$ rpki-client -vvf repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/3130332e3134382e38382e302f32332d3233203d3e20313430343231.roa File: 3130332e3134382e38382e302f32332d3233203d3e20313430343231.roa (raw, json) Hash identifier: i5RZxjcZhVQvmnAc/gMhyUIUY8n5jdbL7g9L8hbgD/Y= Subject key identifier: 3C:73:71:F7:11:40:BF:9B:99:3C:0C:2D:12:ED:11:D1:EE:A6:46:3C Certificate issuer: /CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Certificate serial: 43CE6271AB059FAEA5FA060040FE4E6CEF5EF266 Authority key identifier: 0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/3130332e3134382e38382e302f32332d3233203d3e20313430343231.roa Signing time: Tue 06 Aug 2024 04:12:10 +0000 ROA not before: Tue 06 Aug 2024 04:07:10 +0000 ROA not after: Tue 05 Aug 2025 04:12:10 +0000 asID: 140421 IP address blocks: 103.148.88.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:ce:62:71:ab:05:9f:ae:a5:fa:06:00:40:fe:4e:6c:ef:5e:f2:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Validity Not Before: Aug 6 04:07:10 2024 GMT Not After : Aug 5 04:12:10 2025 GMT Subject: CN=3C7371F71140BF9B993C0C2D12ED11D1EEA6463C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ef:bd:7b:17:c9:32:f2:85:0a:8e:ab:46:92: fb:35:b3:f8:5c:9a:a6:be:ce:32:b9:89:70:17:0b: 79:2a:6a:fc:04:e6:b1:3c:f5:15:bb:b2:8d:85:f8: 8c:fb:1d:ff:03:03:79:d7:29:88:e1:aa:4b:09:0f: b2:57:51:20:82:b5:34:66:df:d5:58:eb:03:3a:77: 2e:0a:13:ba:5e:76:b8:5c:86:88:57:65:34:9b:a7: ff:d3:32:cc:94:ce:f3:d5:b4:0c:c0:1e:6c:b7:fc: 37:18:5b:45:c0:fd:b8:e9:82:b0:05:44:d1:97:00: 9d:5d:22:5b:b3:33:77:b2:58:2b:f3:2d:73:db:16: 5e:68:33:43:c8:e3:c9:63:49:8f:77:60:43:1c:70: 1b:ea:62:54:75:e5:5d:49:b4:8e:a0:5a:2a:75:12: a9:2a:d8:44:eb:57:29:50:fc:27:51:bd:15:01:d5: 57:4a:97:12:a1:bb:d2:dd:cb:04:36:c3:00:f4:de: 2d:c9:44:ff:9c:a9:51:90:65:99:44:51:89:99:11: 85:8a:b0:66:ac:01:92:d1:52:99:3d:1f:20:b0:62: 21:6a:de:c3:30:b3:f6:7e:ae:05:bb:fb:c0:a3:c4: 8d:48:ea:5a:e7:80:c5:82:4c:1e:9e:a4:c5:d1:4a: d9:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:73:71:F7:11:40:BF:9B:99:3C:0C:2D:12:ED:11:D1:EE:A6:46:3C X509v3 Authority Key Identifier: keyid:0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/3130332e3134382e38382e302f32332d3233203d3e20313430343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.88.0/23 Signature Algorithm: sha256WithRSAEncryption a9:b9:37:97:45:63:e7:07:f7:07:84:41:fb:0e:c4:85:ae:03: 