$ rpki-client -vvf repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3130332e32332e3234302e302f32322d3234203d3e203138313033.roa File: 3130332e32332e3234302e302f32322d3234203d3e203138313033.roa (raw, json) Hash identifier: etHPTVvqoe6GM4pkSxe9oMH07ZX+2TEP2H+GUDlt63w= Subject key identifier: 30:2A:D2:78:F8:F0:DD:06:64:3C:2C:74:A3:F1:24:42:9C:FD:BE:29 Certificate issuer: /CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Certificate serial: 1FA636DACCA03CB4B6AD44231DE8397B6A80DECD Authority key identifier: 5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3130332e32332e3234302e302f32322d3234203d3e203138313033.roa Signing time: Wed 21 Aug 2024 11:00:01 +0000 ROA not before: Wed 21 Aug 2024 10:55:01 +0000 ROA not after: Wed 20 Aug 2025 11:00:01 +0000 asID: 18103 IP address blocks: 103.23.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:a6:36:da:cc:a0:3c:b4:b6:ad:44:23:1d:e8:39:7b:6a:80:de:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5E8D1116F8C66182B65521C899B56E89DDB84C57 Validity Not Before: Aug 21 10:55:01 2024 GMT Not After : Aug 20 11:00:01 2025 GMT Subject: CN=302AD278F8F0DD06643C2C74A3F124429CFDBE29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:08:1b:61:0c:2d:a9:ba:29:e9:09:c0:63:da: f9:12:ee:79:3f:0d:d6:3a:c1:19:5f:fe:af:1a:19: 7c:97:a1:d3:6f:ef:79:90:55:f0:89:be:4e:90:8f: 17:38:c2:9b:07:64:3b:05:a9:d0:13:3c:db:62:ab: ea:30:bc:7d:40:1d:67:23:67:4f:e3:76:29:6a:a3: 95:be:f6:00:6d:d5:56:71:db:20:1a:61:3c:79:31: 28:9e:ef:7b:21:32:83:34:9f:d5:b7:61:ce:bc:8d: 8f:a9:3c:5b:ed:32:af:c9:63:44:e8:8a:ed:dd:67: 9d:ea:4e:55:09:84:75:2a:5f:cd:2d:bb:9f:d3:57: 9c:c6:96:19:cd:d0:e5:80:76:c2:56:cd:81:ea:47: d8:27:f7:6a:8c:ab:27:f5:18:73:d0:a5:25:a9:99: d4:9f:51:1a:72:0a:32:b1:c0:22:7a:7a:8f:89:59: 08:13:98:e2:7b:17:93:28:65:78:35:33:0a:6c:11: 66:f0:1a:f2:af:2c:85:17:9d:28:32:ac:1f:74:2b: 8d:7b:6e:a7:ed:bb:ee:15:1c:e6:7d:d2:3b:2a:45: 68:f9:6f:67:68:d6:5c:66:0f:36:f7:cb:27:21:11: 9c:6e:23:98:c5:60:fd:93:8b:ad:c5:2e:f7:71:74: 8e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:2A:D2:78:F8:F0:DD:06:64:3C:2C:74:A3:F1:24:42:9C:FD:BE:29 X509v3 Authority Key Identifier: keyid:5E:8D:11:16:F8:C6:61:82:B6:55:21:C8:99:B5:6E:89:DD:B8:4C:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/5E8D1116F8C66182B65521C899B56E89DDB84C57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5E8D1116F8C66182B65521C899B56E89DDB84C57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/3130332e32332e3234302e302f32322d3234203d3e203138313033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.23.240.