$ rpki-client -vvf repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32342d3234203d3e2034383030.roa File: 3130332e3134382e3139382e302f32342d3234203d3e2034383030.roa (raw, json) Hash identifier: 7SJMGKYIqywZq1oxStI1Ck+o92Gvb6NwaNA8HcKMaAA= Subject key identifier: D1:D2:31:5D:E3:D4:0D:B4:6E:01:27:AF:54:8D:32:1C:AF:1E:9C:C5 Certificate issuer: /CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Certificate serial: 788AFC2ECF2825613B608767A5545D28F0E9DD Authority key identifier: 08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32342d3234203d3e2034383030.roa Signing time: Wed 02 Oct 2024 04:03:18 +0000 ROA not before: Wed 02 Oct 2024 03:58:18 +0000 ROA not after: Wed 01 Oct 2025 04:03:18 +0000 asID: 4800 IP address blocks: 103.148.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:8a:fc:2e:cf:28:25:61:3b:60:87:67:a5:54:5d:28:f0:e9:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08D07F010DA28112A94E8800C317B8DF7F1ABF43 Validity Not Before: Oct 2 03:58:18 2024 GMT Not After : Oct 1 04:03:18 2025 GMT Subject: CN=D1D2315DE3D40DB46E0127AF548D321CAF1E9CC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1e:f5:8c:41:33:29:65:88:df:c1:23:88:2b: fe:ce:49:a8:e2:d0:e3:24:3a:e6:23:b4:91:b4:d0: 69:1a:21:ad:a4:e6:cf:9e:eb:4d:d8:09:bc:a7:16: 89:8c:f5:eb:44:fb:df:4c:68:09:23:60:e9:94:47: 1b:0e:3d:44:f7:99:32:cd:52:49:67:62:da:67:10: d7:b0:d3:c0:6d:26:e4:b9:2d:7f:70:52:c8:a4:bb: a8:82:4d:d6:3c:f9:fb:a9:f3:d5:d4:22:50:38:d7: b4:e2:d4:9f:0a:a6:2f:81:72:1e:02:e8:07:e8:3f: cd:f9:c3:10:ba:6b:90:3f:d2:53:e4:bf:d9:34:7c: 5a:42:6b:83:48:a4:5d:8f:fe:11:bc:a1:31:58:32: 30:f4:bf:48:20:44:68:40:97:2d:9a:3c:c9:b7:40: ac:da:1a:92:29:aa:8c:1e:a2:59:f0:4f:6e:c5:c1: d9:74:a3:d2:48:b3:1e:3a:44:99:af:b5:9c:9c:e1: ed:7d:0b:d7:86:13:91:de:f5:06:ea:e0:c6:5c:4f: 21:c1:07:cf:b8:3b:c0:07:cf:10:34:ff:34:94:b7: 39:1a:e1:5b:13:da:5a:3a:34:14:7d:c2:92:d7:4b: 1d:cb:87:0b:ab:ec:4c:00:f8:75:ce:d5:44:b8:f1: 5e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:D2:31:5D:E3:D4:0D:B4:6E:01:27:AF:54:8D:32:1C:AF:1E:9C:C5 X509v3 Authority Key Identifier: keyid:08:D0:7F:01:0D:A2:81:12:A9:4E:88:00:C3:17:B8:DF:7F:1A:BF:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/08D07F010DA28112A94E8800C317B8DF7F1ABF43.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08D07F010DA28112A94E8800C317B8DF7F1ABF43.