$ rpki-client -vvf repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130322e302f32332d3234203d3e20313339343231.roa File: 3130332e3134342e3130322e302f32332d3234203d3e20313339343231.roa (raw, json) Hash identifier: 4ZQAqwv3D6xv0wZbi1M8yeP/AQMFxtqYLV8/krPMgXw= Subject key identifier: 4D:83:2F:91:69:61:35:31:4A:A6:AA:78:0B:66:43:55:6A:4F:50:55 Certificate issuer: /CN=2D9D9137D4427A9D34E1B15F16C5C689A8C549D9 Certificate serial: 47BA0DC12F5C749E9D2158D1141F9DA7FCE0F6C2 Authority key identifier: 2D:9D:91:37:D4:42:7A:9D:34:E1:B1:5F:16:C5:C6:89:A8:C5:49:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130322e302f32332d3234203d3e20313339343231.roa Signing time: Mon 01 Jul 2024 01:04:51 +0000 ROA not before: Mon 01 Jul 2024 00:59:51 +0000 ROA not after: Mon 30 Jun 2025 01:04:51 +0000 asID: 139421 IP address blocks: 103.144.102.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.crl rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:35:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:ba:0d:c1:2f:5c:74:9e:9d:21:58:d1:14:1f:9d:a7:fc:e0:f6:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D9D9137D4427A9D34E1B15F16C5C689A8C549D9 Validity Not Before: Jul 1 00:59:51 2024 GMT Not After : Jun 30 01:04:51 2025 GMT Subject: CN=4D832F91696135314AA6AA780B6643556A4F5055 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:25:51:be:c7:86:bd:3f:d6:f7:dc:7d:0a:2c: f8:18:91:f4:41:09:b8:8c:02:74:72:5c:76:00:6f: 29:e9:60:ab:5c:49:0c:3a:68:94:17:b4:c1:50:ad: 5f:12:12:fc:67:4b:33:8b:44:71:d9:54:b8:f3:8a: fe:0a:5d:b4:ca:5d:af:d1:01:65:97:a3:e6:a6:3e: 4c:af:25:34:c8:07:34:aa:73:80:f6:1c:21:a2:68: 6c:a1:62:91:2d:5d:95:8a:64:b2:fb:16:e7:c4:91: 19:a9:c6:90:ec:19:11:2c:2d:7d:4d:05:4a:bd:f4: bc:f5:af:1d:67:ca:11:a8:cf:34:51:d6:48:93:8d: a1:e6:25:b5:87:36:49:2e:88:7d:fe:de:6d:14:de: 96:99:cc:75:94:c3:ff:ba:80:d1:8c:62:ab:34:3d: aa:55:66:71:f9:f4:ef:f0:de:ff:b6:4b:3d:77:0e: 5d:ec:95:72:30:49:2d:33:04:1d:07:07:64:00:f6: 21:7e:ba:77:64:f4:23:65:85:48:78:68:2a:e8:ab: 7e:9d:08:0b:1b:6c:74:dd:f0:b4:87:7f:e1:86:11: 32:70:ec:55:bd:ed:5c:52:50:67:75:d5:dd:d4:95: 9f:b9:74:25:15:27:96:3d:ca:ed:a6:ad:75:29:0a: 3c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:83:2F:91:69:61:35:31:4A:A6:AA:78:0B:66:43:55:6A:4F:50:55 X509v3 Authority Key Identifier: keyid:2D:9D:91:37:D4:42:7A:9D:34:E1:B1:5F:16:C5:C6:89:A8:C5:49:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130322e302f32332d3234203d3e20313339343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.102.0/23 Signature Algorithm: sha256WithRSAEncryption 63:32:f7:b8:dd:03:9e:61:35:9a:f5:ee:f4:f9:32:da:21:d3: 