$ rpki-client -vvf repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133382e302f32342d3234203d3e20313431383932.roa File: 3130332e3131322e3133382e302f32342d3234203d3e20313431383932.roa (raw, json) Hash identifier: SaWqlMEUqao7e4oNzOtlLbyOzu7kZSZlO5/rYQs5MNQ= Subject key identifier: 2B:62:CC:D0:CF:93:AC:01:F0:16:D5:3B:95:91:DD:47:DD:FC:77:8E Certificate issuer: /CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Certificate serial: 5E07C97C92F15C03D4DE851476FBF6D11092CE9D Authority key identifier: 92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133382e302f32342d3234203d3e20313431383932.roa Signing time: Tue 20 Feb 2024 14:00:00 +0000 ROA not before: Tue 20 Feb 2024 13:55:00 +0000 ROA not after: Tue 18 Feb 2025 14:00:00 +0000 asID: 141892 IP address blocks: 103.112.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:07:c9:7c:92:f1:5c:03:d4:de:85:14:76:fb:f6:d1:10:92:ce:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=923D4A10E1DBBF6927183BF3419F512FE4C1D003 Validity Not Before: Feb 20 13:55:00 2024 GMT Not After : Feb 18 14:00:00 2025 GMT Subject: CN=2B62CCD0CF93AC01F016D53B9591DD47DDFC778E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a2:27:47:7b:3d:be:69:49:b0:e8:34:ff:31: 9d:0a:ff:29:69:b5:c4:ec:98:f6:45:7b:3b:8f:f4: 6d:4d:73:82:ef:d0:1f:ba:21:59:f7:aa:da:b6:3f: 68:e9:2c:5d:2f:9e:10:4c:b2:08:35:17:57:90:09: 58:17:57:98:20:80:1c:49:2a:32:ed:43:1f:cd:b1: 20:c3:5e:eb:31:da:09:ea:97:d0:f9:db:6b:44:9a: 3b:41:a4:ef:a2:73:8f:9a:27:1f:8a:22:57:22:41: 94:df:8a:86:9d:fd:70:c9:27:7c:28:19:1c:7b:d8: 47:37:ea:93:b5:00:5f:8f:1b:6d:33:3a:97:a4:59: 7d:86:6c:62:17:22:f7:c2:7a:aa:46:94:d2:47:3d: e7:89:ec:28:8b:47:fb:f1:07:bc:d8:19:03:dd:dc: 35:6a:d2:21:68:d0:22:94:45:21:27:4c:59:ed:2d: c1:b6:08:76:ea:51:08:cc:cd:75:f3:98:db:54:6f: d3:56:f1:5d:4a:8c:16:34:ef:8c:79:8b:98:f1:ec: e7:ea:f7:91:cc:05:81:61:70:8c:17:9b:f9:c8:c6: 68:68:44:de:ef:8d:76:05:ff:fe:35:4c:bb:a6:6a: d3:13:65:f2:94:e2:33:45:d5:bb:01:26:83:5c:a8: b5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:62:CC:D0:CF:93:AC:01:F0:16:D5:3B:95:91:DD:47:DD:FC:77:8E X509v3 Authority Key Identifier: keyid:92:3D:4A:10:E1:DB:BF:69:27:18:3B:F3:41:9F:51:2F:E4:C1:D0:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/923D4A10E1DBBF6927183BF3419F512FE4C1D003.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/923D4A10E1DBBF6927183BF3419F512FE4C1D003.