$ rpki-client -vvf repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235322e302f32332d3233203d3e20313431313337.roa File: 3130332e3135382e3235322e302f32332d3233203d3e20313431313337.roa (raw, json) Hash identifier: 3Mmpn/Dag2AKulQ+C8mVDMduU1Rnc8mOjy91rhhCe8M= Subject key identifier: 82:78:62:35:48:A5:71:F6:92:30:60:BF:B3:85:12:8F:0D:C1:24:4D Certificate issuer: /CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Certificate serial: 54DF0466AF2AA7C20AD8E28E8646E12A10648E75 Authority key identifier: 33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235322e302f32332d3233203d3e20313431313337.roa Signing time: Thu 12 Sep 2024 12:00:03 +0000 ROA not before: Thu 12 Sep 2024 11:55:03 +0000 ROA not after: Thu 11 Sep 2025 12:00:03 +0000 asID: 141137 IP address blocks: 103.158.252.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 09:18:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:df:04:66:af:2a:a7:c2:0a:d8:e2:8e:86:46:e1:2a:10:64:8e:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Validity Not Before: Sep 12 11:55:03 2024 GMT Not After : Sep 11 12:00:03 2025 GMT Subject: CN=8278623548A571F6923060BFB385128F0DC1244D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0b:31:3b:a5:13:d0:59:cc:75:9a:f8:53:aa: 3d:3f:9a:a2:31:b4:f3:62:97:b4:c6:79:3a:4f:e8: 23:a6:6e:6c:7e:fc:25:57:f6:09:54:28:5c:d6:6d: d6:67:73:d4:90:4f:f5:a4:73:4b:7e:c9:dd:9c:62: f4:2f:72:1f:20:24:d2:c2:5a:b1:4f:36:97:de:8f: b1:2a:e6:22:5f:8e:0e:97:1e:77:7e:36:e0:11:40: 48:8b:4c:5c:68:b6:f9:61:39:d9:ac:8e:ea:cf:1c: 4b:94:ac:f1:41:09:4c:4e:be:58:dd:c0:62:82:b1: 23:8a:39:b6:b0:4b:93:3b:5a:98:6f:7d:c6:be:ef: d4:93:73:96:2a:a8:8a:5f:13:6d:95:8a:94:64:0d: e9:9a:eb:b1:b4:df:cd:d0:54:dd:b1:79:2d:ca:10: ea:d0:8c:4a:05:b3:90:94:61:14:3b:e6:86:9d:11: 94:b7:3d:00:92:f5:67:5c:64:5b:7b:43:e1:ef:6f: f4:d4:62:01:b7:b2:aa:6b:05:5a:46:e4:b1:3f:90: 35:3f:5b:17:7a:6b:9e:82:ed:8f:e5:26:9c:9c:99: 25:25:de:ae:84:c3:36:98:9d:a4:a4:0e:93:2c:ea: de:a7:a3:22:63:13:9a:fe:a1:32:64:42:b5:fa:fa: 57:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:78:62:35:48:A5:71:F6:92:30:60:BF:B3:85:12:8F:0D:C1:24:4D X509v3 Authority Key Identifier: keyid:33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235322e302f32332d3233203d3e20313431313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.252.