$ rpki-client -vvf repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3133302e302f32342d3234203d3e203535363835.roa File: 3130332e3130382e3133302e302f32342d3234203d3e203535363835.roa (raw, json) Hash identifier: GkqP1tBJ/9agxHYe5ncZgwuG8VITyEYL/kjDUwj5Bhk= Subject key identifier: BB:43:65:85:8B:20:AF:21:F0:42:9D:59:23:C0:41:32:C5:C4:35:16 Certificate issuer: /CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Certificate serial: 7E61D507DE9B44AD999021BBD10BE8669E4A0954 Authority key identifier: 38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3133302e302f32342d3234203d3e203535363835.roa Signing time: Wed 01 May 2024 02:00:01 +0000 ROA not before: Wed 01 May 2024 01:55:01 +0000 ROA not after: Wed 30 Apr 2025 02:00:01 +0000 asID: 55685 IP address blocks: 103.108.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 16:25:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:61:d5:07:de:9b:44:ad:99:90:21:bb:d1:0b:e8:66:9e:4a:09:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38FCEA2A1C8443E590CF5220E7BDA05D722C294D Validity Not Before: May 1 01:55:01 2024 GMT Not After : Apr 30 02:00:01 2025 GMT Subject: CN=BB4365858B20AF21F0429D5923C04132C5C43516 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5b:66:a0:17:46:aa:0d:28:e7:07:40:5e:44: e0:06:a6:dc:b1:ab:57:74:33:c9:bc:e2:c9:07:52: d3:fb:5f:fe:23:dd:24:12:77:2b:1d:4b:f9:dc:cb: 2f:29:c8:01:4f:4b:0e:c8:6f:ac:ab:93:47:9c:c3: dc:fd:22:f8:d3:a0:92:a6:ea:4c:bb:ed:43:5c:1f: 90:23:bf:6e:2c:fc:3e:f4:5c:46:4c:b8:34:8a:3c: f5:4d:1a:52:3b:f9:3e:81:a9:3a:05:fc:9a:95:91: 41:ea:e1:0b:28:60:81:01:e0:c4:1e:b7:9d:12:57: a0:0c:d8:2f:73:b9:9b:f2:30:45:1e:66:7a:ce:9e: 43:26:1a:ae:6f:6f:20:22:98:35:33:4e:2b:bc:77: 0e:a1:63:db:90:33:0c:32:f0:36:c0:cc:3e:3a:9c: 79:9f:d4:32:c2:50:f2:ab:aa:d0:b2:9c:76:94:c3: 46:ee:22:d4:af:f8:8a:21:99:31:fa:37:25:e9:af: f2:0d:f8:03:07:5c:c5:9a:9a:b0:ad:1a:e1:25:68: 9a:cf:e0:91:d9:41:78:c8:8f:23:0c:81:bf:76:8d: c5:b5:62:1e:c7:dd:5d:fd:58:09:5e:9f:15:c7:14: 81:22:50:a5:b5:b4:f8:4a:48:bd:88:84:10:06:2e: be:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:43:65:85:8B:20:AF:21:F0:42:9D:59:23:C0:41:32:C5:C4:35:16 X509v3 Authority Key Identifier: keyid:38:FC:EA:2A:1C:84:43:E5:90:CF:52:20:E7:BD:A0:5D:72:2C:29:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/38FCEA2A1C8443E590CF5220E7BDA05D722C294D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/928089a7-0a68-4d67-adab-76d7d9271fde/0/3130332e3130382e3133302e302f32342d3234203d3e203535363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.130.0/24 Signature