$ rpki-client -vvf repo-rpki.idnic.net/repo/14885525-cb0f-46a0-8253-042d7d7aff38/0/3130332e33352e3135332e302f32342d3234203d3e2039333431.roa File: 3130332e33352e3135332e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: OiTIcbauaRQZkoh05qWm9giYFtWGDu1XoyHAojKPf2g= Subject key identifier: AA:19:47:3F:48:A7:D1:BD:BD:CE:E5:8A:5D:0B:63:3A:C5:6A:E5:A1 Certificate issuer: /CN=0100A7F6C4D58C3867F9CED7E7D46DCED0A57804 Certificate serial: 59A1826186E349F0CEF5E826C7F5806C0640DF75 Authority key identifier: 01:00:A7:F6:C4:D5:8C:38:67:F9:CE:D7:E7:D4:6D:CE:D0:A5:78:04 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0100A7F6C4D58C3867F9CED7E7D46DCED0A57804.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14885525-cb0f-46a0-8253-042d7d7aff38/0/3130332e33352e3135332e302f32342d3234203d3e2039333431.roa Signing time: Fri 04 Oct 2024 07:00:00 +0000 ROA not before: Fri 04 Oct 2024 06:55:00 +0000 ROA not after: Fri 03 Oct 2025 07:00:00 +0000 asID: 9341 IP address blocks: 103.35.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14885525-cb0f-46a0-8253-042d7d7aff38/0/0100A7F6C4D58C3867F9CED7E7D46DCED0A57804.crl rsync://repo-rpki.idnic.net/repo/14885525-cb0f-46a0-8253-042d7d7aff38/0/0100A7F6C4D58C3867F9CED7E7D46DCED0A57804.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0100A7F6C4D58C3867F9CED7E7D46DCED0A57804.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:a1:82:61:86:e3:49:f0:ce:f5:e8:26:c7:f5:80:6c:06:40:df:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0100A7F6C4D58C3867F9CED7E7D46DCED0A57804 Validity Not Before: Oct 4 06:55:00 2024 GMT Not After : Oct 3 07:00:00 2025 GMT Subject: CN=AA19473F48A7D1BDBDCEE58A5D0B633AC56AE5A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:48:2b:5c:31:67:af:03:78:b9:52:3d:95:22: 2c:32:d4:73:06:4f:95:62:2c:0f:b8:bb:b4:9f:1b: 55:74:a5:bf:d5:07:38:97:11:ba:0b:a2:43:87:5f: 33:6e:d4:be:53:43:26:49:d3:b1:73:4c:35:06:11: 4c:2c:0f:61:9b:6e:1a:65:c7:82:01:e3:a4:8e:8e: 35:9c:2e:78:0c:3b:0e:92:71:a5:21:96:e5:40:e3: 1b:17:16:30:5c:f6:59:6a:a2:2c:9a:ba:7e:91:e6: 99:bf:ed:4c:18:8b:f2:4b:20:97:67:45:ec:d0:46: 01:41:66:b6:18:79:f4:82:a3:00:05:8e:61:1c:48: 85:0d:24:03:44:07:69:f5:6c:29:13:cc:38:ba:05: 14:35:09:ad:b4:0b:73:16:cd:10:4c:7a:fb:d6:e7: d0:76:e6:0c:df:2b:32:0e:63:61:66:91:9e:03:48: 5e:13:6f:17:2f:eb:79:3e:a4:0f:56:79:e9:69:20: e0:86:3f:7d:de:69:0d:4b:58:16:41:eb:b4:11:a0: de:59:3a:95:aa:21:e4:bd:60:de:07:51:68:39:f5: 69:53:cd:40:4a:57:e2:e7:32:3e:f2:ac:15:bc:d1: bc:5a:eb:41:3a:46:bd:21:30:49:2f:0f:be:8d:e4: 96:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:19:47:3F:48:A7:D1:BD:BD:CE:E5:8A:5D:0B:63:3A:C5:6A:E5:A1 X509v3 Authority Key Identifier: keyid:01:00:A7:F6:C4:D5:8C:38:67:F9:CE:D7:E7:D4:6D:CE:D0:A5:78:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14885525-cb0f-46a0-8253-042d7d7aff38/0/0100A7F6C4D58C3867F9CED7E7D46DCED0A57804.