$ rpki-client -vvf repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233382e302f32342d3234203d3e20313338303936.roa File: 3130332e3230372e3233382e302f32342d3234203d3e20313338303936.roa (raw, json) Hash identifier: 58/soKQWPVQGTqv8hOCxxWuXW2GL47DGIdYmRaMlabg= Subject key identifier: 27:22:DE:BD:79:35:25:77:3F:19:23:03:45:9C:A4:BD:27:01:AA:2A Certificate issuer: /CN=C7F5AA72DB870E161B62ACA9250AD98AA110A014 Certificate serial: 42D8CA473945BBADA80D8F3DF3DACA7E564054C3 Authority key identifier: C7:F5:AA:72:DB:87:0E:16:1B:62:AC:A9:25:0A:D9:8A:A1:10:A0:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233382e302f32342d3234203d3e20313338303936.roa Signing time: Thu 23 May 2024 04:02:15 +0000 ROA not before: Thu 23 May 2024 03:57:15 +0000 ROA not after: Thu 22 May 2025 04:02:15 +0000 asID: 138096 IP address blocks: 103.207.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.crl rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:19:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:d8:ca:47:39:45:bb:ad:a8:0d:8f:3d:f3:da:ca:7e:56:40:54:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C7F5AA72DB870E161B62ACA9250AD98AA110A014 Validity Not Before: May 23 03:57:15 2024 GMT Not After : May 22 04:02:15 2025 GMT Subject: CN=2722DEBD793525773F192303459CA4BD2701AA2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:01:be:be:0b:a5:5e:d2:12:81:71:04:85:46: f2:72:e2:8b:97:75:88:d9:b9:44:28:6a:0d:0d:85: 8b:61:8c:84:97:e1:e7:0b:d7:d5:87:50:c8:d7:fb: cb:cc:0a:21:0d:de:48:12:7f:df:cb:97:89:0d:5c: 13:31:a0:5d:39:57:e1:04:a1:b2:ed:d3:1f:c6:c2: 0f:f5:a6:b4:07:83:51:3c:89:26:03:47:70:7e:aa: 57:83:c7:73:f6:5c:be:0c:59:78:54:9d:f6:eb:e4: a6:e4:cb:3a:e9:4c:ca:51:89:8f:18:b7:a9:74:50: b3:ed:ea:ba:15:2e:c1:ec:fa:ca:0e:4b:9e:ea:06: 5d:da:53:ce:af:9c:ef:5d:5a:02:c9:73:46:08:34: c2:87:cf:42:b8:4b:fc:8e:2a:19:13:6b:ba:b3:14: 8b:d5:b0:fa:e8:05:7e:32:1b:a2:11:b8:48:8b:a7: b4:dd:f8:9b:32:6b:35:75:18:16:4f:23:27:2b:12: 22:a9:16:c0:aa:1f:de:5f:44:ab:df:11:9f:29:00: 58:7c:16:d8:63:56:06:74:f9:02:f4:07:ea:11:66: 38:7f:7f:10:7c:a5:de:57:ac:38:c3:bd:f8:e5:e7: 6c:b9:95:dd:82:4e:4f:69:d0:07:89:a7:0c:60:de: 1f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:22:DE:BD:79:35:25:77:3F:19:23:03:45:9C:A4:BD:27:01:AA:2A X509v3 Authority Key Identifier: keyid:C7:F5:AA:72:DB:87:0E:16:1B:62:AC:A9:25:0A:D9:8A:A1:10:A0:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/C7F5AA72DB870E161B62ACA9250AD98AA110A014.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C7F5AA72DB870E161B62ACA9250AD98AA110A014.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b0e7f8e-c29f-4e6b-ad0a-9957fbd56953/0/3130332e3230372e3233382e302f32342d3234203d3e20313338303936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.207.238.