$ rpki-client -vvf repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3130392e302f32342d3234203d3e203538383139.roa File: 3130332e3234302e3130392e302f32342d3234203d3e203538383139.roa (raw, json) Hash identifier: 5nvoiGj4OjH2+HTzWQu4bmTNWJXJYHQTVDrsbt8AseA= Subject key identifier: 00:E8:B3:1F:75:1E:28:2A:E5:D5:D6:91:48:24:02:07:64:A7:F8:6A Certificate issuer: /CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7 Certificate serial: 710FBAFCFB84A4C5CA796E2FCBA157794AD54176 Authority key identifier: F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3130392e302f32342d3234203d3e203538383139.roa Signing time: Thu 07 Nov 2024 12:00:57 +0000 ROA not before: Thu 07 Nov 2024 11:55:57 +0000 ROA not after: Thu 06 Nov 2025 12:00:57 +0000 asID: 58819 IP address blocks: 103.240.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:0f:ba:fc:fb:84:a4:c5:ca:79:6e:2f:cb:a1:57:79:4a:d5:41:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7 Validity Not Before: Nov 7 11:55:57 2024 GMT Not After : Nov 6 12:00:57 2025 GMT Subject: CN=00E8B31F751E282AE5D5D6914824020764A7F86A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f4:62:9e:c6:a6:46:ff:d2:de:87:75:95:a2: 56:d3:3e:86:ee:f4:7b:f5:6f:0b:36:03:61:cc:c0: be:0a:f2:a7:0b:e3:79:d7:e0:2e:95:5d:82:de:a4: f7:fc:b9:a9:65:a4:2c:f7:2a:00:cf:84:1f:91:8d: 0b:b8:8f:82:6e:56:98:b0:2d:26:5e:23:23:39:af: fc:96:23:c2:15:48:cc:b7:51:1a:c1:9b:b0:9b:0a: c0:18:af:79:2d:a7:8b:f7:93:87:13:2c:54:aa:ec: 8f:da:bf:7d:d0:01:28:6b:d1:4a:84:89:37:6b:17: e3:da:63:4a:29:95:01:5b:92:5c:97:9f:9c:c2:78: 79:90:19:4e:59:c8:6b:08:6a:1c:85:dc:10:e9:48: e0:35:63:7e:e6:64:b3:15:33:19:f9:62:24:a3:7c: 48:75:e9:78:46:7e:28:31:5b:aa:d3:ec:bd:5f:76: a9:a3:a6:c2:b6:00:b0:46:df:72:f1:c8:82:b0:a6: af:5f:18:f1:27:02:4b:04:9a:d8:9c:8e:4e:b0:85: 4d:95:54:ac:bc:4a:c9:38:bf:2e:fa:04:2d:0a:b5: fe:8f:ca:a5:89:02:25:94:33:3d:c6:b5:d0:10:8d: 5d:b5:87:ce:12:45:e1:57:60:aa:ea:37:11:40:a2: fb:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:E8:B3:1F:75:1E:28:2A:E5:D5:D6:91:48:24:02:07:64:A7:F8:6A X509v3 Authority Key Identifier: keyid:F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3130392e302f32342d3234203d3e203538383139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.240.109.0/24 Signature Algorithm: sha256WithRSAEncryption bc:f1:a6:d0:ab:35:f6:dc:35:e6:87:7e:e7:74:fc:d1:a3:f5: 9e:cd:67:6b:27:49:20:3c:49:c7:f4:e3:f5:68:80:06:23:07: