$ rpki-client -vvf repo-rpki.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/3130332e3234352e3137382e302f32342d3234203d3e2039333431.roa File: 3130332e3234352e3137382e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: VHj+BrkZ6iMwd6Ih4uLfhywh2RJ8HhOVFUyFHjtmvfI= Subject key identifier: 86:D4:38:DC:93:96:8C:EE:D5:99:6F:98:0F:CC:D3:65:F3:63:62:16 Certificate issuer: /CN=A61585874729C58BB62740692BA8FA6ED286FDC9 Certificate serial: 33D09578A492C8F22C28FE98BF415901187B2C3E Authority key identifier: A6:15:85:87:47:29:C5:8B:B6:27:40:69:2B:A8:FA:6E:D2:86:FD:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A61585874729C58BB62740692BA8FA6ED286FDC9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/3130332e3234352e3137382e302f32342d3234203d3e2039333431.roa Signing time: Mon 22 Jul 2024 05:01:10 +0000 ROA not before: Mon 22 Jul 2024 04:56:10 +0000 ROA not after: Mon 21 Jul 2025 05:01:10 +0000 asID: 9341 IP address blocks: 103.245.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/A61585874729C58BB62740692BA8FA6ED286FDC9.crl rsync://repo-rpki.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/A61585874729C58BB62740692BA8FA6ED286FDC9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A61585874729C58BB62740692BA8FA6ED286FDC9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:d0:95:78:a4:92:c8:f2:2c:28:fe:98:bf:41:59:01:18:7b:2c:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A61585874729C58BB62740692BA8FA6ED286FDC9 Validity Not Before: Jul 22 04:56:10 2024 GMT Not After : Jul 21 05:01:10 2025 GMT Subject: CN=86D438DC93968CEED5996F980FCCD365F3636216 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:9d:5a:1d:9d:1d:9b:c4:a9:8c:e9:8e:51:31: 4d:ba:6f:9d:eb:0d:81:d5:a1:67:07:ef:8f:86:22: e6:0a:f3:09:32:cc:4c:7e:dd:0d:4b:e8:ff:34:74: 4c:40:9a:82:ac:89:65:df:65:3b:16:67:00:01:fa: e3:c0:53:d5:44:5c:91:a9:2a:fb:97:2a:f5:90:79: b1:ce:e1:1f:69:57:27:e4:8b:50:d3:7b:59:7b:7e: db:fa:88:e5:28:e0:fd:12:8a:61:18:68:7a:71:2f: 82:39:3a:0d:c2:d1:c9:25:a8:e7:22:96:6f:da:70: 1c:74:08:9c:ff:0c:1d:c8:97:2b:50:51:81:82:b0: 03:c6:80:f5:e3:db:09:8d:c4:36:ef:61:56:39:35: c3:b6:1a:74:81:e9:c4:fa:03:aa:5d:e8:9e:6b:80: bd:48:26:0a:85:4b:7c:9d:86:e4:20:d2:7f:aa:30: 80:97:5d:18:ea:3a:82:28:dc:e1:f1:28:b9:98:1c: f5:fc:f3:5d:20:93:11:0b:72:5f:cb:0d:c0:0e:08: 89:ae:0c:3f:10:59:13:2e:cd:93:53:8a:ab:4d:e9: 1d:7f:fa:7e:fc:fc:f0:87:98:9c:de:b6:35:79:91: 18:15:42:6f:95:a1:99:43:94:36:1e:89:f2:4a:b6: 1a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:D4:38:DC:93:96:8C:EE:D5:99:6F:98:0F:CC:D3:65:F3:63:62:16 X509v3 Authority Key Identifier: keyid:A6:15:85:87:47:29:C5:8B:B6:27:40:69:2B:A8:FA:6E:D2:86:FD:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/A61585874729C58BB62740692BA8FA6ED286FDC9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A61585874729C58BB62740692BA8FA6ED286FDC9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/3130332e3234352e3137382e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.178.0/24 