$ rpki-client -vvf repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3131302e302f32342d3234203d3e203538383139.roa File: 3130332e3234302e3131302e302f32342d3234203d3e203538383139.roa (raw, json) Hash identifier: kInQZ6+a0szsE+89xOKFo2QCmfmxhWma36K3DO0bgYU= Subject key identifier: AE:7C:EA:19:F0:5F:BA:7B:04:48:D5:DC:88:4A:36:9E:D3:E5:29:73 Certificate issuer: /CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7 Certificate serial: 56A8C907185D4B09DAA5B7B2EE7359060DC8D8C8 Authority key identifier: F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3131302e302f32342d3234203d3e203538383139.roa Signing time: Thu 07 Nov 2024 13:00:01 +0000 ROA not before: Thu 07 Nov 2024 12:55:01 +0000 ROA not after: Thu 06 Nov 2025 13:00:01 +0000 asID: 58819 IP address blocks: 103.240.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 10:18:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:a8:c9:07:18:5d:4b:09:da:a5:b7:b2:ee:73:59:06:0d:c8:d8:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7 Validity Not Before: Nov 7 12:55:01 2024 GMT Not After : Nov 6 13:00:01 2025 GMT Subject: CN=AE7CEA19F05FBA7B0448D5DC884A369ED3E52973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c5:e5:52:e0:00:17:c6:7c:d2:65:8d:55:5e: d7:d5:34:cb:eb:b8:45:b0:98:45:d2:f4:47:db:e6: 32:ca:00:fe:b3:41:53:62:70:53:70:55:56:fd:7a: 04:dd:1a:9f:58:70:33:b8:e0:e3:50:c4:7d:63:9a: 3f:4e:81:15:9c:e8:a1:b9:9d:38:0b:49:78:28:bc: 50:b8:3d:89:2f:e5:2b:79:e7:8d:7c:da:75:7c:a1: 63:46:f1:63:ad:8f:71:0b:7a:17:1f:de:b7:69:15: bb:7b:9b:7e:0b:4c:87:1e:31:83:3c:9e:37:e5:ae: 8c:93:aa:94:cc:27:6f:02:80:4a:1f:b5:25:49:3c: 0d:8a:5c:8c:2e:b3:03:51:70:06:87:fb:41:f2:68: 6a:64:37:00:8f:a2:02:20:99:f4:6f:b4:f2:1a:0d: 43:c2:7d:e6:07:16:63:f6:74:fb:55:bb:91:1a:0b: 47:ea:fc:95:5e:0f:1e:99:78:ae:29:51:60:7e:19: 90:c1:16:06:d5:df:84:b6:50:e9:e8:41:7d:91:3e: 97:f6:fb:13:2e:9e:db:85:ea:9f:3f:84:18:2a:bb: c6:eb:86:c5:f8:8f:5b:3b:b1:1a:af:43:02:23:6e: 4f:6a:34:76:28:b9:26:40:5e:8c:9e:a1:33:48:02: 6b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:7C:EA:19:F0:5F:BA:7B:04:48:D5:DC:88:4A:36:9E:D3:E5:29:73 X509v3 Authority Key Identifier: keyid:F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3131302e302f32342d3234203d3e203538383139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.240.110.0/24 Signature Algorithm: sha256WithRSAEncryption 92:42:73:94:9d:28:0f:d0:f1:f4:6d:cb:5a:f0:60:cf:d3:4f: 55:a3:4b:47:ad:f4:38:80:30:4a:d2:6a:60:bf:6e:fd:31:79: 