$ rpki-client -vvf repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/3130332e3136392e3134382e302f32342d3234203d3e20313432333339.roa File: 3130332e3136392e3134382e302f32342d3234203d3e20313432333339.roa (raw, json) Hash identifier: 2GRWO9/Q0MpgVDiM1R341bc3uq7zSgQtLGeuDYAy19g= Subject key identifier: 62:0E:AB:6F:1A:90:31:57:29:FD:48:1D:D3:30:66:AB:6B:43:18:4F Certificate issuer: /CN=C24FD85D1F493383773D253EBB38BED908305E45 Certificate serial: 42908199CD692B77C5D2B0A852979D2CEE642FDF Authority key identifier: C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/3130332e3136392e3134382e302f32342d3234203d3e20313432333339.roa Signing time: Wed 21 Aug 2024 15:00:00 +0000 ROA not before: Wed 21 Aug 2024 14:55:00 +0000 ROA not after: Wed 20 Aug 2025 15:00:00 +0000 asID: 142339 IP address blocks: 103.169.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.crl rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 11:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:90:81:99:cd:69:2b:77:c5:d2:b0:a8:52:97:9d:2c:ee:64:2f:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C24FD85D1F493383773D253EBB38BED908305E45 Validity Not Before: Aug 21 14:55:00 2024 GMT Not After : Aug 20 15:00:00 2025 GMT Subject: CN=620EAB6F1A90315729FD481DD33066AB6B43184F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:b8:77:73:00:09:91:0e:71:6f:e1:d9:71:d0: 5f:be:34:71:79:a1:09:dc:57:0a:e8:fb:6d:91:03: e7:1a:8f:6b:f1:1d:72:75:97:4f:67:12:c4:fb:43: 6a:67:aa:2c:9d:57:b9:6c:4e:0e:5d:27:65:26:83: 1a:c0:4f:08:99:d1:9c:85:9e:b4:bc:d6:af:c4:e7: cd:80:90:3e:c6:45:64:ec:0d:ba:58:36:04:69:d9: 6e:42:53:82:30:cc:20:2c:4b:76:00:0b:5f:a8:68: 6e:8e:ff:9a:5f:50:2b:84:46:61:a9:37:6e:f1:b0: 87:d6:95:17:73:ac:e4:3b:f1:8d:28:bc:b1:96:dc: 95:75:4f:a6:e5:ed:c7:de:55:9a:6b:39:a6:d7:12: cf:71:f6:c7:bb:6c:07:a8:52:da:7c:98:3b:c1:12: 7a:6d:00:e5:da:64:40:1e:9e:bd:e7:3a:f5:b1:80: ed:21:48:1a:10:5e:f3:d1:20:dd:16:dc:c9:43:9d: 78:86:5e:46:b0:08:44:c9:fb:96:be:ad:3d:7f:5e: 36:ff:91:03:1d:7f:68:04:ef:0b:3c:1e:75:a9:e4: 9a:e5:74:b2:32:02:8e:20:a2:0b:de:ff:63:62:5f: 63:22:07:a0:84:0f:e4:7d:cf:cf:83:75:7d:64:76: c5:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:0E:AB:6F:1A:90:31:57:29:FD:48:1D:D3:30:66:AB:6B:43:18:4F X509v3 Authority Key Identifier: keyid:C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/3130332e3136392e3134382e302f32342d3234203d3e20313432333339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.148.0/24 Signature Algorithm: sha256WithRSAEncryption 09:09:3d:99:50:d6:97:be:eb:d7:09:97:23:65:b8:53:49:32: 