$ rpki-client -vvf repo-rpki.idnic.net/repo/28f5ba5e-1f5c-4284-9a16-0135a9fd4e28/0/3130332e3234382e382e302f32332d3234203d3e20313531353338.roa File: 3130332e3234382e382e302f32332d3234203d3e20313531353338.roa (raw, json) Hash identifier: yks7nJcsDo9XtgYxk9DnHK0wG2/vAHkj81nLw0hV720= Subject key identifier: D7:FF:E0:D8:44:68:70:2D:8F:5D:0B:D6:82:1E:82:9A:26:13:44:B1 Certificate issuer: /CN=C7840142ADE3E1876CB50EA3A410454EB3889153 Certificate serial: 30ADA0328B02D98AF356772222C3501F0049D78C Authority key identifier: C7:84:01:42:AD:E3:E1:87:6C:B5:0E:A3:A4:10:45:4E:B3:88:91:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7840142ADE3E1876CB50EA3A410454EB3889153.cer Subject info access: rsync://repo-rpki.idnic.net/repo/28f5ba5e-1f5c-4284-9a16-0135a9fd4e28/0/3130332e3234382e382e302f32332d3234203d3e20313531353338.roa Signing time: Wed 17 Jul 2024 01:40:10 +0000 ROA not before: Wed 17 Jul 2024 01:35:10 +0000 ROA not after: Wed 16 Jul 2025 01:40:10 +0000 asID: 151538 IP address blocks: 103.248.8.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/28f5ba5e-1f5c-4284-9a16-0135a9fd4e28/0/C7840142ADE3E1876CB50EA3A410454EB3889153.crl rsync://repo-rpki.idnic.net/repo/28f5ba5e-1f5c-4284-9a16-0135a9fd4e28/0/C7840142ADE3E1876CB50EA3A410454EB3889153.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7840142ADE3E1876CB50EA3A410454EB3889153.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:50:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:ad:a0:32:8b:02:d9:8a:f3:56:77:22:22:c3:50:1f:00:49:d7:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C7840142ADE3E1876CB50EA3A410454EB3889153 Validity Not Before: Jul 17 01:35:10 2024 GMT Not After : Jul 16 01:40:10 2025 GMT Subject: CN=D7FFE0D84468702D8F5D0BD6821E829A261344B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a9:26:d6:60:7d:97:44:22:98:7a:67:04:1d: 2b:43:9f:07:7d:0c:89:ca:28:ed:fe:d9:dd:4c:15: af:e3:7f:ee:18:2d:8b:6f:ac:6d:68:a3:ba:72:11: a3:81:44:56:54:bf:4a:0e:8e:a2:78:62:2a:61:7a: 42:a3:72:a3:5c:79:e0:9f:da:97:27:42:79:b2:82: b7:af:3b:bd:58:3f:2a:54:f2:f7:a6:63:96:cb:e0: c2:68:4f:ca:ec:a5:28:cd:16:eb:50:69:96:78:67: 9f:66:32:c9:dc:c7:9f:c8:27:59:92:6e:04:54:38: 90:1a:bc:d0:d2:da:c2:b2:d3:dd:38:a7:16:68:ee: 5e:f6:59:13:e9:47:9e:e9:b3:3d:34:4b:67:34:4a: f8:68:32:ef:b6:fc:9d:a5:c7:32:c2:c5:46:e3:4b: f5:90:d6:74:a8:4e:6d:db:c2:29:88:fe:78:7c:35: 71:67:37:d5:2c:14:77:30:7f:1f:66:72:93:53:e3: d4:3b:e0:fd:4f:81:48:2e:d0:d5:a6:ff:c1:52:7d: 24:8b:06:b5:9b:1b:6f:2e:65:0a:09:48:8a:85:08: 2c:75:b6:60:de:27:57:da:26:0e:8e:e2:9e:45:1c: 36:7f:e1:2a:a9:61:6f:fa:8f:51:f5:5c:e3:c5:50: f4:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:FF:E0:D8:44:68:70:2D:8F:5D:0B:D6:82:1E:82:9A:26:13:44:B1 X509v3 Authority Key Identifier: keyid:C7:84:01:42:AD:E3:E1:87:6C:B5:0E:A3:A4:10:45:4E:B3:88:91:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/28f5ba5e-1f5c-4284-9a16-0135a9fd4e28/0/C7840142ADE3E1876CB50EA3A410454EB3889153.