b:68:32:ee:5e:4c:24:1b:49:6b:32: 9f:45:ab:01:e9:10:34:79:68:f4:bd:a3:87:1d:51:e5:f4:b6: be:ee:f4:93:ff:14:82:59:95:4f:98:0d:55:db:34:34:d7:05: 97:e1:e6:8c:24:a4:7c:34:f6:9d:93:cb:80:b2:8c:19:cd:07: 84:08:c7:27:bd:e2:72:f7:0f:35:82:5c:3d:4c:5b:5e:b5:30: e0:9e:a4:40:9f:cc:b7:e8:a6:82:3f:71:17:27:f8:42:73:2c: b2:d6:10:bf:69:df:fe:00:c8:3f:3d:77:0d:ff:ff:a6:e1:82: 62:3c:20:74 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUKHNkdL5Lbt0SF3y2N/dGSOeJeLUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3 MjJDMjk0RDAeFw0yNDA1MDEwMzU1MDRaFw0yNTA0MzAwNDAwMDRaMDMxMTAvBgNV BAMTKDE2MTMzRjg4OUE5ODg4RkY3QTA3Mzk5Q0I4MzE2RTFGOUMyNzRFMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCoGTSZCc3EYoHWeVXjF2NHh1/ RiEcBdnxFSa+MmtxAFhq8sjvlyhqaBD571kzNWlDqmSTAAZWE2HovE3ER5sA+TDQ /RgOBJ1rAngJn7FXPKunJ1Re5qTk4XPZiwpZqWgmgjKY+01yZCPEURSoHrdEj5LR W66fyUA3S5Hq6N9IH7yLMbVCcO3K0svqeLQKtL6o8tGuHYZlWR8naE+7Mo0lgU5h g0473XX+IhovmW5AFKkB1vsqIRQzy1dLFVUMVmkfkB4n+/k3nhjha3+L2PT4XwGT jcikEkf3DC4PwlpBEeG8vRwtc4RmrsiJ7gp2g/sfVoxIkhIqAIc45+XTs7DJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUFhM/iJqYiP96BzmcuDFuH5wnTjUwHwYDVR0j BBgwFoAUOPzqKhyEQ+WQz1Ig572gXXIsKU0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjgwODlhNy0wYTY4LTRkNjctYWRhYi03NmQ3ZDkyNzFmZGUvMC8zOEZDRUEyQTFD ODQ0M0U1OTBDRjUyMjBFN0JEQTA1RDcyMkMyOTRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3MjJD Mjk0RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyODA4OWE3LTBhNjgtNGQ2Ny1h ZGFiLTc2ZDdkOTI3MWZkZS8wLzMxMzAzMzJlMzIzNDM3MmUzNDMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNTM2MzgzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf3KjANBgkqhkiG 9w0BAQsFAAOCAQEALMcxTLAwmgwnORSd+I5EQA1rw/Vrjv0lmVAYx23hwkOf3vCo PQPb2/vTUSjshL2TlOWtR7l/rxFhMnlwWPkyjwZg7gNYQi8gaOR4ulAc8mzih2Yw H8uWaVhy4Z6nKR6iyeCUSzHxqkdTLi5TPqsnFtsiqpjt1kr7a9SbXYXMO9WA6CSr B4toMu5eTCQbSWsyn0WrAekQNHlo9L2jhx1R5fS2vu70k/8UglmVT5gNVds0NNcF l+HmjCSkfDT2nZPLgLKMGc0HhAjHJ73icvcPNYJcPUxbXrUw4J6kQJ/Mt+imgj9x Fyf4QnMsstYQv2nf/gDIPz13Df//puGCYjwgdA== -----END CERTIFICATE-----Generated at Fri May 3 17:52:32 2024 by rpki-client on console-fra.rpki-client.org