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0100A7F6C4D58C3867F9CED7E7D46DCED0A57804.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14885525-cb0f-46a0-8253-042d7d7aff38/0/3130332e33352e3135332e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.35.153.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:2f:65:83:80:73:3f:46:9d:26:59:a0:e1:74:36:8d:e1:07: eb:0a:1f:56:d9:55:04:a5:f2:c2:cd:1e:f3:db:f5:36:8c:23: 2d:d8:1c:49:1d:18:35:9b:7e:90:ff:74:21:11:e8:05:dd:97: d9:36:2a:b4:2e:6f:de:18:0f:03:4b:91:4e:ac:5e:58:45:6d: a3:f5:d4:d9:d2:15:3b:5c:bc:07:bf:fd:1d:5b:25:98:c8:ff: ef:7e:ea:80:7c:a1:60:6c:de:c4:df:1a:df:c7:8d:3d:47:3e: e1:ae:27:3d:18:ec:97:c4:5e:63:da:ae:96:f6:b1:2a:e9:b9: df:fd:f9:ef:2c:25:29:19:58:97:98:ef:f3:44:cf:0f:47:65: 78:08:cb:b0:d2:71:2c:2d:19:94:86:0e:0e:62:cd:6b:8f:e0: 96:a5:8e:7d:f4:91:8b:d3:ad:73:42:d5:0c:31:1c:09:d0:37: 56:d0:ff:79:c9:7b:89:f7:b9:92:bc:c6:36:8e:37:76:14:59: cf:14:36:8f:8f:9b:74:a3:b5:26:99:5d:6a:e6:bd:97:77:db: b3:1c:4a:95:5f:d0:de:ce:de:ed:c4:db:9e:55:f8:5e:0e:9b: ee:b4:e0:f7:63:89:f1:37:96:5f:dc:11:4d:0a:42:54:b0:b5: d0:f2:42:4e -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUWaGCYYbjSfDO9egmx/WAbAZA33UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDEwMEE3RjZDNEQ1OEMzODY3RjlDRUQ3RTdENDZEQ0VE MEE1NzgwNDAeFw0yNDEwMDQwNjU1MDBaFw0yNTEwMDMwNzAwMDBaMDMxMTAvBgNV BAMTKEFBMTk0NzNGNDhBN0QxQkRCRENFRTU4QTVEMEI2MzNBQzU2QUU1QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXSCtcMWevA3i5Uj2VIiwy1HMG T5ViLA+4u7SfG1V0pb/VBziXEboLokOHXzNu1L5TQyZJ07FzTDUGEUwsD2Gbbhpl x4IB46SOjjWcLngMOw6ScaUhluVA4xsXFjBc9llqoiyaun6R5pm/7UwYi/JLIJdn RezQRgFBZrYYefSCowAFjmEcSIUNJANEB2n1bCkTzDi6BRQ1Ca20C3MWzRBMevvW 59B25gzfKzIOY2FmkZ4DSF4Tbxcv63k+pA9WeelpIOCGP33eaQ1LWBZB67QRoN5Z OpWqIeS9YN4HUWg59WlTzUBKV+LnMj7yrBW80bxa60E6Rr0hMEkvD76N5Ja/AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUqhlHP0in0b29zuWKXQtjOsVq5aEwHwYDVR0j BBgwFoAUAQCn9sTVjDhn+c7X59RtztCleAQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDg4NTUyNS1jYjBmLTQ2YTAtODI1My0wNDJkN2Q3YWZmMzgvMC8wMTAwQTdGNkM0 RDU4QzM4NjdGOUNFRDdFN0Q0NkRDRUQwQTU3ODA0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDEwMEE3RjZDNEQ1OEMzODY3RjlDRUQ3RTdENDZEQ0VEMEE1 NzgwNC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0ODg1NTI1LWNiMGYtNDZhMC04 MjUzLTA0MmQ3ZDdhZmYzOC8wLzMxMzAzMzJlMzMzNTJlMzEzNTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzkzMzM0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnI5kwDQYJKoZIhvcN AQELBQADggEBAIovZYOAcz9GnSZZoOF0No3hB+sKH1bZVQSl8sLNHvPb9TaMIy3Y HEkdGDWbfpD/dCER6AXdl9k2KrQub94YDwNLkU6sXlhFbaP11NnSFTtcvAe//R1b JZjI/+9+6oB8oWBs3sTfGt/HjT1HPuGuJz0Y7JfEXmParpb2sSrpud/9+e8sJSkZ WJeY7/NEzw9HZXgIy7DScSwtGZSGDg5izWuP4Jaljn30kYvTrXNC1QwxHAnQN1bQ /3nJe4n3uZK8xjaON3YUWc8UNo+Pm3SjtSaZXWrmvZd327McSpVf0N7O3u3E255V +F4Om+604PdjifE3ll/cEU0KQlSwtdDyQk4= -----END CERTIFICATE-----Generated at Fri Nov 22 21:02:27 2024 by rpki-client on console-fra.rpki-client.org