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7840142ADE3E1876CB50EA3A410454EB3889153.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/28f5ba5e-1f5c-4284-9a16-0135a9fd4e28/0/3130332e3234382e382e302f32332d3234203d3e20313531353338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.248.8.0/23 Signature Algorithm: sha256WithRSAEncryption 95:53:9a:2c:74:f9:c3:e2:04:f6:07:02:58:8d:d3:f2:e8:ca: fe:f2:a9:a8:87:52:cb:4c:62:2f:ad:06:f8:ac:18:62:fe:37: d4:95:b5:c2:8e:bd:79:81:07:75:3e:64:ae:c2:db:ed:1c:bd: 45:07:46:7a:6a:ca:c9:6b:ba:ef:9d:93:88:66:bd:9d:73:3a: d6:6f:4b:5d:c1:27:83:2a:ef:b5:cf:07:c3:71:40:25:b6:f9: e7:b9:39:37:f4:73:cb:8d:98:f6:ae:23:94:95:70:bc:41:4b: 35:82:48:3e:19:9a:f5:bd:90:17:39:b7:50:be:48:90:c5:a3: 94:f6:b0:44:27:3a:a4:4d:70:be:0d:ca:a4:95:20:93:6b:12: 95:9f:7b:f5:f6:9c:02:02:8a:0f:e0:a3:34:3e:21:ca:c0:9b: 0b:08:79:dd:34:6d:fc:a6:d9:a7:9a:05:84:58:cb:18:17:85: 15:00:e9:28:79:59:ba:70:2f:48:96:02:66:62:1f:5f:ec:0d: 83:4f:8d:52:3e:9b:70:f1:5c:81:42:b7:26:62:08:cb:3e:27: 7c:88:2b:94:3b:b0:c9:7c:8b:62:fb:d6:97:8d:b3:c0:85:43: ca:7f:64:03:95:fa:82:03:19:52:43:80:e3:47:26:35:bc:06: 4c:c2:b5:49 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMK2gMosC2YrzVnciIsNQHwBJ14wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzc4NDAxNDJBREUzRTE4NzZDQjUwRUEzQTQxMDQ1NEVC Mzg4OTE1MzAeFw0yNDA3MTcwMTM1MTBaFw0yNTA3MTYwMTQwMTBaMDMxMTAvBgNV BAMTKEQ3RkZFMEQ4NDQ2ODcwMkQ4RjVEMEJENjgyMUU4MjlBMjYxMzQ0QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAqSbWYH2XRCKYemcEHStDnwd9 DInKKO3+2d1MFa/jf+4YLYtvrG1oo7pyEaOBRFZUv0oOjqJ4YiphekKjcqNceeCf 2pcnQnmygrevO71YPypU8vemY5bL4MJoT8rspSjNFutQaZZ4Z59mMsncx5/IJ1mS bgRUOJAavNDS2sKy0904pxZo7l72WRPpR57psz00S2c0SvhoMu+2/J2lxzLCxUbj S/WQ1nSoTm3bwimI/nh8NXFnN9UsFHcwfx9mcpNT49Q74P1PgUgu0NWm/8FSfSSL BrWbG28uZQoJSIqFCCx1tmDeJ1faJg6O4p5FHDZ/4SqpYW/6j1H1XOPFUPSXAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1//g2ERocC2PXQvWgh6CmiYTRLEwHwYDVR0j BBgwFoAUx4QBQq3j4YdstQ6jpBBFTrOIkVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y OGY1YmE1ZS0xZjVjLTQyODQtOWExNi0wMTM1YTlmZDRlMjgvMC9DNzg0MDE0MkFE RTNFMTg3NkNCNTBFQTNBNDEwNDU0RUIzODg5MTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzc4NDAxNDJBREUzRTE4NzZDQjUwRUEzQTQxMDQ1NEVCMzg4 OTE1My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI4ZjViYTVlLTFmNWMtNDI4NC05 YTE2LTAxMzVhOWZkNGUyOC8wLzMxMzAzMzJlMzIzNDM4MmUzODJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMTM1MzMzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWf4CDANBgkqhkiG 9w0BAQsFAAOCAQEAlVOaLHT5w+IE9gcCWI3T8ujK/vKpqIdSy0xiL60G+KwYYv43 1JW1wo69eYEHdT5krsLb7Ry9RQdGemrKyWu6752TiGa9nXM61m9LXcEngyrvtc8H w3FAJbb557k5N/Rzy42Y9q4jlJVwvEFLNYJIPhma9b2QFzm3UL5IkMWjlPawRCc6 pE1wvg3KpJUgk2sSlZ979facAgKKD+CjND4hysCbCwh53TRt/KbZp5oFhFjLGBeF FQDpKHlZunAvSJYCZmIfX+wNg0+NUj6bcPFcgUK3JmIIyz4nfIgrlDuwyXyLYvvW l42zwIVDyn9kA5X6ggMZUkOA40cmNbwGTMK1SQ== -----END CERTIFICATE-----Generated at Wed Nov 20 23:52:01 2024 by rpki-client on console-ams.rpki-client.org