$ rpki-client -vvf repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235332e302f32342d3234203d3e20313431313337.roa File: 3130332e3135382e3235332e302f32342d3234203d3e20313431313337.roa (raw, json) Hash identifier: CnfRbobaPk9MDY310cd2407p48KXM88AEI8ZWvg/uB0= Subject key identifier: F5:99:7F:B2:27:13:66:26:E4:D8:01:3F:79:4B:7D:A8:69:50:32:35 Certificate issuer: /CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Certificate serial: 405794F34F1FF0C7EB56651D018AE317AC11743E Authority key identifier: 33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235332e302f32342d3234203d3e20313431313337.roa Signing time: Thu 12 Sep 2024 12:00:02 +0000 ROA not before: Thu 12 Sep 2024 11:55:02 +0000 ROA not after: Thu 11 Sep 2025 12:00:02 +0000 asID: 141137 IP address blocks: 103.158.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 09:18:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:57:94:f3:4f:1f:f0:c7:eb:56:65:1d:01:8a:e3:17:ac:11:74:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Validity Not Before: Sep 12 11:55:02 2024 GMT Not After : Sep 11 12:00:02 2025 GMT Subject: CN=F5997FB227136626E4D8013F794B7DA869503235 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b2:49:1e:82:b5:9b:97:0e:5f:fd:65:dd:5f: b0:04:99:98:67:07:b4:e2:f1:28:40:03:5a:e2:23: c4:b3:99:2c:a6:04:eb:39:2f:94:5a:da:0b:f8:5f: 1d:a3:02:d3:ca:b6:04:76:18:9c:00:5f:5a:83:88: d2:c3:e4:73:3d:50:ea:39:db:f6:85:59:ea:29:63: ff:33:f3:f2:d1:f2:10:f6:46:d6:19:c9:9d:ff:3f: 73:17:2d:50:c3:c3:18:54:35:f9:99:64:b5:dc:a1: 97:7d:aa:3d:3f:00:ae:55:84:7d:40:99:dc:1e:f2: d1:89:2f:f8:42:e6:09:81:50:ef:61:cf:fc:9b:09: c8:ca:cd:01:a4:76:b0:21:85:71:e2:9a:46:18:34: 25:7f:d5:1a:13:53:05:37:f6:b5:40:46:8b:77:ef: 70:5e:6e:72:ee:de:f7:40:68:db:ee:64:cd:b5:77: 2c:e0:93:98:09:5c:66:d7:5a:32:59:54:24:ba:11: b6:bc:fa:8f:b5:ee:2a:26:fc:93:d5:b8:de:f8:55: 44:cc:7b:d4:56:aa:1f:69:7f:53:c9:ed:19:f2:9f: ad:28:80:eb:02:d5:93:83:a4:60:f4:03:a0:75:51: 7e:77:ad:e4:08:eb:fd:c3:0e:ff:53:79:9d:87:f2: 31:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:99:7F:B2:27:13:66:26:E4:D8:01:3F:79:4B:7D:A8:69:50:32:35 X509v3 Authority Key Identifier: keyid:33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/3130332e3135382e3235332e302f32342d3234203d3e20313431313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.253.