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70c2a13b-1f40-4c03-bc35-f6961516d4d9/0/3130332e3134382e3139382e302f32342d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.198.0/24 Signature Algorithm: sha256WithRSAEncryption 89:f8:62:3f:8c:56:d7:31:fc:61:b2:a3:7e:71:81:85:ac:39: 0b:b4:2d:25:28:67:a7:de:e0:f5:54:b3:5c:e2:34:3d:86:cf: a5:14:0d:19:54:f3:e2:42:9f:8a:a5:79:30:be:8f:0f:2e:b5: 65:5b:4a:a8:22:1d:3a:fa:a4:3b:59:a4:ed:30:0c:41:67:50: 63:be:41:5c:60:d5:36:58:d4:45:b8:0c:c3:31:b2:6f:40:6c: b5:7a:19:da:2a:bb:19:23:d6:94:75:a6:84:2c:05:d8:fe:5a: d6:fb:91:4d:77:8e:b6:cb:b2:8a:b4:32:e1:83:08:c3:38:79: f6:74:78:38:12:a5:26:d0:bb:a8:b1:8c:48:30:47:d6:0a:76: ef:07:ac:9f:42:d0:5a:94:9b:f9:ec:de:54:9b:b0:8e:de:f8: eb:22:d8:f2:7c:c8:ba:9a:64:c2:e7:62:47:58:d3:57:cb:7e: 54:d5:52:24:45:0b:8d:43:a4:64:ca:e5:6e:98:5c:bc:e4:9c: 35:3c:08:cd:30:de:25:76:a4:f0:96:c3:38:30:6a:af:1d:07: 99:d9:c6:ca:ff:81:f4:84:62:2d:9e:9d:c2:b7:54:f7:a0:5f: 93:a3:03:26:f1:ae:36:ed:a5:37:a0:0c:a5:75:18:65:72:b8: 8d:f7:5f:23 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgITeIr8Ls8oJWE7YIdnpVRdKPDp3TANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEygwOEQwN0YwMTBEQTI4MTEyQTk0RTg4MDBDMzE3QjhERjdG MUFCRjQzMB4XDTI0MTAwMjAzNTgxOFoXDTI1MTAwMTA0MDMxOFowMzExMC8GA1UE AxMoRDFEMjMxNURFM0Q0MERCNDZFMDEyN0FGNTQ4RDMyMUNBRjFFOUNDNTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMwe9YxBMylliN/BI4gr/s5JqOLQ 4yQ65iO0kbTQaRohraTmz57rTdgJvKcWiYz160T730xoCSNg6ZRHGw49RPeZMs1S SWdi2mcQ17DTwG0m5Lktf3BSyKS7qIJN1jz5+6nz1dQiUDjXtOLUnwqmL4FyHgLo B+g/zfnDELprkD/SU+S/2TR8WkJrg0ikXY/+EbyhMVgyMPS/SCBEaECXLZo8ybdA rNoakimqjB6iWfBPbsXB2XSj0kizHjpEma+1nJzh7X0L14YTkd71BurgxlxPIcEH z7g7wAfPEDT/NJS3ORrhWxPaWjo0FH3CktdLHcuHC6vsTAD4dc7VRLjxXp0CAwEA AaOCAjIwggIuMB0GA1UdDgQWBBTR0jFd49QNtG4BJ69UjTIcrx6cxTAfBgNVHSME GDAWgBQI0H8BDaKBEqlOiADDF7jffxq/QzAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcw YzJhMTNiLTFmNDAtNGMwMy1iYzM1LWY2OTYxNTE2ZDRkOS8wLzA4RDA3RjAxMERB MjgxMTJBOTRFODgwMEMzMTdCOERGN0YxQUJGNDMuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi8wOEQwN0YwMTBEQTI4MTEyQTk0RTg4MDBDMzE3QjhERjdGMUFC RjQzLmNlcjCBogYIKwYBBQUHAQsEgZUwgZIwgY8GCCsGAQUFBzALhoGCcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzBjMmExM2ItMWY0MC00YzAzLWJj MzUtZjY5NjE1MTZkNGQ5LzAvMzEzMDMzMmUzMTM0MzgyZTMxMzkzODJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDM0MzgzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5TGMA0GCSqGSIb3 DQEBCwUAA4IBAQCJ+GI/jFbXMfxhsqN+cYGFrDkLtC0lKGen3uD1VLNc4jQ9hs+l FA0ZVPPiQp+KpXkwvo8PLrVlW0qoIh06+qQ7WaTtMAxBZ1BjvkFcYNU2WNRFuAzD MbJvQGy1ehnaKrsZI9aUdaaELAXY/lrW+5FNd462y7KKtDLhgwjDOHn2dHg4EqUm 0LuosYxIMEfWCnbvB6yfQtBalJv57N5Um7CO3vjrItjyfMi6mmTC52JHWNNXy35U 1VIkRQuNQ6RkyuVumFy85Jw1PAjNMN4ldqTwlsM4MGqvHQeZ2cbK/4H0hGItnp3C t1T3oF+TowMm8a427aU3oAyldRhlcriN918j -----END CERTIFICATE-----Generated at Mon Nov 25 04:52:35 2024 by rpki-client on console-fra.rpki-client.org