$ rpki-client -vvf repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130382e302f32332d3233203d3e203538333639.roa File: 3130332e3134302e3130382e302f32332d3233203d3e203538333639.roa (raw, json) Hash identifier: hOVv2VX8dEy5rVV9uCZfuadEk8vAwLXczR702glVMaA= Subject key identifier: 03:F0:51:0D:77:66:24:BE:F4:0D:82:E2:97:19:6C:B7:CC:5D:99:55 Certificate issuer: /CN=0D5DCD544694BBE8DB99D2D8DAB98314745CD97F Certificate serial: 5D5B1DA4ABF79861B0708566934060902F38242A Authority key identifier: 0D:5D:CD:54:46:94:BB:E8:DB:99:D2:D8:DA:B9:83:14:74:5C:D9:7F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130382e302f32332d3233203d3e203538333639.roa Signing time: Tue 23 Apr 2024 06:00:02 +0000 ROA not before: Tue 23 Apr 2024 05:55:02 +0000 ROA not after: Tue 22 Apr 2025 06:00:02 +0000 asID: 58369 IP address blocks: 103.140.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.crl rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:5b:1d:a4:ab:f7:98:61:b0:70:85:66:93:40:60:90:2f:38:24:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D5DCD544694BBE8DB99D2D8DAB98314745CD97F Validity Not Before: Apr 23 05:55:02 2024 GMT Not After : Apr 22 06:00:02 2025 GMT Subject: CN=03F0510D776624BEF40D82E297196CB7CC5D9955 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e8:9b:67:8b:7a:c4:6c:01:a5:5c:11:f3:9c: 4b:92:27:5d:41:80:5e:55:b2:3a:1b:eb:a3:48:4d: 60:05:c4:ef:c1:96:29:39:14:2b:7d:1d:96:b0:53: a8:18:12:85:f4:09:03:14:39:3b:6f:c2:78:c7:67: 05:21:5d:27:de:c4:e1:72:4e:36:24:cd:dd:8b:8a: 2a:2d:91:30:9f:1b:04:82:e8:a2:4e:37:86:d9:ec: 1b:a5:cf:e8:4f:39:2d:4d:6b:79:30:98:4b:9a:5d: 04:5e:7b:17:a2:af:18:a7:c7:c4:ee:56:da:da:64: 85:21:8d:db:93:9d:96:fd:c9:3b:14:b2:85:8d:6c: 6c:42:e9:85:08:cc:d1:84:25:8d:0e:9c:21:96:d1: e5:56:0a:11:f2:be:cc:3a:7d:00:53:de:55:d9:f4: 1e:dd:87:84:6d:7f:6f:63:2d:13:a0:60:4f:5f:e6: c8:36:14:ab:0a:71:17:66:19:64:58:4d:c6:f3:b0: d2:f4:20:52:95:ea:c5:51:f8:db:74:38:9c:04:c5: ff:a4:18:c2:1d:d6:52:a1:1b:c4:57:4b:96:70:16: 4b:34:70:e9:61:e2:82:55:bf:f3:1d:30:f4:3b:69: 15:d6:b4:22:b0:4b:7e:80:1f:b5:c9:cf:7c:3f:70: b0:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:F0:51:0D:77:66:24:BE:F4:0D:82:E2:97:19:6C:B7:CC:5D:99:55 X509v3 Authority Key Identifier: keyid:0D:5D:CD:54:46:94:BB:E8:DB:99:D2:D8:DA:B9:83:14:74:5C:D9:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130382e302f32332d3233203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.108.0/23 Signature Algorithm: sha256WithRSAEncryption 15:e1:a5:40:63:d7:f4:a5:f9:21:73:a6:ad:9c:5e:59:a8:ce: 