72:55:a9:dd:d3:d7:3a:ed:4b:88:1d:a4:ce:21:e1:42:0d:09: 74:2f:f0:51:4f:8d:16:50:24:46:a0:37:37:7c:b7:3a:8e:b4: 16:d2:2b:79:42:d6:20:5e:42:72:cb:89:f4:22:4c:a8:24:5d: 6b:32:2f:4f:45:2d:46:70:55:b8:c1:b8:13:4a:b2:c4:1c:b4: 72:92:1d:72:4e:3f:60:b8:df:8d:25:35:0c:43:7e:bc:02:45: 2f:dc:b6:a9:fe:b0:3b:54:a7:b0:e3:e7:80:ff:21:ad:e9:bf: 16:5a:89:6a:0e:2c:c6:b9:e0:81:c2:df:4a:a5:0d:fe:21:2f: 4a:04:10:8a:b9:dc:40:62:b9:4f:6d:a9:86:ec:62:8f:7c:a4: d3:8e:78:30:43:f8:61:4b:55:66:6a:bc:7f:b5:ca:f8:64:ce: 1e:45:5a:bf:06:d2:5f:ea:10:14:67:71:35:04:4b:cd:b4:f1: 2d:78:ed:f3:ad:c5:08:d0:55:d2:2b:c1:16:fb:1c:8e:d3:bb: 12:3d:d3:ee:40:3c:5e:67:bd:bc:a7:f0:87:09:40:bf:cd:cd: 47:6c:9f:b4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUVqjJBxhdSwnapbey7nNZBg3I2MgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkx QkJCOTJGNzAeFw0yNDExMDcxMjU1MDFaFw0yNTExMDYxMzAwMDFaMDMxMTAvBgNV BAMTKEFFN0NFQTE5RjA1RkJBN0IwNDQ4RDVEQzg4NEEzNjlFRDNFNTI5NzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsxeVS4AAXxnzSZY1VXtfVNMvr uEWwmEXS9Efb5jLKAP6zQVNicFNwVVb9egTdGp9YcDO44ONQxH1jmj9OgRWc6KG5 nTgLSXgovFC4PYkv5St554182nV8oWNG8WOtj3ELehcf3rdpFbt7m34LTIceMYM8 njflroyTqpTMJ28CgEoftSVJPA2KXIwuswNRcAaH+0HyaGpkNwCPogIgmfRvtPIa DUPCfeYHFmP2dPtVu5EaC0fq/JVeDx6ZeK4pUWB+GZDBFgbV34S2UOnoQX2RPpf2 +xMuntuF6p8/hBgqu8brhsX4j1s7sRqvQwIjbk9qNHYouSZAXoyeoTNIAmvDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrnzqGfBfunsESNXciEo2ntPlKXMwHwYDVR0j BBgwFoAU+N9A5Mlfnr+BRThwc2mV6Ru7kvcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDAzYWYwMS1mMjM5LTRhMWYtODFjZC00MTA2YmViYjJhMjIvMC9GOERGNDBFNEM5 NUY5RUJGODE0NTM4NzA3MzY5OTVFOTFCQkI5MkY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkxQkJC OTJGNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMDNhZjAxLWYyMzktNGExZi04 MWNkLTQxMDZiZWJiMmEyMi8wLzMxMzAzMzJlMzIzNDMwMmUzMTMxMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzgzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/BuMA0GCSqG SIb3DQEBCwUAA4IBAQCSQnOUnSgP0PH0bcta8GDP009Vo0tHrfQ4gDBK0mpgv279 MXlyVand09c67UuIHaTOIeFCDQl0L/BRT40WUCRGoDc3fLc6jrQW0it5QtYgXkJy y4n0IkyoJF1rMi9PRS1GcFW4wbgTSrLEHLRykh1yTj9guN+NJTUMQ368AkUv3Lap /rA7VKew4+eA/yGt6b8WWolqDizGueCBwt9KpQ3+IS9KBBCKudxAYrlPbamG7GKP fKTTjngwQ/hhS1Vmarx/tcr4ZM4eRVq/BtJf6hAUZ3E1BEvNtPEteO3zrcUI0FXS K8EW+xyO07sSPdPuQDxeZ728p/CHCUC/zc1HbJ+0 -----END CERTIFICATE-----Generated at Mon Nov 25 09:01:50 2024 by rpki-client on console-ams.rpki-client.org