$ rpki-client -vvf repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3130332e31302e39362e302f32322d3234203d3e203138313033.roa File: 3130332e31302e39362e302f32322d3234203d3e203138313033.roa (raw, json) Hash identifier: fvggVkKI1Umb3Jdh64URgb1j9L9KJzqzQQjlbZZXATA= Subject key identifier: 08:79:A3:2A:35:77:79:3F:F7:DD:87:CA:28:34:F8:73:5F:56:D8:D2 Certificate issuer: /CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Certificate serial: 3B2F51E8628EF5E6620C1676DFCEF6A8184FF817 Authority key identifier: 5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3130332e31302e39362e302f32322d3234203d3e203138313033.roa Signing time: Wed 21 Aug 2024 12:00:41 +0000 ROA not before: Wed 21 Aug 2024 11:55:41 +0000 ROA not after: Wed 20 Aug 2025 12:00:41 +0000 asID: 18103 IP address blocks: 103.10.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:2f:51:e8:62:8e:f5:e6:62:0c:16:76:df:ce:f6:a8:18:4f:f8:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Validity Not Before: Aug 21 11:55:41 2024 GMT Not After : Aug 20 12:00:41 2025 GMT Subject: CN=0879A32A3577793FF7DD87CA2834F8735F56D8D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8d:96:ac:3b:00:83:05:ce:26:0f:0f:ef:6f: 4e:35:8e:44:e7:35:12:18:61:d4:35:e9:c2:1c:e7: d1:90:49:a7:bf:08:51:c9:ea:f5:a5:00:b7:db:78: 49:7f:1e:4c:d7:ef:6b:08:ba:7f:4d:99:11:9a:89: 6a:d2:53:2b:92:58:54:25:42:bb:0b:c2:30:e6:1d: 66:d6:6a:56:88:15:3c:24:50:2e:ea:5c:ce:30:f2: b7:de:e9:fb:84:96:ae:03:b4:e1:61:40:f5:45:ce: ea:a0:a7:d0:00:a9:7c:d5:e8:2e:d3:73:e6:b9:84: 7f:4f:00:42:a0:1d:89:d9:2b:82:34:08:55:ee:1a: 5f:ab:3a:d0:83:f2:4e:35:62:de:d5:b2:1b:63:ff: e3:ad:6d:56:4c:a8:82:47:84:fa:87:b0:27:18:43: 14:36:36:a4:59:33:a4:51:da:aa:1a:eb:4d:76:11: c9:e5:a0:78:f8:ea:60:7e:d5:cb:25:32:9a:00:75: 6f:16:07:d1:63:81:d4:ec:5b:d7:4b:a6:55:3c:67: d1:e8:1a:a1:a9:81:55:f8:80:62:61:29:bb:29:a5: d9:a9:f6:fc:fa:1c:ba:c0:bf:53:76:44:34:51:df: 2c:20:f0:8f:42:05:a7:46:00:39:c7:99:14:cb:3d: cd:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:79:A3:2A:35:77:79:3F:F7:DD:87:CA:28:34:F8:73:5F:56:D8:D2 X509v3 Authority Key Identifier: keyid:5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3130332e31302e39362e302f32322d3234203d3e203138313033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.96.0/22 Signature Algorithm: sha256WithRSAEncryption 64:39:4f:c8:ec:0c:96:e0:fa:92:e3:62:d9:fc:3c:59:06:cd: 05:b5:e3:0c:fe:55:07:26:0d:5e:29:fb:61:6a:76:86:7b:60: 