45:9c:16:00:52:ba:d9:21:5c:ce:20:43:31:e1:d0:dc:a5:54: 9a:31:a0:09:36:6d:63:88:c6:61:72:3b:09:b6:f8:66:9d:07: 3f:b2:fd:2b:ae:78:5f:b6:b0:36:cb:12:bb:16:53:4a:0e:90: 23:e4:e1:cf:a2:e3:81:ec:1e:1c:8c:e2:f6:96:f7:5d:6f:3b: bf:02:a1:5f:79:2f:de:13:89:1e:ee:ff:b2:a8:46:29:ff:b9: e4:99:bc:01:a3:54:bd:af:a4:ec:9c:fb:c8:bb:c5:8a:9d:f0: d2:04:8b:e7:2d:10:28:19:b8:d5:5d:6a:58:6b:5a:30:d7:92: 64:5b:8a:d9:ff:fa:08:33:83:04:63:0b:87:6a:32:03:12:0f: 7b:df:ab:34:bf:be:81:b4:62:ac:1d:ad:cb:04:c0:4c:06:9c: d9:ad:3c:6e:95:ad:31:7e:57:02:04:c0:88:f9:0f:ca:bd:5a: 3a:15:f8:81:59:20:53:36:d2:dd:85:f6:d0:0a:7b:2b:a5:74: 64:a1:1b:47:17:ae:c4:4d:d5:7e:6f:aa:95:cc:91:e1:62:f6: a9:03:e9:28:d0:15:6c:04:e9:e1:dd:d3:d4:36:44:87:67:92: 0f:52:30:b4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXVsdpKv3mGGwcIVmk0BgkC84JCowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEQ1RENENTQ0Njk0QkJFOERCOTlEMkQ4REFCOTgzMTQ3 NDVDRDk3RjAeFw0yNDA0MjMwNTU1MDJaFw0yNTA0MjIwNjAwMDJaMDMxMTAvBgNV BAMTKDAzRjA1MTBENzc2NjI0QkVGNDBEODJFMjk3MTk2Q0I3Q0M1RDk5NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC6Jtni3rEbAGlXBHznEuSJ11B gF5Vsjob66NITWAFxO/Blik5FCt9HZawU6gYEoX0CQMUOTtvwnjHZwUhXSfexOFy TjYkzd2LiiotkTCfGwSC6KJON4bZ7Bulz+hPOS1Na3kwmEuaXQReexeirxinx8Tu VtraZIUhjduTnZb9yTsUsoWNbGxC6YUIzNGEJY0OnCGW0eVWChHyvsw6fQBT3lXZ 9B7dh4Rtf29jLROgYE9f5sg2FKsKcRdmGWRYTcbzsNL0IFKV6sVR+Nt0OJwExf+k GMId1lKhG8RXS5ZwFks0cOlh4oJVv/MdMPQ7aRXWtCKwS36AH7XJz3w/cLB3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUA/BRDXdmJL70DYLilxlst8xdmVUwHwYDVR0j BBgwFoAUDV3NVEaUu+jbmdLY2rmDFHRc2X8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YTRhMjFiOS1mOTEyLTQxZjMtYjYyYy0xMjE3NTgxYzk0OGEvMC8wRDVEQ0Q1NDQ2 OTRCQkU4REI5OUQyRDhEQUI5ODMxNDc0NUNEOTdGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEQ1RENENTQ0Njk0QkJFOERCOTlEMkQ4REFCOTgzMTQ3NDVD RDk3Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhNGEyMWI5LWY5MTItNDFmMy1i NjJjLTEyMTc1ODFjOTQ4YS8wLzMxMzAzMzJlMzEzNDMwMmUzMTMwMzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4xsMA0GCSqG SIb3DQEBCwUAA4IBAQAV4aVAY9f0pfkhc6atnF5ZqM5FnBYAUrrZIVzOIEMx4dDc pVSaMaAJNm1jiMZhcjsJtvhmnQc/sv0rrnhftrA2yxK7FlNKDpAj5OHPouOB7B4c jOL2lvddbzu/AqFfeS/eE4ke7v+yqEYp/7nkmbwBo1S9r6TsnPvIu8WKnfDSBIvn LRAoGbjVXWpYa1ow15JkW4rZ//oIM4MEYwuHajIDEg9736s0v76BtGKsHa3LBMBM BpzZrTxula0xflcCBMCI+Q/KvVo6FfiBWSBTNtLdhfbQCnsrpXRkoRtHF67ETdV+ b6qVzJHhYvapA+ko0BVsBOnh3dPUNkSHZ5IPUjC0 -----END CERTIFICATE-----Generated at Thu Nov 21 09:07:03 2024 by rpki-client on console-ams.rpki-client.org