$ rpki-client -vvf repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/3130332e3133372e3138382e302f32342d3234203d3e2039333431.roa File: 3130332e3133372e3138382e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: /vuj/h7kUZTjO1XHx69jnMNmoF3w0RvV89UjxypFeHI= Subject key identifier: 8F:A5:AB:85:52:7D:0E:11:47:FE:DB:BB:4F:57:6A:CF:E1:F3:B4:53 Certificate issuer: /CN=399F84118EDEFAAD5DD93673BFD61B9F5505ED30 Certificate serial: 17CD116E8320C7417F45B709E7245991B6E23702 Authority key identifier: 39:9F:84:11:8E:DE:FA:AD:5D:D9:36:73:BF:D6:1B:9F:55:05:ED:30 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/3130332e3133372e3138382e302f32342d3234203d3e2039333431.roa Signing time: Fri 28 Jun 2024 08:00:01 +0000 ROA not before: Fri 28 Jun 2024 07:55:01 +0000 ROA not after: Fri 27 Jun 2025 08:00:01 +0000 asID: 9341 IP address blocks: 103.137.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.crl rsync://repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 10:20:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:cd:11:6e:83:20:c7:41:7f:45:b7:09:e7:24:59:91:b6:e2:37:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=399F84118EDEFAAD5DD93673BFD61B9F5505ED30 Validity Not Before: Jun 28 07:55:01 2024 GMT Not After : Jun 27 08:00:01 2025 GMT Subject: CN=8FA5AB85527D0E1147FEDBBB4F576ACFE1F3B453 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a0:5f:0f:35:26:a9:d0:2b:9a:05:29:65:54: 35:7e:14:0a:2e:a3:85:1b:b5:25:4e:1c:e0:26:fa: 09:27:83:1d:21:88:fd:18:32:43:4b:1f:56:52:47: a4:b5:21:b1:4a:3e:6e:05:0d:cd:fd:ef:16:86:df: 67:86:a5:15:31:70:c5:64:59:16:29:e2:a8:5b:e1: 75:3f:6b:b3:03:b7:99:d8:e3:a5:e6:51:fc:89:cd: 41:6c:28:48:3d:d9:da:2f:8f:d8:27:e7:69:2b:d5: 47:3d:d0:b9:a3:46:1e:59:5e:9a:0b:f3:de:1b:7d: 44:d4:da:2a:35:36:14:5d:a7:27:36:52:f8:ce:28: 55:e9:d2:3c:9e:f7:8c:a9:e5:7d:a4:fb:f0:84:c0: be:70:ac:8b:8d:43:37:fb:30:28:50:ce:64:20:d6: 1f:fd:05:2f:59:a1:48:6b:05:77:d8:15:31:c5:d1: 36:0b:d3:db:8d:2f:a9:e4:16:3b:5e:58:36:7c:29: 8c:3a:6c:15:e6:4b:ec:0e:ba:23:53:0c:8a:c2:91: 28:b1:33:94:44:1e:90:bb:f6:5f:9a:e3:f0:e5:92: ee:88:b9:fb:f1:8f:7f:37:f2:18:79:d3:87:a2:89: f3:73:0a:d2:cf:28:64:a7:7b:1b:44:e7:59:2d:2c: 02:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:A5:AB:85:52:7D:0E:11:47:FE:DB:BB:4F:57:6A:CF:E1:F3:B4:53 X509v3 Authority Key Identifier: keyid:39:9F:84:11:8E:DE:FA:AD:5D:D9:36:73:BF:D6:1B:9F:55:05:ED:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/399F84118EDEFAAD5DD93673BFD61B9F5505ED30.