$ rpki-client -vvf repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31342e302f32332d3234203d3e20313339343338.roa File: 3130332e3134352e31342e302f32332d3234203d3e20313339343338.roa (raw, json) Hash identifier: sGuZ949AervQFXJY8lGdE9UQu3pLwaxX5H+2ASfBYqU= Subject key identifier: 14:73:5F:4F:69:63:47:25:D1:EC:61:7F:65:91:64:28:08:08:E5:33 Certificate issuer: /CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Certificate serial: 3212DF9488895BF5BFE8E6338C907750EB923423 Authority key identifier: 25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31342e302f32332d3234203d3e20313339343338.roa Signing time: Sat 28 Sep 2024 21:00:02 +0000 ROA not before: Sat 28 Sep 2024 20:55:02 +0000 ROA not after: Sat 27 Sep 2025 21:00:02 +0000 asID: 139438 IP address blocks: 103.145.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:12:df:94:88:89:5b:f5:bf:e8:e6:33:8c:90:77:50:eb:92:34:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Validity Not Before: Sep 28 20:55:02 2024 GMT Not After : Sep 27 21:00:02 2025 GMT Subject: CN=14735F4F69634725D1EC617F659164280808E533 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6f:33:72:b6:aa:2a:b3:d9:19:84:10:80:48: 90:b6:2d:49:ee:86:f0:54:9e:74:b7:30:5e:28:bc: 9a:bd:3d:dc:65:ee:1d:4a:ff:b0:c2:cd:cb:d0:12: 20:7d:8f:1d:bb:d0:4a:1d:a7:ac:ca:11:a1:bf:c7: 84:0c:49:4d:fc:a6:d7:de:89:39:f2:19:08:14:f3: 75:e4:aa:de:d7:0e:22:b4:9e:4d:eb:d9:f6:35:1f: 3d:2b:46:20:9b:a0:af:3e:00:17:3f:d4:f3:60:e5: 0d:de:96:f2:80:6c:be:d3:72:53:a3:e4:d3:ed:8d: 41:b3:c5:ed:6b:6f:b8:ab:e4:50:c6:32:0a:9f:3e: cc:c7:b4:d0:9e:83:2e:61:83:1e:08:7d:9d:5d:e7: 50:73:9b:17:4a:c7:07:ca:21:7a:ca:73:18:da:dd: 9d:6e:62:72:98:a8:e8:54:cc:37:0f:d9:f3:fd:06: 48:79:47:b9:3e:10:12:f7:78:d4:ab:97:a9:a1:9a: c9:8e:85:5a:fe:72:bf:c2:fb:4a:fc:7d:12:2d:9f: fe:ef:b8:3d:31:e8:d7:64:e8:91:be:c7:c2:9a:81: 15:6a:f4:f0:68:d5:c6:1e:b7:3f:42:2c:41:4d:86: a5:f2:61:ae:2a:e5:87:83:cc:1a:2b:bf:25:bb:3a: 50:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:73:5F:4F:69:63:47:25:D1:EC:61:7F:65:91:64:28:08:08:E5:33 X509v3 Authority Key Identifier: keyid:25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31342e302f32332d3234203d3e20313339343338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.14.0/23 Signature Algorithm: sha256WithRSAEncryption 92:ff:21:5e:df:18:56:a6:51:01:e5:5f:b0:55:a9:98:75:1b: 29:db:3e:65:43:5f:64:2f:28:82:8a:2a:fc:b9:f3:75:fc:7a: a7:9a:e9:bc:5b:e5:a2:84:a2:21:a6:93:fa:5b:e1:0f:c1:21: 63:7a:20:89:cb:6e:4b:db:5a:b6:94:17:a8:23:24:9e:e0:04: 2c:ec:d4:90:fc:f2:8d:63:da:ff:58:99:aa:1e:9c:9c:f2:7e: e6:7d:7c:28:3f:5a:63:ba:7d:33:4e:a4:91:f0:50:65:26:cc: 5a:17:64:16:c0:5f:7a:d3:fa:1a:59:44:59:de:7d:03:45:e6: 6d:f9:36:92:a8:2c:d4:0c:6f:84:49:62:08:01:e9:41:53:af: 9f:5f:51:f5:e4:b4:2b:cc:49:7f:e3:8e:2e:9e:d4:2b:b2:e5: 13:eb:eb:61:b9:dd:35:52:7c:8e:64:ef:ac:23:65:5e:16:e8: 58:6f:b0:ab:62:82:74:5d:a8:0a:86:83:cf:0a:e7:cd:ca:ab: cb:51:f0:f9:7d:81:a5:9a:1b:a8:b5:59:0b:eb:45:f4:ad:c2: f7:4d:9b:d6:36:9b:9f:c6:cc:a9:da:1c:b0:7f:4d:8d:b0:ff: 68:f7:fc:bf:8e:4b:6f:2b:b8:a0:ce:6a:6b:da:b2:f0:8f:26: 1d:83:8b:6f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMhLflIiJW/W/6OYzjJB3UOuSNCMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5Mzcy RUJEMkExNzAeFw0yNDA5MjgyMDU1MDJaFw0yNTA5MjcyMTAwMDJaMDMxMTAvBgNV BAMTKDE0NzM1RjRGNjk2MzQ3MjVEMUVDNjE3RjY1OTE2NDI4MDgwOEU1MzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrbzNytqoqs9kZhBCASJC2LUnu hvBUnnS3MF4ovJq9Pdxl7h1K/7DCzcvQEiB9jx270Eodp6zKEaG/x4QMSU38ptfe iTnyGQgU83Xkqt7XDiK0nk3r2fY1Hz0rRiCboK8+ABc/1PNg5Q3elvKAbL7TclOj 5NPtjUGzxe1rb7ir5FDGMgqfPszHtNCegy5hgx4IfZ1d51BzmxdKxwfKIXrKcxja 3Z1uYnKYqOhUzDcP2fP9Bkh5R7k+EBL3eNSrl6mhmsmOhVr+cr/C+0r8fRItn/7v uD0x6Ndk6JG+x8KagRVq9PBo1cYetz9CLEFNhqXyYa4q5YeDzBorvyW7OlBzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFHNfT2ljRyXR7GF/ZZFkKAgI5TMwHwYDVR0j BBgwFoAUJVIkDv/uL2D1aE3QPt5JNy69KhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDA0MjMzZi1iYjJjLTQ3ZDctOTAxYy1lM2M4MmY4ZDQyM2MvMC8yNTUyMjQwRUZG RUUyRjYwRjU2ODRERDAzRURFNDkzNzJFQkQyQTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5MzcyRUJE MkExNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMDQyMzNmLWJiMmMtNDdkNy05 MDFjLWUzYzgyZjhkNDIzYy8wLzMxMzAzMzJlMzEzNDM1MmUzMTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5EOMA0GCSqG SIb3DQEBCwUAA4IBAQCS/yFe3xhWplEB5V+wVamYdRsp2z5lQ19kLyiCiir8ufN1 /Hqnmum8W+WihKIhppP6W+EPwSFjeiCJy25L21q2lBeoIySe4AQs7NSQ/PKNY9r/ WJmqHpyc8n7mfXwoP1pjun0zTqSR8FBlJsxaF2QWwF960/oaWURZ3n0DReZt+TaS qCzUDG+ESWIIAelBU6+fX1H15LQrzEl/444untQrsuUT6+thud01UnyOZO+sI2Ve FuhYb7CrYoJ0XagKhoPPCufNyqvLUfD5fYGlmhuotVkL60X0rcL3TZvWNpufxsyp 2hywf02NsP9o9/y/jktvK7igzmpr2rLwjyYdg4tv -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:50 2024 by rpki-client on console-ams.rpki-client.org