$ rpki-client -vvf repo-rpki.idnic.net/repo/25a72eb9-8e53-4472-a35a-fee8bf0af46f/0/3130332e34372e31312e302f32342d3234203d3e203539323733.roa File: 3130332e34372e31312e302f32342d3234203d3e203539323733.roa (raw, json) Hash identifier: HBlBl4qnEWmFIIHkU9MPENaLHFOkHGNLtTU92POPS9Q= Subject key identifier: 8C:EA:D0:14:33:00:12:A4:AA:D9:6A:67:27:EE:0A:FE:92:C4:3E:42 Certificate issuer: /CN=E91D51E54A89C0DDBD57F00A13E96E36FA29AB27 Certificate serial: 024DD775734C96F55784B3A7ED0625DB6E579C45 Authority key identifier: E9:1D:51:E5:4A:89:C0:DD:BD:57:F0:0A:13:E9:6E:36:FA:29:AB:27 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E91D51E54A89C0DDBD57F00A13E96E36FA29AB27.cer Subject info access: rsync://repo-rpki.idnic.net/repo/25a72eb9-8e53-4472-a35a-fee8bf0af46f/0/3130332e34372e31312e302f32342d3234203d3e203539323733.roa Signing time: Fri 18 Oct 2024 17:00:01 +0000 ROA not before: Fri 18 Oct 2024 16:55:01 +0000 ROA not after: Fri 17 Oct 2025 17:00:01 +0000 asID: 59273 IP address blocks: 103.47.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/25a72eb9-8e53-4472-a35a-fee8bf0af46f/0/E91D51E54A89C0DDBD57F00A13E96E36FA29AB27.crl rsync://repo-rpki.idnic.net/repo/25a72eb9-8e53-4472-a35a-fee8bf0af46f/0/E91D51E54A89C0DDBD57F00A13E96E36FA29AB27.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E91D51E54A89C0DDBD57F00A13E96E36FA29AB27.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:4d:d7:75:73:4c:96:f5:57:84:b3:a7:ed:06:25:db:6e:57:9c:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E91D51E54A89C0DDBD57F00A13E96E36FA29AB27 Validity Not Before: Oct 18 16:55:01 2024 GMT Not After : Oct 17 17:00:01 2025 GMT Subject: CN=8CEAD014330012A4AAD96A6727EE0AFE92C43E42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:84:40:a1:81:04:96:8b:81:8b:cb:cf:d2:eb: f2:3b:4b:c1:c8:52:9e:42:3b:94:0a:67:5b:06:54: 39:4a:87:a3:66:f0:5b:d1:c0:cf:d3:c6:9c:0e:bd: 2e:83:dc:b1:91:15:43:cc:ad:c1:4f:63:c3:fb:86: 8e:fb:3b:03:45:59:1e:99:4c:f5:0b:01:0a:cb:d4: 76:ab:92:05:fb:9a:cc:8d:d7:df:d1:b3:62:a9:38: 7e:ad:b5:ae:d1:1f:0d:18:dd:66:7b:7a:68:dc:cd: fb:bd:56:a0:b9:56:75:4a:30:8f:14:7a:19:ac:b4: c3:ee:32:19:c8:22:c5:e1:0b:f4:2b:98:db:d9:2b: 60:78:19:bd:df:c6:eb:f8:61:8a:37:c6:9f:8f:90: 2d:e0:f2:0c:e6:3c:de:f8:d3:a7:7a:d2:69:ad:64: c6:9a:a5:4e:3f:c9:51:00:14:e7:19:67:78:a2:d4: b6:5d:92:73:33:7f:8b:da:5e:78:9a:76:a0:17:cd: a8:50:be:20:6f:24:cf:63:8c:d6:9f:36:40:81:78: 91:fb:4d:ae:99:53:45:ec:2c:e5:2f:bb:1b:31:12: 7e:31:80:8f:07:11:54:0e:b7:df:6e:b7:10:91:c9: c6:8d:a0:69:3e:da:91:b2:cc:4d:51:b1:6a:bf:04: 01:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:EA:D0:14:33:00:12:A4:AA:D9:6A:67:27:EE:0A:FE:92:C4:3E:42 X509v3 Authority Key Identifier: keyid:E9:1D:51:E5:4A:89:C0:DD:BD:57:F0:0A:13:E9:6E:36:FA:29:AB:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/25a72eb9-8e53-4472-a35a-fee8bf0af46f/0/E91D51E54A89C0DDBD57F00A13E96E36FA29AB27.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E91D51E54A89C0DDBD57F00A13E96E36FA29AB27.