$ rpki-client -vvf repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3131312e302f32342d3234203d3e203538383139.roa File: 3130332e3234302e3131312e302f32342d3234203d3e203538383139.roa (raw, json) Hash identifier: qsAy9+8K3YocUUVABAHpwtAAQ9W+nqV1JTT37/pzGo4= Subject key identifier: 45:5F:22:6F:26:44:CF:5C:59:28:F2:5D:F7:E3:EF:E1:46:33:5D:29 Certificate issuer: /CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7 Certificate serial: 64A0C9CAF8FEA0069FAE70D726BCD35B508FDE21 Authority key identifier: F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3131312e302f32342d3234203d3e203538383139.roa Signing time: Thu 07 Nov 2024 12:00:57 +0000 ROA not before: Thu 07 Nov 2024 11:55:57 +0000 ROA not after: Thu 06 Nov 2025 12:00:57 +0000 asID: 58819 IP address blocks: 103.240.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:a0:c9:ca:f8:fe:a0:06:9f:ae:70:d7:26:bc:d3:5b:50:8f:de:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7 Validity Not Before: Nov 7 11:55:57 2024 GMT Not After : Nov 6 12:00:57 2025 GMT Subject: CN=455F226F2644CF5C5928F25DF7E3EFE146335D29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e9:71:0e:d5:59:c8:19:4e:4b:c5:79:27:4a: e6:60:95:e7:c2:fa:9e:b8:4b:6a:26:66:6a:ec:b5: d2:74:05:a1:af:df:e6:86:d0:07:13:a6:7f:ac:15: 81:73:7b:f5:80:6f:97:46:2d:cc:26:71:5d:d2:1d: 95:52:17:47:ea:ad:31:ad:a8:cc:df:1f:92:6b:c4: 3b:5d:26:dd:9a:5d:85:dd:7e:9b:e0:06:93:7e:47: 52:58:6e:5a:1c:9c:9e:8e:21:75:af:e1:d1:59:1c: b5:60:aa:65:d4:14:87:7d:32:7d:d4:23:c1:f1:68: 95:0c:db:46:39:67:33:81:b0:8d:20:6a:c3:13:84: 2b:8d:93:98:b5:35:f3:ef:8d:61:25:19:13:57:96: 66:7a:0f:7a:f3:08:5f:66:90:0f:8e:f7:d5:5e:45: 40:80:ef:a0:98:e0:dd:ea:20:19:f4:c4:5c:68:76: d2:ab:45:8e:b6:36:f7:c0:ec:c7:f8:fa:08:29:3f: 54:cc:b8:30:73:b5:e6:67:3b:4a:b9:8c:df:ed:a2: ed:ed:ed:85:7b:9e:08:64:f1:a5:46:81:d5:e9:dc: d7:10:ee:7e:94:01:a1:b1:e3:00:c6:c8:fa:df:a7: 9d:2a:1a:dc:b4:44:a5:27:bb:4c:1c:d0:5c:f8:43: ef:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:5F:22:6F:26:44:CF:5C:59:28:F2:5D:F7:E3:EF:E1:46:33:5D:29 X509v3 Authority Key Identifier: keyid:F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/3130332e3234302e3131312e302f32342d3234203d3e203538383139.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.240.111.