$ rpki-client -vvf repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31352e302f32342d3234203d3e20313339343338.roa File: 3130332e3134352e31352e302f32342d3234203d3e20313339343338.roa (raw, json) Hash identifier: alDRN92tlwgNSOsmGcO4bYs5k2yVLt0hg1F97xm610Y= Subject key identifier: A9:BA:19:19:95:AE:FC:D6:BC:1B:C2:55:4A:43:43:74:56:7C:A9:90 Certificate issuer: /CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Certificate serial: 2C21C0A9089D05E53BDE11799AF2D2B026F3DC9B Authority key identifier: 25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31352e302f32342d3234203d3e20313339343338.roa Signing time: Sat 28 Sep 2024 21:00:02 +0000 ROA not before: Sat 28 Sep 2024 20:55:02 +0000 ROA not after: Sat 27 Sep 2025 21:00:02 +0000 asID: 139438 IP address blocks: 103.145.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:21:c0:a9:08:9d:05:e5:3b:de:11:79:9a:f2:d2:b0:26:f3:dc:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Validity Not Before: Sep 28 20:55:02 2024 GMT Not After : Sep 27 21:00:02 2025 GMT Subject: CN=A9BA191995AEFCD6BC1BC2554A434374567CA990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fd:d5:43:ac:c4:45:57:77:4b:d5:e5:c0:4e: 71:2b:7e:19:f3:df:e5:75:d1:da:e5:c2:13:9e:e6: b8:29:cb:8f:22:43:ad:70:ac:38:8d:68:fd:fc:9a: 96:9e:a9:e9:b3:3d:59:6f:a8:51:6c:dc:80:b9:ce: 9b:cb:e1:f6:5d:9b:e9:a7:7e:c9:c1:03:d1:93:fc: 9d:5f:0d:45:04:4a:60:91:cc:e9:b6:68:23:df:24: 4b:47:4d:26:2b:bf:d5:e8:7f:b4:4e:da:ca:be:5d: d4:6d:78:00:19:0f:d8:35:67:d0:de:5b:69:51:ef: cb:1f:8c:7b:07:b8:cc:24:38:ed:78:5a:06:d6:27: 9b:eb:b3:86:75:87:48:e3:b4:6a:bd:cc:d8:18:86: 4b:21:45:9f:5b:9b:a2:07:13:1c:95:cb:15:5b:73: cb:bc:fb:a1:e8:eb:94:5a:80:c1:c8:71:d4:1b:4e: c1:4f:6a:91:34:55:cf:19:2d:9f:52:1e:24:c1:2e: d9:47:2c:3e:80:3e:33:46:9d:ae:4b:3d:88:0e:b9: 3f:6c:78:8f:6a:93:c4:e1:a7:5d:a4:21:a0:c0:af: 74:8c:5e:99:48:00:9c:b9:65:dd:52:f1:58:c7:b1: 82:a1:19:17:db:ed:f6:d1:ad:2c:62:27:1d:48:54: 2e:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:BA:19:19:95:AE:FC:D6:BC:1B:C2:55:4A:43:43:74:56:7C:A9:90 X509v3 Authority Key Identifier: keyid:25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31352e302f32342d3234203d3e20313339343338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.15.0/24 Signature Algorithm: sha256WithRSAEncryption 57:ba:27:93:d1:ce:dd:64:26:45:f2:ea:00:97:c0:fe:61:e1: c3:e2:c3:c0:a9:b9:22:bc:f6:e2:14:04:c3:13:74:9b:4b:4c: