$ rpki-client -vvf repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/3130332e34332e32342e302f32332d3233203d3e20313530343633.roa File: 3130332e34332e32342e302f32332d3233203d3e20313530343633.roa (raw, json) Hash identifier: cGZRpaHvKb5zHLJT3xGbPkrwkvFng/qUjW6eYCEMMGM= Subject key identifier: 99:C6:E2:7B:7C:6B:C2:21:9A:62:82:22:F6:DB:BB:FA:99:F3:38:0E Certificate issuer: /CN=08A94FD7F0E8A287AD318D7A26254192431E175F Certificate serial: 5B5FC4F1039263440120B2D6598F4A27ADDE2F2F Authority key identifier: 08:A9:4F:D7:F0:E8:A2:87:AD:31:8D:7A:26:25:41:92:43:1E:17:5F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08A94FD7F0E8A287AD318D7A26254192431E175F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/3130332e34332e32342e302f32332d3233203d3e20313530343633.roa Signing time: Fri 22 Nov 2024 10:02:37 +0000 ROA not before: Fri 22 Nov 2024 09:57:37 +0000 ROA not after: Fri 21 Nov 2025 10:02:37 +0000 asID: 150463 IP address blocks: 103.43.24.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/08A94FD7F0E8A287AD318D7A26254192431E175F.crl rsync://repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/08A94FD7F0E8A287AD318D7A26254192431E175F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08A94FD7F0E8A287AD318D7A26254192431E175F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:17:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:5f:c4:f1:03:92:63:44:01:20:b2:d6:59:8f:4a:27:ad:de:2f:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08A94FD7F0E8A287AD318D7A26254192431E175F Validity Not Before: Nov 22 09:57:37 2024 GMT Not After : Nov 21 10:02:37 2025 GMT Subject: CN=99C6E27B7C6BC2219A628222F6DBBBFA99F3380E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:66:47:ff:83:78:1b:d7:28:7d:e2:9d:a1:c6: c0:80:6c:15:21:ca:31:1b:49:7a:f6:56:b7:1e:3b: 79:a1:45:39:db:b4:93:5d:22:3d:69:d2:ff:91:21: b1:c0:e8:85:c0:a4:7b:23:62:5e:b9:3f:02:68:78: 94:77:1c:53:d6:47:d2:54:29:1b:a4:90:a0:e9:a9: b4:ed:43:4d:45:78:5e:e1:70:ca:ff:f7:df:0b:17: ff:27:e9:4b:aa:12:2f:b9:e8:4e:5f:71:2c:88:29: ad:cf:84:ed:48:bb:e4:fc:49:7a:a2:62:f2:d5:bf: b4:7f:b6:12:f5:f0:71:5d:8d:b3:1a:b3:11:8c:1a: 97:12:07:de:69:d0:68:dd:73:18:a8:12:ce:cf:e9: dd:be:65:4b:b6:f8:e0:99:dd:4b:ae:30:85:d1:f7: f8:a4:04:1d:ce:a9:17:46:f4:b1:94:8b:91:94:81: ab:08:89:cf:17:86:3e:ef:5c:72:51:bc:3b:63:b7: c0:6a:6e:40:4c:b3:8d:16:8b:6a:74:ff:06:57:3e: 4b:4e:7d:f4:e8:73:40:c4:81:08:79:91:cd:15:31: 12:99:82:96:25:3f:5a:0e:28:fd:03:f7:ca:d4:05: 0c:76:39:f0:c8:6b:06:d6:7f:3d:f6:cf:b2:d3:cb: 8b:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:C6:E2:7B:7C:6B:C2:21:9A:62:82:22:F6:DB:BB:FA:99:F3:38:0E X509v3 Authority Key Identifier: keyid:08:A9:4F:D7:F0:E8:A2:87:AD:31:8D:7A:26:25:41:92:43:1E:17:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/08A94FD7F0E8A287AD318D7A26254192431E175F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08A94FD7F0E8A287AD318D7A26254192431E175F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/3130332e34332e32342e302f32332d3233203d3e20313530343633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.43.24.0/23 