Algorithm: sha256WithRSAEncryption 52:b3:b2:14:45:98:67:ab:8c:99:81:40:08:da:f9:86:1a:8d: 46:c2:c4:69:a2:03:a6:f6:2e:a4:ca:32:f2:1a:07:b1:3b:1e: be:77:9a:8d:85:b0:8c:db:d2:a6:64:a5:de:c5:31:93:86:97: 05:d5:29:2e:2c:28:2f:5f:d4:4c:00:e9:d9:ff:74:08:af:7d: 85:b5:44:51:0d:b8:96:d4:f7:d6:9e:74:6a:65:3c:d7:cd:ba: 3e:a6:da:8c:00:e7:5c:1e:55:39:ac:dd:59:b9:8e:84:75:cf: df:64:77:bb:d4:d7:cb:23:10:8c:8d:1c:5e:a6:04:7e:7b:7c: f1:fd:ab:0e:31:27:ad:4c:b2:21:0a:05:d0:6b:2e:5b:72:79: 27:a6:ae:6c:20:66:28:44:b6:ed:14:c0:e3:e7:1d:a7:9d:a8: f2:10:de:58:5f:3c:e8:2e:ac:a9:22:af:d8:aa:0d:63:40:13: 5b:3d:35:d7:58:95:f0:e7:6c:7f:20:ae:4f:a1:a8:d8:ab:de: 87:94:bf:4d:41:b5:49:12:02:8f:49:d9:c4:67:95:d3:0d:c6: 84:b2:b5:8a:ad:28:eb:dc:ab:12:16:ff:0d:24:fb:9b:ab:91: 4d:91:90:ef:df:8d:f2:1f:b1:08:f2:c1:db:15:49:0d:50:4d: 09:cb:01:74 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfmHVB96bRK2ZkCG70QvoZp5KCVQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3 MjJDMjk0RDAeFw0yNDA1MDEwMTU1MDFaFw0yNTA0MzAwMjAwMDFaMDMxMTAvBgNV BAMTKEJCNDM2NTg1OEIyMEFGMjFGMDQyOUQ1OTIzQzA0MTMyQzVDNDM1MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxW2agF0aqDSjnB0BeROAGptyx q1d0M8m84skHUtP7X/4j3SQSdysdS/ncyy8pyAFPSw7Ib6yrk0ecw9z9IvjToJKm 6ky77UNcH5Ajv24s/D70XEZMuDSKPPVNGlI7+T6BqToF/JqVkUHq4QsoYIEB4MQe t50SV6AM2C9zuZvyMEUeZnrOnkMmGq5vbyAimDUzTiu8dw6hY9uQMwwy8DbAzD46 nHmf1DLCUPKrqtCynHaUw0buItSv+IohmTH6NyXpr/IN+AMHXMWamrCtGuElaJrP 4JHZQXjIjyMMgb92jcW1Yh7H3V39WAlenxXHFIEiUKW1tPhKSL2IhBAGLr5JAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUu0NlhYsgryHwQp1ZI8BBMsXENRYwHwYDVR0j BBgwFoAUOPzqKhyEQ+WQz1Ig572gXXIsKU0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjgwODlhNy0wYTY4LTRkNjctYWRhYi03NmQ3ZDkyNzFmZGUvMC8zOEZDRUEyQTFD ODQ0M0U1OTBDRjUyMjBFN0JEQTA1RDcyMkMyOTRELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzhGQ0VBMkExQzg0NDNFNTkwQ0Y1MjIwRTdCREEwNUQ3MjJD Mjk0RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyODA4OWE3LTBhNjgtNGQ2Ny1h ZGFiLTc2ZDdkOTI3MWZkZS8wLzMxMzAzMzJlMzEzMDM4MmUzMTMzMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2yCMA0GCSqG SIb3DQEBCwUAA4IBAQBSs7IURZhnq4yZgUAI2vmGGo1GwsRpogOm9i6kyjLyGgex Ox6+d5qNhbCM29KmZKXexTGThpcF1SkuLCgvX9RMAOnZ/3QIr32FtURRDbiW1PfW nnRqZTzXzbo+ptqMAOdcHlU5rN1ZuY6Edc/fZHe71NfLIxCMjRxepgR+e3zx/asO MSetTLIhCgXQay5bcnknpq5sIGYoRLbtFMDj5x2nnajyEN5YXzzoLqypIq/Yqg1j QBNbPTXXWJXw52x/IK5PoajYq96HlL9NQbVJEgKPSdnEZ5XTDcaEsrWKrSjr3KsS Fv8NJPubq5FNkZDv343yH7EI8sHbFUkNUE0JywF0 -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:43 2024 by rpki-client on console-fra.rpki-client.org