$ rpki-client -vvf repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133392e302f32342d3234203d3e203137363731.roa File: 3130332e31302e3133392e302f32342d3234203d3e203137363731.roa (raw, json) Hash identifier: uvhQujoBOLgKHpWkQpNO2OeiNQQaNYCvYkfttb/TkPs= Subject key identifier: 19:3F:42:19:16:80:D4:98:DB:17:E1:BD:5E:10:D4:C4:64:FE:5C:83 Certificate issuer: /CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Certificate serial: 018B38209E68060E6EB2DCF57B519F11561642EA Authority key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133392e302f32342d3234203d3e203137363731.roa Signing time: Thu 13 Jun 2024 11:00:02 +0000 ROA not before: Thu 13 Jun 2024 10:55:02 +0000 ROA not after: Thu 12 Jun 2025 11:00:02 +0000 asID: 17671 IP address blocks: 103.10.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:8b:38:20:9e:68:06:0e:6e:b2:dc:f5:7b:51:9f:11:56:16:42:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Validity Not Before: Jun 13 10:55:02 2024 GMT Not After : Jun 12 11:00:02 2025 GMT Subject: CN=193F42191680D498DB17E1BD5E10D4C464FE5C83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:58:9e:5a:a6:2d:b2:6e:7c:87:29:93:cf:c7: d2:fd:f5:09:c1:02:6e:04:ed:2e:29:3c:50:ff:ad: d8:88:d3:93:88:dd:af:d8:58:76:8d:ef:21:a8:6e: 86:60:10:30:0c:1c:93:ff:73:4f:6a:89:e9:bd:97: 91:30:b9:63:17:b4:75:7d:95:0b:fc:11:26:32:62: a8:6c:78:a8:81:49:87:de:09:c3:99:89:a8:64:c0: e7:f5:1c:e2:0f:17:9e:cb:24:5b:f8:9e:b3:7f:5f: 1f:d3:d1:20:30:ad:8e:37:58:a7:2f:f3:80:56:49: 0c:e7:48:51:ff:6c:62:fb:d0:e7:f5:c0:4f:6e:aa: 94:b6:69:f6:03:3f:0e:6c:01:cd:d9:18:0e:5c:2b: e7:88:fa:72:47:e2:ba:6d:4b:30:8d:79:41:9c:e9: 1d:9e:e7:ed:aa:19:a7:7a:1e:d9:3b:63:e4:99:b3: 21:cf:51:ab:8f:a5:ea:29:08:f2:90:cc:0b:41:82: d0:d4:e1:f5:b3:3e:69:91:8c:2f:f8:c4:58:c6:2f: c5:db:eb:c1:14:f4:c6:76:38:2a:c1:35:f1:e8:af: 0b:37:71:e8:74:c7:d6:e3:b2:d8:3d:07:c5:22:75: 5c:14:b8:61:ac:e0:fd:50:de:77:96:d9:59:23:d8: fb:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:3F:42:19:16:80:D4:98:DB:17:E1:BD:5E:10:D4:C4:64:FE:5C:83 X509v3 Authority Key Identifier: keyid:D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/3130332e31302e3133392e302f32342d3234203d3e203137363731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.139.0/24 Signature Algorithm: sha256WithRSAEncryption 59:0d:8e:1a:9d:da:bf:21:c9:b2:55:56:42:60:1e:4a:40:c0: e6:7a:93:9e:99:e7:b2:78:82:97:a6:2f:8b:d9:35:9e:13:d6: