$ rpki-client -vvf repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32342d3234203d3e2034373837.roa File: 3130332e3134382e3139382e302f32342d3234203d3e2034373837.roa (raw, json) Hash identifier: e4K70c+l6o1H0jUf9NfNvizUU4LNYZwwkZ1VlRNX2oM= Subject key identifier: 28:B7:F2:0B:97:DA:A0:59:94:DF:82:4A:4B:00:73:61:7E:7E:52:65 Certificate issuer: /CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Certificate serial: 1215FD43DCB1E2BB0D799C52D781403685513AB8 Authority key identifier: 08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32342d3234203d3e2034373837.roa Signing time: Sun 29 Sep 2024 12:31:35 +0000 ROA not before: Sun 29 Sep 2024 12:26:35 +0000 ROA not after: Sun 28 Sep 2025 12:31:35 +0000 asID: 4787 IP address blocks: 103.148.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:15:fd:43:dc:b1:e2:bb:0d:79:9c:52:d7:81:40:36:85:51:3a:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Validity Not Before: Sep 29 12:26:35 2024 GMT Not After : Sep 28 12:31:35 2025 GMT Subject: CN=28B7F20B97DAA05994DF824A4B0073617E7E5265 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:81:f4:41:6f:77:f4:16:b5:a4:66:36:29:95: dd:f3:4d:9f:90:69:9c:6d:e6:fd:7b:a1:7d:36:aa: 06:74:79:31:29:bb:37:92:ad:f0:26:35:81:2a:11: 23:4a:04:70:fa:72:5a:a4:4a:42:e4:ee:26:9a:e6: 02:58:92:b1:3e:f0:78:91:55:d7:98:b9:56:a5:35: 61:7f:b8:22:34:57:28:e3:bd:db:0f:85:eb:8f:65: 09:98:3c:59:79:4d:3f:97:75:a1:33:96:ff:39:6c: 7f:a1:0d:7b:55:cd:a8:35:7a:63:bf:c0:80:2f:c5: aa:7e:46:9d:15:0c:08:5e:7f:51:8b:d6:9d:b8:f7: 1d:85:fb:3c:d3:f2:8c:15:6f:10:dd:a5:28:21:71: 3d:ce:57:66:70:31:ca:04:c4:16:ae:63:dc:d1:b0: 4c:21:92:c6:1f:6b:e7:2f:e8:df:6c:14:d8:0e:69: 43:01:b3:14:64:d5:1a:a9:3d:61:80:4c:d6:73:bd: 9e:3f:cd:ac:52:3c:bd:c4:bd:be:f8:6e:0b:7f:ad: c7:10:21:9f:fb:6a:b2:5a:ae:7e:0d:75:88:f5:4c: d8:a7:89:af:07:c7:13:8f:77:95:8b:a6:c4:ec:86: 3a:ed:d9:88:ca:63:4b:ad:62:7d:be:f5:db:19:0f: 97:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:B7:F2:0B:97:DA:A0:59:94:DF:82:4A:4B:00:73:61:7E:7E:52:65 X509v3 Authority Key Identifier: keyid:08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32342d3234203d3e2034373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.198.0/24 Signature Algorithm: sha256WithRSAEncryption 15:37:9c:76:7f:6b:fb:4b:c1:f6:f4:34:b3:d0:b8:8a:53:d3: ab:be:1a:6a:7e:5e:af:57:19:d5:a7:c7:9d:c2:b5:94:8f:d8: 2d:18:51:22:cd:0b:30:35:64:77:02:1a:59:da:72:93:85:27: 