a9:c5:db:a7:83:f9:05:64:d8:0f:d3:cf:ba:b0:3d:58:23:70: b5:99:01:cc:34:1d:16:13:ac:5f:01:29:99:97:2f:94:c9:ac: 2e:f3:be:0e:a8:bf:69:6a:c8:12:8c:39:92:2a:c1:3a:74:f7: 56:46:80:e5:f5:ab:da:7d:45:ea:de:1e:6d:91:5f:4b:46:bc: 09:6c:73:21:87:77:2c:f7:ba:8f:9f:c4:00:e9:26:31:af:e7: 94:d3:bf:8e:7f:e1:b7:10:e3:95:c6:ac:1b:c1:b4:33:8f:05: 34:f4:1d:12:3b:01:1b:3e:fd:0d:67:b1:bd:f8:ec:43:0f:d2: 02:15:05:7b:ed:d6:09:02:ed:52:f8:b6:2b:a0:d8:48:4b:7f: d4:76:96:7c:24:89:b1:17:96:f4:e8:38:2a:56:91:4d:56:53: 98:75:af:5d:68:db:fb:04:00:a7:8d:4c:ae:ad:89:b2:27:d3: 76:96:3a:78:14:e5:45:54:86:d0:a2:3d:f0:76:17:37:77:19: 48:54:29:b5:ac:e8:d0:fa:33:d9:2a:63:21:43:57:04:c7:80: b7:5b:eb:a3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUcQ+6/PuEpMXKeW4vy6FXeUrVQXYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkx QkJCOTJGNzAeFw0yNDExMDcxMTU1NTdaFw0yNTExMDYxMjAwNTdaMDMxMTAvBgNV BAMTKDAwRThCMzFGNzUxRTI4MkFFNUQ1RDY5MTQ4MjQwMjA3NjRBN0Y4NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF9GKexqZG/9Leh3WVolbTPobu 9Hv1bws2A2HMwL4K8qcL43nX4C6VXYLepPf8uallpCz3KgDPhB+RjQu4j4JuVpiw LSZeIyM5r/yWI8IVSMy3URrBm7CbCsAYr3ktp4v3k4cTLFSq7I/av33QAShr0UqE iTdrF+PaY0oplQFbklyXn5zCeHmQGU5ZyGsIahyF3BDpSOA1Y37mZLMVMxn5YiSj fEh16XhGfigxW6rT7L1fdqmjpsK2ALBG33LxyIKwpq9fGPEnAksEmticjk6whU2V VKy8Ssk4vy76BC0Ktf6PyqWJAiWUMz3GtdAQjV21h84SReFXYKrqNxFAovvTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUAOizH3UeKCrl1daRSCQCB2Sn+GowHwYDVR0j BBgwFoAU+N9A5Mlfnr+BRThwc2mV6Ru7kvcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDAzYWYwMS1mMjM5LTRhMWYtODFjZC00MTA2YmViYjJhMjIvMC9GOERGNDBFNEM5 NUY5RUJGODE0NTM4NzA3MzY5OTVFOTFCQkI5MkY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkxQkJC OTJGNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMDNhZjAxLWYyMzktNGExZi04 MWNkLTQxMDZiZWJiMmEyMi8wLzMxMzAzMzJlMzIzNDMwMmUzMTMwMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzgzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/BtMA0GCSqG SIb3DQEBCwUAA4IBAQC88abQqzX23DXmh37ndPzRo/WezWdrJ0kgPEnH9OP1aIAG Iwepxdung/kFZNgP08+6sD1YI3C1mQHMNB0WE6xfASmZly+Uyawu874OqL9pasgS jDmSKsE6dPdWRoDl9avafUXq3h5tkV9LRrwJbHMhh3cs97qPn8QA6SYxr+eU07+O f+G3EOOVxqwbwbQzjwU09B0SOwEbPv0NZ7G9+OxDD9ICFQV77dYJAu1S+LYroNhI S3/UdpZ8JImxF5b06DgqVpFNVlOYda9daNv7BACnjUyurYmyJ9N2ljp4FOVFVIbQ oj3wdhc3dxlIVCm1rOjQ+jPZKmMhQ1cEx4C3W+uj -----END CERTIFICATE-----Generated at Wed Nov 20 18:59:26 2024 by rpki-client on console-ams.rpki-client.org