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/25a72eb9-8e53-4472-a35a-fee8bf0af46f/0/3130332e34372e31312e302f32342d3234203d3e203539323733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.47.11.0/24 Signature Algorithm: sha256WithRSAEncryption 33:49:b1:7c:91:55:63:f4:92:6d:a9:c4:ca:93:a2:6a:af:ef: 50:b6:35:98:58:d1:f6:b2:da:87:85:ae:97:3f:04:71:cf:d4: 5e:09:72:c3:1a:4c:14:1d:69:3b:c8:ad:4e:03:99:67:b2:8c: 76:a9:6c:9d:e3:a1:6b:0a:58:98:06:82:56:b0:5c:6e:f8:d1: 80:6b:31:16:e8:1c:2a:a1:e3:47:1d:51:3a:47:fe:e5:9c:06: 0c:16:6f:a7:b3:80:c0:0b:9d:aa:c8:16:c4:11:a5:e0:33:6c: e6:3c:60:28:c5:89:b2:58:64:d0:27:f5:cc:05:44:a8:43:04: f7:f6:af:9f:02:2a:ac:f3:c0:e6:e2:98:13:e1:4e:fb:e0:87: 47:2e:ba:1b:25:2b:4a:36:52:a2:1d:2e:10:7e:7e:b3:24:dc: ae:13:6d:df:be:16:f5:55:4d:e0:6b:31:03:e8:0e:89:f5:d9: df:a0:f8:49:39:5b:1b:86:43:28:c1:f8:2e:a9:f1:89:84:10: 82:3c:e8:4e:64:be:2d:62:4c:2a:98:44:a1:44:39:d3:0a:71: 22:96:e3:e7:a9:c9:07:d0:80:dc:5d:ae:f7:73:4a:55:5e:8e: 12:bc:ec:50:bc:a4:27:42:c8:93:ab:aa:69:bd:d3:7e:a6:69: bf:55:11:d6 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUAk3XdXNMlvVXhLOn7QYl225XnEUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTkxRDUxRTU0QTg5QzBEREJENTdGMDBBMTNFOTZFMzZG QTI5QUIyNzAeFw0yNDEwMTgxNjU1MDFaFw0yNTEwMTcxNzAwMDFaMDMxMTAvBgNV BAMTKDhDRUFEMDE0MzMwMDEyQTRBQUQ5NkE2NzI3RUUwQUZFOTJDNDNFNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqhEChgQSWi4GLy8/S6/I7S8HI Up5CO5QKZ1sGVDlKh6Nm8FvRwM/TxpwOvS6D3LGRFUPMrcFPY8P7ho77OwNFWR6Z TPULAQrL1HarkgX7msyN19/Rs2KpOH6tta7RHw0Y3WZ7emjczfu9VqC5VnVKMI8U ehmstMPuMhnIIsXhC/QrmNvZK2B4Gb3fxuv4YYo3xp+PkC3g8gzmPN7406d60mmt ZMaapU4/yVEAFOcZZ3ii1LZdknMzf4vaXniadqAXzahQviBvJM9jjNafNkCBeJH7 Ta6ZU0XsLOUvuxsxEn4xgI8HEVQOt99utxCRycaNoGk+2pGyzE1RsWq/BAFlAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUjOrQFDMAEqSq2WpnJ+4K/pLEPkIwHwYDVR0j BBgwFoAU6R1R5UqJwN29V/AKE+luNvopqycwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NWE3MmViOS04ZTUzLTQ0NzItYTM1YS1mZWU4YmYwYWY0NmYvMC9FOTFENTFFNTRB ODlDMEREQkQ1N0YwMEExM0U5NkUzNkZBMjlBQjI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTkxRDUxRTU0QTg5QzBEREJENTdGMDBBMTNFOTZFMzZGQTI5 QUIyNy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI1YTcyZWI5LThlNTMtNDQ3Mi1h MzVhLWZlZThiZjBhZjQ2Zi8wLzMxMzAzMzJlMzQzNzJlMzEzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzkzMjM3MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnLwswDQYJKoZIhvcN AQELBQADggEBADNJsXyRVWP0km2pxMqTomqv71C2NZhY0fay2oeFrpc/BHHP1F4J csMaTBQdaTvIrU4DmWeyjHapbJ3joWsKWJgGglawXG740YBrMRboHCqh40cdUTpH /uWcBgwWb6ezgMALnarIFsQRpeAzbOY8YCjFibJYZNAn9cwFRKhDBPf2r58CKqzz wObimBPhTvvgh0cuuhslK0o2UqIdLhB+frMk3K4Tbd++FvVVTeBrMQPoDon12d+g +Ek5WxuGQyjB+C6p8YmEEII86E5kvi1iTCqYRKFEOdMKcSKW4+epyQfQgNxdrvdz SlVejhK87FC8pCdCyJOrqmm9036mab9VEdY= -----END CERTIFICATE-----Generated at Sun Nov 24 13:26:10 2024 by rpki-client on console-ams.rpki-client.org