$ rpki-client -vvf repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/3130332e34332e32352e302f32342d3234203d3e20313336313331.roa File: 3130332e34332e32352e302f32342d3234203d3e20313336313331.roa (raw, json) Hash identifier: t2maJuKnUK6w0xTW/ZPenqfzDadlhm2mkr7TpJ08O88= Subject key identifier: 23:7D:2F:71:B6:14:99:1B:DC:77:69:53:45:B1:39:34:2A:1A:40:F0 Certificate issuer: /CN=08A94FD7F0E8A287AD318D7A26254192431E175F Certificate serial: 1DE1EE2D62C0603EF91A4FB8EA9DC3F55B34AD46 Authority key identifier: 08:A9:4F:D7:F0:E8:A2:87:AD:31:8D:7A:26:25:41:92:43:1E:17:5F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08A94FD7F0E8A287AD318D7A26254192431E175F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/3130332e34332e32352e302f32342d3234203d3e20313336313331.roa Signing time: Mon 25 Dec 2023 06:00:00 +0000 ROA not before: Mon 25 Dec 2023 05:55:00 +0000 ROA not after: Mon 23 Dec 2024 06:00:00 +0000 asID: 136131 IP address blocks: 103.43.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/08A94FD7F0E8A287AD318D7A26254192431E175F.crl rsync://repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/08A94FD7F0E8A287AD318D7A26254192431E175F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08A94FD7F0E8A287AD318D7A26254192431E175F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:17:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:e1:ee:2d:62:c0:60:3e:f9:1a:4f:b8:ea:9d:c3:f5:5b:34:ad:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08A94FD7F0E8A287AD318D7A26254192431E175F Validity Not Before: Dec 25 05:55:00 2023 GMT Not After : Dec 23 06:00:00 2024 GMT Subject: CN=237D2F71B614991BDC77695345B139342A1A40F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7e:96:52:9d:92:3d:7c:d6:09:58:f9:22:f5: c9:c5:f3:25:7e:02:2c:a6:07:38:4a:bd:d3:92:d0: 31:eb:0c:ea:b6:25:0a:40:ec:6e:d1:9d:47:8c:9c: bc:30:f5:43:fc:71:9d:55:82:30:6b:3c:a0:8b:84: 64:fc:1d:0f:ac:2e:46:5f:47:5a:51:e7:36:9b:bf: 48:1a:c1:f0:6c:98:38:6c:b2:f8:e0:1f:9f:4f:23: 4b:8e:51:34:85:47:7c:bf:29:c1:f1:5e:db:38:a1: 4b:06:7f:0d:b3:65:1d:91:1f:c3:ff:8a:8c:72:99: c5:f3:97:35:15:ee:54:af:48:5c:d8:c9:78:3b:3a: 53:5c:9b:49:d1:8b:11:20:d3:7f:a4:92:c1:4d:da: fb:7b:18:3a:f6:e7:d1:d5:12:b0:30:91:41:b2:f8: 05:c4:4f:53:8f:57:57:80:ea:fd:dc:d8:a8:c4:04: 64:f8:aa:eb:01:d0:63:9b:59:b4:f1:4e:57:53:b2: a5:0d:2e:02:19:0e:b4:f8:a5:c1:68:cb:72:0f:b0: c0:63:37:db:49:89:79:c8:3c:bf:fe:ce:93:05:44: 75:56:bc:f2:b2:8a:e9:7d:0c:e1:7f:6b:c8:c6:63: da:24:31:5d:c1:fc:e1:d6:58:12:a8:83:64:7f:ca: 2a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:7D:2F:71:B6:14:99:1B:DC:77:69:53:45:B1:39:34:2A:1A:40:F0 X509v3 Authority Key Identifier: keyid:08:A9:4F:D7:F0:E8:A2:87:AD:31:8D:7A:26:25:41:92:43:1E:17:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/08A94FD7F0E8A287AD318D7A26254192431E175F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08A94FD7F0E8A287AD318D7A26254192431E175F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/3130332e34332e32352e302f32342d3234203d3e20313336313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.43.25.0/24 