$ rpki-client -vvf repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130332e302f32342d3234203d3e20313339343231.roa File: 3130332e3134342e3130332e302f32342d3234203d3e20313339343231.roa (raw, json) Hash identifier: LMahtEVFw1WQXjV2Jt5sgAVQZXkjGaxRYhPgCUjt0lU= Subject key identifier: 40:09:36:B5:0F:E1:DC:82:C0:34:9E:0B:06:BD:5E:D8:71:D9:F6:15 Certificate issuer: /CN=2D9D9137D4427A9D34E1B15F16C5C689A8C549D9 Certificate serial: 31BA82EDF152657128900C668572549BD42E0C00 Authority key identifier: 2D:9D:91:37:D4:42:7A:9D:34:E1:B1:5F:16:C5:C6:89:A8:C5:49:D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130332e302f32342d3234203d3e20313339343231.roa Signing time: Mon 02 Sep 2024 13:00:01 +0000 ROA not before: Mon 02 Sep 2024 12:55:01 +0000 ROA not after: Mon 01 Sep 2025 13:00:01 +0000 asID: 139421 IP address blocks: 103.144.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.crl rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 13:35:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:ba:82:ed:f1:52:65:71:28:90:0c:66:85:72:54:9b:d4:2e:0c:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D9D9137D4427A9D34E1B15F16C5C689A8C549D9 Validity Not Before: Sep 2 12:55:01 2024 GMT Not After : Sep 1 13:00:01 2025 GMT Subject: CN=400936B50FE1DC82C0349E0B06BD5ED871D9F615 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c9:f6:c9:df:7d:78:41:8f:ec:de:42:2c:5f: a4:01:e2:1e:55:e4:ed:bf:2b:0e:d5:1c:8a:af:49: 31:30:d8:c2:c2:ad:f0:23:30:0b:9a:e4:6b:68:84: 8d:7c:c5:8c:69:4b:fc:57:58:8f:8e:05:0f:97:1d: c2:f5:3b:68:4f:dd:09:32:ef:93:89:1f:51:8f:35: 09:76:f6:d6:3b:41:fa:e8:38:6b:77:ef:f4:ca:c8: d9:a9:ff:53:a4:49:f6:0d:9e:79:6a:3a:3f:75:41: 6f:31:cb:9d:f9:90:0d:c3:35:93:d1:72:3a:9a:78: 2a:9f:6f:ea:7e:56:4e:6f:d5:da:11:e0:c2:ca:25: 64:45:64:8d:e8:49:00:f8:c9:e6:97:7d:9b:86:cd: 16:01:33:83:fa:17:15:27:6d:03:27:b0:78:57:ea: b2:b6:7d:82:a0:7f:12:8c:79:fe:24:95:0a:d2:86: 7e:33:fc:82:6f:31:c6:f8:de:3d:4f:61:4b:64:e8: 22:9b:58:62:62:9e:eb:ff:52:3c:a3:52:4c:3c:ca: ea:44:ff:13:44:ff:b0:80:bd:a0:ad:e8:7f:8b:53: 03:db:0f:15:87:c1:9c:6a:cf:25:d4:d8:75:96:12: 02:ae:1e:93:30:95:5d:35:75:81:7a:d6:4f:78:a3: da:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:09:36:B5:0F:E1:DC:82:C0:34:9E:0B:06:BD:5E:D8:71:D9:F6:15 X509v3 Authority Key Identifier: keyid:2D:9D:91:37:D4:42:7A:9D:34:E1:B1:5F:16:C5:C6:89:A8:C5:49:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/3130332e3134342e3130332e302f32342d3234203d3e20313339343231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.103.