Signature Algorithm: sha256WithRSAEncryption 42:39:6d:99:b8:84:94:78:3c:fb:34:4a:ae:2b:2b:a6:8a:cc: f4:29:32:a3:66:fd:a7:28:cd:4d:a2:94:64:8d:da:9c:af:2a: 3f:ce:a0:2e:84:77:73:69:d3:ca:26:9d:d4:57:c1:a2:da:84: 9b:53:5a:13:a8:90:4d:78:e0:0c:71:5b:97:9f:25:0c:cd:d3: 5f:4c:47:73:e0:34:0f:4f:3e:81:6c:b4:a6:e2:d6:0c:1e:00: 92:5d:bd:9b:23:a4:ad:41:82:4f:47:2c:70:83:9d:ff:75:f5: a0:cc:3a:b2:23:bc:ea:0a:1a:bf:dc:e0:ae:7b:45:48:e9:4d: df:d1:a7:6b:f3:25:ee:e6:83:fb:d1:49:00:56:62:c7:af:47: ef:13:46:bb:64:1d:3e:eb:c1:28:e6:0e:80:20:db:c3:9c:c1: 80:5f:b4:20:d1:f2:8a:9b:c8:c7:14:81:1f:c4:bd:5e:0a:fd: b8:0b:b1:4c:0e:57:7d:c1:65:25:3d:2b:7e:db:b4:aa:1e:ae: 67:ae:08:fa:57:28:e4:96:4c:5f:c3:38:14:84:76:19:8f:4f: b4:04:25:b9:7f:31:b8:a9:05:a5:bd:de:0e:8f:bc:fb:fa:ee: 61:7b:88:9b:67:83:f8:3f:73:53:b0:08:2a:9e:b7:b0:42:61: f2:93:83:7d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUM9CVeKSSyPIsKP6Yv0FZARh7LD4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTYxNTg1ODc0NzI5QzU4QkI2Mjc0MDY5MkJBOEZBNkVE Mjg2RkRDOTAeFw0yNDA3MjIwNDU2MTBaFw0yNTA3MjEwNTAxMTBaMDMxMTAvBgNV BAMTKDg2RDQzOERDOTM5NjhDRUVENTk5NkY5ODBGQ0NEMzY1RjM2MzYyMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrnVodnR2bxKmM6Y5RMU26b53r DYHVoWcH74+GIuYK8wkyzEx+3Q1L6P80dExAmoKsiWXfZTsWZwAB+uPAU9VEXJGp KvuXKvWQebHO4R9pVyfki1DTe1l7ftv6iOUo4P0SimEYaHpxL4I5Og3C0cklqOci lm/acBx0CJz/DB3IlytQUYGCsAPGgPXj2wmNxDbvYVY5NcO2GnSB6cT6A6pd6J5r gL1IJgqFS3ydhuQg0n+qMICXXRjqOoIo3OHxKLmYHPX8810gkxELcl/LDcAOCImu DD8QWRMuzZNTiqtN6R1/+n78/PCHmJzetjV5kRgVQm+VoZlDlDYeifJKthrRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUhtQ43JOWjO7VmW+YD8zTZfNjYhYwHwYDVR0j BBgwFoAUphWFh0cpxYu2J0BpK6j6btKG/ckwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NzBjNDc1OS00M2I4LTRlODAtYmU4Yy04M2NiZTlmODIzMWIvMC9BNjE1ODU4NzQ3 MjlDNThCQjYyNzQwNjkyQkE4RkE2RUQyODZGREM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTYxNTg1ODc0NzI5QzU4QkI2Mjc0MDY5MkJBOEZBNkVEMjg2 RkRDOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM3MGM0NzU5LTQzYjgtNGU4MC1i ZThjLTgzY2JlOWY4MjMxYi8wLzMxMzAzMzJlMzIzNDM1MmUzMTM3MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGf1sjANBgkqhkiG 9w0BAQsFAAOCAQEAQjltmbiElHg8+zRKrisrporM9Ckyo2b9pyjNTaKUZI3anK8q P86gLoR3c2nTyiad1FfBotqEm1NaE6iQTXjgDHFbl58lDM3TX0xHc+A0D08+gWy0 puLWDB4Akl29myOkrUGCT0cscIOd/3X1oMw6siO86goav9zgrntFSOlN39Gna/Ml 7uaD+9FJAFZix69H7xNGu2QdPuvBKOYOgCDbw5zBgF+0INHyipvIxxSBH8S9Xgr9 uAuxTA5XfcFlJT0rftu0qh6uZ64I+lco5JZMX8M4FIR2GY9PtAQluX8xuKkFpb3e Do+8+/ruYXuIm2eD+D9zU7AIKp63sEJh8pODfQ== -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:47 2024 by rpki-client on console-fra.rpki-client.org