$ rpki-client -vvf repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3130332e3234332e31302e302f32342d3234203d3e20313532303331.roa File: 3130332e3234332e31302e302f32342d3234203d3e20313532303331.roa (raw, json) Hash identifier: ri6zVldaGRpOaYEv3osVBPZnxBBgRNJX89+3uDFPHP8= Subject key identifier: 02:99:99:F0:A6:30:55:7C:17:4A:90:DF:C5:73:62:37:BC:6A:F3:AD Certificate issuer: /CN=A9D46A066DBAE3776A15E9AB09A6CD3C8216615B Certificate serial: 37C4A7319DAFE143AFF9B6E63B8AAEEBB4F736D7 Authority key identifier: A9:D4:6A:06:6D:BA:E3:77:6A:15:E9:AB:09:A6:CD:3C:82:16:61:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3130332e3234332e31302e302f32342d3234203d3e20313532303331.roa Signing time: Thu 29 Aug 2024 22:56:42 +0000 ROA not before: Thu 29 Aug 2024 22:51:42 +0000 ROA not after: Thu 28 Aug 2025 22:56:42 +0000 asID: 152031 IP address blocks: 103.243.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.crl rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:c4:a7:31:9d:af:e1:43:af:f9:b6:e6:3b:8a:ae:eb:b4:f7:36:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9D46A066DBAE3776A15E9AB09A6CD3C8216615B Validity Not Before: Aug 29 22:51:42 2024 GMT Not After : Aug 28 22:56:42 2025 GMT Subject: CN=029999F0A630557C174A90DFC5736237BC6AF3AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fd:77:15:16:6e:8d:9e:fa:2c:d0:82:19:de: ce:b4:c0:1f:6f:5e:7b:eb:c0:ec:45:03:c9:f9:f5: 7a:6c:72:e6:11:61:b6:68:a4:62:1a:e7:9a:6f:ab: 99:c7:e3:ca:cc:58:7c:ca:60:31:eb:42:e0:d0:42: ef:34:ed:23:1b:ac:2a:5a:5c:fd:9f:34:72:b1:e9: eb:2b:2d:4e:95:f7:0f:ec:2f:85:0c:3c:c0:09:6a: ce:f7:22:5a:f6:5a:a5:e2:17:a8:76:fd:e1:8f:b1: 67:94:81:5e:fd:af:e5:9d:e7:ef:ca:49:7e:12:b3: 69:eb:11:27:15:85:cb:69:15:24:ad:aa:2d:98:49: d9:e7:a7:cc:07:bf:62:c7:fc:49:22:1a:e7:f9:79: c4:fc:41:80:bd:5c:e4:67:14:97:90:c4:a4:66:cc: 93:ff:4e:d4:ab:97:00:93:c8:55:23:ca:39:b2:f4: c5:62:07:e5:33:22:52:6f:78:c4:1b:59:54:69:14: 06:71:a0:e6:a5:88:aa:de:db:1b:b6:31:b3:df:31: de:03:ac:63:59:57:e8:76:74:e6:79:06:42:66:c0: 9a:f5:0c:e4:41:e5:cd:c3:f7:33:5e:c3:e2:ca:ad: 79:a5:f3:30:2d:21:03:8f:e5:ed:dc:a0:5c:b1:55: e8:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:99:99:F0:A6:30:55:7C:17:4A:90:DF:C5:73:62:37:BC:6A:F3:AD X509v3 Authority Key Identifier: keyid:A9:D4:6A:06:6D:BA:E3:77:6A:15:E9:AB:09:A6:CD:3C:82:16:61:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3130332e3234332e31302e302f32342d3234203d3e20313532303331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.243.10.