Signature Algorithm: sha256WithRSAEncryption 92:87:b2:fd:e0:11:69:3a:29:ef:7d:5e:af:71:72:e4:96:11: 91:f6:bf:c1:b8:00:55:96:20:d5:2a:4d:60:91:1b:9c:01:81: fb:0a:60:f8:7e:49:b0:68:04:cc:90:f0:99:66:a0:eb:f5:e8: e3:dc:f1:b8:70:59:09:77:e5:c7:94:6e:c5:ea:e0:62:23:cc: e4:24:f2:7c:e9:ff:13:fc:2f:6d:45:c0:29:31:1d:4b:cc:d3: aa:5f:16:60:f2:58:fb:77:fc:e6:cb:71:bc:32:bf:40:ba:ac: 53:89:62:4a:28:51:6b:9b:dc:4d:1a:64:3f:1d:1c:56:5c:24: 40:47:c2:95:e6:e4:da:d6:4d:0d:4f:7b:02:52:5e:40:18:24: 48:de:af:8a:dc:9c:6f:22:e5:c5:78:78:d2:f8:bf:3d:d8:65: 9a:59:b1:62:42:6a:82:9b:e1:6d:31:29:4c:6e:0c:99:48:71: 37:7c:eb:80:88:ce:a8:65:14:eb:3b:82:5d:a6:b6:a3:22:20: d5:07:fa:26:a9:9c:10:35:dd:58:56:53:3d:58:f3:58:9c:39: 12:2f:7b:94:a7:c4:84:a8:1b:2b:5f:bf:8b:58:4e:30:5f:9f: e4:11:c7:dd:a6:6c:24:b0:0a:91:01:c1:00:ee:1c:72:ca:b8: 0f:29:82:66 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHeHuLWLAYD75Gk+46p3D9Vs0rUYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDhBOTRGRDdGMEU4QTI4N0FEMzE4RDdBMjYyNTQxOTI0 MzFFMTc1RjAeFw0yMzEyMjUwNTU1MDBaFw0yNDEyMjMwNjAwMDBaMDMxMTAvBgNV BAMTKDIzN0QyRjcxQjYxNDk5MUJEQzc3Njk1MzQ1QjEzOTM0MkExQTQwRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkfpZSnZI9fNYJWPki9cnF8yV+ AiymBzhKvdOS0DHrDOq2JQpA7G7RnUeMnLww9UP8cZ1VgjBrPKCLhGT8HQ+sLkZf R1pR5zabv0gawfBsmDhssvjgH59PI0uOUTSFR3y/KcHxXts4oUsGfw2zZR2RH8P/ ioxymcXzlzUV7lSvSFzYyXg7OlNcm0nRixEg03+kksFN2vt7GDr259HVErAwkUGy +AXET1OPV1eA6v3c2KjEBGT4qusB0GObWbTxTldTsqUNLgIZDrT4pcFoy3IPsMBj N9tJiXnIPL/+zpMFRHVWvPKyiul9DOF/a8jGY9okMV3B/OHWWBKog2R/yioNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUI30vcbYUmRvcd2lTRbE5NCoaQPAwHwYDVR0j BBgwFoAUCKlP1/DoooetMY16JiVBkkMeF18wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MjA4M2Q0NC03ODM1LTQ0M2QtODUzYS0wYTc5Y2YwMGU5NTAvMC8wOEE5NEZEN0Yw RThBMjg3QUQzMThEN0EyNjI1NDE5MjQzMUUxNzVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDhBOTRGRDdGMEU4QTI4N0FEMzE4RDdBMjYyNTQxOTI0MzFF MTc1Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQyMDgzZDQ0LTc4MzUtNDQzZC04 NTNhLTBhNzljZjAwZTk1MC8wLzMxMzAzMzJlMzQzMzJlMzIzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNjMxMzMzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcrGTANBgkqhkiG 9w0BAQsFAAOCAQEAkoey/eARaTop731er3Fy5JYRkfa/wbgAVZYg1SpNYJEbnAGB +wpg+H5JsGgEzJDwmWag6/Xo49zxuHBZCXflx5RuxergYiPM5CTyfOn/E/wvbUXA KTEdS8zTql8WYPJY+3f85stxvDK/QLqsU4liSihRa5vcTRpkPx0cVlwkQEfClebk 2tZNDU97AlJeQBgkSN6vitycbyLlxXh40vi/PdhlmlmxYkJqgpvhbTEpTG4MmUhx N3zrgIjOqGUU6zuCXaa2oyIg1Qf6JqmcEDXdWFZTPVjzWJw5Ei97lKfEhKgbK1+/ i1hOMF+f5BHH3aZsJLAKkQHBAO4ccsq4DymCZg== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:11 2024 by rpki-client on console-fra.rpki-client.org