$ rpki-client -vvf repo-rpki.idnic.net/repo/13f0a83c-2bc0-42a5-a4ae-11a53882df10/0/3130332e3135382e3132382e302f32332d3234203d3e203338333230.roa File: 3130332e3135382e3132382e302f32332d3234203d3e203338333230.roa (raw, json) Hash identifier: HS49hTMhZgQ0/mCNKcMSWVwuhznM34+P2aN6B4wSIyw= Subject key identifier: 9E:8C:37:AF:58:F4:EB:B1:4D:3D:10:45:24:5D:E9:19:58:07:6F:6B Certificate issuer: /CN=6A2F662B6D6ADE8BFC30D2CDE49E360152FD38BF Certificate serial: 0E7C298EB30C7132F7A94F36DAC4A7211519B8BB Authority key identifier: 6A:2F:66:2B:6D:6A:DE:8B:FC:30:D2:CD:E4:9E:36:01:52:FD:38:BF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A2F662B6D6ADE8BFC30D2CDE49E360152FD38BF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/13f0a83c-2bc0-42a5-a4ae-11a53882df10/0/3130332e3135382e3132382e302f32332d3234203d3e203338333230.roa Signing time: Thu 16 May 2024 04:02:06 +0000 ROA not before: Thu 16 May 2024 03:57:06 +0000 ROA not after: Thu 15 May 2025 04:02:06 +0000 asID: 38320 IP address blocks: 103.158.128.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/13f0a83c-2bc0-42a5-a4ae-11a53882df10/0/6A2F662B6D6ADE8BFC30D2CDE49E360152FD38BF.crl rsync://repo-rpki.idnic.net/repo/13f0a83c-2bc0-42a5-a4ae-11a53882df10/0/6A2F662B6D6ADE8BFC30D2CDE49E360152FD38BF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A2F662B6D6ADE8BFC30D2CDE49E360152FD38BF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:7c:29:8e:b3:0c:71:32:f7:a9:4f:36:da:c4:a7:21:15:19:b8:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A2F662B6D6ADE8BFC30D2CDE49E360152FD38BF Validity Not Before: May 16 03:57:06 2024 GMT Not After : May 15 04:02:06 2025 GMT Subject: CN=9E8C37AF58F4EBB14D3D1045245DE91958076F6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:11:27:3c:65:50:3b:57:34:2e:02:92:20:8c: 6c:61:45:21:8c:50:b6:4b:8a:81:c6:21:3b:e9:6c: f5:c5:5f:f6:8e:48:0e:b5:e4:36:ce:88:b0:86:5e: 83:ff:a4:c9:a3:0a:24:01:d1:f7:13:67:9c:e7:85: e7:a8:41:ee:62:94:4b:de:37:26:3c:f2:5d:d2:c0: 66:e3:ba:61:da:af:77:c5:4f:93:9e:08:fb:53:fa: 94:69:99:a1:65:40:6e:1a:81:be:cf:da:10:7b:59: 13:82:69:52:c6:e3:41:1a:b5:0b:24:18:a6:11:57: dd:11:b4:3f:3c:ae:7a:30:a4:d9:82:46:a1:9b:91: 69:02:4a:8e:6c:58:8e:9a:d5:22:db:c4:80:20:a9: 73:05:77:a4:d7:c4:22:bf:0d:bf:9e:76:b1:d2:40: 9a:80:a5:25:8f:03:45:0f:12:f1:c2:69:98:6a:72: d0:08:99:5e:5d:d0:4b:a4:75:48:4c:6d:95:a5:7e: 78:60:74:37:d2:05:1d:b3:c1:92:4f:95:48:99:02: 85:45:18:32:9f:63:50:ec:76:7b:55:ed:e5:db:6b: 07:c3:b6:a0:7b:2a:db:c1:cc:15:e4:56:2b:02:08: cf:81:ab:2d:49:5a:2b:76:3e:0e:14:61:d3:fe:88: 76:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:8C:37:AF:58:F4:EB:B1:4D:3D:10:45:24:5D:E9:19:58:07:6F:6B X509v3 Authority Key Identifier: keyid:6A:2F:66:2B:6D:6A:DE:8B:FC:30:D2:CD:E4:9E:36:01:52:FD:38:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/13f0a83c-2bc0-42a5-a4ae-11a53882df10/0/6A2F662B6D6ADE8BFC30D2CDE49E360152FD38BF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A2F662B6D6ADE8BFC30D2CDE49E360152FD38BF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/13f0a83c-2bc0-42a5-a4ae-11a53882df10/0/3130332e3135382e3132382e302f32332d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.128.