$ rpki-client -vvf repo-rpki.idnic.net/repo/04f28235-0ba8-4e14-8b85-29c3a4a76eab/0/3130332e3138362e3231322e302f32332d3234203d3e20313439373134.roa File: 3130332e3138362e3231322e302f32332d3234203d3e20313439373134.roa (raw, json) Hash identifier: Ex38ftqopu6YxqHjtdl5XoGeD58x3GbfDMsoYdN8uyc= Subject key identifier: 0B:EC:A8:C5:F2:4B:45:89:D1:42:05:4C:47:D2:AD:16:F9:2C:78:4A Certificate issuer: /CN=DB03D7B542C60D3D72565734C86589420DF070A0 Certificate serial: 437F3462E28788144F3249FE42D565A56938399A Authority key identifier: DB:03:D7:B5:42:C6:0D:3D:72:56:57:34:C8:65:89:42:0D:F0:70:A0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB03D7B542C60D3D72565734C86589420DF070A0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/04f28235-0ba8-4e14-8b85-29c3a4a76eab/0/3130332e3138362e3231322e302f32332d3234203d3e20313439373134.roa Signing time: Sat 16 Mar 2024 02:00:03 +0000 ROA not before: Sat 16 Mar 2024 01:55:03 +0000 ROA not after: Sat 15 Mar 2025 02:00:03 +0000 asID: 149714 IP address blocks: 103.186.212.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/04f28235-0ba8-4e14-8b85-29c3a4a76eab/0/DB03D7B542C60D3D72565734C86589420DF070A0.crl rsync://repo-rpki.idnic.net/repo/04f28235-0ba8-4e14-8b85-29c3a4a76eab/0/DB03D7B542C60D3D72565734C86589420DF070A0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB03D7B542C60D3D72565734C86589420DF070A0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:7f:34:62:e2:87:88:14:4f:32:49:fe:42:d5:65:a5:69:38:39:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DB03D7B542C60D3D72565734C86589420DF070A0 Validity Not Before: Mar 16 01:55:03 2024 GMT Not After : Mar 15 02:00:03 2025 GMT Subject: CN=0BECA8C5F24B4589D142054C47D2AD16F92C784A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c1:4f:86:a5:20:58:a6:d3:ea:bf:cc:62:98: 66:77:8b:3e:d1:4c:b7:24:cd:d9:0d:0f:be:6b:97: 68:0f:87:53:d1:fa:10:02:e5:04:a2:61:e0:db:06: d0:b9:4f:1c:b3:63:88:76:08:45:a4:88:da:46:28: 3f:fe:ee:f5:8a:f5:b7:d7:1a:0a:c3:22:19:0e:6d: a1:07:a8:9e:ba:c2:cb:46:bc:90:e9:a2:cd:5b:b9: 63:8f:81:51:c1:48:32:f5:ad:2a:c1:d2:95:24:bc: 98:7f:4c:ca:98:02:c0:e4:73:1a:ab:16:16:6d:1e: 02:8e:c9:6f:d4:44:61:54:10:ca:02:5e:d0:ee:36: be:00:9b:95:92:47:e3:9a:a4:49:90:84:40:e7:57: 8f:5f:1f:0b:3e:64:a6:3e:c0:26:e1:65:f9:95:59: 1b:a4:3f:63:3f:01:c6:1a:09:dc:4c:f8:c1:70:50: 4c:74:0d:79:cf:c1:4e:c2:3e:43:ee:24:74:68:37: 27:3b:db:c0:00:71:e6:17:75:3c:eb:09:48:ae:e9: b5:76:94:43:69:f0:a5:46:e0:c1:39:62:f0:ef:c2: bd:f7:df:2c:98:0e:1b:42:01:97:a0:ab:be:9b:b2: b8:68:db:3d:bd:c9:ba:2a:68:c6:8f:dc:91:86:08: 1e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:EC:A8:C5:F2:4B:45:89:D1:42:05:4C:47:D2:AD:16:F9:2C:78:4A X509v3 Authority Key Identifier: keyid:DB:03:D7:B5:42:C6:0D:3D:72:56:57:34:C8:65:89:42:0D:F0:70:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/04f28235-0ba8-4e14-8b85-29c3a4a76eab/0/DB03D7B542C60D3D72565734C86589420DF070A0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB03D7B542C60D3D72565734C86589420DF070A0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/04f28235-0ba8-4e14-8b85-29c3a4a76eab/0/3130332e3138362e3231322e302f32332d3234203d3e20313439373134.