$ rpki-client -vvf repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32332d3234203d3e20313338313238.roa File: 3130332e3134382e3139382e302f32332d3234203d3e20313338313238.roa (raw, json) Hash identifier: W0H9HDrVApNe3HWG7kzRwsgZpewrgw+OQsIBd3Xl334= Subject key identifier: 96:EB:80:BF:40:E0:11:FE:9A:25:AE:37:63:D9:04:79:F8:E0:34:26 Certificate issuer: /CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Certificate serial: 225E160DC89AA024FA86978F72E74EEC2F1BB943 Authority key identifier: 08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32332d3234203d3e20313338313238.roa Signing time: Tue 01 Oct 2024 05:01:24 +0000 ROA not before: Tue 01 Oct 2024 04:56:24 +0000 ROA not after: Tue 30 Sep 2025 05:01:24 +0000 asID: 138128 IP address blocks: 103.148.198.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:5e:16:0d:c8:9a:a0:24:fa:86:97:8f:72:e7:4e:ec:2f:1b:b9:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Validity Not Before: Oct 1 04:56:24 2024 GMT Not After : Sep 30 05:01:24 2025 GMT Subject: CN=96EB80BF40E011FE9A25AE3763D90479F8E03426 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a7:de:39:f2:c0:88:73:6f:88:50:23:61:c1: 9c:b4:92:3b:bd:9b:8d:41:b6:53:ae:a5:f9:6a:d7: 02:25:96:94:9f:fc:fa:5f:8e:1d:76:22:93:7b:d5: 3d:ba:5d:3b:67:8c:b1:b7:fc:51:81:96:d6:83:3e: 9e:19:b5:8c:e4:fb:e5:23:a7:b7:08:8c:b9:cb:98: 83:78:5c:0e:c4:9c:64:4a:e2:62:14:7d:a8:ee:cb: 87:f0:df:b2:1e:25:1d:78:cd:f4:f0:1f:e3:e9:ea: 0c:74:7d:12:08:2a:f5:19:f3:d2:85:f2:70:54:1d: 68:36:1a:98:bd:db:b1:fb:17:05:bb:7d:a8:45:ea: 5c:9f:a4:6b:19:f7:35:ca:cf:23:00:de:5c:bc:c1: 28:37:27:96:1f:7e:0e:e7:1c:d9:59:85:68:c2:cc: 91:97:c1:4d:7e:54:08:83:bf:00:ab:f8:e7:cf:85: 4f:5a:a9:8b:65:03:ac:66:36:0a:23:6b:62:8e:1a: 46:72:a6:8e:97:fa:01:e9:e9:e1:97:a2:8f:56:37: 6b:de:53:7a:c0:fd:31:54:59:89:1d:c0:d6:01:36: 91:5f:a6:03:dc:5f:e8:9c:38:23:9d:6d:e2:6d:a8: c6:05:72:9c:c5:71:81:05:5f:4a:6b:ea:ba:d4:c6: 3c:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:EB:80:BF:40:E0:11:FE:9A:25:AE:37:63:D9:04:79:F8:E0:34:26 X509v3 Authority Key Identifier: keyid:08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32332d3234203d3e20313338313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.198.0/23 Signature Algorithm: sha256WithRSAEncryption a8:cf:38:45:29:36:87:88:d2:76:db:e7:28:31:3f:25:48:52: 6a:23:e4:ff:84:70:20:d8:05:f6:81:77:cf:54:ee:e2:c2:d5: 9d:25:e1:46:86:8f:44:51:00:95:ab:17:42:3a:96:06:de:b8: 