$ rpki-client -vvf repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130322e302f32342d3234203d3e20313339343231.roa File: 3130332e3134342e3130322e302f32342d3234203d3e20313339343231.roa (raw, json) Hash identifier: vzSMLWMHxbHbmKZs1ww72s93hpXFUe/64ZqkfEBoPE8= Subject key identifier: D6:8A:E6:B6:CC:92:89:45:73:F8:7E:86:17:21:53:80:0D:D6:51:DB Certificate issuer: /CN=2D9D9137D4427A9D34E1B15F16C5C689A8C549D9 Certificate serial: 30309EA099E0BDBF5B9DC8062076B36DD3C365D9 Authority key identifier: 2D:9D:91:37:D4:42:7A:9D:34:E1:B1:5F:16:C5:C6:89:A8:C5:49:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130322e302f32342d3234203d3e20313339343231.roa Signing time: Mon 02 Sep 2024 13:00:01 +0000 ROA not before: Mon 02 Sep 2024 12:55:01 +0000 ROA not after: Mon 01 Sep 2025 13:00:01 +0000 asID: 139421 IP address blocks: 103.144.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.crl rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:35:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:30:9e:a0:99:e0:bd:bf:5b:9d:c8:06:20:76:b3:6d:d3:c3:65:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D9D9137D4427A9D34E1B15F16C5C689A8C549D9 Validity Not Before: Sep 2 12:55:01 2024 GMT Not After : Sep 1 13:00:01 2025 GMT Subject: CN=D68AE6B6CC92894573F87E86172153800DD651DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7f:7e:8f:42:2d:c1:1d:8b:10:f2:7b:6d:ef: cd:06:d9:aa:ff:cb:1f:38:83:2a:1a:91:34:29:a5: 43:3d:c3:5a:f5:bb:1a:99:88:3a:f8:48:6c:00:3e: 77:77:aa:b6:2f:9f:83:87:84:b1:44:eb:55:49:cb: 87:52:c7:c3:d6:55:7c:53:68:bc:30:4d:d4:39:53: 0c:34:cf:eb:6c:18:7b:31:56:1d:c0:c8:ff:2d:95: 19:b6:cd:2c:9d:58:12:98:5d:c2:63:b7:a7:d0:70: 76:ec:9e:10:46:aa:2b:ba:c5:cf:dc:df:7e:c1:6f: 76:63:26:e8:de:4a:3b:0b:7e:ff:09:01:ed:47:b7: 2e:78:f6:20:07:77:42:30:d3:5f:d7:b3:a9:51:6b: 58:09:3e:5d:34:c6:e8:d6:c6:e9:07:c6:e6:c9:d9: 1d:c8:9e:73:f1:82:e7:e3:fe:fc:6b:93:06:b5:b9: d5:8a:07:a5:8c:ae:a1:22:cc:30:c7:d6:45:af:61: b7:94:69:18:a6:9c:77:ad:8f:8a:2b:da:a8:93:ff: 8a:b6:3a:74:49:63:a1:02:a8:3a:5c:14:76:42:a3: a7:3c:71:24:6c:51:a0:1a:39:e2:61:88:91:72:bb: 43:f2:fa:45:19:0a:44:62:8b:26:c8:4e:36:bb:f5: 9c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:8A:E6:B6:CC:92:89:45:73:F8:7E:86:17:21:53:80:0D:D6:51:DB X509v3 Authority Key Identifier: keyid:2D:9D:91:37:D4:42:7A:9D:34:E1:B1:5F:16:C5:C6:89:A8:C5:49:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130322e302f32342d3234203d3e20313339343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.102.0/24 Signature Algorithm: sha256WithRSAEncryption 71:1c:4d:fa:15:91:03:e8:50:6d:2e:34:6e:b6:94:3f:4f:30: 