82:ad:56:da:a1:eb:bf:cf:88:c0:c1:ab:c3:bf:13:9e:9c:37: a0:12:f7:5d:34:1f:e5:cc:2c:71:61:45:31:b8:ef:8a:14:c2: 84:ce:8c:a7:17:e9:ee:65:02:30:0b:d7:68:70:1c:d1:90:7b: b2:18:8b:59:f1:6c:95:dc:04:51:d7:fd:5d:2e:03:82:36:8f: e1:ed:f4:8b:9d:13:9b:d4:9a:4f:66:13:85:78:80:24:c9:af: 41:d0:24:e8:cb:43:91:41:1d:31:d8:64:0c:46:ff:8d:a8:da: ed:0a:4c:1b:e4:d5:04:38:50:35:f4:56:ff:2b:5f:c6:aa:40: 9d:a0:bd:19:d2:ad:0f:58:17:12:ab:6c:51:82:50:cc:aa:4e: 41:23:9b:c9:2d:82:b9:3b:4a:fb:15:6d:b7:98:18:57:7b:ff: 46:f7:e6:4c:21:2d:80:a4:74:39:0f:27:1d:c0:ea:68:2b:87: d0:1e:ce:41:b2:9e:c6:fe:fd:8f:53:25:e6:c9:b7:06:f2:db: b7:2d:0e:29:b0:b5:20:28:f5:84:90:5c:e3:af:6a:a8:3b:11: 4d:3f:47:15:83:7a:37:8b:9e:a7:da:d2:4e:0d:e0:55:17:65: 41:60:a3:d9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQ85icasFn66l+gYAQP5ObO9e8mYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0 NDk3QkZFMzAeFw0yNDA4MDYwNDA3MTBaFw0yNTA4MDUwNDEyMTBaMDMxMTAvBgNV BAMTKDNDNzM3MUY3MTE0MEJGOUI5OTNDMEMyRDEyRUQxMUQxRUVBNjQ2M0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC57717F8ky8oUKjqtGkvs1s/hc mqa+zjK5iXAXC3kqavwE5rE89RW7so2F+Iz7Hf8DA3nXKYjhqksJD7JXUSCCtTRm 39VY6wM6dy4KE7pedrhchohXZTSbp//TMsyUzvPVtAzAHmy3/DcYW0XA/bjpgrAF RNGXAJ1dIluzM3eyWCvzLXPbFl5oM0PI48ljSY93YEMccBvqYlR15V1JtI6gWip1 Eqkq2ETrVylQ/CdRvRUB1VdKlxKhu9LdywQ2wwD03i3JRP+cqVGQZZlEUYmZEYWK sGasAZLRUpk9HyCwYiFq3sMws/Z+rgW7+8CjxI1I6lrngMWCTB6epMXRStnfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPHNx9xFAv5uZPAwtEu0R0e6mRjwwHwYDVR0j BBgwFoAUC7TpUniaxQL6DPuVwuA/Q0SXv+MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjcyZWNhNC03M2FkLTRlMGItYTZhNi03YTY1Njk4YjczYmUvMC8wQkI0RTk1Mjc4 OUFDNTAyRkEwQ0ZCOTVDMkUwM0Y0MzQ0OTdCRkUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0NDk3 QkZFMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiNzJlY2E0LTczYWQtNGUwYi1h NmE2LTdhNjU2OThiNzNiZS8wLzMxMzAzMzJlMzEzNDM4MmUzODM4MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5RYMA0GCSqG SIb3DQEBCwUAA4IBAQCpuTeXRWPnB/cHhEH7DsSFrgOCrVbaoeu/z4jAwavDvxOe nDegEvddNB/lzCxxYUUxuO+KFMKEzoynF+nuZQIwC9docBzRkHuyGItZ8WyV3ARR 1/1dLgOCNo/h7fSLnROb1JpPZhOFeIAkya9B0CToy0ORQR0x2GQMRv+NqNrtCkwb 5NUEOFA19Fb/K1/GqkCdoL0Z0q0PWBcSq2xRglDMqk5BI5vJLYK5O0r7FW23mBhX e/9G9+ZMIS2ApHQ5DycdwOpoK4fQHs5Bsp7G/v2PUyXmybcG8tu3LQ4psLUgKPWE kFzjr2qoOxFNP0cVg3o3i56n2tJODeBVF2VBYKPZ -----END CERTIFICATE-----Generated at Sun Nov 24 07:10:00 2024 by rpki-client on console-ams.rpki-client.org