$ rpki-client -vvf repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233392e302f32342d3234203d3e20313338383839.roa File: 3130332e3231322e3233392e302f32342d3234203d3e20313338383839.roa (raw, json) Hash identifier: waFtA9Rs9fa9JmBcejLpW23akTf5m+TT3YHpTZiNW5g= Subject key identifier: C8:29:4F:E0:6D:CC:97:B0:8B:EA:A9:C5:F7:10:61:2F:56:BF:ED:5C Certificate issuer: /CN=40F85FB380A012F2BB6D055D914C008674125D67 Certificate serial: 2995E5DFE198B3CDEBDC7D7F097AA5A002FB2ADE Authority key identifier: 40:F8:5F:B3:80:A0:12:F2:BB:6D:05:5D:91:4C:00:86:74:12:5D:67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233392e302f32342d3234203d3e20313338383839.roa Signing time: Sun 11 Aug 2024 05:00:00 +0000 ROA not before: Sun 11 Aug 2024 04:55:00 +0000 ROA not after: Sun 10 Aug 2025 05:00:00 +0000 asID: 138889 IP address blocks: 103.212.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.crl rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:95:e5:df:e1:98:b3:cd:eb:dc:7d:7f:09:7a:a5:a0:02:fb:2a:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40F85FB380A012F2BB6D055D914C008674125D67 Validity Not Before: Aug 11 04:55:00 2024 GMT Not After : Aug 10 05:00:00 2025 GMT Subject: CN=C8294FE06DCC97B08BEAA9C5F710612F56BFED5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1d:be:05:62:bf:5d:0a:94:6b:ee:e0:89:40: cc:95:55:f2:31:b0:8c:1e:67:89:c2:ba:93:6f:a3: 51:4c:d2:ec:c2:04:5f:35:ec:e7:57:e0:44:4f:71: cd:b2:e1:5e:c5:ad:7e:c9:73:8d:95:90:b1:41:56: 43:67:73:47:3f:c9:2c:57:77:11:fb:59:6c:8a:4a: 6f:75:14:9d:15:9e:f6:c5:5d:a9:32:62:76:23:05: 61:65:2c:89:f7:69:b1:34:05:6e:b7:1f:f8:2b:2c: 17:ad:0c:ef:9c:70:63:d0:4e:2d:30:e6:b0:60:e3: 5d:95:e7:a9:fb:36:5d:64:e3:be:b7:58:d5:31:c9: 42:e8:e2:28:a8:21:71:a0:4a:20:cf:03:f1:9d:ea: 0f:f9:4b:b9:2c:bb:6e:ad:b0:68:fe:36:5c:78:9e: 42:22:2a:ac:67:75:86:cd:e5:fc:dc:b6:0e:6e:11: 1f:2d:9e:08:c0:f1:2f:06:55:cd:61:32:29:8d:16: 81:0a:1b:11:8e:89:a3:25:72:01:4b:ad:78:49:24: 0d:48:7d:ca:5e:ce:99:06:39:aa:ba:8d:7d:f6:f5: b7:f3:1a:81:5d:92:b2:91:a5:c1:e5:98:68:6a:19: e7:39:21:7d:1d:bb:9d:02:ec:d7:ab:30:13:09:fc: 0f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:29:4F:E0:6D:CC:97:B0:8B:EA:A9:C5:F7:10:61:2F:56:BF:ED:5C X509v3 Authority Key Identifier: keyid:40:F8:5F:B3:80:A0:12:F2:BB:6D:05:5D:91:4C:00:86:74:12:5D:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/3130332e3231322e3233392e302f32342d3234203d3e20313338383839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.212.239.0/24 Signature Algorithm: sha256WithRSAEncryption 