$ rpki-client -vvf repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0/3130332e33382e3130382e302f32332d3234203d3e20313531353539.roa File: 3130332e33382e3130382e302f32332d3234203d3e20313531353539.roa (raw, json) Hash identifier: 56z54u+xHay43ruNITFTpnwbxjBWMk76HiIcFsZdZcE= Subject key identifier: A4:8A:AF:83:F2:D0:53:75:67:A0:D4:97:49:D7:93:B2:99:F5:57:FF Certificate issuer: /CN=B5F8E7712A83BE2BD78CFC40658C8032F03B6682 Certificate serial: 64F5BF10A8D5A4BCB8FE3C9FBD416C24AB42778E Authority key identifier: B5:F8:E7:71:2A:83:BE:2B:D7:8C:FC:40:65:8C:80:32:F0:3B:66:82 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5F8E7712A83BE2BD78CFC40658C8032F03B6682.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0/3130332e33382e3130382e302f32332d3234203d3e20313531353539.roa Signing time: Thu 19 Sep 2024 12:00:01 +0000 ROA not before: Thu 19 Sep 2024 11:55:01 +0000 ROA not after: Thu 18 Sep 2025 12:00:01 +0000 asID: 151559 IP address blocks: 103.38.108.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0/B5F8E7712A83BE2BD78CFC40658C8032F03B6682.crl rsync://repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0/B5F8E7712A83BE2BD78CFC40658C8032F03B6682.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5F8E7712A83BE2BD78CFC40658C8032F03B6682.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 20:55:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:f5:bf:10:a8:d5:a4:bc:b8:fe:3c:9f:bd:41:6c:24:ab:42:77:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5F8E7712A83BE2BD78CFC40658C8032F03B6682 Validity Not Before: Sep 19 11:55:01 2024 GMT Not After : Sep 18 12:00:01 2025 GMT Subject: CN=A48AAF83F2D0537567A0D49749D793B299F557FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:18:30:12:18:d0:21:22:8b:e2:1b:cf:8f:6f: 8a:ef:4c:6b:54:dc:23:86:81:a1:aa:cb:5a:07:76: 18:19:4b:04:e5:45:07:56:0e:18:fa:74:48:71:b1: 8b:e8:5c:3b:dd:aa:05:78:16:98:c4:6d:29:df:32: 34:05:f8:7f:21:5a:2d:e5:42:e3:9a:16:d1:4a:a2: 70:65:99:60:16:35:f6:c0:5f:a4:6d:f2:50:6d:a9: 2c:c7:bb:90:3e:5f:ac:95:e4:87:f6:58:dd:57:41: 2b:a2:04:c3:88:7e:84:2b:f2:a8:3e:b5:86:08:04: 3a:1e:80:08:8b:2d:cf:75:54:67:71:55:01:8b:95: 0f:54:66:a4:b0:88:f7:f8:2e:40:c1:04:a5:37:b7: d5:d5:d7:17:d1:bd:4e:2a:cd:7f:fb:5b:f9:6f:53: 26:39:1b:a8:ba:6a:2d:69:16:76:22:ca:b5:54:57: 56:53:47:13:3b:aa:5d:cf:19:7d:7c:2a:67:ba:62: 47:a0:25:46:d3:f0:69:5e:3a:14:86:94:c9:ff:fe: b7:9f:da:6e:f6:ab:ea:8f:57:dd:9f:5b:c3:40:8b: 5b:26:b0:3c:8a:53:f6:0d:85:10:bd:4b:9f:80:84: fe:17:10:8c:54:3d:41:5a:0f:85:b3:bd:af:90:ac: ab:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:8A:AF:83:F2:D0:53:75:67:A0:D4:97:49:D7:93:B2:99:F5:57:FF X509v3 Authority Key Identifier: keyid:B5:F8:E7:71:2A:83:BE:2B:D7:8C:FC:40:65:8C:80:32:F0:3B:66:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0/B5F8E7712A83BE2BD78CFC40658C8032F03B6682.