f0:9c:71:1d:12:b7:e5:85:2d:d2:32:a5:09:09:56:21:f0:a8: d5:60:7f:34:ff:6a:4a:31:ae:0a:6c:72:db:79:19:df:91:d3: 56:39:7f:2c:ee:06:63:1c:b2:6c:de:3b:74:61:f0:0c:fd:02: 79:0c:6a:7b:5c:11:0f:94:9c:bf:6a:99:5c:cf:52:2c:f5:8a: d1:94:4e:da:eb:58:20:fe:d8:05:a7:c7:37:4a:93:c4:70:26: fb:22:23:34:ee:15:b7:ab:7e:97:c0:78:2b:84:07:5b:5e:a1: 46:57:55:60:2b:6a:f7:88:8e:a1:06:7f:a2:b2:9e:b5:84:76: c5:83:2e:3f:c9:8f:c8:d5:d0:95:cd:72:c1:e7:af:55:1c:04: e9:e8:d3:7b:ca:74:ee:a6:0c:cb:54:1c:b0:59:4e:ca:55:7d: 5a:61:2e:7a:54:cb:2d:4d:a3:21:59:01:fb:a6:8e:1b:35:db: ac:06:46:72:6b:75:ae:5a:f5:e6:60:93:27:a2:a2:6a:9d:20: 9a:bc:7d:09:ae:b1:e7:3c:bc:43:75:71:2a:ee:c6:af:e7:73: 7c:82:c4:ed -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAYs4IJ5oBg5ustz1e1GfEVYWQuowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIw NTY0QUIyNTAeFw0yNDA2MTMxMDU1MDJaFw0yNTA2MTIxMTAwMDJaMDMxMTAvBgNV BAMTKDE5M0Y0MjE5MTY4MEQ0OThEQjE3RTFCRDVFMTBENEM0NjRGRTVDODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7WJ5api2ybnyHKZPPx9L99QnB Am4E7S4pPFD/rdiI05OI3a/YWHaN7yGoboZgEDAMHJP/c09qiem9l5EwuWMXtHV9 lQv8ESYyYqhseKiBSYfeCcOZiahkwOf1HOIPF57LJFv4nrN/Xx/T0SAwrY43WKcv 84BWSQznSFH/bGL70Of1wE9uqpS2afYDPw5sAc3ZGA5cK+eI+nJH4rptSzCNeUGc 6R2e5+2qGad6Htk7Y+SZsyHPUauPpeopCPKQzAtBgtDU4fWzPmmRjC/4xFjGL8Xb 68EU9MZ2OCrBNfHorws3ceh0x9bjstg9B8UidVwUuGGs4P1Q3neW2Vkj2PslAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUGT9CGRaA1JjbF+G9XhDUxGT+XIMwHwYDVR0j BBgwFoAU0MkEB8zVNxff6iHVGokh8gVkqyUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMC9EMEM5MDQwN0ND RDUzNzE3REZFQTIxRDUxQTg5MjFGMjA1NjRBQjI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBDOTA0MDdDQ0Q1MzcxN0RGRUEyMUQ1MUE4OTIxRjIwNTY0 QUIyNS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2LWZlMmEtNDkxYi1h YWM4LTIyMGVhZDBiNTRlMi8wLzMxMzAzMzJlMzEzMDJlMzEzMzM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNzM2MzczMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcKizANBgkqhkiG 9w0BAQsFAAOCAQEAWQ2OGp3avyHJslVWQmAeSkDA5nqTnpnnsniCl6Yvi9k1nhPW 8JxxHRK35YUt0jKlCQlWIfCo1WB/NP9qSjGuCmxy23kZ35HTVjl/LO4GYxyybN47 dGHwDP0CeQxqe1wRD5Scv2qZXM9SLPWK0ZRO2utYIP7YBafHN0qTxHAm+yIjNO4V t6t+l8B4K4QHW16hRldVYCtq94iOoQZ/orKetYR2xYMuP8mPyNXQlc1yweevVRwE 6ejTe8p07qYMy1QcsFlOylV9WmEuelTLLU2jIVkB+6aOGzXbrAZGcmt1rlr15mCT J6Kiap0gmrx9Ca6x5zy8Q3VxKu7Gr+dzfILE7Q== -----END CERTIFICATE-----Generated at Sun Nov 24 20:07:39 2024 by rpki-client on console-ams.rpki-client.org