$ rpki-client -vvf repo-rpki.idnic.net/repo/0e57991a-156d-4b55-90cb-79b876cf6a4a/0/3130332e3138342e3138312e302f32342d3234203d3e20313339333831.roa File: 3130332e3138342e3138312e302f32342d3234203d3e20313339333831.roa (raw, json) Hash identifier: L2EmD81aMJH/5FIYqmAaBN4dVwGTSb3agMBVp5kZ0Sc= Subject key identifier: 04:14:3A:24:78:D4:11:DC:FA:A2:02:95:55:2D:E7:D4:8C:87:F4:1A Certificate issuer: /CN=1678828C849BDE3472FE846308767F54ED7F8232 Certificate serial: 20158F5A2702BD5DC6204DA8F36435528260ADFA Authority key identifier: 16:78:82:8C:84:9B:DE:34:72:FE:84:63:08:76:7F:54:ED:7F:82:32 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1678828C849BDE3472FE846308767F54ED7F8232.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e57991a-156d-4b55-90cb-79b876cf6a4a/0/3130332e3138342e3138312e302f32342d3234203d3e20313339333831.roa Signing time: Tue 17 Sep 2024 08:00:00 +0000 ROA not before: Tue 17 Sep 2024 07:55:00 +0000 ROA not after: Tue 16 Sep 2025 08:00:00 +0000 asID: 139381 IP address blocks: 103.184.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e57991a-156d-4b55-90cb-79b876cf6a4a/0/1678828C849BDE3472FE846308767F54ED7F8232.crl rsync://repo-rpki.idnic.net/repo/0e57991a-156d-4b55-90cb-79b876cf6a4a/0/1678828C849BDE3472FE846308767F54ED7F8232.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1678828C849BDE3472FE846308767F54ED7F8232.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:15:8f:5a:27:02:bd:5d:c6:20:4d:a8:f3:64:35:52:82:60:ad:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1678828C849BDE3472FE846308767F54ED7F8232 Validity Not Before: Sep 17 07:55:00 2024 GMT Not After : Sep 16 08:00:00 2025 GMT Subject: CN=04143A2478D411DCFAA20295552DE7D48C87F41A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:63:0d:3e:d3:92:2d:bf:8e:5b:85:51:29:59: 77:8f:33:8b:19:9a:3c:c4:19:32:fa:11:ea:a3:36: 45:11:30:54:5b:dc:73:f8:8e:eb:2d:2a:51:06:7a: ea:5c:6f:c6:e9:25:67:98:a9:f3:62:8e:7e:e5:28: 0d:99:04:a5:4a:96:ca:33:bb:4e:1a:d9:27:60:c6: 55:fd:65:63:55:3e:97:98:94:e6:76:50:57:3a:88: 47:ba:9e:52:82:e3:48:a2:c1:1e:0e:03:d7:ab:ca: 42:9e:5a:27:49:27:f0:1b:b8:f3:1c:b7:42:a5:5a: 81:5f:64:6f:a0:12:8a:09:8e:4b:98:9b:20:ef:74: ab:4c:af:e2:3f:f5:47:fe:cc:30:38:31:0c:ec:f5: 92:e2:94:f0:92:14:87:f2:93:c7:21:b7:2c:f6:06: a8:a2:e7:c7:a3:56:f7:60:ae:ae:8a:13:19:6b:61: 29:0a:b5:1b:1a:ce:f5:c3:07:d8:14:5d:50:2b:c7: eb:e4:e5:dc:6b:b9:b2:38:da:cf:08:5b:74:01:51: 81:e8:4d:b0:c7:91:9a:9d:2f:d6:ad:be:1e:79:47: b5:f7:39:3a:07:c0:dd:61:21:a0:70:69:c3:e1:cd: 9f:89:a5:bb:79:ee:65:a9:a6:47:56:4e:d1:29:e2: c1:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:14:3A:24:78:D4:11:DC:FA:A2:02:95:55:2D:E7:D4:8C:87:F4:1A X509v3 Authority Key Identifier: keyid:16:78:82:8C:84:9B:DE:34:72:FE:84:63:08:76:7F:54:ED:7F:82:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e57991a-156d-4b55-90cb-79b876cf6a4a/0/1678828C849BDE3472FE846308767F54ED7F8232.