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:c9:c3:14:00:53:13:64:48:1a:fe:cd:c5:d8:60:20:e6:5a: 16:65:67:3b:01:85:9c:9c:45:0e:1d:64:fb:fd:71:49:98:e3: cd:a8:ca:a0:cd:7e:1a:cf:e0:e5:61:cc:57:93:5e:f9:6e:2f: de:be:35:d1:c4:66:c6:da:ed:02:ce:5b:bf:4e:1a:34:61:bf: f7:10:c3:fb:70:29:59:36:e0:d8:06:f5:4c:0a:3e:91:11:1e: 07:82:b3:a8:d7:3a:88:2b:81:11:39:c1:23:70:36:9b:0d:5b: 15:7e:0b:c6:d2:7d:6a:8b:48:7b:17:e6:de:6a:52:c3:fc:53: 97:60:d0:48:5d:56:62:60:26:18:f3:15:d7:b8:5a:61:66:fa: 2d:34:81:6c:68:7a:11:22:a3:b8:db:87:3d:41:c9:ab:c7:a5: 95:1f:dc:79:a0:70:77:d3:3d:cb:76:ce:9d:76:fd:0c:90:bf: da:cf:71:32:a1:5f:72:47:6a:3b:2b:f2:ed:a0:26:67:9a:f1: 97:db:4d:28:86:4f:2f:8e:91:50:79:68:53:ac:b5:29:6a:07: d8:8c:7f:54:0c:8f:88:88:f2:02:e1:23:6b:99:c0:97:b3:94: 92:a8:a2:63:53:bf:0a:09:b0:d0:12:3a:13:62:f5:cb:0b:95: 76:52:fa:2f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVN8EZq8qp8IK2OKOhkbhKhBkjnUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNB NzlDQUFEOTAeFw0yNDA5MTIxMTU1MDNaFw0yNTA5MTExMjAwMDNaMDMxMTAvBgNV BAMTKDgyNzg2MjM1NDhBNTcxRjY5MjMwNjBCRkIzODUxMjhGMERDMTI0NEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDCzE7pRPQWcx1mvhTqj0/mqIx tPNil7TGeTpP6COmbmx+/CVX9glUKFzWbdZnc9SQT/Wkc0t+yd2cYvQvch8gJNLC WrFPNpfej7Eq5iJfjg6XHnd+NuARQEiLTFxotvlhOdmsjurPHEuUrPFBCUxOvljd wGKCsSOKObawS5M7Wphvfca+79STc5YqqIpfE22VipRkDema67G0383QVN2xeS3K EOrQjEoFs5CUYRQ75oadEZS3PQCS9WdcZFt7Q+Hvb/TUYgG3sqprBVpG5LE/kDU/ Wxd6a56C7Y/lJpycmSUl3q6EwzaYnaSkDpMs6t6noyJjE5r+oTJkQrX6+lfJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUgnhiNUilcfaSMGC/s4USjw3BJE0wHwYDVR0j BBgwFoAUM/0xJ31yjGpnFbkT1aR5XKecqtkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDkwMzQ1ZS0yZDU3LTQzNDktYjc4Zi1jOGIxOGE0NDI0NDUvMC8zM0ZEMzEyNzdE NzI4QzZBNjcxNUI5MTNENUE0Nzk1Q0E3OUNBQUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNBNzlD QUFEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0OTAzNDVlLTJkNTctNDM0OS1i NzhmLWM4YjE4YTQ0MjQ0NS8wLzMxMzAzMzJlMzEzNTM4MmUzMjM1MzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnnvwwDQYJ KoZIhvcNAQELBQADggEBAD7JwxQAUxNkSBr+zcXYYCDmWhZlZzsBhZycRQ4dZPv9 cUmY482oyqDNfhrP4OVhzFeTXvluL96+NdHEZsba7QLOW79OGjRhv/cQw/twKVk2 4NgG9UwKPpERHgeCs6jXOogrgRE5wSNwNpsNWxV+C8bSfWqLSHsX5t5qUsP8U5dg 0EhdVmJgJhjzFde4WmFm+i00gWxoehEio7jbhz1ByavHpZUf3HmgcHfTPct2zp12 /QyQv9rPcTKhX3JHajsr8u2gJmea8ZfbTSiGTy+OkVB5aFOstSlqB9iMf1QMj4iI 8gLhI2uZwJezlJKoomNTvwoJsNASOhNi9csLlXZS+i8= -----END CERTIFICATE-----Generated at Fri Nov 22 09:38:56 2024 by rpki-client on console-ams.rpki-client.org