$ rpki-client -vvf repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235322e302f32342d3234203d3e20313431313337.roa File: 3130332e3135382e3235322e302f32342d3234203d3e20313431313337.roa (raw, json) Hash identifier: OJRRTWPMmrOaPtCLRrFDVFaSiYmj3l4rR9ClzjJa+24= Subject key identifier: 84:CC:AE:0A:A4:D0:E6:C9:9D:99:9D:11:ED:96:02:CD:16:3E:45:BF Certificate issuer: /CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Certificate serial: 6A7048AE4AF4AA44F58C137AEF25A2623F71548A Authority key identifier: 33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235322e302f32342d3234203d3e20313431313337.roa Signing time: Thu 12 Sep 2024 12:00:02 +0000 ROA not before: Thu 12 Sep 2024 11:55:02 +0000 ROA not after: Thu 11 Sep 2025 12:00:02 +0000 asID: 141137 IP address blocks: 103.158.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 09:18:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:70:48:ae:4a:f4:aa:44:f5:8c:13:7a:ef:25:a2:62:3f:71:54:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Validity Not Before: Sep 12 11:55:02 2024 GMT Not After : Sep 11 12:00:02 2025 GMT Subject: CN=84CCAE0AA4D0E6C99D999D11ED9602CD163E45BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:79:26:f2:67:52:48:9d:14:53:4f:9a:f9:50: b8:e5:f9:2e:a3:d3:52:cf:18:f4:f9:52:c0:4b:16: 7e:2a:1f:1f:e1:c1:e8:82:58:b8:47:2d:6d:33:b6: 53:b9:c5:05:12:4d:2e:88:fa:7e:b8:e9:68:8c:5f: 6f:ba:9d:55:a0:6e:0c:b3:72:97:dc:79:22:0e:18: ea:ba:b9:62:d0:c3:a7:81:3a:3b:b9:df:0c:35:3d: 73:28:6a:00:c9:14:e5:f6:0e:d3:c1:ab:25:6f:c9: ce:2d:00:42:44:b0:c3:80:e4:bc:31:42:54:bc:29: 6a:22:75:f2:59:40:ce:c4:f7:a9:bd:05:6d:93:4b: 3c:32:b5:d1:97:73:48:dd:d4:a8:ee:f1:a1:28:4d: cf:5a:0e:19:27:0a:68:b2:08:fb:5f:08:11:c0:15: bc:45:c2:d2:73:3c:3c:0c:f3:3f:4c:a6:25:7f:10: cb:c5:62:59:90:3c:13:b9:9f:b2:65:f3:d6:f5:f6: 62:2a:5b:8d:2d:17:ae:9c:fa:68:67:24:e6:c8:9f: 8c:88:e6:ba:1d:6d:68:62:25:29:2f:cf:8c:d9:7d: 2f:4e:6a:e0:26:87:86:61:59:46:8b:9a:9a:cf:75: de:65:6f:cd:73:1b:33:b9:7a:15:41:54:fc:24:b0: 34:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:CC:AE:0A:A4:D0:E6:C9:9D:99:9D:11:ED:96:02:CD:16:3E:45:BF X509v3 Authority Key Identifier: keyid:33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235322e302f32342d3234203d3e20313431313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.252.0/24 Signature Algorithm: sha256WithRSAEncryption 07:c6:77:e8:c5:c9:66:3c:5e:ac:b3:22:64:e0:02:89:1a:62: 