$ rpki-client -vvf repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130382e302f32342d3234203d3e203538333639.roa File: 3130332e3134302e3130382e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: DNR89S5Jc0hpquIi4qAohR6c/7whqgkbqncTcS5MoXg= Subject key identifier: 3F:2B:24:B0:9F:33:B6:B3:61:2C:58:83:78:01:A5:C0:16:C5:06:90 Certificate issuer: /CN=0D5DCD544694BBE8DB99D2D8DAB98314745CD97F Certificate serial: 2AE453052B87C18699FE5C4C96C547D05113D737 Authority key identifier: 0D:5D:CD:54:46:94:BB:E8:DB:99:D2:D8:DA:B9:83:14:74:5C:D9:7F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130382e302f32342d3234203d3e203538333639.roa Signing time: Mon 01 Jul 2024 01:05:40 +0000 ROA not before: Mon 01 Jul 2024 01:00:40 +0000 ROA not after: Mon 30 Jun 2025 01:05:40 +0000 asID: 58369 IP address blocks: 103.140.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.crl rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:e4:53:05:2b:87:c1:86:99:fe:5c:4c:96:c5:47:d0:51:13:d7:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D5DCD544694BBE8DB99D2D8DAB98314745CD97F Validity Not Before: Jul 1 01:00:40 2024 GMT Not After : Jun 30 01:05:40 2025 GMT Subject: CN=3F2B24B09F33B6B3612C58837801A5C016C50690 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d9:76:73:b6:0a:d7:b8:39:52:d2:b1:43:74: 69:51:5d:26:17:89:c9:90:ab:08:a1:43:f6:86:5c: b5:05:dd:24:f7:61:e2:d5:ed:eb:fd:0e:a1:dc:ff: bc:d3:c2:c2:d9:76:30:f9:f3:c7:46:5d:da:89:bd: fe:77:47:d5:87:cf:54:ef:91:4a:e6:6d:94:f2:4c: a0:24:fc:e0:0b:52:e3:86:93:68:a1:18:75:ce:0d: 29:4b:ee:5f:13:df:9e:ab:a6:64:16:86:91:00:da: 53:da:a8:08:92:d9:80:e6:6e:32:9b:cd:16:61:c2: 12:e7:08:08:ac:08:42:97:50:99:1f:b3:66:03:6f: d9:25:1d:87:8e:cb:7a:06:4f:86:cb:58:b4:6c:c6: ba:3b:2b:f2:56:d8:84:10:7a:df:1f:b9:f1:09:a1: e7:e0:db:38:9f:dd:00:97:9a:ea:f6:6d:f5:7d:ed: 4f:a6:8e:d3:d6:ed:8b:1b:b5:1c:7f:09:40:29:18: 73:0f:f7:38:db:e2:f6:95:da:09:d4:e1:d5:b4:3f: 45:9b:e3:f2:c5:5f:48:72:4c:8c:76:f3:6f:23:86: f0:ce:38:f2:a9:9a:a1:77:23:4e:36:b7:58:08:da: de:43:60:1b:8d:0d:a4:4d:86:e1:12:f2:af:fb:2c: fa:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:2B:24:B0:9F:33:B6:B3:61:2C:58:83:78:01:A5:C0:16:C5:06:90 X509v3 Authority Key Identifier: keyid:0D:5D:CD:54:46:94:BB:E8:DB:99:D2:D8:DA:B9:83:14:74:5C:D9:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D5DCD544694BBE8DB99D2D8DAB98314745CD97F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0a4a21b9-f912-41f3-b62c-1217581c948a/0/3130332e3134302e3130382e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.108.0/24 Signature Algorithm: sha256WithRSAEncryption cf:be:d1:c1:34:e2:ec:2e:95:c6:14:8e:dc:46:5e:12:54:d9: eb:f4:34:0c:46:89:55:81:a1:8a:4f:b8:c6:fb:47:4e:4d:f5: d0:81:c4:14:0c:ef:88:28:d9:c7:87:ce:78:7f:95:43:6b:ae: ce:51:17:ee:37:6b:0b:7e:12:e8:94:bf:8c:b2:ee:85:ee:92: 4e:08:fc:56:14:3d:03:ca:fc:12:57:bd:eb:30:85:7f:b6:4f: 38:b1:c9:da:a4:a8:4c:a1:f9:57:81:4b:ee:68:a3:a4:6d:39: 3c:0e:5e:09:91:36:fa:0b:65:57:1f:0d:49:eb:34:7e:e0:e4: 04:dd:0c:f8:ad:d2:13:f9:af:ad:5d:8d:03:ec:4e:c8:c7:27: 94:3a:90:4d:a5:39:8d:6a:d5:9b:61:06:83:f2:02:4d:a6:f6: 23:46:60:8f:65:18:bd:8c:2e:ed:18:d7:c5:da:64:04:af:e0: 3f:47:34:0a:87:26:e4:ba:e0:b0:72:b2:d6:54:33:74:7c:01: 3b:b1:73:3e:e1:f3:46:9a:86:be:d8:c4:60:41:f2:cf:08:c4: c2:91:28:d8:38:7b:49:ad:46:04:c9:a0:52:55:4b:d5:ef:4a: 3f:a1:99:7f:6a:44:2e:8d:e1:09:61:95:8c:5b:1a:b0:81:2c: ef:8a:c1:eb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUKuRTBSuHwYaZ/lxMlsVH0FET1zcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEQ1RENENTQ0Njk0QkJFOERCOTlEMkQ4REFCOTgzMTQ3 NDVDRDk3RjAeFw0yNDA3MDEwMTAwNDBaFw0yNTA2MzAwMTA1NDBaMDMxMTAvBgNV BAMTKDNGMkIyNEIwOUYzM0I2QjM2MTJDNTg4Mzc4MDFBNUMwMTZDNTA2OTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ2XZztgrXuDlS0rFDdGlRXSYX icmQqwihQ/aGXLUF3ST3YeLV7ev9DqHc/7zTwsLZdjD588dGXdqJvf53R9WHz1Tv kUrmbZTyTKAk/OALUuOGk2ihGHXODSlL7l8T356rpmQWhpEA2lPaqAiS2YDmbjKb zRZhwhLnCAisCEKXUJkfs2YDb9klHYeOy3oGT4bLWLRsxro7K/JW2IQQet8fufEJ oefg2zif3QCXmur2bfV97U+mjtPW7YsbtRx/CUApGHMP9zjb4vaV2gnU4dW0P0Wb 4/LFX0hyTIx2828jhvDOOPKpmqF3I042t1gI2t5DYBuNDaRNhuES8q/7LPp7AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPysksJ8ztrNhLFiDeAGlwBbFBpAwHwYDVR0j BBgwFoAUDV3NVEaUu+jbmdLY2rmDFHRc2X8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YTRhMjFiOS1mOTEyLTQxZjMtYjYyYy0xMjE3NTgxYzk0OGEvMC8wRDVEQ0Q1NDQ2 OTRCQkU4REI5OUQyRDhEQUI5ODMxNDc0NUNEOTdGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEQ1RENENTQ0Njk0QkJFOERCOTlEMkQ4REFCOTgzMTQ3NDVD RDk3Ri5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBhNGEyMWI5LWY5MTItNDFmMy1i NjJjLTEyMTc1ODFjOTQ4YS8wLzMxMzAzMzJlMzEzNDMwMmUzMTMwMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4xsMA0GCSqG SIb3DQEBCwUAA4IBAQDPvtHBNOLsLpXGFI7cRl4SVNnr9DQMRolVgaGKT7jG+0dO TfXQgcQUDO+IKNnHh854f5VDa67OURfuN2sLfhLolL+Msu6F7pJOCPxWFD0DyvwS V73rMIV/tk84scnapKhMoflXgUvuaKOkbTk8Dl4JkTb6C2VXHw1J6zR+4OQE3Qz4 rdIT+a+tXY0D7E7IxyeUOpBNpTmNatWbYQaD8gJNpvYjRmCPZRi9jC7tGNfF2mQE r+A/RzQKhybkuuCwcrLWVDN0fAE7sXM+4fNGmoa+2MRgQfLPCMTCkSjYOHtJrUYE yaBSVUvV70o/oZl/akQujeEJYZWMWxqwgSzvisHr -----END CERTIFICATE-----Generated at Thu Nov 21 09:17:19 2024 by rpki-client on console-fra.rpki-client.org