$ rpki-client -vvf repo-rpki.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/3130332e31322e3131322e302f32322d3234203d3e20313331373238.roa File: 3130332e31322e3131322e302f32322d3234203d3e20313331373238.roa (raw, json) Hash identifier: bH92U5NrTFmTgtLkiA8DUyLThOx29Dl50vw3pADlnd0= Subject key identifier: 80:D5:BE:E8:EA:49:BC:61:6E:3A:16:28:12:FB:96:17:B9:21:E1:38 Certificate issuer: /CN=DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4 Certificate serial: 326085F7244629EB9805CD3EE4B39452011593E4 Authority key identifier: DB:72:5E:AC:2D:D1:E6:2B:7A:02:C5:4A:61:8D:7A:01:B9:58:E4:C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/3130332e31322e3131322e302f32322d3234203d3e20313331373238.roa Signing time: Mon 22 Apr 2024 05:06:48 +0000 ROA not before: Mon 22 Apr 2024 05:01:48 +0000 ROA not after: Mon 21 Apr 2025 05:06:48 +0000 asID: 131728 IP address blocks: 103.12.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4.crl rsync://repo-rpki.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:60:85:f7:24:46:29:eb:98:05:cd:3e:e4:b3:94:52:01:15:93:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4 Validity Not Before: Apr 22 05:01:48 2024 GMT Not After : Apr 21 05:06:48 2025 GMT Subject: CN=80D5BEE8EA49BC616E3A162812FB9617B921E138 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:70:de:c7:40:c0:81:fb:41:18:5b:e4:8f:50: 44:ac:2f:bf:d6:78:f3:84:e2:11:87:04:ca:90:83: a6:89:dc:78:ad:95:72:3e:d8:29:e5:d3:17:02:d0: ea:5b:39:17:d5:6e:00:a1:23:22:66:18:be:dd:75: fa:91:26:77:f7:d4:15:25:b6:41:aa:d6:67:06:b8: 51:39:48:70:4c:f5:4a:0c:73:86:c2:95:95:3d:d5: a7:20:e3:43:dc:16:6e:09:21:8e:c2:15:cb:78:21: f5:07:2e:46:8d:cb:76:b8:8c:d3:9c:e7:d5:c8:76: ba:0b:ef:0e:ac:51:3e:36:db:93:e9:ae:01:61:8f: ec:4b:fa:b3:59:cc:f6:ba:9e:06:ae:65:ff:56:59: 68:29:f4:f2:af:c6:61:3e:06:d2:e8:8e:fb:3b:36: 2c:ad:1c:73:c8:f1:f5:4e:48:87:fe:70:04:25:7b: 5a:de:83:dd:fe:cc:72:fb:64:ed:34:97:3d:10:00: 7c:81:38:6b:79:8a:eb:19:47:ed:41:1a:62:a8:23: ee:03:22:f0:41:f4:22:86:af:05:44:a9:eb:25:37: 8a:74:d8:68:eb:69:b3:fe:7c:c6:55:b0:fe:8f:5b: 70:15:e4:07:4d:47:0a:d7:1a:4e:5b:ba:f8:9b:b1: e1:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:D5:BE:E8:EA:49:BC:61:6E:3A:16:28:12:FB:96:17:B9:21:E1:38 X509v3 Authority Key Identifier: keyid:DB:72:5E:AC:2D:D1:E6:2B:7A:02:C5:4A:61:8D:7A:01:B9:58:E4:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DB725EAC2DD1E62B7A02C54A618D7A01B958E4C4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8015a855-b29c-4502-af81-cbb8b4f7f0f7/0/3130332e31322e3131322e302f32322d3234203d3e20313331373238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.12.112.0/22 