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:b3:81:f1:e5:c7:c8:95:f0:d0:e1:fe:3d:d7:cb:57:64:8e: f5:c5:1b:0e:eb:03:ee:08:65:b5:fe:e6:bd:19:92:4a:4e:bd: 17:09:04:24:44:f3:c8:b0:c7:86:b2:f4:b6:b9:78:a4:2d:24: 2b:c0:12:58:ba:cb:14:d7:98:e4:b9:88:f8:98:24:da:fa:f2: 8b:41:22:51:d7:4c:a7:28:e1:1f:46:28:10:60:76:70:26:c0: 1d:60:9a:1c:cf:98:ae:12:b1:68:e5:57:56:00:43:c2:50:3c: e7:87:b0:4e:08:fc:0f:1f:65:d7:4e:8d:13:7d:ab:67:13:4a: 24:5f:8f:cf:ab:2c:99:dc:58:fe:83:49:74:59:fd:a3:72:65: 5d:a6:21:5f:b1:8c:cb:f8:82:f2:8f:df:88:95:68:be:ba:4d: 20:d6:f1:70:26:5a:37:df:cf:85:e5:5d:68:cf:d2:6d:a4:a8: 91:57:32:7e:87:2d:2a:ea:63:e2:1c:c2:88:8b:65:f9:40:00: ff:53:22:e0:46:b8:05:86:75:69:1c:7d:7c:14:7b:4c:df:b2: 8e:da:54:d7:e7:6c:59:cf:cc:c5:a3:ed:ad:94:df:54:cd:fa: 70:c3:46:de:fe:3b:0d:99:93:f4:1c:66:59:02:a1:39:79:00: e5:d3:6a:3a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUN8SnMZ2v4UOv+bbmO4qu67T3NtcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlENDZBMDY2REJBRTM3NzZBMTVFOUFCMDlBNkNEM0M4 MjE2NjE1QjAeFw0yNDA4MjkyMjUxNDJaFw0yNTA4MjgyMjU2NDJaMDMxMTAvBgNV BAMTKDAyOTk5OUYwQTYzMDU1N0MxNzRBOTBERkM1NzM2MjM3QkM2QUYzQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE/XcVFm6Nnvos0IIZ3s60wB9v XnvrwOxFA8n59XpscuYRYbZopGIa55pvq5nH48rMWHzKYDHrQuDQQu807SMbrCpa XP2fNHKx6esrLU6V9w/sL4UMPMAJas73Ilr2WqXiF6h2/eGPsWeUgV79r+Wd5+/K SX4Ss2nrEScVhctpFSStqi2YSdnnp8wHv2LH/EkiGuf5ecT8QYC9XORnFJeQxKRm zJP/TtSrlwCTyFUjyjmy9MViB+UzIlJveMQbWVRpFAZxoOaliKre2xu2MbPfMd4D rGNZV+h2dOZ5BkJmwJr1DORB5c3D9zNew+LKrXml8zAtIQOP5e3coFyxVehFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUApmZ8KYwVXwXSpDfxXNiN7xq860wHwYDVR0j BBgwFoAUqdRqBm2643dqFemrCabNPIIWYVswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MmM3ZGZkNC1lNTEwLTQ3MDctOTgxOC1hMmIxZTJjNmIyMTYvMC9BOUQ0NkEwNjZE QkFFMzc3NkExNUU5QUIwOUE2Q0QzQzgyMTY2MTVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlENDZBMDY2REJBRTM3NzZBMTVFOUFCMDlBNkNEM0M4MjE2 NjE1Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQyYzdkZmQ0LWU1MTAtNDcwNy05 ODE4LWEyYjFlMmM2YjIxNi8wLzMxMzAzMzJlMzIzNDMzMmUzMTMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/MKMA0GCSqG SIb3DQEBCwUAA4IBAQAKs4Hx5cfIlfDQ4f4918tXZI71xRsO6wPuCGW1/ua9GZJK Tr0XCQQkRPPIsMeGsvS2uXikLSQrwBJYussU15jkuYj4mCTa+vKLQSJR10ynKOEf RigQYHZwJsAdYJocz5iuErFo5VdWAEPCUDznh7BOCPwPH2XXTo0TfatnE0okX4/P qyyZ3Fj+g0l0Wf2jcmVdpiFfsYzL+ILyj9+IlWi+uk0g1vFwJlo338+F5V1oz9Jt pKiRVzJ+hy0q6mPiHMKIi2X5QAD/UyLgRrgFhnVpHH18FHtM37KO2lTX52xZz8zF o+2tlN9Uzfpww0be/jsNmZP0HGZZAqE5eQDl02o6 -----END CERTIFICATE-----Generated at Mon Nov 25 21:31:13 2024 by rpki-client on console-ams.rpki-client.org