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:b8:18:0c:e6:6a:2c:59:0a:00:2c:51:5b:a6:36:66:10:2b: 79:a2:f0:51:96:b3:55:2b:18:6b:e9:a0:a4:93:80:40:54:7a: 71:e7:91:28:d4:08:bf:f0:23:82:b2:61:7b:5c:b5:9a:63:bb: ea:12:ab:b1:c4:d2:3f:76:90:92:e5:4e:ee:b8:d5:36:c8:22: eb:70:66:0a:5c:80:aa:de:c6:f8:65:2e:0a:35:76:5e:36:10: fe:44:99:16:5d:63:19:bf:14:16:34:d8:fd:60:4a:77:78:9d: 2c:5a:a3:8f:a1:aa:c8:40:69:2c:cb:71:70:a1:69:b7:be:f4: 49:d1:f4:55:eb:20:03:4b:eb:4d:dd:78:c4:0e:b7:45:9d:b5: 7a:b9:ef:a9:7a:f3:ed:76:5d:c2:c4:ac:c6:2e:ae:c9:67:61: 82:64:e1:ca:b3:46:53:08:20:be:00:9f:53:69:19:51:5c:e6: ac:18:f8:2a:bb:dd:74:35:59:a6:a3:e9:62:92:3c:41:ca:e8: 99:b0:93:b1:12:20:3a:f8:91:68:51:3b:ae:45:4c:47:3d:33: 22:c6:8c:82:20:4d:f0:43:2f:8f:1d:bc:38:10:6c:4c:c8:a8: 46:a4:62:4c:d7:59:29:d9:0a:9c:3f:a0:1a:d8:19:8a:82:8b: d5:77:b4:42 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMbqC7fFSZXEokAxmhXJUm9QuDAAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ5RDkxMzdENDQyN0E5RDM0RTFCMTVGMTZDNUM2ODlB OEM1NDlEOTAeFw0yNDA5MDIxMjU1MDFaFw0yNTA5MDExMzAwMDFaMDMxMTAvBgNV BAMTKDQwMDkzNkI1MEZFMURDODJDMDM0OUUwQjA2QkQ1RUQ4NzFEOUY2MTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFyfbJ3314QY/s3kIsX6QB4h5V 5O2/Kw7VHIqvSTEw2MLCrfAjMAua5GtohI18xYxpS/xXWI+OBQ+XHcL1O2hP3Qky 75OJH1GPNQl29tY7QfroOGt37/TKyNmp/1OkSfYNnnlqOj91QW8xy535kA3DNZPR cjqaeCqfb+p+Vk5v1doR4MLKJWRFZI3oSQD4yeaXfZuGzRYBM4P6FxUnbQMnsHhX 6rK2fYKgfxKMef4klQrShn4z/IJvMcb43j1PYUtk6CKbWGJinuv/UjyjUkw8yupE /xNE/7CAvaCt6H+LUwPbDxWHwZxqzyXU2HWWEgKuHpMwlV01dYF61k94o9pTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUQAk2tQ/h3ILANJ4LBr1e2HHZ9hUwHwYDVR0j BBgwFoAULZ2RN9RCep004bFfFsXGiajFSdkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTUzNDFlOC0yMmQ4LTQ0OWMtYTc1My1lNDdiYmZjNDg1MzgvMC8yRDlEOTEzN0Q0 NDI3QTlEMzRFMUIxNUYxNkM1QzY4OUE4QzU0OUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQ5RDkxMzdENDQyN0E5RDM0RTFCMTVGMTZDNUM2ODlBOEM1 NDlEOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhNTM0MWU4LTIyZDgtNDQ5Yy1h NzUzLWU0N2JiZmM0ODUzOC8wLzMxMzAzMzJlMzEzNDM0MmUzMTMwMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMyMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkGcwDQYJ KoZIhvcNAQELBQADggEBAA24GAzmaixZCgAsUVumNmYQK3mi8FGWs1UrGGvpoKST gEBUenHnkSjUCL/wI4KyYXtctZpju+oSq7HE0j92kJLlTu641TbIIutwZgpcgKre xvhlLgo1dl42EP5EmRZdYxm/FBY02P1gSnd4nSxao4+hqshAaSzLcXChabe+9EnR 9FXrIANL603deMQOt0WdtXq576l68+12XcLErMYurslnYYJk4cqzRlMIIL4An1Np GVFc5qwY+Cq73XQ1Waaj6WKSPEHK6Jmwk7ESIDr4kWhRO65FTEc9MyLGjIIgTfBD L48dvDgQbEzIqEakYkzXWSnZCpw/oBrYGYqCi9V3tEI= -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:18 2024 by rpki-client on console-fra.rpki-client.org