Signature Algorithm: sha256WithRSAEncryption 9b:c5:4d:cb:e3:cd:f2:d2:c7:d1:48:f8:fb:37:7f:f9:f0:13: d0:36:39:87:92:73:e9:ec:e6:7f:b1:90:34:9e:cc:9a:81:c9: a7:b8:2d:5b:fc:00:5e:d4:87:f6:f0:c2:fe:ae:24:81:e3:10: 13:00:80:f7:a1:d8:f8:ee:ca:91:90:c0:37:4e:16:3e:ef:e8: 95:ca:c6:0b:fe:b9:02:80:da:c7:f9:4c:99:ba:f7:da:60:36: 40:8e:62:2f:44:e5:dc:06:ff:42:49:9b:d1:65:39:3e:74:ff: 49:02:8a:21:56:6d:62:29:c2:f3:45:cc:9b:09:80:c8:45:31: 43:79:0e:26:f8:c2:d2:e1:06:ff:75:18:84:69:75:32:0b:3e: 30:d6:e3:57:69:e5:86:82:d0:bc:54:ca:88:dd:92:b9:a2:84: 36:fe:9f:88:08:56:52:e7:a2:fe:58:a4:f5:69:aa:72:61:35: 0a:86:b8:d9:5d:0f:4a:56:55:42:9c:cd:0a:d4:19:65:e1:b9: 8a:bc:83:cf:95:eb:69:f5:f8:9a:13:1c:94:57:bd:34:2d:1b: dc:f7:12:3a:9b:d9:14:8c:89:cf:61:48:24:44:59:8d:bd:b3: 76:2d:f4:04:8f:fd:b5:57:31:b4:1c:64:9c:17:66:14:48:1e: c6:3a:1c:27 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUW1/E8QOSY0QBILLWWY9KJ63eLy8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhBOTRGRDdGMEU4QTI4N0FEMzE4RDdBMjYyNTQxOTI0 MzFFMTc1RjAeFw0yNDExMjIwOTU3MzdaFw0yNTExMjExMDAyMzdaMDMxMTAvBgNV BAMTKDk5QzZFMjdCN0M2QkMyMjE5QTYyODIyMkY2REJCQkZBOTlGMzM4MEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZZkf/g3gb1yh94p2hxsCAbBUh yjEbSXr2VrceO3mhRTnbtJNdIj1p0v+RIbHA6IXApHsjYl65PwJoeJR3HFPWR9JU KRukkKDpqbTtQ01FeF7hcMr/998LF/8n6UuqEi+56E5fcSyIKa3PhO1Iu+T8SXqi YvLVv7R/thL18HFdjbMasxGMGpcSB95p0GjdcxioEs7P6d2+ZUu2+OCZ3UuuMIXR 9/ikBB3OqRdG9LGUi5GUgasIic8Xhj7vXHJRvDtjt8BqbkBMs40Wi2p0/wZXPktO ffToc0DEgQh5kc0VMRKZgpYlP1oOKP0D98rUBQx2OfDIawbWfz32z7LTy4u9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUmcbie3xrwiGaYoIi9tu7+pnzOA4wHwYDVR0j BBgwFoAUCKlP1/DoooetMY16JiVBkkMeF18wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MjA4M2Q0NC03ODM1LTQ0M2QtODUzYS0wYTc5Y2YwMGU5NTAvMC8wOEE5NEZEN0Yw RThBMjg3QUQzMThEN0EyNjI1NDE5MjQzMUUxNzVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDhBOTRGRDdGMEU4QTI4N0FEMzE4RDdBMjYyNTQxOTI0MzFF MTc1Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQyMDgzZDQ0LTc4MzUtNDQzZC04 NTNhLTBhNzljZjAwZTk1MC8wLzMxMzAzMzJlMzQzMzJlMzIzNDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzUzMDM0MzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWcrGDANBgkqhkiG 9w0BAQsFAAOCAQEAm8VNy+PN8tLH0Uj4+zd/+fAT0DY5h5Jz6ezmf7GQNJ7MmoHJ p7gtW/wAXtSH9vDC/q4kgeMQEwCA96HY+O7KkZDAN04WPu/olcrGC/65AoDax/lM mbr32mA2QI5iL0Tl3Ab/Qkmb0WU5PnT/SQKKIVZtYinC80XMmwmAyEUxQ3kOJvjC 0uEG/3UYhGl1Mgs+MNbjV2nlhoLQvFTKiN2SuaKENv6fiAhWUuei/lik9WmqcmE1 Coa42V0PSlZVQpzNCtQZZeG5iryDz5XrafX4mhMclFe9NC0b3PcSOpvZFIyJz2FI JERZjb2zdi30BI/9tVcxtBxknBdmFEgexjocJw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:11 2024 by rpki-client on console-fra.rpki-client.org