12:b8:3e:ac:1c:d9:94:98:31:9a:4f:f7:ea:95:24:4e:25:80: 50:72:f4:d9:77:40:1a:77:4f:f8:fd:6a:d8:e5:62:f5:3d:c7: 1c:9d:c3:fc:a0:f6:f2:36:6a:84:88:d0:72:7f:db:47:a5:21: 66:37:25:07:b8:b1:36:42:94:83:d8:20:35:74:69:2b:a7:f1: 46:05:79:51:2d:cc:2b:a2:95:dd:e7:29:74:42:fa:d6:60:a7: 1d:32:58:db:db:c5:b5:76:59:3a:46:4b:23:72:51:06:bc:07: 07:c4:b7:1d:bf:c6:f7:81:02:66:5e:16:49:60:fc:f4:d2:8f: 00:62:2d:ec:cf:4b:66:f5:60:5b:37:e8:ae:bd:98:56:21:82: 7f:74:54:9f:1b:8d:81:b4:cb:b9:63:04:98:25:30:9e:5c:f4: 2d:2b:84:13:50:ac:55:b6:fb:5d:55:67:7b:56:56:1f:00:a8: 7a:ff:41:05:04:ca:fa:be:6f:8b:4b:0b:45:b6:26:18:6f:fb: 46:6f:f3:00:92:8c:6e:3e:77:7d:78:f7:7e:42:34:2e:61:35: e5:b5:b1:f4:e2:7e:06:32:6f:25:09:60:7b:79:c0:48:c1:35: 9d:ca:aa:6f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUanBIrkr0qkT1jBN67yWiYj9xVIowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNB NzlDQUFEOTAeFw0yNDA5MTIxMTU1MDJaFw0yNTA5MTExMjAwMDJaMDMxMTAvBgNV BAMTKDg0Q0NBRTBBQTREMEU2Qzk5RDk5OUQxMUVEOTYwMkNEMTYzRTQ1QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCveSbyZ1JInRRTT5r5ULjl+S6j 01LPGPT5UsBLFn4qHx/hweiCWLhHLW0ztlO5xQUSTS6I+n646WiMX2+6nVWgbgyz cpfceSIOGOq6uWLQw6eBOju53ww1PXMoagDJFOX2DtPBqyVvyc4tAEJEsMOA5Lwx QlS8KWoidfJZQM7E96m9BW2TSzwytdGXc0jd1Kju8aEoTc9aDhknCmiyCPtfCBHA FbxFwtJzPDwM8z9MpiV/EMvFYlmQPBO5n7Jl89b19mIqW40tF66c+mhnJObIn4yI 5rodbWhiJSkvz4zZfS9OauAmh4ZhWUaLmprPdd5lb81zGzO5ehVBVPwksDSlAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUhMyuCqTQ5smdmZ0R7ZYCzRY+Rb8wHwYDVR0j BBgwFoAUM/0xJ31yjGpnFbkT1aR5XKecqtkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDkwMzQ1ZS0yZDU3LTQzNDktYjc4Zi1jOGIxOGE0NDI0NDUvMC8zM0ZEMzEyNzdE NzI4QzZBNjcxNUI5MTNENUE0Nzk1Q0E3OUNBQUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNBNzlD QUFEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0OTAzNDVlLTJkNTctNDM0OS1i NzhmLWM4YjE4YTQ0MjQ0NS8wLzMxMzAzMzJlMzEzNTM4MmUzMjM1MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnvwwDQYJ KoZIhvcNAQELBQADggEBAAfGd+jFyWY8XqyzImTgAokaYhK4Pqwc2ZSYMZpP9+qV JE4lgFBy9Nl3QBp3T/j9atjlYvU9xxydw/yg9vI2aoSI0HJ/20elIWY3JQe4sTZC lIPYIDV0aSun8UYFeVEtzCuild3nKXRC+tZgpx0yWNvbxbV2WTpGSyNyUQa8BwfE tx2/xveBAmZeFklg/PTSjwBiLezPS2b1YFs36K69mFYhgn90VJ8bjYG0y7ljBJgl MJ5c9C0rhBNQrFW2+11VZ3tWVh8AqHr/QQUEyvq+b4tLC0W2Jhhv+0Zv8wCSjG4+ d314935CNC5hNeW1sfTifgYybyUJYHt5wEjBNZ3Kqm8= -----END CERTIFICATE-----Generated at Fri Nov 22 09:38:56 2024 by rpki-client on console-ams.rpki-client.org