$ rpki-client -vvf repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/3130332e3130382e3139312e302f32342d3234203d3e20313337333132.roa File: 3130332e3130382e3139312e302f32342d3234203d3e20313337333132.roa (raw, json) Hash identifier: KIBNFpdbg6BRQCIPOHqspYOBoezcUYWgmcH91SlD2KY= Subject key identifier: 31:FF:51:6F:80:C6:6C:49:DE:F4:C5:D4:2C:0D:DB:8A:E8:B9:EA:29 Certificate issuer: /CN=DEF44331E724964F28697DEABAF2313CDCEEFACE Certificate serial: 5E2C7079E2E6CD1FA92EC012B0FE1A65E72EF37D Authority key identifier: DE:F4:43:31:E7:24:96:4F:28:69:7D:EA:BA:F2:31:3C:DC:EE:FA:CE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEF44331E724964F28697DEABAF2313CDCEEFACE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/3130332e3130382e3139312e302f32342d3234203d3e20313337333132.roa Signing time: Mon 01 Jul 2024 01:05:25 +0000 ROA not before: Mon 01 Jul 2024 01:00:25 +0000 ROA not after: Mon 30 Jun 2025 01:05:25 +0000 asID: 137312 IP address blocks: 103.108.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/DEF44331E724964F28697DEABAF2313CDCEEFACE.crl rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/DEF44331E724964F28697DEABAF2313CDCEEFACE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEF44331E724964F28697DEABAF2313CDCEEFACE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:2c:70:79:e2:e6:cd:1f:a9:2e:c0:12:b0:fe:1a:65:e7:2e:f3:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DEF44331E724964F28697DEABAF2313CDCEEFACE Validity Not Before: Jul 1 01:00:25 2024 GMT Not After : Jun 30 01:05:25 2025 GMT Subject: CN=31FF516F80C66C49DEF4C5D42C0DDB8AE8B9EA29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:55:c4:61:df:c6:91:9b:a8:27:cd:ef:a0:3b: c0:c1:41:b4:4b:92:d0:ac:fa:84:02:37:68:c7:56: 54:d4:ac:d5:fc:8d:ee:c4:66:e0:56:12:54:28:27: 20:dc:c1:6b:89:69:2a:14:f6:10:53:7b:fc:94:33: 4e:e3:57:e6:9b:28:34:90:c0:30:f4:9c:aa:6b:c3: 59:9c:c9:96:22:b5:17:ad:1a:3a:5f:57:60:8c:68: 66:71:ac:90:9e:43:ab:3b:2f:7a:34:12:77:6c:5b: c9:7d:dd:93:40:ff:a6:17:40:93:e0:de:38:62:d9: 17:10:64:19:98:c1:07:40:d4:05:be:32:be:aa:35: 7a:53:ff:c5:2d:07:8d:39:76:5d:72:c6:db:ac:20: 71:fd:68:bb:17:23:1b:6b:76:88:f0:3e:83:77:a1: b3:e5:03:b7:62:d3:06:43:95:20:e7:e8:f9:9f:5e: 3a:9b:c5:7b:3a:02:09:2a:4d:18:c5:e2:b3:a7:2b: 62:b1:9f:25:c1:21:a0:6e:58:98:e2:49:81:c4:6f: 63:82:a0:0d:2b:0d:65:67:a3:be:6e:f0:81:41:09: cb:43:07:a1:36:a8:5c:bc:53:0d:7c:53:25:7f:56: d7:cb:71:54:b4:5d:19:4c:37:25:5d:99:35:d2:40: 57:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:FF:51:6F:80:C6:6C:49:DE:F4:C5:D4:2C:0D:DB:8A:E8:B9:EA:29 X509v3 Authority Key Identifier: keyid:DE:F4:43:31:E7:24:96:4F:28:69:7D:EA:BA:F2:31:3C:DC:EE:FA:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/DEF44331E724964F28697DEABAF2313CDCEEFACE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEF44331E724964F28697DEABAF2313CDCEEFACE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/3130332e3130382e3139312e302f32342d3234203d3e20313337333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.191.0/24 