Signature Algorithm: sha256WithRSAEncryption 97:2f:a0:9d:18:0e:1c:95:8d:2c:15:b4:10:86:83:72:44:d0: 26:38:2e:2f:f4:42:21:4f:ba:eb:95:19:69:c5:73:b4:37:c5: 12:1e:6d:a4:12:66:9c:f9:e2:d1:28:25:8a:0d:26:cf:6b:17: 13:8b:4b:b8:88:cd:40:b0:97:7f:c9:00:41:16:46:24:cb:e1: 1a:e9:73:ea:fd:30:0b:51:c4:d0:56:d3:5d:ae:0e:d4:eb:74: 6a:4e:60:08:9b:32:4d:30:bb:e1:cb:83:be:5e:d2:d0:b8:19: 59:30:45:e1:8a:1c:c3:f1:a7:73:68:fa:87:a4:38:8d:08:d1: 00:59:e6:09:24:81:ab:f7:f2:58:05:fa:c9:8c:9c:ed:ce:93: 4c:2b:03:36:78:a1:10:4b:c2:5b:87:41:84:8c:4f:d5:96:27: 35:d9:3d:0c:8c:03:a5:8f:5b:0d:26:27:02:c5:4d:df:86:8c: 0a:cb:1d:15:75:95:c2:90:e9:32:1e:26:64:61:bc:18:6b:c8: 9e:5d:ba:52:63:f3:b3:7f:31:04:a8:34:77:cb:bf:d0:99:b4: 39:1b:9c:4b:77:d4:fa:23:bc:76:6e:f5:7d:b7:29:e1:58:cc: 8f:60:a1:69:1f:4f:9c:6e:b8:67:16:7e:2d:ff:0d:91:cb:e8: 40:53:99:c3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMmCF9yRGKeuYBc0+5LOUUgEVk+QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREI3MjVFQUMyREQxRTYyQjdBMDJDNTRBNjE4RDdBMDFC OTU4RTRDNDAeFw0yNDA0MjIwNTAxNDhaFw0yNTA0MjEwNTA2NDhaMDMxMTAvBgNV BAMTKDgwRDVCRUU4RUE0OUJDNjE2RTNBMTYyODEyRkI5NjE3QjkyMUUxMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhcN7HQMCB+0EYW+SPUESsL7/W ePOE4hGHBMqQg6aJ3HitlXI+2Cnl0xcC0OpbORfVbgChIyJmGL7ddfqRJnf31BUl tkGq1mcGuFE5SHBM9UoMc4bClZU91acg40PcFm4JIY7CFct4IfUHLkaNy3a4jNOc 59XIdroL7w6sUT4225PprgFhj+xL+rNZzPa6ngauZf9WWWgp9PKvxmE+BtLojvs7 NiytHHPI8fVOSIf+cAQle1reg93+zHL7ZO00lz0QAHyBOGt5iusZR+1BGmKoI+4D IvBB9CKGrwVEqeslN4p02GjrabP+fMZVsP6PW3AV5AdNRwrXGk5buvibseE3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgNW+6OpJvGFuOhYoEvuWF7kh4TgwHwYDVR0j BBgwFoAU23JerC3R5it6AsVKYY16AblY5MQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MDE1YTg1NS1iMjljLTQ1MDItYWY4MS1jYmI4YjRmN2YwZjcvMC9EQjcyNUVBQzJE RDFFNjJCN0EwMkM1NEE2MThEN0EwMUI5NThFNEM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREI3MjVFQUMyREQxRTYyQjdBMDJDNTRBNjE4RDdBMDFCOTU4 RTRDNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgwMTVhODU1LWIyOWMtNDUwMi1h ZjgxLWNiYjhiNGY3ZjBmNy8wLzMxMzAzMzJlMzEzMjJlMzEzMTMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZwxwMA0GCSqG SIb3DQEBCwUAA4IBAQCXL6CdGA4clY0sFbQQhoNyRNAmOC4v9EIhT7rrlRlpxXO0 N8USHm2kEmac+eLRKCWKDSbPaxcTi0u4iM1AsJd/yQBBFkYky+Ea6XPq/TALUcTQ VtNdrg7U63RqTmAImzJNMLvhy4O+XtLQuBlZMEXhihzD8adzaPqHpDiNCNEAWeYJ JIGr9/JYBfrJjJztzpNMKwM2eKEQS8Jbh0GEjE/Vlic12T0MjAOlj1sNJicCxU3f howKyx0VdZXCkOkyHiZkYbwYa8ieXbpSY/OzfzEEqDR3y7/QmbQ5G5xLd9T6I7x2 bvV9tynhWMyPYKFpH0+cbrhnFn4t/w2Ry+hAU5nD -----END CERTIFICATE-----Generated at Sun Nov 24 18:33:16 2024 by rpki-client on console-fra.rpki-client.org