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0c34ff08-d21f-420b-87df-53103b6dc253/0/3130332e3131322e3133382e302f32342d3234203d3e20313431383932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.138.0/24 Signature Algorithm: sha256WithRSAEncryption 04:04:db:29:f0:35:50:78:3f:9c:f3:0f:65:e8:c7:47:b7:01: c5:f4:1c:b8:4a:14:1d:03:58:97:e0:e0:96:d8:70:6f:7d:d0: 77:73:26:04:71:5a:51:07:9a:11:69:10:73:1f:db:f7:ee:e8: a5:cf:07:d9:90:45:f2:91:f7:f4:1e:b2:a4:65:f3:6d:2b:11: 4f:2c:9e:f9:55:5f:7e:4e:76:ad:19:ca:f5:97:65:86:6a:60: 23:71:75:40:aa:db:46:ae:28:92:bd:ab:80:34:22:65:79:42: e4:ec:e8:b0:1e:a6:b5:6d:48:e8:92:ac:39:9f:a3:10:71:81: fe:d5:79:62:a3:06:50:fd:c3:49:b0:50:31:a2:fa:38:51:6d: 53:5b:e2:a9:67:a7:ae:d3:82:24:d3:7c:32:34:74:a2:13:91: 7e:72:50:3d:12:0f:09:7e:8a:3b:13:f0:3c:dc:0b:bc:14:9c: 6f:a9:c6:31:e6:96:ec:09:eb:24:e0:37:da:07:a2:e0:ad:a1: 35:16:96:d8:c2:6e:1b:39:ad:4e:09:e1:84:9d:e2:fd:8c:bf: 9b:b2:62:38:9f:70:da:10:4b:64:0e:b9:95:63:85:64:e0:4e: b3:d9:d5:0c:77:c1:5a:f9:b7:1f:a8:5d:eb:9c:68:20:1e:20: 79:9f:dc:8e -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXgfJfJLxXAPU3oUUdvv20RCSzp0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZF NEMxRDAwMzAeFw0yNDAyMjAxMzU1MDBaFw0yNTAyMTgxNDAwMDBaMDMxMTAvBgNV BAMTKDJCNjJDQ0QwQ0Y5M0FDMDFGMDE2RDUzQjk1OTFERDQ3RERGQzc3OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSoidHez2+aUmw6DT/MZ0K/ylp tcTsmPZFezuP9G1Nc4Lv0B+6IVn3qtq2P2jpLF0vnhBMsgg1F1eQCVgXV5gggBxJ KjLtQx/NsSDDXusx2gnql9D522tEmjtBpO+ic4+aJx+KIlciQZTfioad/XDJJ3wo GRx72Ec36pO1AF+PG20zOpekWX2GbGIXIvfCeqpGlNJHPeeJ7CiLR/vxB7zYGQPd 3DVq0iFo0CKURSEnTFntLcG2CHbqUQjMzXXzmNtUb9NW8V1KjBY074x5i5jx7Ofq 95HMBYFhcIwXm/nIxmhoRN7vjXYF//41TLumatMTZfKU4jNF1bsBJoNcqLXxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUK2LM0M+TrAHwFtU7lZHdR938d44wHwYDVR0j BBgwFoAUkj1KEOHbv2knGDvzQZ9RL+TB0AMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YzM0ZmYwOC1kMjFmLTQyMGItODdkZi01MzEwM2I2ZGMyNTMvMC85MjNENEExMEUx REJCRjY5MjcxODNCRjM0MTlGNTEyRkU0QzFEMDAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTIzRDRBMTBFMURCQkY2OTI3MTgzQkYzNDE5RjUxMkZFNEMx RDAwMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjMzRmZjA4LWQyMWYtNDIwYi04 N2RmLTUzMTAzYjZkYzI1My8wLzMxMzAzMzJlMzEzMTMyMmUzMTMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzODM5MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABncIowDQYJ KoZIhvcNAQELBQADggEBAAQE2ynwNVB4P5zzD2Xox0e3AcX0HLhKFB0DWJfg4JbY cG990HdzJgRxWlEHmhFpEHMf2/fu6KXPB9mQRfKR9/QesqRl820rEU8snvlVX35O dq0ZyvWXZYZqYCNxdUCq20auKJK9q4A0ImV5QuTs6LAeprVtSOiSrDmfoxBxgf7V eWKjBlD9w0mwUDGi+jhRbVNb4qlnp67TgiTTfDI0dKITkX5yUD0SDwl+ijsT8Dzc C7wUnG+pxjHmluwJ6yTgN9oHouCtoTUWltjCbhs5rU4J4YSd4v2Mv5uyYjifcNoQ S2QOuZVjhWTgTrPZ1Qx3wVr5tx+oXeucaCAeIHmf3I4= -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:45 2024 by rpki-client on console-ams.rpki-client.org