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:a1:f3:9d:26:25:8a:18:8c:67:45:50:30:05:60:56:1f:78: 15:ca:c8:fa:e0:5f:d9:69:76:75:55:ce:d2:0b:fb:15:b4:75: 58:06:5d:c4:c2:32:ac:1d:98:f6:b2:c2:d0:44:a9:95:d2:76: 9f:60:19:f1:b0:a7:cb:e5:41:a1:87:62:f6:a6:2c:85:2d:6f: 1e:1f:73:19:8b:f2:68:9b:8e:b1:38:25:00:c5:b9:f6:cd:fe: 4a:80:3c:e3:a2:dc:d1:0e:00:8d:8e:37:18:10:0b:a4:bf:7c: a2:40:fd:7a:27:ae:b7:f4:ff:6c:70:76:05:36:e8:26:04:aa: 51:c3:4c:c7:c5:79:9b:2b:d8:2f:03:fb:94:fe:c4:88:65:7e: 3c:e2:2c:34:d8:08:25:77:cc:d9:72:f5:b9:8e:0f:60:bb:21: 5b:4d:2e:99:28:0d:12:d6:2f:46:ea:1c:cb:82:45:9a:57:c0: 70:0a:cc:05:32:c0:ba:be:4b:cd:1f:83:70:89:9a:07:f7:41: 5b:ed:fb:ae:26:24:21:43:f7:2b:82:e7:a5:93:ac:bb:2e:69: 05:64:dd:03:40:1e:cf:36:e3:92:cf:00:e5:fa:65:2f:44:4d: 3a:e1:2f:9d:08:fb:98:3f:2e:a3:1d:12:af:52:ec:0d:da:58: a6:a3:17:1a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQtjKRzlFu62oDY8989rKflZAVMMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzdGNUFBNzJEQjg3MEUxNjFCNjJBQ0E5MjUwQUQ5OEFB MTEwQTAxNDAeFw0yNDA1MjMwMzU3MTVaFw0yNTA1MjIwNDAyMTVaMDMxMTAvBgNV BAMTKDI3MjJERUJENzkzNTI1NzczRjE5MjMwMzQ1OUNBNEJEMjcwMUFBMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXAb6+C6Ve0hKBcQSFRvJy4ouX dYjZuUQoag0NhYthjISX4ecL19WHUMjX+8vMCiEN3kgSf9/Ll4kNXBMxoF05V+EE obLt0x/Gwg/1prQHg1E8iSYDR3B+qleDx3P2XL4MWXhUnfbr5KbkyzrpTMpRiY8Y t6l0ULPt6roVLsHs+soOS57qBl3aU86vnO9dWgLJc0YINMKHz0K4S/yOKhkTa7qz FIvVsProBX4yG6IRuEiLp7Td+JsyazV1GBZPIycrEiKpFsCqH95fRKvfEZ8pAFh8 FthjVgZ0+QL0B+oRZjh/fxB8pd5XrDjDvfjl52y5ld2CTk9p0AeJpwxg3h9XAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJyLevXk1JXc/GSMDRZykvScBqiowHwYDVR0j BBgwFoAUx/WqctuHDhYbYqypJQrZiqEQoBQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjBlN2Y4ZS1jMjlmLTRlNmItYWQwYS05OTU3ZmJkNTY5NTMvMC9DN0Y1QUE3MkRC ODcwRTE2MUI2MkFDQTkyNTBBRDk4QUExMTBBMDE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzdGNUFBNzJEQjg3MEUxNjFCNjJBQ0E5MjUwQUQ5OEFBMTEw QTAxNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiMGU3ZjhlLWMyOWYtNGU2Yi1h ZDBhLTk5NTdmYmQ1Njk1My8wLzMxMzAzMzJlMzIzMDM3MmUzMjMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM5MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnz+4wDQYJ KoZIhvcNAQELBQADggEBAAqh850mJYoYjGdFUDAFYFYfeBXKyPrgX9lpdnVVztIL +xW0dVgGXcTCMqwdmPaywtBEqZXSdp9gGfGwp8vlQaGHYvamLIUtbx4fcxmL8mib jrE4JQDFufbN/kqAPOOi3NEOAI2ONxgQC6S/fKJA/Xonrrf0/2xwdgU26CYEqlHD TMfFeZsr2C8D+5T+xIhlfjziLDTYCCV3zNly9bmOD2C7IVtNLpkoDRLWL0bqHMuC RZpXwHAKzAUywLq+S80fg3CJmgf3QVvt+64mJCFD9yuC56WTrLsuaQVk3QNAHs82 45LPAOX6ZS9ETTrhL50I+5g/LqMdEq9S7A3aWKajFxo= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:37 2024 by rpki-client on console-ams.rpki-client.org