46:7a:c6:c9:12:46:a6:aa:23:d3:29:e6:36:c3:62:33:56:b6: 24:03:76:40:68:da:1f:80:1d:51:46:dd:30:bb:1c:f6:1b:62: a1:43:d5:8e:71:75:84:6a:ae:6c:3d:48:9f:a9:15:c9:4c:de: e9:f3:12:e9:1f:f1:29:6a:5e:ff:e3:9b:88:5b:d1:7f:db:78: ff:3f:a5:b4:42:52:22:47:0e:fc:9f:8d:45:96:42:c9:82:f9: 6b:76:50:b1:b6:3f:de:6c:2b:35:9e:62:54:0b:70:39:ac:12: e8:d2:52:94:19:3b:ff:37:2e:1e:8d:98:7d:2c:b4:2a:59:70: ab:5d:2e:c5:9c:26:d6:30:20:0b:fd:ab:8e:d3:2f:27:0e:96: d8:bc:85:15:ac:cd:86:38:75:76:66:ab:9a:b3:ce:85:db:cd: 6c:a5:45:72:cc:c3:7a:7b:57:f6:ab:b8:57:bf:b6:bc:e8:c6: 3d:4d:91:e3:27:d9:44:53:20:da:31:e0:04:f3:49:a2:3d:23: 0a:01:6e:cf:da:d6:dc:3f:6c:1e:cb:83:2e:35:60:6f:2d:c6: 00:1c:5f:4d -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUOy9R6GKO9eZiDBZ23872qBhP+BcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlE REI4NEM1NzAeFw0yNDA4MjExMTU1NDFaFw0yNTA4MjAxMjAwNDFaMDMxMTAvBgNV BAMTKDA4NzlBMzJBMzU3Nzc5M0ZGN0REODdDQTI4MzRGODczNUY1NkQ4RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBjZasOwCDBc4mDw/vb041jkTn NRIYYdQ16cIc59GQSae/CFHJ6vWlALfbeEl/HkzX72sIun9NmRGaiWrSUyuSWFQl QrsLwjDmHWbWalaIFTwkUC7qXM4w8rfe6fuElq4DtOFhQPVFzuqgp9AAqXzV6C7T c+a5hH9PAEKgHYnZK4I0CFXuGl+rOtCD8k41Yt7Vshtj/+OtbVZMqIJHhPqHsCcY QxQ2NqRZM6RR2qoa6012EcnloHj46mB+1cslMpoAdW8WB9FjgdTsW9dLplU8Z9Ho GqGpgVX4gGJhKbsppdmp9vz6HLrAv1N2RDRR3ywg8I9CBadGADnHmRTLPc1BAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUCHmjKjV3eT/33YfKKDT4c19W2NIwHwYDVR0j BBgwFoAUXo0RFvjGYYK2VSHImbVuid24TFcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MTk5YzFhZi1kOWM3LTRmZmQtYmEwMy1hM2UxY2RkOGFlZTAvMC81RThEMTExNkY4 QzY2MTgyQjY1NTIxQzg5OUI1NkU4OUREQjg0QzU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlEREI4 NEM1Ny5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxOTljMWFmLWQ5YzctNGZmZC1i YTAzLWEzZTFjZGQ4YWVlMC8wLzMxMzAzMzJlMzEzMDJlMzkzNjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDMxMzgzMTMwMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnCmAwDQYJKoZIhvcN AQELBQADggEBAGQ5T8jsDJbg+pLjYtn8PFkGzQW14wz+VQcmDV4p+2FqdoZ7YEZ6 xskSRqaqI9Mp5jbDYjNWtiQDdkBo2h+AHVFG3TC7HPYbYqFD1Y5xdYRqrmw9SJ+p FclM3unzEukf8SlqXv/jm4hb0X/beP8/pbRCUiJHDvyfjUWWQsmC+Wt2ULG2P95s KzWeYlQLcDmsEujSUpQZO/83Lh6NmH0stCpZcKtdLsWcJtYwIAv9q47TLycOlti8 hRWszYY4dXZmq5qzzoXbzWylRXLMw3p7V/aruFe/trzoxj1NkeMn2URTINox4ATz SaI9IwoBbs/a1tw/bB7Lgy41YG8txgAcX00= -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:40 2024 by rpki-client on console-fra.rpki-client.org