$ rpki-client -vvf repo-rpki.idnic.net/repo/eb81bcea-b70f-4374-924b-b6c778109837/0/3130332e3130382e3234302e302f32322d3232203d3e20313336383535.roa File: 3130332e3130382e3234302e302f32322d3232203d3e20313336383535.roa (raw, json) Hash identifier: vFbxzvWMe+G7Jz6pzEc4uPBFg5E57nkcCYhIffrIAXo= Subject key identifier: D6:29:7C:7B:55:13:FB:0D:C2:C2:8B:13:03:B2:9B:F9:14:B4:2A:0B Certificate issuer: /CN=CA47BA6D9780611AEA68BC9BF72724AE94799AA6 Certificate serial: 58A35D7252169EEE4C65A7A06BC0F1D9EFA51A0A Authority key identifier: CA:47:BA:6D:97:80:61:1A:EA:68:BC:9B:F7:27:24:AE:94:79:9A:A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA47BA6D9780611AEA68BC9BF72724AE94799AA6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eb81bcea-b70f-4374-924b-b6c778109837/0/3130332e3130382e3234302e302f32322d3232203d3e20313336383535.roa Signing time: Sun 10 Nov 2024 02:00:00 +0000 ROA not before: Sun 10 Nov 2024 01:55:00 +0000 ROA not after: Sun 09 Nov 2025 02:00:00 +0000 asID: 136855 IP address blocks: 103.108.240.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eb81bcea-b70f-4374-924b-b6c778109837/0/CA47BA6D9780611AEA68BC9BF72724AE94799AA6.crl rsync://repo-rpki.idnic.net/repo/eb81bcea-b70f-4374-924b-b6c778109837/0/CA47BA6D9780611AEA68BC9BF72724AE94799AA6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA47BA6D9780611AEA68BC9BF72724AE94799AA6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:a3:5d:72:52:16:9e:ee:4c:65:a7:a0:6b:c0:f1:d9:ef:a5:1a:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA47BA6D9780611AEA68BC9BF72724AE94799AA6 Validity Not Before: Nov 10 01:55:00 2024 GMT Not After : Nov 9 02:00:00 2025 GMT Subject: CN=D6297C7B5513FB0DC2C28B1303B29BF914B42A0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:72:4c:79:97:eb:32:8d:c9:84:29:ab:66:db: e3:4b:bf:7c:21:15:92:a8:f3:8b:e3:f5:24:a3:39: a1:ce:9b:ec:3a:80:65:1f:53:72:ca:3c:55:5b:16: dc:90:2b:fc:da:cd:ec:b9:33:33:16:8e:0b:98:10: b5:6d:7f:c6:31:22:10:0b:a0:8e:a6:76:9c:9d:51: 61:88:88:56:92:bd:ec:19:2c:ba:af:58:35:35:a8: f2:03:14:e1:92:7d:b2:b3:df:1a:50:ed:57:ac:74: f7:29:9a:cf:14:0a:87:24:e7:b3:e6:b0:71:7a:07: 45:97:df:ad:b7:b7:82:27:23:70:08:8a:8c:7a:bb: 13:22:a8:f9:ed:16:2d:79:9e:33:b8:ad:bc:e0:b3: 5f:24:ce:11:06:93:1e:e6:09:3d:9b:54:5e:1d:36: 06:0e:33:63:2d:e3:0c:af:3b:dc:78:65:45:d5:61: 0e:f6:d6:b4:22:9a:74:4d:0b:2a:a0:7d:09:f9:1c: 6f:40:a3:c3:1e:f0:90:a3:27:f0:b0:36:86:02:35: 76:f8:b5:56:76:da:86:f1:69:84:78:bb:9a:63:6d: 87:ff:eb:c5:e7:d7:b1:29:fb:b6:87:47:66:30:4a: ff:68:51:2c:f4:32:82:5d:3d:13:71:ff:bb:d9:b7: 83:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:29:7C:7B:55:13:FB:0D:C2:C2:8B:13:03:B2:9B:F9:14:B4:2A:0B X509v3 Authority Key Identifier: keyid:CA:47:BA:6D:97:80:61:1A:EA:68:BC:9B:F7:27:24:AE:94:79:9A:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eb81bcea-b70f-4374-924b-b6c778109837/0/CA47BA6D9780611AEA68BC9BF72724AE94799AA6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA47BA6D9780611AEA68BC9BF72724AE94799AA6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eb81bcea-b70f-4374-924b-b6c778109837/0/3130332e3130382e3234302e302f32322d3232203d3e20313336383535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.240.0/22 Signature Algorithm: sha256WithRSAEncryption 8d:4c:ac:51:55:76:57:11:f6:3d:27:5c:b8:7a:c3:d3:c6:36: c2:c7:0c:e6:77:6e:ec:bc:26:56:ae:5e:17:bf:90:5f:e4:41: 4b:39:ef:65:84:ca:13:10:3f:f9:18:7e:89:98:c0:59:96:2b: ca:a4:93:88:15:54:16:81:b0:fb:9c:fa:b6:56:18:03:04:63: f3:d1:8a:5f:42:8f:b0:58:9d:24:00:c0:06:1c:91:95:ba:7e: 1e:f7:e8:80:18:3f:82:40:bc:f7:d7:b0:ba:65:7f:e3:f0:4c: 75:f9:66:90:6c:63:a1:99:81:ef:90:d8:d7:62:dc:71:32:38: cd:e9:43:cc:2d:82:1c:eb:9a:1c:32:13:c6:d2:55:4d:bb:9e: 81:4b:08:a0:ba:ac:9e:71:ed:2f:73:f3:1c:7b:8e:98:99:5e: 1c:4f:fd:45:91:ad:77:11:6d:e9:fb:40:f9:01:10:0b:60:a4: 5a:d2:74:ca:f6:a0:2c:61:40:41:3e:c7:fd:68:23:5f:89:20: 91:4e:17:6f:e0:03:90:14:48:26:6c:26:dd:bd:9b:3c:29:6a: 7d:0b:97:2f:26:c6:15:b3:a0:aa:76:8f:9f:6b:a4:98:41:fa: 7b:5a:4a:e3:11:f3:94:46:e5:35:fe:db:70:c1:23:02:bc:fd: e9:be:39:5c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWKNdclIWnu5MZaega8Dx2e+lGgowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E0N0JBNkQ5NzgwNjExQUVBNjhCQzlCRjcyNzI0QUU5 NDc5OUFBNjAeFw0yNDExMTAwMTU1MDBaFw0yNTExMDkwMjAwMDBaMDMxMTAvBgNV BAMTKEQ2Mjk3QzdCNTUxM0ZCMERDMkMyOEIxMzAzQjI5QkY5MTRCNDJBMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7ckx5l+syjcmEKatm2+NLv3wh FZKo84vj9SSjOaHOm+w6gGUfU3LKPFVbFtyQK/zazey5MzMWjguYELVtf8YxIhAL oI6mdpydUWGIiFaSvewZLLqvWDU1qPIDFOGSfbKz3xpQ7VesdPcpms8UCock57Pm sHF6B0WX3623t4InI3AIiox6uxMiqPntFi15njO4rbzgs18kzhEGkx7mCT2bVF4d NgYOM2Mt4wyvO9x4ZUXVYQ721rQimnRNCyqgfQn5HG9Ao8Me8JCjJ/CwNoYCNXb4 tVZ22obxaYR4u5pjbYf/68Xn17Ep+7aHR2YwSv9oUSz0MoJdPRNx/7vZt4MVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1il8e1UT+w3CwosTA7Kb+RS0KgswHwYDVR0j BBgwFoAUyke6bZeAYRrqaLyb9yckrpR5mqYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YjgxYmNlYS1iNzBmLTQzNzQtOTI0Yi1iNmM3NzgxMDk4MzcvMC9DQTQ3QkE2RDk3 ODA2MTFBRUE2OEJDOUJGNzI3MjRBRTk0Nzk5QUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E0N0JBNkQ5NzgwNjExQUVBNjhCQzlCRjcyNzI0QUU5NDc5 OUFBNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViODFiY2VhLWI3MGYtNDM3NC05 MjRiLWI2Yzc3ODEwOTgzNy8wLzMxMzAzMzJlMzEzMDM4MmUzMjM0MzAyZTMwMmYz MjMyMmQzMjMyMjAzZDNlMjAzMTMzMzYzODM1MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnbPAwDQYJ KoZIhvcNAQELBQADggEBAI1MrFFVdlcR9j0nXLh6w9PGNsLHDOZ3buy8JlauXhe/ kF/kQUs572WEyhMQP/kYfomYwFmWK8qkk4gVVBaBsPuc+rZWGAMEY/PRil9Cj7BY nSQAwAYckZW6fh736IAYP4JAvPfXsLplf+PwTHX5ZpBsY6GZge+Q2Ndi3HEyOM3p Q8wtghzrmhwyE8bSVU27noFLCKC6rJ5x7S9z8xx7jpiZXhxP/UWRrXcRben7QPkB EAtgpFrSdMr2oCxhQEE+x/1oI1+JIJFOF2/gA5AUSCZsJt29mzwpan0Lly8mxhWz oKp2j59rpJhB+ntaSuMR85RG5TX+23DBIwK8/em+OVw= -----END CERTIFICATE-----Generated at Mon Nov 25 23:52:56 2024 by rpki-client on console-ams.rpki-client.org