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:54:09:20:96:33:75:dd:5a:78:3c:14:42:e4:d1:b9:b8:bd: 01:7e:d6:1b:fb:e4:c3:8c:df:32:a0:e9:0a:b1:0e:60:70:f0: 16:01:21:37:cb:4f:5b:2b:7d:42:f4:2a:e2:5b:d9:8d:3a:a0: 3b:89:25:dd:3d:29:70:0f:0c:09:d6:c1:89:81:d1:e4:c7:b5: 56:af:47:be:6f:e4:2e:d3:fb:d0:ba:77:81:68:f9:5a:ef:b9: 29:43:d0:42:16:19:fb:7d:99:e5:2d:b1:ae:45:73:fb:bf:5a: d8:aa:2e:18:7d:fc:a1:93:bf:26:fb:fa:4e:cd:55:93:7c:69: e5:1d:50:f1:eb:30:5a:2c:75:15:4a:86:44:2d:89:3a:66:f0: aa:3c:8b:3d:7c:32:5a:47:da:d8:c3:78:1a:5d:98:53:f4:f1: e1:90:2e:e1:1e:89:21:ca:83:f5:7c:80:d3:5f:7e:04:30:fa: 6e:3a:34:42:17:2d:ad:ad:1e:7b:da:4b:08:4c:c9:75:c1:fc: 72:ee:33:c8:bc:57:f9:99:51:e6:ff:39:64:6f:65:cf:3a:4d: a8:4c:09:0c:5a:6b:c1:61:ac:46:13:64:76:f2:85:16:09:02: b0:2a:61:4b:92:68:9e:d1:01:24:e7:9f:93:3b:a8:3a:1c:ab: 2f:9b:59:6c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQFeU808f8MfrVmUdAYrjF6wRdD4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNB NzlDQUFEOTAeFw0yNDA5MTIxMTU1MDJaFw0yNTA5MTExMjAwMDJaMDMxMTAvBgNV BAMTKEY1OTk3RkIyMjcxMzY2MjZFNEQ4MDEzRjc5NEI3REE4Njk1MDMyMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMskkegrWblw5f/WXdX7AEmZhn B7Ti8ShAA1riI8SzmSymBOs5L5Ra2gv4Xx2jAtPKtgR2GJwAX1qDiNLD5HM9UOo5 2/aFWeopY/8z8/LR8hD2RtYZyZ3/P3MXLVDDwxhUNfmZZLXcoZd9qj0/AK5VhH1A mdwe8tGJL/hC5gmBUO9hz/ybCcjKzQGkdrAhhXHimkYYNCV/1RoTUwU39rVARot3 73BebnLu3vdAaNvuZM21dyzgk5gJXGbXWjJZVCS6Eba8+o+17iom/JPVuN74VUTM e9RWqh9pf1PJ7Rnyn60ogOsC1ZODpGD0A6B1UX53reQI6/3DDv9TeZ2H8jEhAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU9Zl/sicTZibk2AE/eUt9qGlQMjUwHwYDVR0j BBgwFoAUM/0xJ31yjGpnFbkT1aR5XKecqtkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDkwMzQ1ZS0yZDU3LTQzNDktYjc4Zi1jOGIxOGE0NDI0NDUvMC8zM0ZEMzEyNzdE NzI4QzZBNjcxNUI5MTNENUE0Nzk1Q0E3OUNBQUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNBNzlD QUFEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0OTAzNDVlLTJkNTctNDM0OS1i NzhmLWM4YjE4YTQ0MjQ0NS8wLzMxMzAzMzJlMzEzNTM4MmUzMjM1MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnv0wDQYJ KoZIhvcNAQELBQADggEBAC9UCSCWM3XdWng8FELk0bm4vQF+1hv75MOM3zKg6Qqx DmBw8BYBITfLT1srfUL0KuJb2Y06oDuJJd09KXAPDAnWwYmB0eTHtVavR75v5C7T +9C6d4Fo+VrvuSlD0EIWGft9meUtsa5Fc/u/WtiqLhh9/KGTvyb7+k7NVZN8aeUd UPHrMFosdRVKhkQtiTpm8Ko8iz18MlpH2tjDeBpdmFP08eGQLuEeiSHKg/V8gNNf fgQw+m46NEIXLa2tHnvaSwhMyXXB/HLuM8i8V/mZUeb/OWRvZc86TahMCQxaa8Fh rEYTZHbyhRYJArAqYUuSaJ7RASTnn5M7qDocqy+bWWw= -----END CERTIFICATE-----Generated at Fri Nov 22 09:38:56 2024 by rpki-client on console-ams.rpki-client.org