32:53:ab:3a:03:17:79:50:67:43:39:2f:51:78:4d:57:55:a3: a8:2a:e4:ec:09:45:6d:11:07:d7:3b:c3:1f:94:c4:4d:01:f9: 04:ec:a1:04:01:47:83:ce:81:86:6d:25:5a:4b:d6:14:22:4b: 93:5a:94:fc:f0:6a:68:bf:b1:56:e1:52:9b:fd:ce:37:c1:b8: 43:7b:ff:0b:c5:1f:26:df:8f:b4:35:fc:b4:e4:9a:d2:af:4f: f0:63:0f:8b:18:ef:a8:13:1f:96:d8:1c:92:11:94:8c:57:0b: 86:71:83:98:3b:86:9b:d8:41:72:a9:30:cb:9b:a6:77:bc:fc: 5e:60:bc:91:17:96:43:ca:5b:d7:35:bc:4c:b0:7d:fc:7a:80: f7:4f:6e:b8:95:0c:42:90:2c:71:00:e4:bf:b6:50:5d:ef:80: 9d:b8:c1:53:25:c7:7c:1c:24:d9:3f:4f:2d:a0:dc:04:f4:51: 7a:6a:48:b9:77:23:45:f5:3a:ae:ba:1f:27:97:75:3e:6f:e4: 0e:6d:39:7a:52:33:36:9a:23:01:9c:17:83:b9:6a:36:40:c3: e0:95:2f:9f:d7:d9:b7:1a:71:91:e9:be:b4:b2:32:25:77:e9: c6:bf:c0:9d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUR7oNwS9cdJ6dIVjRFB+dp/zg9sIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ5RDkxMzdENDQyN0E5RDM0RTFCMTVGMTZDNUM2ODlB OEM1NDlEOTAeFw0yNDA3MDEwMDU5NTFaFw0yNTA2MzAwMTA0NTFaMDMxMTAvBgNV BAMTKDREODMyRjkxNjk2MTM1MzE0QUE2QUE3ODBCNjY0MzU1NkE0RjUwNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVJVG+x4a9P9b33H0KLPgYkfRB CbiMAnRyXHYAbynpYKtcSQw6aJQXtMFQrV8SEvxnSzOLRHHZVLjziv4KXbTKXa/R AWWXo+amPkyvJTTIBzSqc4D2HCGiaGyhYpEtXZWKZLL7FufEkRmpxpDsGREsLX1N BUq99Lz1rx1nyhGozzRR1kiTjaHmJbWHNkkuiH3+3m0U3paZzHWUw/+6gNGMYqs0 PapVZnH59O/w3v+2Sz13Dl3slXIwSS0zBB0HB2QA9iF+undk9CNlhUh4aCroq36d CAsbbHTd8LSHf+GGETJw7FW97VxSUGd11d3UlZ+5dCUVJ5Y9yu2mrXUpCjwpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUTYMvkWlhNTFKpqp4C2ZDVWpPUFUwHwYDVR0j BBgwFoAULZ2RN9RCep004bFfFsXGiajFSdkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTUzNDFlOC0yMmQ4LTQ0OWMtYTc1My1lNDdiYmZjNDg1MzgvMC8yRDlEOTEzN0Q0 NDI3QTlEMzRFMUIxNUYxNkM1QzY4OUE4QzU0OUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQ5RDkxMzdENDQyN0E5RDM0RTFCMTVGMTZDNUM2ODlBOEM1 NDlEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhNTM0MWU4LTIyZDgtNDQ5Yy1h NzUzLWU0N2JiZmM0ODUzOC8wLzMxMzAzMzJlMzEzNDM0MmUzMTMwMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMyMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnkGYwDQYJ KoZIhvcNAQELBQADggEBAGMy97jdA55hNZr17vT5Mtoh0zJTqzoDF3lQZ0M5L1F4 TVdVo6gq5OwJRW0RB9c7wx+UxE0B+QTsoQQBR4POgYZtJVpL1hQiS5NalPzwami/ sVbhUpv9zjfBuEN7/wvFHybfj7Q1/LTkmtKvT/BjD4sY76gTH5bYHJIRlIxXC4Zx g5g7hpvYQXKpMMubpne8/F5gvJEXlkPKW9c1vEywffx6gPdPbriVDEKQLHEA5L+2 UF3vgJ24wVMlx3wcJNk/Ty2g3AT0UXpqSLl3I0X1Oq66HyeXdT5v5A5tOXpSMzaa IwGcF4O5ajZAw+CVL5/X2bcacZHpvrSyMiV36ca/wJ0= -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:26 2024 by rpki-client on console-ams.rpki-client.org