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:6f:e1:05:88:71:a0:88:c1:83:bb:d1:04:12:ba:60:d0:44: 25:cf:9f:e9:7d:0b:e6:19:9c:75:4b:0c:15:e0:5b:ee:a8:c6: 28:d5:13:8e:38:84:b8:9e:41:6a:d2:1e:43:4f:48:5a:2f:1d: cb:a6:7a:2b:cc:ed:db:fe:f4:d1:09:07:a3:36:03:9e:1e:03: 59:47:9e:37:0d:5a:e9:80:e3:eb:de:83:76:37:5d:67:f3:47: 18:35:57:1f:13:b2:2c:a6:6c:3b:fc:83:e6:66:1f:14:4d:fe: ad:d2:3b:9f:77:3d:4e:35:02:37:11:b4:c0:14:45:95:38:d8: d4:79:22:7b:9e:f1:8e:02:bc:16:00:03:df:f3:91:78:44:8c: 82:87:df:82:24:24:2a:3f:d4:94:88:ba:ed:21:9c:96:96:ed: 09:dc:09:92:08:a3:fe:71:bb:c5:f0:3b:1a:af:be:70:d2:a2: 31:bd:5d:5b:d3:8d:4a:86:b6:ad:99:8a:1e:7e:b2:95:46:00: 04:eb:6f:4f:5c:32:70:ab:95:3f:1b:3c:e5:66:d7:9f:f1:af: 0f:5b:9d:54:a1:67:54:d0:81:a3:c6:8e:70:18:7b:3b:a9:eb: 23:cf:ff:62:db:de:9a:90:c7:0a:1a:b4:e9:25:a6:d4:47:d1: 96:5d:da:5a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDnwpjrMMcTL3qU822sSnIRUZuLswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkEyRjY2MkI2RDZBREU4QkZDMzBEMkNERTQ5RTM2MDE1 MkZEMzhCRjAeFw0yNDA1MTYwMzU3MDZaFw0yNTA1MTUwNDAyMDZaMDMxMTAvBgNV BAMTKDlFOEMzN0FGNThGNEVCQjE0RDNEMTA0NTI0NURFOTE5NTgwNzZGNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfESc8ZVA7VzQuApIgjGxhRSGM ULZLioHGITvpbPXFX/aOSA615DbOiLCGXoP/pMmjCiQB0fcTZ5znheeoQe5ilEve NyY88l3SwGbjumHar3fFT5OeCPtT+pRpmaFlQG4agb7P2hB7WROCaVLG40EatQsk GKYRV90RtD88rnowpNmCRqGbkWkCSo5sWI6a1SLbxIAgqXMFd6TXxCK/Db+edrHS QJqApSWPA0UPEvHCaZhqctAImV5d0EukdUhMbZWlfnhgdDfSBR2zwZJPlUiZAoVF GDKfY1DsdntV7eXbawfDtqB7KtvBzBXkVisCCM+Bqy1JWit2Pg4UYdP+iHZPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnow3r1j067FNPRBFJF3pGVgHb2swHwYDVR0j BBgwFoAUai9mK21q3ov8MNLN5J42AVL9OL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x M2YwYTgzYy0yYmMwLTQyYTUtYTRhZS0xMWE1Mzg4MmRmMTAvMC82QTJGNjYyQjZE NkFERThCRkMzMEQyQ0RFNDlFMzYwMTUyRkQzOEJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkEyRjY2MkI2RDZBREU4QkZDMzBEMkNERTQ5RTM2MDE1MkZE MzhCRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzZjBhODNjLTJiYzAtNDJhNS1h NGFlLTExYTUzODgyZGYxMC8wLzMxMzAzMzJlMzEzNTM4MmUzMTMyMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMzM4MzMzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ56AMA0GCSqG SIb3DQEBCwUAA4IBAQBPb+EFiHGgiMGDu9EEErpg0EQlz5/pfQvmGZx1SwwV4Fvu qMYo1ROOOIS4nkFq0h5DT0haLx3LpnorzO3b/vTRCQejNgOeHgNZR543DVrpgOPr 3oN2N11n80cYNVcfE7Ispmw7/IPmZh8UTf6t0jufdz1ONQI3EbTAFEWVONjUeSJ7 nvGOArwWAAPf85F4RIyCh9+CJCQqP9SUiLrtIZyWlu0J3AmSCKP+cbvF8Dsar75w 0qIxvV1b041KhratmYoefrKVRgAE629PXDJwq5U/GzzlZtef8a8PW51UoWdU0IGj xo5wGHs7qesjz/9i296akMcKGrTpJabUR9GWXdpa -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:50 2024 by rpki-client on console-ams.rpki-client.org