ce:ab:81:ef:f3:ba:6f:80:3f:83:a7:85:f1:85:21:61:93:53: e4:0f:26:95:19:7d:8f:57:d1:a4:c9:5e:53:6f:28:d1:36:77: ab:b1:a2:9d:3f:cf:17:e3:1a:1e:73:4a:92:e7:d7:3c:d6:df: bd:b8:15:5a:3d:ed:1a:40:41:c4:12:71:b2:b9:d0:ab:d1:a8: dd:10:12:d8:3b:83:ac:28:c0:70:a9:4f:67:44:84:99:c8:c7: cb:66:78:7d:60:a8:c0:1e:15:52:7b:8f:4d:f2:7b:5f:e8:c5: 60:8c:6f:d9:c1:1a:cf:93:d7:2a:81:51:58:f2:c4:56:9a:46: dc:83:c7:0c:a8:4e:29:e1:f7:0e:f4:0f:34:b1:0c:c9:96:44: ff:66:18:b4:06:33:a3:49:27:12:54:d7:43:f8:0c:2c:01:60: 7a:b3:26:7f:e9:e9:74:5f:ec:79:b3:01:ea:13:65:fd:b4:d2: 0a:87:e4:ed:ef:11:07:8c:14:f4:b2:fe:bf:47:0d:de:d9:80: 59:59:18:2a:82:bb:25:3c:57:a1:6a:a3:24:7d:a4:5c:83:da: 71:dd:fc:1d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULCHAqQidBeU73hF5mvLSsCbz3JswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5Mzcy RUJEMkExNzAeFw0yNDA5MjgyMDU1MDJaFw0yNTA5MjcyMTAwMDJaMDMxMTAvBgNV BAMTKEE5QkExOTE5OTVBRUZDRDZCQzFCQzI1NTRBNDM0Mzc0NTY3Q0E5OTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5/dVDrMRFV3dL1eXATnErfhnz 3+V10drlwhOe5rgpy48iQ61wrDiNaP38mpaeqemzPVlvqFFs3IC5zpvL4fZdm+mn fsnBA9GT/J1fDUUESmCRzOm2aCPfJEtHTSYrv9Xof7RO2sq+XdRteAAZD9g1Z9De W2lR78sfjHsHuMwkOO14WgbWJ5vrs4Z1h0jjtGq9zNgYhkshRZ9bm6IHExyVyxVb c8u8+6Ho65RagMHIcdQbTsFPapE0Vc8ZLZ9SHiTBLtlHLD6APjNGna5LPYgOuT9s eI9qk8Thp12kIaDAr3SMXplIAJy5Zd1S8VjHsYKhGRfb7fbRrSxiJx1IVC5jAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqboZGZWu/Na8G8JVSkNDdFZ8qZAwHwYDVR0j BBgwFoAUJVIkDv/uL2D1aE3QPt5JNy69KhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDA0MjMzZi1iYjJjLTQ3ZDctOTAxYy1lM2M4MmY4ZDQyM2MvMC8yNTUyMjQwRUZG RUUyRjYwRjU2ODRERDAzRURFNDkzNzJFQkQyQTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5MzcyRUJE MkExNy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMDQyMzNmLWJiMmMtNDdkNy05 MDFjLWUzYzgyZjhkNDIzYy8wLzMxMzAzMzJlMzEzNDM1MmUzMTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5EPMA0GCSqG SIb3DQEBCwUAA4IBAQBXuieT0c7dZCZF8uoAl8D+YeHD4sPAqbkivPbiFATDE3Sb S0zOq4Hv87pvgD+Dp4XxhSFhk1PkDyaVGX2PV9GkyV5TbyjRNnersaKdP88X4xoe c0qS59c81t+9uBVaPe0aQEHEEnGyudCr0ajdEBLYO4OsKMBwqU9nRISZyMfLZnh9 YKjAHhVSe49N8ntf6MVgjG/ZwRrPk9cqgVFY8sRWmkbcg8cMqE4p4fcO9A80sQzJ lkT/Zhi0BjOjSScSVNdD+AwsAWB6syZ/6el0X+x5swHqE2X9tNIKh+Tt7xEHjBT0 sv6/Rw3e2YBZWRgqgrslPFehaqMkfaRcg9px3fwd -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:50 2024 by rpki-client on console-ams.rpki-client.org