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1678828C849BDE3472FE846308767F54ED7F8232.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e57991a-156d-4b55-90cb-79b876cf6a4a/0/3130332e3138342e3138312e302f32342d3234203d3e20313339333831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.181.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:99:ee:2f:50:71:10:9c:8d:8a:9b:46:47:84:6a:b6:d3:35: 34:9b:13:ab:e2:90:81:71:95:66:fa:e7:f5:77:7d:5a:f5:56: de:94:08:10:98:e7:8e:79:4e:0c:8d:66:59:65:2e:6d:22:7a: 23:2d:2f:c9:3f:42:e3:fd:3c:12:24:ef:46:37:d5:eb:42:16: a1:ec:9e:fd:c6:f1:8f:86:85:df:04:35:42:04:f6:48:ae:78: e6:bc:bc:28:a1:9b:0d:b7:f2:03:36:94:6e:03:6e:99:d7:dc: 9f:09:02:99:c9:fb:6f:65:58:82:3e:d1:67:87:a4:c8:dd:25: bf:8d:27:a1:9d:07:9e:3e:99:ac:43:de:7e:3f:93:33:73:b9: 59:05:6f:0d:49:3e:fc:4e:41:a0:da:0d:e0:f7:63:16:ee:f5: de:60:7c:82:db:3d:34:46:cd:9c:3c:55:ea:f3:a8:de:dc:9b: e7:52:37:e9:e4:32:5c:be:54:71:c7:de:af:2a:23:f4:df:74: 65:c2:9f:ab:cd:40:60:92:78:ef:2d:c1:16:74:59:54:73:a3: b4:4f:df:10:dc:6f:bd:bf:6f:21:c4:53:d8:51:79:4a:ff:97: 4a:24:9e:f7:96:b9:f6:63:b4:3d:87:68:63:ab:af:45:aa:26: 9f:e0:28:e2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUIBWPWicCvV3GIE2o82Q1UoJgrfowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY3ODgyOEM4NDlCREUzNDcyRkU4NDYzMDg3NjdGNTRF RDdGODIzMjAeFw0yNDA5MTcwNzU1MDBaFw0yNTA5MTYwODAwMDBaMDMxMTAvBgNV BAMTKDA0MTQzQTI0NzhENDExRENGQUEyMDI5NTU1MkRFN0Q0OEM4N0Y0MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPYw0+05Itv45bhVEpWXePM4sZ mjzEGTL6EeqjNkURMFRb3HP4justKlEGeupcb8bpJWeYqfNijn7lKA2ZBKVKlsoz u04a2SdgxlX9ZWNVPpeYlOZ2UFc6iEe6nlKC40iiwR4OA9erykKeWidJJ/AbuPMc t0KlWoFfZG+gEooJjkuYmyDvdKtMr+I/9Uf+zDA4MQzs9ZLilPCSFIfyk8chtyz2 Bqii58ejVvdgrq6KExlrYSkKtRsazvXDB9gUXVArx+vk5dxrubI42s8IW3QBUYHo TbDHkZqdL9atvh55R7X3OToHwN1hIaBwacPhzZ+Jpbt57mWppkdWTtEp4sHxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBBQ6JHjUEdz6ogKVVS3n1IyH9BowHwYDVR0j BBgwFoAUFniCjISb3jRy/oRjCHZ/VO1/gjIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZTU3OTkxYS0xNTZkLTRiNTUtOTBjYi03OWI4NzZjZjZhNGEvMC8xNjc4ODI4Qzg0 OUJERTM0NzJGRTg0NjMwODc2N0Y1NEVEN0Y4MjMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY3ODgyOEM4NDlCREUzNDcyRkU4NDYzMDg3NjdGNTRFRDdG ODIzMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlNTc5OTFhLTE1NmQtNGI1NS05 MGNiLTc5Yjg3NmNmNmE0YS8wLzMxMzAzMzJlMzEzODM0MmUzMTM4MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM4MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnuLUwDQYJ KoZIhvcNAQELBQADggEBAE+Z7i9QcRCcjYqbRkeEarbTNTSbE6vikIFxlWb65/V3 fVr1Vt6UCBCY5455TgyNZlllLm0ieiMtL8k/QuP9PBIk70Y31etCFqHsnv3G8Y+G hd8ENUIE9kiueOa8vCihmw238gM2lG4DbpnX3J8JApnJ+29lWII+0WeHpMjdJb+N J6GdB54+maxD3n4/kzNzuVkFbw1JPvxOQaDaDeD3Yxbu9d5gfILbPTRGzZw8Verz qN7cm+dSN+nkMly+VHHH3q8qI/TfdGXCn6vNQGCSeO8twRZ0WVRzo7RP3xDcb72/ byHEU9hReUr/l0oknveWufZjtD2HaGOrr0WqJp/gKOI= -----END CERTIFICATE-----Generated at Sun Nov 24 05:18:49 2024 by rpki-client on console-ams.rpki-client.org