7b:53:0d:63:ba:23:50:74:98:0a:1d:b3:2e:7a:6e:25:cd:0d: b8:6c:ef:13:df:3c:94:73:bf:1e:3d:0b:09:47:ae:78:5a:07: c2:5e:ca:fb:07:43:13:be:b0:8e:c8:07:7a:53:ad:d3:5d:4f: a3:39:97:1e:66:13:68:8d:42:9d:73:ff:a6:f2:40:6d:db:6d: 3a:23:68:ef:b9:34:a9:4b:2f:51:57:8f:32:e3:85:82:b6:d7: a8:d5:17:44:3e:e4:f3:f0:b6:27:b4:a3:18:cb:3b:c1:13:f8: 52:03:e7:07:f9:25:02:1b:b1:2d:a8:55:57:c3:a7:d1:9e:29: ff:11:2b:0b:51:e4:a3:d8:8e:be:1c:5f:65:c5:44:cb:e8:68: ee:94:8e:c3:ac:fc:43:d2:dd:c9:9e:73:b9:67:9b:21:a7:7b: cc:4c:64:81:9d:9b:15:9b:36:ce:bc:38:9e:6f:a1:ce:50:4f: 19:bb:d9:30:44:55:47:a7:f9:69:5a:3d:9c:89:43:c9:ba:df: 68:f6:7c:e8 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIl4WDciaoCT6hpePcudO7C8buUMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhEMDdGMDEwREEyODExMkE5NEU4ODAwQzMxN0I4REY3 RjFBQkY0MzAeFw0yNDEwMDEwNDU2MjRaFw0yNTA5MzAwNTAxMjRaMDMxMTAvBgNV BAMTKDk2RUI4MEJGNDBFMDExRkU5QTI1QUUzNzYzRDkwNDc5RjhFMDM0MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzp9458sCIc2+IUCNhwZy0kju9 m41BtlOupflq1wIllpSf/Ppfjh12IpN71T26XTtnjLG3/FGBltaDPp4ZtYzk++Uj p7cIjLnLmIN4XA7EnGRK4mIUfajuy4fw37IeJR14zfTwH+Pp6gx0fRIIKvUZ89KF 8nBUHWg2Gpi927H7FwW7fahF6lyfpGsZ9zXKzyMA3ly8wSg3J5Yffg7nHNlZhWjC zJGXwU1+VAiDvwCr+OfPhU9aqYtlA6xmNgoja2KOGkZypo6X+gHp6eGXoo9WN2ve U3rA/TFUWYkdwNYBNpFfpgPcX+icOCOdbeJtqMYFcpzFcYEFX0pr6rrUxjzHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUluuAv0DgEf6aJa43Y9kEefjgNCYwHwYDVR0j BBgwFoAUCNB/AQ2igRKpTogAwxe4338av0MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGMyYTEzYi0xZjQwLTRjMDMtYmMzNS1mNjk2MTUxNmQ0ZDkvMC8wOEQwN0YwMTBE QTI4MTEyQTk0RTg4MDBDMzE3QjhERjdGMUFCRjQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDhEMDdGMDEwREEyODExMkE5NEU4ODAwQzMxN0I4REY3RjFB QkY0My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwYzJhMTNiLTFmNDAtNGMwMy1i YzM1LWY2OTYxNTE2ZDRkOS8wLzMxMzAzMzJlMzEzNDM4MmUzMTM5MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMyMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlMYwDQYJ KoZIhvcNAQELBQADggEBAKjPOEUpNoeI0nbb5ygxPyVIUmoj5P+EcCDYBfaBd89U 7uLC1Z0l4UaGj0RRAJWrF0I6lgbeuHtTDWO6I1B0mAodsy56biXNDbhs7xPfPJRz vx49CwlHrnhaB8JeyvsHQxO+sI7IB3pTrdNdT6M5lx5mE2iNQp1z/6byQG3bbToj aO+5NKlLL1FXjzLjhYK216jVF0Q+5PPwtie0oxjLO8ET+FID5wf5JQIbsS2oVVfD p9GeKf8RKwtR5KPYjr4cX2XFRMvoaO6UjsOs/EPS3cmec7lnmyGne8xMZIGdmxWb Ns68OJ5voc5QTxm72TBEVUen+WlaPZyJQ8m632j2fOg= -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:33 2024 by rpki-client on console-ams.rpki-client.org