$ rpki-client -vvf repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa File: 3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa (raw, json) Hash identifier: 9LNgGVv86zEnKjQNsGSTYEvVvGQkNogYzW1V+EdhwJM= Subject key identifier: 71:58:78:E3:94:B3:9B:5B:B5:9C:B2:E7:92:D5:E5:A3:0E:BA:7B:E2 Certificate issuer: /CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Certificate serial: 3DC8AACC41EB3AEC875EE36ED8F3C1D14EE91DF7 Authority key identifier: 0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa Signing time: Fri 02 Aug 2024 03:42:04 +0000 ROA not before: Fri 02 Aug 2024 03:37:04 +0000 ROA not after: Fri 01 Aug 2025 03:42:04 +0000 asID: 140421 IP address blocks: 103.148.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:c8:aa:cc:41:eb:3a:ec:87:5e:e3:6e:d8:f3:c1:d1:4e:e9:1d:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Validity Not Before: Aug 2 03:37:04 2024 GMT Not After : Aug 1 03:42:04 2025 GMT Subject: CN=715878E394B39B5BB59CB2E792D5E5A30EBA7BE2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:85:fe:18:15:8c:14:db:b1:fb:fa:48:e9:8d: d1:69:37:03:54:10:ef:56:2f:18:00:e2:4a:be:18: 50:c6:78:72:3e:f5:62:90:06:25:87:f8:75:ea:b8: c9:2a:0c:f9:47:11:17:49:4d:12:ee:37:76:87:09: d7:ed:31:b6:2c:ad:9a:29:ef:d9:05:c5:3e:9f:ba: 97:dd:e2:3d:45:9a:05:5b:db:a9:64:75:43:92:db: a6:7b:2c:e5:26:32:4c:7a:ee:c2:a1:1f:49:e8:4e: 9c:33:a4:b5:ba:24:9f:27:4c:e1:aa:15:8c:1e:28: 07:12:54:6d:e2:05:83:c1:dd:6f:31:ad:f5:6c:a8: 3e:f9:9e:fd:be:ac:08:2f:24:50:b2:a7:13:c8:16: 56:be:49:fe:99:26:e3:c0:35:28:ea:b8:a2:bc:c3: 52:c7:f0:90:24:2b:6f:63:35:b5:04:90:7c:36:a1: dc:13:6e:9b:17:df:eb:2e:ce:3d:2f:d7:5e:42:e5: f3:2c:7b:df:b5:f0:87:d0:fe:c7:77:8f:e5:2c:6f: 11:90:c5:0f:9c:c1:60:23:8a:37:71:c1:91:6a:a4: 57:68:4e:77:b7:8e:91:a3:f5:fd:47:20:21:49:12: 95:3f:12:34:25:a7:d0:f7:15:f8:29:3f:09:66:81: 22:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:58:78:E3:94:B3:9B:5B:B5:9C:B2:E7:92:D5:E5:A3:0E:BA:7B:E2 X509v3 Authority Key Identifier: keyid:0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.89.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:12:3d:86:42:61:96:f8:60:f3:2d:d3:b3:4b:38:43:19:ba: 76:90:9d:db:bf:98:6c:8a:eb:d9:a2:d2:bf:9c:78:ac:dd:2b: 8a:cd:57:2d:2d:8d:ef:30:1c:0a:40:f3:c5:7a:31:99:6c:f7: 16:9d:66:be:c0:4d:9f:3a:6e:aa:5d:b2:71:f3:91:55:a1:b7: 20:43:96:cb:cb:61:06:11:d7:0e:25:f2:27:8f:f7:db:8e:8d: 7c:e6:c0:99:b9:ec:9c:89:ac:d2:c4:1b:06:48:8a:23:60:a5: 1d:63:1b:27:8f:92:47:3c:63:56:10:a6:d8:51:7f:dc:52:ea: 47:be:e8:41:1c:aa:fd:29:3b:9d:df:f7:98:48:14:8a:eb:4e: 05:fd:5f:38:2f:bb:14:8d:b7:02:cd:9c:f5:03:ce:ac:95:bb: 89:af:2a:0f:c9:08:ba:18:e4:d9:de:be:44:ba:ef:5a:a4:c4: 97:fe:31:95:ec:d7:5a:62:30:85:24:3a:e9:37:bd:97:91:34: 30:31:14:06:d5:34:9d:3c:27:f4:6b:a1:a5:b4:f4:01:20:ad: 93:23:00:bc:93:2b:cc:35:14:9e:b3:29:26:67:dd:26:77:3e: 16:18:be:a8:3e:23:d7:75:05:4b:68:4e:8d:bb:30:a4:4f:9e: 9c:9a:0d:a9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPciqzEHrOuyHXuNu2PPB0U7pHfcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0 NDk3QkZFMzAeFw0yNDA4MDIwMzM3MDRaFw0yNTA4MDEwMzQyMDRaMDMxMTAvBgNV BAMTKDcxNTg3OEUzOTRCMzlCNUJCNTlDQjJFNzkyRDVFNUEzMEVCQTdCRTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDghf4YFYwU27H7+kjpjdFpNwNU EO9WLxgA4kq+GFDGeHI+9WKQBiWH+HXquMkqDPlHERdJTRLuN3aHCdftMbYsrZop 79kFxT6fupfd4j1FmgVb26lkdUOS26Z7LOUmMkx67sKhH0noTpwzpLW6JJ8nTOGq FYweKAcSVG3iBYPB3W8xrfVsqD75nv2+rAgvJFCypxPIFla+Sf6ZJuPANSjquKK8 w1LH8JAkK29jNbUEkHw2odwTbpsX3+suzj0v115C5fMse9+18IfQ/sd3j+UsbxGQ xQ+cwWAjijdxwZFqpFdoTne3jpGj9f1HICFJEpU/EjQlp9D3FfgpPwlmgSK5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcVh445Szm1u1nLLnktXlow66e+IwHwYDVR0j BBgwFoAUC7TpUniaxQL6DPuVwuA/Q0SXv+MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjcyZWNhNC03M2FkLTRlMGItYTZhNi03YTY1Njk4YjczYmUvMC8wQkI0RTk1Mjc4 OUFDNTAyRkEwQ0ZCOTVDMkUwM0Y0MzQ0OTdCRkUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0NDk3 QkZFMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiNzJlY2E0LTczYWQtNGUwYi1h NmE2LTdhNjU2OThiNzNiZS8wLzMxMzAzMzJlMzEzNDM4MmUzODM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5RZMA0GCSqG SIb3DQEBCwUAA4IBAQAuEj2GQmGW+GDzLdOzSzhDGbp2kJ3bv5hsiuvZotK/nHis 3SuKzVctLY3vMBwKQPPFejGZbPcWnWa+wE2fOm6qXbJx85FVobcgQ5bLy2EGEdcO JfInj/fbjo185sCZueyciazSxBsGSIojYKUdYxsnj5JHPGNWEKbYUX/cUupHvuhB HKr9KTud3/eYSBSK604F/V84L7sUjbcCzZz1A86slbuJryoPyQi6GOTZ3r5Euu9a pMSX/jGV7NdaYjCFJDrpN72XkTQwMRQG1TSdPCf0a6GltPQBIK2TIwC8kyvMNRSe sykmZ90mdz4WGL6oPiPXdQVLaE6NuzCkT56cmg2p -----END CERTIFICATE-----Generated at Sun Nov 24 06:43:22 2024 by rpki-client on console-fra.rpki-client.org