53:5e:dc:5f:79:94:6f:4d:04:eb:ab:bc:22:19:32:db:e3:25: b2:02:24:fe:36:e2:74:aa:aa:60:5f:df:91:35:c9:d1:2d:18: ff:25:e3:07:1b:80:4f:74:74:6f:e5:d8:db:92:6f:21:06:67: 03:32:ce:20:a8:f8:93:53:06:b2:26:39:d4:62:85:41:2c:cb: 7f:ef:0c:4e:8f:e9:92:2d:75:eb:9d:a6:95:34:01:bd:a4:05: f1:d7:1e:b2:f8:41:4c:1b:87:b3:75:2c:a3:ad:93:a2:47:4f: 56:27:1d:e5:1b:00:21:05:da:65:5d:53:a8:32:ac:0a:ba:4a: ac:20:10:92:05:7f:94:fa:39:9e:31:3a:36:42:e3:89:f8:67: 09:de:17:d0:e8:34:a2:29:36:bb:8f:cf:e5:b1:b2:60:b7:2c: 54:c8:9a:0a:ad:dc:b6:67:8b:ac:04:8b:70:21:00:98:01:b4: 74:e5:f0:eb:e3:26:d6:ba:cd:59:29:13:75:dd:0f:eb:65:4f: f4:ae:5b:0b:a2:a0:89:cd:c8:25:34:57:0f:4b:70:db:a9:70: 9b:37:7b:5f:b1:69:2b:a5:57:b8:f7:3f:7b:23:e7:cc:17:97: d6:0f:a3:6a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQpCBmc1pK3fF0rCoUpedLO5kL98wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzI0RkQ4NUQxRjQ5MzM4Mzc3M0QyNTNFQkIzOEJFRDkw ODMwNUU0NTAeFw0yNDA4MjExNDU1MDBaFw0yNTA4MjAxNTAwMDBaMDMxMTAvBgNV BAMTKDYyMEVBQjZGMUE5MDMxNTcyOUZENDgxREQzMzA2NkFCNkI0MzE4NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxuHdzAAmRDnFv4dlx0F++NHF5 oQncVwro+22RA+caj2vxHXJ1l09nEsT7Q2pnqiydV7lsTg5dJ2UmgxrATwiZ0ZyF nrS81q/E582AkD7GRWTsDbpYNgRp2W5CU4IwzCAsS3YAC1+oaG6O/5pfUCuERmGp N27xsIfWlRdzrOQ78Y0ovLGW3JV1T6bl7cfeVZprOabXEs9x9se7bAeoUtp8mDvB EnptAOXaZEAenr3nOvWxgO0hSBoQXvPRIN0W3MlDnXiGXkawCETJ+5a+rT1/Xjb/ kQMdf2gE7ws8HnWp5JrldLIyAo4gogve/2NiX2MiB6CED+R9z8+DdX1kdsVVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUYg6rbxqQMVcp/Ugd0zBmq2tDGE8wHwYDVR0j BBgwFoAUwk/YXR9JM4N3PSU+uzi+2QgwXkUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MTkyMDIxZS0zOTA0LTQxMTUtYWY1ZS0zZWRiNzEzYmFhMTQvMC9DMjRGRDg1RDFG NDkzMzgzNzczRDI1M0VCQjM4QkVEOTA4MzA1RTQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzI0RkQ4NUQxRjQ5MzM4Mzc3M0QyNTNFQkIzOEJFRDkwODMw NUU0NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzExOTIwMjFlLTM5MDQtNDExNS1h ZjVlLTNlZGI3MTNiYWExNC8wLzMxMzAzMzJlMzEzNjM5MmUzMTM0MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqZQwDQYJ KoZIhvcNAQELBQADggEBAAkJPZlQ1pe+69cJlyNluFNJMlNe3F95lG9NBOurvCIZ MtvjJbICJP424nSqqmBf35E1ydEtGP8l4wcbgE90dG/l2NuSbyEGZwMyziCo+JNT BrImOdRihUEsy3/vDE6P6ZItdeudppU0Ab2kBfHXHrL4QUwbh7N1LKOtk6JHT1Yn HeUbACEF2mVdU6gyrAq6SqwgEJIFf5T6OZ4xOjZC44n4ZwneF9DoNKIpNruPz+Wx smC3LFTImgqt3LZni6wEi3AhAJgBtHTl8OvjJta6zVkpE3XdD+tlT/SuWwuioInN yCU0Vw9LcNupcJs3e1+xaSulV7j3P3sj58wXl9YPo2o= -----END CERTIFICATE-----Generated at Mon Nov 25 09:01:49 2024 by rpki-client on console-ams.rpki-client.org