91:7f:ad:9f:63:14:d3:38:2d:02:3d:90:85:0e:e3:95:e1:cc: 6b:d5:29:00:3f:c3:b1:b6:6a:08:df:69:22:a6:1d:cb:19:f7: 12:49:1a:d5:bd:09:9e:89:3a:f7:82:ea:92:a6:12:fa:49:1b: 74:61:a5:c9:f6:b0:37:ac:54:d1:49:e0:c4:69:22:01:9c:62: 61:90:e6:bb:ed:1b:ed:ad:12:47:78:54:a0:17:da:ac:2c:2a: d5:9c:f2:e6:70:52:fa:c6:bc:63:e2:68:1e:5d:73:bd:f4:a5: eb:44:67:66:5d:13:17:cc:19:91:3a:32:cc:dc:89:b4:a2:e1: 34:52:d7:0d:12:e2:50:e0:5d:2c:24:38:c4:3c:a4:d4:30:f2: ed:26:fe:d8:88:30:a2:01:6f:38:dc:d6:7c:4b:82:ab:6d:8d: de:10:72:ce:cf:25:64:21:a4:ec:37:82:23:a7:5b:3a:a2:20: df:1d:a9:89:5c:52:7d:5e:87:1d:c5:0d:3a:65:c5:49:bc:68: a0:1b:ac:83:e4:7c:02:54:f1:72:de:dd:35:ab:6a:68:bf:99: 55:29:f3:3d:0e:46:c6:ba:57:ac:9e:1a:50:4a:e5:d1:1d:7e: 58:ed:26:9a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMDCeoJngvb9bncgGIHazbdPDZdkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ5RDkxMzdENDQyN0E5RDM0RTFCMTVGMTZDNUM2ODlB OEM1NDlEOTAeFw0yNDA5MDIxMjU1MDFaFw0yNTA5MDExMzAwMDFaMDMxMTAvBgNV BAMTKEQ2OEFFNkI2Q0M5Mjg5NDU3M0Y4N0U4NjE3MjE1MzgwMERENjUxREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNf36PQi3BHYsQ8ntt780G2ar/ yx84gyoakTQppUM9w1r1uxqZiDr4SGwAPnd3qrYvn4OHhLFE61VJy4dSx8PWVXxT aLwwTdQ5Uww0z+tsGHsxVh3AyP8tlRm2zSydWBKYXcJjt6fQcHbsnhBGqiu6xc/c 337Bb3ZjJujeSjsLfv8JAe1Hty549iAHd0Iw01/Xs6lRa1gJPl00xujWxukHxubJ 2R3InnPxgufj/vxrkwa1udWKB6WMrqEizDDH1kWvYbeUaRimnHetj4or2qiT/4q2 OnRJY6ECqDpcFHZCo6c8cSRsUaAaOeJhiJFyu0Py+kUZCkRiiybITja79ZzTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1ormtsySiUVz+H6GFyFTgA3WUdswHwYDVR0j BBgwFoAULZ2RN9RCep004bFfFsXGiajFSdkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTUzNDFlOC0yMmQ4LTQ0OWMtYTc1My1lNDdiYmZjNDg1MzgvMC8yRDlEOTEzN0Q0 NDI3QTlEMzRFMUIxNUYxNkM1QzY4OUE4QzU0OUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQ5RDkxMzdENDQyN0E5RDM0RTFCMTVGMTZDNUM2ODlBOEM1 NDlEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhNTM0MWU4LTIyZDgtNDQ5Yy1h NzUzLWU0N2JiZmM0ODUzOC8wLzMxMzAzMzJlMzEzNDM0MmUzMTMwMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMyMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkGYwDQYJ KoZIhvcNAQELBQADggEBAHEcTfoVkQPoUG0uNG62lD9PMJF/rZ9jFNM4LQI9kIUO 45XhzGvVKQA/w7G2agjfaSKmHcsZ9xJJGtW9CZ6JOveC6pKmEvpJG3Rhpcn2sDes VNFJ4MRpIgGcYmGQ5rvtG+2tEkd4VKAX2qwsKtWc8uZwUvrGvGPiaB5dc730petE Z2ZdExfMGZE6MszcibSi4TRS1w0S4lDgXSwkOMQ8pNQw8u0m/tiIMKIBbzjc1nxL gqttjd4Qcs7PJWQhpOw3giOnWzqiIN8dqYlcUn1ehx3FDTplxUm8aKAbrIPkfAJU 8XLe3TWrami/mVUp8z0ORsa6V6yeGlBK5dEdfljtJpo= -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:18 2024 by rpki-client on console-fra.rpki-client.org