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:a6:35:5d:5d:a3:a7:34:0c:94:73:8a:1b:76:2d:61:bb:73: 13:a5:d2:32:fd:60:35:17:04:00:04:86:20:b8:76:43:5e:a2: b9:82:46:2c:48:15:9c:4a:87:7a:8c:eb:b7:01:f3:26:fe:35: a8:03:c5:d8:56:92:56:93:ff:02:75:c7:71:de:c8:81:21:b1: ae:e8:51:4e:8f:4d:cd:06:81:4f:84:6d:fe:db:24:c1:24:a9: f1:5f:cb:24:15:93:20:67:20:4e:46:e3:1f:5f:dd:8f:04:25: af:c1:3f:9c:5b:0a:d9:db:7b:db:88:b3:db:28:50:2c:c1:3e: ec:6a:bc:32:fd:d5:aa:87:87:1a:3b:16:19:6f:73:69:a3:48: 2e:8b:ee:e0:2c:a3:fe:09:5c:d8:eb:e0:59:62:1f:50:89:62: e6:72:e5:c7:4a:f8:6a:f2:32:a1:5b:22:11:3c:b1:3c:d1:f0: 03:fe:ef:2d:69:86:44:c1:c7:96:9d:22:3b:3f:bb:cc:0e:ab: 32:b8:ca:19:9c:f2:3f:63:69:b1:02:49:6e:92:10:28:db:b0: b8:79:7a:c1:91:af:28:58:f0:54:f1:23:f0:db:ed:46:20:ba: f5:c4:d1:c5:df:d1:b4:d9:0f:9b:2e:3d:99:cd:de:5c:3e:26: 84:e9:16:29 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUH6Y22sygPLS2rUQjHeg5e2qA3s0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlE REI4NEM1NzAeFw0yNDA4MjExMDU1MDFaFw0yNTA4MjAxMTAwMDFaMDMxMTAvBgNV BAMTKDMwMkFEMjc4RjhGMEREMDY2NDNDMkM3NEEzRjEyNDQyOUNGREJFMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClCBthDC2puinpCcBj2vkS7nk/ DdY6wRlf/q8aGXyXodNv73mQVfCJvk6Qjxc4wpsHZDsFqdATPNtiq+owvH1AHWcj Z0/jdilqo5W+9gBt1VZx2yAaYTx5MSie73shMoM0n9W3Yc68jY+pPFvtMq/JY0To iu3dZ53qTlUJhHUqX80tu5/TV5zGlhnN0OWAdsJWzYHqR9gn92qMqyf1GHPQpSWp mdSfURpyCjKxwCJ6eo+JWQgTmOJ7F5MoZXg1MwpsEWbwGvKvLIUXnSgyrB90K417 bqftu+4VHOZ90jsqRWj5b2do1lxmDzb3yychEZxuI5jFYP2Ti63FLvdxdI7pAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUMCrSePjw3QZkPCx0o/EkQpz9vikwHwYDVR0j BBgwFoAUXo0RFvjGYYK2VSHImbVuid24TFcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MTk5YzFhZi1kOWM3LTRmZmQtYmEwMy1hM2UxY2RkOGFlZTAvMC81RThEMTExNkY4 QzY2MTgyQjY1NTIxQzg5OUI1NkU4OUREQjg0QzU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUU4RDExMTZGOEM2NjE4MkI2NTUyMUM4OTlCNTZFODlEREI4 NEM1Ny5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IxOTljMWFmLWQ5YzctNGZmZC1i YTAzLWEzZTFjZGQ4YWVlMC8wLzMxMzAzMzJlMzIzMzJlMzIzNDMwMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzODMxMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmcX8DANBgkqhkiG 9w0BAQsFAAOCAQEAXaY1XV2jpzQMlHOKG3YtYbtzE6XSMv1gNRcEAASGILh2Q16i uYJGLEgVnEqHeozrtwHzJv41qAPF2FaSVpP/AnXHcd7IgSGxruhRTo9NzQaBT4Rt /tskwSSp8V/LJBWTIGcgTkbjH1/djwQlr8E/nFsK2dt724iz2yhQLME+7Gq8Mv3V qoeHGjsWGW9zaaNILovu4Cyj/glc2OvgWWIfUIli5nLlx0r4avIyoVsiETyxPNHw A/7vLWmGRMHHlp0iOz+7zA6rMrjKGZzyP2NpsQJJbpIQKNuwuHl6wZGvKFjwVPEj 8NvtRiC69cTRxd/RtNkPmy49mc3eXD4mhOkWKQ== -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:03 2024 by rpki-client on console-ams.rpki-client.org