Signature Algorithm: sha256WithRSAEncryption e0:f2:ec:fa:32:ae:94:a2:28:de:c1:98:25:4b:39:2a:96:37: f2:bd:f7:1e:b2:b4:59:18:60:89:05:39:cc:76:7a:94:0c:46: 2c:de:9b:fa:3d:a1:83:c6:f2:ed:60:11:35:c5:fa:24:34:b7: 7d:20:0b:96:93:16:b7:1e:d4:4d:d2:3a:2d:e2:e8:3b:1e:dc: 45:9a:c7:e3:ef:20:c4:b8:c6:04:9f:9d:85:c7:7a:8d:14:09: ac:10:17:70:95:40:96:0b:5a:fd:96:94:84:6a:ee:9d:f4:1c: 1d:44:93:7f:5a:99:db:8c:1a:3f:92:9d:91:60:2e:b8:74:36: 2a:a3:bb:ba:25:4d:5d:71:85:36:c7:1f:c3:16:77:0b:c1:5c: 0a:1a:63:0d:99:98:d5:b1:ad:1d:e4:f8:22:28:48:2f:cc:30: c3:60:30:75:0f:68:c7:2a:be:c0:3d:1f:d6:06:0c:85:c4:9e: 15:b8:26:12:d8:ff:d1:14:92:62:64:a9:be:5d:5a:fe:06:c7: 35:c7:96:62:2e:50:8d:cd:1a:a4:d2:ee:06:20:ac:34:1e:28: b8:93:bc:e8:1e:da:46:86:03:56:46:9e:a7:c5:82:52:d1:b4: 03:37:0f:93:88:b8:c6:43:d0:3c:65:26:d8:c1:33:ff:8f:2a: 3c:41:21:aa -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXixweeLmzR+pLsASsP4aZecu830wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREVGNDQzMzFFNzI0OTY0RjI4Njk3REVBQkFGMjMxM0NE Q0VFRkFDRTAeFw0yNDA3MDEwMTAwMjVaFw0yNTA2MzAwMTA1MjVaMDMxMTAvBgNV BAMTKDMxRkY1MTZGODBDNjZDNDlERUY0QzVENDJDMEREQjhBRThCOUVBMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIVcRh38aRm6gnze+gO8DBQbRL ktCs+oQCN2jHVlTUrNX8je7EZuBWElQoJyDcwWuJaSoU9hBTe/yUM07jV+abKDSQ wDD0nKprw1mcyZYitRetGjpfV2CMaGZxrJCeQ6s7L3o0EndsW8l93ZNA/6YXQJPg 3jhi2RcQZBmYwQdA1AW+Mr6qNXpT/8UtB405dl1yxtusIHH9aLsXIxtrdojwPoN3 obPlA7di0wZDlSDn6PmfXjqbxXs6AgkqTRjF4rOnK2KxnyXBIaBuWJjiSYHEb2OC oA0rDWVno75u8IFBCctDB6E2qFy8Uw18UyV/VtfLcVS0XRlMNyVdmTXSQFcpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUMf9Rb4DGbEne9MXULA3biui56ikwHwYDVR0j BBgwFoAU3vRDMecklk8oaX3quvIxPNzu+s4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MTkwYzM3ZS0yNjU1LTQyYjEtYmFmNy00MmVjMWNmMTkyYWEvMC9ERUY0NDMzMUU3 MjQ5NjRGMjg2OTdERUFCQUYyMzEzQ0RDRUVGQUNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREVGNDQzMzFFNzI0OTY0RjI4Njk3REVBQkFGMjMxM0NEQ0VF RkFDRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxOTBjMzdlLTI2NTUtNDJiMS1i YWY3LTQyZWMxY2YxOTJhYS8wLzMxMzAzMzJlMzEzMDM4MmUzMTM5MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzczMzMxMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnbL8wDQYJ KoZIhvcNAQELBQADggEBAODy7PoyrpSiKN7BmCVLOSqWN/K99x6ytFkYYIkFOcx2 epQMRizem/o9oYPG8u1gETXF+iQ0t30gC5aTFrce1E3SOi3i6Dse3EWax+PvIMS4 xgSfnYXHeo0UCawQF3CVQJYLWv2WlIRq7p30HB1Ek39amduMGj+SnZFgLrh0Niqj u7olTV1xhTbHH8MWdwvBXAoaYw2ZmNWxrR3k+CIoSC/MMMNgMHUPaMcqvsA9H9YG DIXEnhW4JhLY/9EUkmJkqb5dWv4GxzXHlmIuUI3NGqTS7gYgrDQeKLiTvOge2kaG A1ZGnqfFglLRtAM3D5OIuMZD0DxlJtjBM/+PKjxBIao= -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:43 2024 by rpki-client on console-ams.rpki-client.org