40:86:0e:99:89:a1:ea:70:ee:ee:78:fb:29:63:69:ca:18:62: e2:55:ca:4e:66:41:70:7a:b7:0f:af:d3:61:3c:51:df:bf:36: 6f:24:f0:f7:7b:fa:a0:54:a5:9d:54:74:a5:90:92:44:f4:8b: 23:30:64:6d:ec:96:cb:30:6d:f0:f6:74:96:cd:47:0d:45:6c: 3b:a5:85:8f:59:16:50:7a:dd:ae:0e:23:25:83:3f:6f:9d:b9: 20:b9:4e:2b:e5:f2:68:db:2e:01:63:c0:e0:d7:e7:ac:ce:e3: a3:be:de:2a:f3:54:b5:3f:49:a8:49:86:f7:4f:81:8c:54:74: dd:6b:8e:29:a7:1f:9d:21:85:e6:4b:c0:d9:96:5a:ae:b0:88: 72:76:a9:e0:67:28:82:95:ae:78:31:96:66:1c:03:c4:66:4c: 16:c3:bb:5b:2d:1e:d9:3d:fe:91:78:94:03:e5:21:b2:bf:d2: fd:9e:1a:aa:1b:b9:af:c7:0d:c9:8a:e2:7b:84:df:f5:1d:88: 7b:78:99:7e:57:4d:b9:44:dc:d0:e1:f8:20:bc:cb:75:40:36: b3:16:19:f8:ee:3e:8a:eb:c5:84:61:8e:f6:61:29:3c:d2:32: 64:cd:e2:93:54:ca:55:34:10:5e:57:fa:27:5b:5a:1d:7b:c4: a0:cb:c4:de -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKZXl3+GYs83r3H1/CXqloAL7Kt4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAwODY3 NDEyNUQ2NzAeFw0yNDA4MTEwNDU1MDBaFw0yNTA4MTAwNTAwMDBaMDMxMTAvBgNV BAMTKEM4Mjk0RkUwNkRDQzk3QjA4QkVBQTlDNUY3MTA2MTJGNTZCRkVENUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2Hb4FYr9dCpRr7uCJQMyVVfIx sIweZ4nCupNvo1FM0uzCBF817OdX4ERPcc2y4V7FrX7Jc42VkLFBVkNnc0c/ySxX dxH7WWyKSm91FJ0VnvbFXakyYnYjBWFlLIn3abE0BW63H/grLBetDO+ccGPQTi0w 5rBg412V56n7Nl1k4763WNUxyULo4iioIXGgSiDPA/Gd6g/5S7ksu26tsGj+Nlx4 nkIiKqxndYbN5fzctg5uER8tngjA8S8GVc1hMimNFoEKGxGOiaMlcgFLrXhJJA1I fcpezpkGOaq6jX329bfzGoFdkrKRpcHlmGhqGec5IX0du50C7NerMBMJ/A87AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUyClP4G3Ml7CL6qnF9xBhL1a/7VwwHwYDVR0j BBgwFoAUQPhfs4CgEvK7bQVdkUwAhnQSXWcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OTcyZjlhMi1iMGZmLTQyOTgtOGRhNi1lMmUzODM0OGEwN2IvMC80MEY4NUZCMzgw QTAxMkYyQkI2RDA1NUQ5MTRDMDA4Njc0MTI1RDY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAwODY3NDEy NUQ2Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU5NzJmOWEyLWIwZmYtNDI5OC04 ZGE2LWUyZTM4MzQ4YTA3Yi8wLzMxMzAzMzJlMzIzMTMyMmUzMjMzMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzODM4Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn1O8wDQYJ KoZIhvcNAQELBQADggEBAECGDpmJoepw7u54+yljacoYYuJVyk5mQXB6tw+v02E8 Ud+/Nm8k8Pd7+qBUpZ1UdKWQkkT0iyMwZG3slsswbfD2dJbNRw1FbDulhY9ZFlB6 3a4OIyWDP2+duSC5Tivl8mjbLgFjwODX56zO46O+3irzVLU/SahJhvdPgYxUdN1r jimnH50hheZLwNmWWq6wiHJ2qeBnKIKVrngxlmYcA8RmTBbDu1stHtk9/pF4lAPl IbK/0v2eGqobua/HDcmK4nuE3/UdiHt4mX5XTblE3NDh+CC8y3VANrMWGfjuPorr xYRhjvZhKTzSMmTN4pNUylU0EF5X+idbWh17xKDLxN4= -----END CERTIFICATE-----Generated at Sun Nov 24 13:13:45 2024 by rpki-client on console-fra.rpki-client.org