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a6c12703-f1f7-43c9-a220-92edd86efe5e/0/3130332e3133372e3138382e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.137.188.0/24 Signature Algorithm: sha256WithRSAEncryption c2:f9:0a:29:49:66:c6:6c:0b:56:c0:ff:10:38:0b:ba:6e:6b: 15:f7:81:57:6a:29:c0:e0:26:e5:e2:93:b0:60:3c:f3:02:c9: 76:4b:87:ff:0c:e7:34:e1:f3:f9:ae:9c:d5:07:59:cc:8b:95: b4:74:de:21:1c:a3:52:8f:a7:31:9a:de:47:ad:34:21:92:4a: ea:a4:79:c2:03:d8:88:eb:b9:53:b7:1c:8a:46:87:10:48:70: 3d:2c:d7:de:d4:eb:93:13:d1:84:ae:ec:9c:67:1a:11:a3:1c: 9a:da:93:6b:b5:82:75:28:70:d4:87:df:86:c0:dd:37:22:dc: 33:10:38:71:1b:fd:8b:69:4f:82:bf:ef:89:49:a9:8b:14:ce: d1:7d:93:9b:86:74:1b:12:ef:84:78:3d:8b:2d:40:e7:5d:b2: 22:48:fa:86:96:dc:fd:5b:92:6a:dc:58:fb:f9:ba:4f:fd:3b: b0:99:7d:8c:9f:68:29:f9:94:56:05:a6:53:72:9a:91:1b:4b: f8:e2:c2:67:f5:45:ba:be:99:a2:a8:60:69:2b:4e:ce:5d:25: af:b0:b3:6b:2e:1b:e4:69:ef:69:7e:95:7d:21:4e:3f:8c:fd: b6:dd:49:d3:5c:22:05:08:39:39:26:f6:26:69:a0:75:1b:aa: 91:37:1d:41 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUF80RboMgx0F/RbcJ5yRZkbbiNwIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzk5Rjg0MTE4RURFRkFBRDVERDkzNjczQkZENjFCOUY1 NTA1RUQzMDAeFw0yNDA2MjgwNzU1MDFaFw0yNTA2MjcwODAwMDFaMDMxMTAvBgNV BAMTKDhGQTVBQjg1NTI3RDBFMTE0N0ZFREJCQjRGNTc2QUNGRTFGM0I0NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyoF8PNSap0CuaBSllVDV+FAou o4UbtSVOHOAm+gkngx0hiP0YMkNLH1ZSR6S1IbFKPm4FDc397xaG32eGpRUxcMVk WRYp4qhb4XU/a7MDt5nY46XmUfyJzUFsKEg92dovj9gn52kr1Uc90LmjRh5ZXpoL 894bfUTU2io1NhRdpyc2UvjOKFXp0jye94yp5X2k+/CEwL5wrIuNQzf7MChQzmQg 1h/9BS9ZoUhrBXfYFTHF0TYL09uNL6nkFjteWDZ8KYw6bBXmS+wOuiNTDIrCkSix M5REHpC79l+a4/Dlku6Iufvxj3838hh504eiifNzCtLPKGSnextE51ktLAL1AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUj6WrhVJ9DhFH/tu7T1dqz+HztFMwHwYDVR0j BBgwFoAUOZ+EEY7e+q1d2TZzv9Ybn1UF7TAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NmMxMjcwMy1mMWY3LTQzYzktYTIyMC05MmVkZDg2ZWZlNWUvMC8zOTlGODQxMThF REVGQUFENUREOTM2NzNCRkQ2MUI5RjU1MDVFRDMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzk5Rjg0MTE4RURFRkFBRDVERDkzNjczQkZENjFCOUY1NTA1 RUQzMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2YzEyNzAzLWYxZjctNDNjOS1h MjIwLTkyZWRkODZlZmU1ZS8wLzMxMzAzMzJlMzEzMzM3MmUzMTM4MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeJvDANBgkqhkiG 9w0BAQsFAAOCAQEAwvkKKUlmxmwLVsD/EDgLum5rFfeBV2opwOAm5eKTsGA88wLJ dkuH/wznNOHz+a6c1QdZzIuVtHTeIRyjUo+nMZreR600IZJK6qR5wgPYiOu5U7cc ikaHEEhwPSzX3tTrkxPRhK7snGcaEaMcmtqTa7WCdShw1IffhsDdNyLcMxA4cRv9 i2lPgr/viUmpixTO0X2Tm4Z0GxLvhHg9iy1A512yIkj6hpbc/VuSatxY+/m6T/07 sJl9jJ9oKfmUVgWmU3KakRtL+OLCZ/VFur6ZoqhgaStOzl0lr7Czay4b5GnvaX6V fSFOP4z9tt1J01wiBQg5OSb2JmmgdRuqkTcdQQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:53 2024 by rpki-client on console-ams.rpki-client.org