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5F8E7712A83BE2BD78CFC40658C8032F03B6682.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0/3130332e33382e3130382e302f32332d3234203d3e20313531353539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.38.108.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:29:9b:43:de:3c:28:3d:33:1f:b1:ad:a4:c8:9c:f9:46:ea: 35:75:75:a8:f8:a6:c6:b7:4f:cd:8e:bb:b0:ad:85:8f:5d:ac: e9:81:b5:f0:66:84:9d:68:ff:cb:c2:80:a4:80:24:4e:ad:5a: dd:ba:b7:be:dd:ca:7a:a5:d6:5f:c9:b1:ca:61:09:8a:02:ce: 7e:5e:b8:bd:03:3d:02:4f:a0:12:29:00:99:65:3f:ea:08:2d: 08:3d:40:35:26:ce:ee:8a:52:ac:8b:8d:36:c6:0a:45:27:ca: cc:2f:ec:eb:89:30:ad:13:cf:57:f2:9a:69:2a:de:d4:1c:cc: 93:b3:10:bf:09:d3:15:ab:76:4c:b8:c9:32:44:65:fe:22:ed: 7e:c4:61:18:02:e3:0c:94:fd:8d:7f:53:06:96:1d:68:03:c8: ff:9d:ae:70:4f:fc:b7:e8:a9:48:99:e8:24:0c:a2:4a:41:93: 83:11:61:cd:b2:b6:8f:17:57:3a:70:c5:b6:7d:5d:38:db:40: ef:8f:fb:ca:cb:9b:0d:ed:f7:4e:12:d6:0b:84:9b:b3:54:d7: f4:14:1b:da:c9:30:a7:88:86:e8:1e:e7:2f:91:b2:a0:d0:7c: d0:57:dc:86:f0:48:a8:b8:6b:8b:a9:53:b3:9f:8d:a8:72:9b: a6:1b:ec:a3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZPW/EKjVpLy4/jyfvUFsJKtCd44wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVGOEU3NzEyQTgzQkUyQkQ3OENGQzQwNjU4QzgwMzJG MDNCNjY4MjAeFw0yNDA5MTkxMTU1MDFaFw0yNTA5MTgxMjAwMDFaMDMxMTAvBgNV BAMTKEE0OEFBRjgzRjJEMDUzNzU2N0EwRDQ5NzQ5RDc5M0IyOTlGNTU3RkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLGDASGNAhIoviG8+Pb4rvTGtU 3COGgaGqy1oHdhgZSwTlRQdWDhj6dEhxsYvoXDvdqgV4FpjEbSnfMjQF+H8hWi3l QuOaFtFKonBlmWAWNfbAX6Rt8lBtqSzHu5A+X6yV5If2WN1XQSuiBMOIfoQr8qg+ tYYIBDoegAiLLc91VGdxVQGLlQ9UZqSwiPf4LkDBBKU3t9XV1xfRvU4qzX/7W/lv UyY5G6i6ai1pFnYiyrVUV1ZTRxM7ql3PGX18Kme6YkegJUbT8GleOhSGlMn//ref 2m72q+qPV92fW8NAi1smsDyKU/YNhRC9S5+AhP4XEIxUPUFaD4Wzva+QrKvLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUpIqvg/LQU3VnoNSXSdeTspn1V/8wHwYDVR0j BBgwFoAUtfjncSqDvivXjPxAZYyAMvA7ZoIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZGI1OWExMC01OGQwLTQ2MmUtYjA5Yi0xOTE5YjFjMzVkNzIvMC9CNUY4RTc3MTJB ODNCRTJCRDc4Q0ZDNDA2NThDODAzMkYwM0I2NjgyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjVGOEU3NzEyQTgzQkUyQkQ3OENGQzQwNjU4QzgwMzJGMDNC NjY4Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NkYjU5YTEwLTU4ZDAtNDYyZS1i MDliLTE5MTliMWMzNWQ3Mi8wLzMxMzAzMzJlMzMzODJlMzEzMDM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZyZsMA0GCSqG SIb3DQEBCwUAA4IBAQBKKZtD3jwoPTMfsa2kyJz5Ruo1dXWo+KbGt0/NjruwrYWP XazpgbXwZoSdaP/LwoCkgCROrVrdure+3cp6pdZfybHKYQmKAs5+Xri9Az0CT6AS KQCZZT/qCC0IPUA1Js7uilKsi402xgpFJ8rML+zriTCtE89X8pppKt7UHMyTsxC/ CdMVq3ZMuMkyRGX+Iu1+xGEYAuMMlP2Nf1MGlh1oA8j/na5wT/y36KlImegkDKJK QZODEWHNsraPF1c6cMW2fV0420Dvj/vKy5sN7fdOEtYLhJuzVNf0FBvayTCniIbo HucvkbKg0HzQV9yG8EiouGuLqVOzn42ocpumG+yj -----END CERTIFICATE-----Generated at Mon Nov 25 18:43:03 2024 by rpki-client on console-ams.rpki-client.org