84:f8:6c:f0:78:b8:2f:d6:27:cc:75:1d:83:65:de:da:15:77: d2:2a:bb:8b:84:b8:a4:eb:3c:92:cc:e2:ad:f9:10:27:ba:9c: d8:ba:04:e0:e5:55:db:ad:91:f2:2c:4b:3e:f4:2a:e3:ab:9e: 6f:2a:e7:9d:f7:4d:c6:78:ca:20:87:6c:e0:63:50:16:61:52: 4c:92:8d:81:d1:fb:17:f8:65:d2:68:63:23:3a:0c:97:03:be: e4:5e:9c:9f:3c:7a:e4:51:e5:ba:fd:4e:68:f6:35:49:d5:56: 28:54:a5:fc:f0:b6:ff:98:a9:ee:e7:a1:3f:b8:79:b8:d6:e8: 82:4a:d3:5d:ed:99:f5:fa:0d:06:c9:f2:b9:06:a0:db:4b:64: 3b:94:f4:d3:3b:71:54:de:5b:ea:88:60:0b:d8:39:89:5c:fe: 31:0b:1e:25:19:41:f4:2a:05:1a:2d:44:e8:07:e5:98:15:6f: 8c:be:d1:b3:72:bd:04:17:61:dd:89:9c:eb:50:7a:6d:d8:de: fa:ac:ff:f6 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEhX9Q9yx4rsNeZxS14FANoVROrgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhEMDdGMDEwREEyODExMkE5NEU4ODAwQzMxN0I4REY3 RjFBQkY0MzAeFw0yNDA5MjkxMjI2MzVaFw0yNTA5MjgxMjMxMzVaMDMxMTAvBgNV BAMTKDI4QjdGMjBCOTdEQUEwNTk5NERGODI0QTRCMDA3MzYxN0U3RTUyNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/gfRBb3f0FrWkZjYpld3zTZ+Q aZxt5v17oX02qgZ0eTEpuzeSrfAmNYEqESNKBHD6clqkSkLk7iaa5gJYkrE+8HiR VdeYuValNWF/uCI0VyjjvdsPheuPZQmYPFl5TT+XdaEzlv85bH+hDXtVzag1emO/ wIAvxap+Rp0VDAhef1GL1p249x2F+zzT8owVbxDdpSghcT3OV2ZwMcoExBauY9zR sEwhksYfa+cv6N9sFNgOaUMBsxRk1RqpPWGATNZzvZ4/zaxSPL3Evb74bgt/rccQ IZ/7arJarn4NdYj1TNinia8HxxOPd5WLpsTshjrt2YjKY0utYn2+9dsZD5c1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUKLfyC5faoFmU34JKSwBzYX5+UmUwHwYDVR0j BBgwFoAUCNB/AQ2igRKpTogAwxe4338av0MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGMyYTEzYi0xZjQwLTRjMDMtYmMzNS1mNjk2MTUxNmQ0ZDkvMC8wOEQwN0YwMTBE QTI4MTEyQTk0RTg4MDBDMzE3QjhERjdGMUFCRjQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDhEMDdGMDEwREEyODExMkE5NEU4ODAwQzMxN0I4REY3RjFB QkY0My5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwYzJhMTNiLTFmNDAtNGMwMy1i YzM1LWY2OTYxNTE2ZDRkOS8wLzMxMzAzMzJlMzEzNDM4MmUzMTM5MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM3MzgzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeUxjANBgkqhkiG 9w0BAQsFAAOCAQEAFTecdn9r+0vB9vQ0s9C4ilPTq74aan5er1cZ1afHncK1lI/Y LRhRIs0LMDVkdwIaWdpyk4UnhPhs8Hi4L9YnzHUdg2Xe2hV30iq7i4S4pOs8kszi rfkQJ7qc2LoE4OVV262R8ixLPvQq46uebyrnnfdNxnjKIIds4GNQFmFSTJKNgdH7 F/hl0mhjIzoMlwO+5F6cnzx65FHluv1OaPY1SdVWKFSl/PC2/5ip7uehP7h5uNbo gkrTXe2Z9foNBsnyuQag20tkO5T00ztxVN5b6ohgC9g5iVz+MQseJRlB9CoFGi1E 6AflmBVvjL7Rs3K9BBdh3Ymc61B6bdje+qz/9g== -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:51 2024 by rpki-client on console-fra.rpki-client.org