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.212.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:fc:40:3e:2f:27:aa:e4:14:6e:91:fa:8b:1b:79:81:79:76: 12:39:90:19:09:13:90:84:0a:93:12:b2:3c:5b:a5:75:a6:15: 6f:ea:fc:c0:b0:4a:e0:40:7d:14:b1:51:7d:e2:93:75:05:50: d0:51:e5:16:da:9c:86:51:fe:17:4a:da:46:cd:3b:7f:8f:12: 98:9e:a0:90:69:f4:15:a0:34:22:7e:1e:d5:22:a3:98:cc:b1: 07:3c:28:43:2f:ad:81:47:78:75:39:c4:52:c4:98:9b:58:e7: 4e:f2:9c:9f:1b:f9:a4:5e:20:c3:34:1f:33:2d:ae:e1:e3:a1: ca:11:ab:c6:42:62:78:a2:b9:3b:3a:5c:ed:b2:71:2b:8b:48: 15:71:60:5c:53:74:5c:9e:8a:e2:44:cc:38:8b:b2:eb:aa:f4: 4d:b7:77:fc:95:a8:f7:62:db:fb:26:ed:9a:d7:e3:8b:6f:23: f5:a9:bd:ca:0f:2d:47:8b:0e:b3:01:21:f3:1b:e4:ce:e0:69: b8:5e:64:89:33:b6:fa:f3:18:02:69:a9:44:b9:23:8e:74:15: 99:94:30:33:82:c6:ac:d6:20:cf:77:07:d2:5a:62:c8:3a:32: 47:8e:15:13:51:fe:e1:b8:93:2c:75:16:16:7d:05:53:40:b4: 63:b2:72:77 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQ380YuKHiBRPMkn+QtVlpWk4OZowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREIwM0Q3QjU0MkM2MEQzRDcyNTY1NzM0Qzg2NTg5NDIw REYwNzBBMDAeFw0yNDAzMTYwMTU1MDNaFw0yNTAzMTUwMjAwMDNaMDMxMTAvBgNV BAMTKDBCRUNBOEM1RjI0QjQ1ODlEMTQyMDU0QzQ3RDJBRDE2RjkyQzc4NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDwU+GpSBYptPqv8ximGZ3iz7R TLckzdkND75rl2gPh1PR+hAC5QSiYeDbBtC5TxyzY4h2CEWkiNpGKD/+7vWK9bfX GgrDIhkObaEHqJ66wstGvJDpos1buWOPgVHBSDL1rSrB0pUkvJh/TMqYAsDkcxqr FhZtHgKOyW/URGFUEMoCXtDuNr4Am5WSR+OapEmQhEDnV49fHws+ZKY+wCbhZfmV WRukP2M/AcYaCdxM+MFwUEx0DXnPwU7CPkPuJHRoNyc728AAceYXdTzrCUiu6bV2 lENp8KVG4ME5YvDvwr333yyYDhtCAZegq76bsrho2z29yboqaMaP3JGGCB4dAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUC+yoxfJLRYnRQgVMR9KtFvkseEowHwYDVR0j BBgwFoAU2wPXtULGDT1yVlc0yGWJQg3wcKAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NGYyODIzNS0wYmE4LTRlMTQtOGI4NS0yOWMzYTRhNzZlYWIvMC9EQjAzRDdCNTQy QzYwRDNENzI1NjU3MzRDODY1ODk0MjBERjA3MEEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREIwM0Q3QjU0MkM2MEQzRDcyNTY1NzM0Qzg2NTg5NDIwREYw NzBBMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0ZjI4MjM1LTBiYTgtNGUxNC04 Yjg1LTI5YzNhNGE3NmVhYi8wLzMxMzAzMzJlMzEzODM2MmUzMjMxMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMxMzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnutQwDQYJ KoZIhvcNAQELBQADggEBAIr8QD4vJ6rkFG6R+osbeYF5dhI5kBkJE5CECpMSsjxb pXWmFW/q/MCwSuBAfRSxUX3ik3UFUNBR5RbanIZR/hdK2kbNO3+PEpieoJBp9BWg NCJ+HtUio5jMsQc8KEMvrYFHeHU5xFLEmJtY507ynJ8b+aReIMM0HzMtruHjocoR q8ZCYniiuTs6XO2ycSuLSBVxYFxTdFyeiuJEzDiLsuuq9E23d/yVqPdi2/sm7ZrX 44tvI/WpvcoPLUeLDrMBIfMb5M7gabheZIkztvrzGAJpqUS5I450FZmUMDOCxqzW IM93B9JaYsg6MkeOFRNR/uG4kyx1FhZ9BVNAtGOycnc= -----END CERTIFICATE-----Generated at Sun Nov 24 08:35:25 2024 by rpki-client on console-ams.rpki-client.org