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:89:3e:4b:5c:1a:19:66:ac:28:96:c2:7f:0a:4a:40:fd:e9: 88:03:6a:da:3a:d7:42:8d:ab:f5:b7:27:d2:0c:cb:c5:eb:28: 5a:34:63:0a:d1:5c:23:9f:24:6c:b0:a6:bb:2c:24:13:c5:3e: bc:7a:06:fe:ac:66:78:0f:90:8b:ff:7f:d3:90:54:e2:63:f6: d7:f0:b4:3d:57:a8:b4:fa:22:05:f3:b4:16:64:1b:d4:94:a1: ed:51:c5:83:d1:6b:9f:47:d4:23:6c:f6:58:d9:dc:78:56:c4: 86:62:a1:5f:fb:82:6b:0e:46:2f:20:44:1f:11:92:ab:74:ff: 8c:68:4d:5d:6d:c1:b9:1a:8b:9b:ee:2a:28:72:8c:38:5e:77: 4d:65:4e:f4:ee:ad:c1:72:4e:a9:7d:54:19:6a:c8:2f:8c:6f: 02:69:38:b1:23:39:d0:32:ff:cb:51:e4:2f:55:1f:97:bc:e2: c4:01:c2:9b:fa:bc:58:36:67:7a:a2:38:c4:93:b3:b9:d5:92: 92:ec:a7:5f:c1:3e:62:4c:be:1e:86:fb:06:55:84:69:0a:2a: a2:2a:7e:de:39:77:20:57:2a:9c:67:e3:75:9e:ab:dc:a5:f4: 0a:0d:cb:23:07:7e:ac:21:16:1a:13:31:74:af:af:39:dc:3c: 56:25:e2:21 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZKDJyvj+oAafrnDXJrzTW1CP3iEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkx QkJCOTJGNzAeFw0yNDExMDcxMTU1NTdaFw0yNTExMDYxMjAwNTdaMDMxMTAvBgNV BAMTKDQ1NUYyMjZGMjY0NENGNUM1OTI4RjI1REY3RTNFRkUxNDYzMzVEMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP6XEO1VnIGU5LxXknSuZglefC +p64S2omZmrstdJ0BaGv3+aG0AcTpn+sFYFze/WAb5dGLcwmcV3SHZVSF0fqrTGt qMzfH5JrxDtdJt2aXYXdfpvgBpN+R1JYblocnJ6OIXWv4dFZHLVgqmXUFId9Mn3U I8HxaJUM20Y5ZzOBsI0gasMThCuNk5i1NfPvjWElGRNXlmZ6D3rzCF9mkA+O99Ve RUCA76CY4N3qIBn0xFxodtKrRY62NvfA7Mf4+ggpP1TMuDBzteZnO0q5jN/tou3t 7YV7nghk8aVGgdXp3NcQ7n6UAaGx4wDGyPrfp50qGty0RKUnu0wc0Fz4Q+/lAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURV8ibyZEz1xZKPJd9+Pv4UYzXSkwHwYDVR0j BBgwFoAU+N9A5Mlfnr+BRThwc2mV6Ru7kvcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDAzYWYwMS1mMjM5LTRhMWYtODFjZC00MTA2YmViYjJhMjIvMC9GOERGNDBFNEM5 NUY5RUJGODE0NTM4NzA3MzY5OTVFOTFCQkI5MkY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkxQkJC OTJGNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMDNhZjAxLWYyMzktNGExZi04 MWNkLTQxMDZiZWJiMmEyMi8wLzMxMzAzMzJlMzIzNDMwMmUzMTMxMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzgzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/BvMA0GCSqG SIb3DQEBCwUAA4IBAQAOiT5LXBoZZqwolsJ/CkpA/emIA2raOtdCjav1tyfSDMvF 6yhaNGMK0VwjnyRssKa7LCQTxT68egb+rGZ4D5CL/3/TkFTiY/bX8LQ9V6i0+iIF 87QWZBvUlKHtUcWD0WufR9QjbPZY2dx4VsSGYqFf+4JrDkYvIEQfEZKrdP+MaE1d bcG5Goub7ioocow4XndNZU707q3Bck6pfVQZasgvjG8CaTixIznQMv/LUeQvVR+X vOLEAcKb+rxYNmd6ojjEk7O51ZKS7KdfwT5iTL4ehvsGVYRpCiqiKn7eOXcgVyqc Z+N1nqvcpfQKDcsjB36sIRYaEzF0r6853DxWJeIh -----END CERTIFICATE-----Generated at Wed Nov 20 18:59:26 2024 by rpki-client on console-ams.rpki-client.org