$ rpki-client -vvf repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3130332e3234332e31312e302f32342d3234203d3e20313532303331.roa File: 3130332e3234332e31312e302f32342d3234203d3e20313532303331.roa (raw, json) Hash identifier: swQk3CMs91vr55Hf1HxdAGgKZMFDBhQJzCQ0W1El3G8= Subject key identifier: A9:DE:23:E9:AD:C8:9C:42:EC:17:99:00:E0:45:08:65:5D:8E:DB:E4 Certificate issuer: /CN=A9D46A066DBAE3776A15E9AB09A6CD3C8216615B Certificate serial: 64B19B6C3D9C68D9C8CC142B4731133624D1235B Authority key identifier: A9:D4:6A:06:6D:BA:E3:77:6A:15:E9:AB:09:A6:CD:3C:82:16:61:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3130332e3234332e31312e302f32342d3234203d3e20313532303331.roa Signing time: Sat 13 Jan 2024 05:39:43 +0000 ROA not before: Sat 13 Jan 2024 05:34:43 +0000 ROA not after: Sat 11 Jan 2025 05:39:43 +0000 asID: 152031 IP address blocks: 103.243.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.crl rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:b1:9b:6c:3d:9c:68:d9:c8:cc:14:2b:47:31:13:36:24:d1:23:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9D46A066DBAE3776A15E9AB09A6CD3C8216615B Validity Not Before: Jan 13 05:34:43 2024 GMT Not After : Jan 11 05:39:43 2025 GMT Subject: CN=A9DE23E9ADC89C42EC179900E04508655D8EDBE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d5:f8:5e:20:9b:bd:b2:46:62:1c:e5:9f:b5: c1:29:15:45:4f:a1:a1:06:75:85:05:ba:5f:74:ec: d6:96:7a:64:1f:97:df:89:33:e9:76:12:16:d6:38: 66:23:ce:09:6b:da:5e:b9:60:a7:b2:1d:c9:1e:ec: f8:d4:a3:a5:8b:69:06:f8:8b:4e:f6:8d:cf:c9:f3: 3b:d4:ac:26:5a:f7:2e:45:5b:58:de:8b:af:69:e0: 02:11:27:86:58:19:cf:18:f8:f1:fd:93:fc:66:05: 39:9c:3c:48:17:2f:55:b9:00:06:e3:c1:01:84:c2: 29:15:e0:ce:f4:16:27:6c:2a:3a:77:63:ef:0d:ec: 40:32:ff:47:ab:b6:a0:37:32:e8:4b:ca:fe:9c:ae: ac:d0:a3:93:87:a2:c5:bd:3a:ca:fa:98:b6:42:ec: 8c:e0:da:75:b8:28:09:99:3a:55:fc:b8:d9:09:a3: 4d:6f:5b:2d:47:f5:93:0f:58:b1:72:05:d6:d6:fe: e8:a6:17:7f:c7:52:55:0c:66:38:c0:99:5a:67:14: 6d:45:57:45:ab:a1:a1:bc:30:a8:26:42:d1:dc:ad: d8:0a:3f:73:07:d5:4d:5d:2c:07:39:9f:eb:d1:26: 7a:7a:90:f5:2a:b3:fd:a5:77:a0:5b:ec:ab:55:c1: b1:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:DE:23:E9:AD:C8:9C:42:EC:17:99:00:E0:45:08:65:5D:8E:DB:E4 X509v3 Authority Key Identifier: keyid:A9:D4:6A:06:6D:BA:E3:77:6A:15:E9:AB:09:A6:CD:3C:82:16:61:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9D46A066DBAE3776A15E9AB09A6CD3C8216615B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/42c7dfd4-e510-4707-9818-a2b1e2c6b216/0/3130332e3234332e31312e302f32342d3234203d3e20313532303331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.243.11.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:8c:37:49:da:37:dc:2f:66:34:b8:d3:d4:2d:63:bf:69:da: 68:71:da:b6:88:84:a2:eb:ca:d5:e2:28:f1:40:a6:f5:45:a5: b5:c5:eb:c7:2c:f6:65:4d:a5:89:f1:94:d7:f7:77:b9:7c:e9: 62:3f:a9:64:ef:f6:6d:92:3f:db:09:d9:d6:65:77:d3:83:d2: 77:1a:d5:2c:05:a3:e7:b8:44:f0:50:dc:de:13:27:63:65:b3: 25:6d:e8:a8:33:65:46:a4:53:55:e4:7e:18:d6:6b:78:de:02: 7e:8c:68:3b:82:80:e4:b2:d2:57:03:db:8d:0b:03:62:93:dd: fd:79:21:5f:1a:38:52:ad:36:5f:37:52:a0:1a:84:0c:26:b0: be:a1:a8:86:2a:76:e9:c2:8b:50:df:3e:38:91:34:61:be:ba: 54:29:0d:cb:14:3d:ed:d4:6a:fc:bc:bc:1d:14:d0:ac:1b:ca: 4e:e1:12:25:54:ef:5c:dc:74:2d:56:88:a2:ac:81:b2:6d:0f: d4:75:a1:8c:51:95:40:c9:d7:1e:4c:47:37:23:e1:5b:c1:b2: bb:9f:56:ac:c4:73:7d:cc:b7:6e:f8:b7:90:b0:9a:7e:79:e5: c6:a4:62:ff:f1:28:b4:de:47:bb:f1:db:d1:3c:59:9d:09:77: c0:49:2a:6b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZLGbbD2caNnIzBQrRzETNiTRI1swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlENDZBMDY2REJBRTM3NzZBMTVFOUFCMDlBNkNEM0M4 MjE2NjE1QjAeFw0yNDAxMTMwNTM0NDNaFw0yNTAxMTEwNTM5NDNaMDMxMTAvBgNV BAMTKEE5REUyM0U5QURDODlDNDJFQzE3OTkwMEUwNDUwODY1NUQ4RURCRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA1fheIJu9skZiHOWftcEpFUVP oaEGdYUFul907NaWemQfl9+JM+l2EhbWOGYjzglr2l65YKeyHcke7PjUo6WLaQb4 i072jc/J8zvUrCZa9y5FW1jei69p4AIRJ4ZYGc8Y+PH9k/xmBTmcPEgXL1W5AAbj wQGEwikV4M70FidsKjp3Y+8N7EAy/0ertqA3MuhLyv6crqzQo5OHosW9Osr6mLZC 7Izg2nW4KAmZOlX8uNkJo01vWy1H9ZMPWLFyBdbW/uimF3/HUlUMZjjAmVpnFG1F V0WroaG8MKgmQtHcrdgKP3MH1U1dLAc5n+vRJnp6kPUqs/2ld6Bb7KtVwbEFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUqd4j6a3InELsF5kA4EUIZV2O2+QwHwYDVR0j BBgwFoAUqdRqBm2643dqFemrCabNPIIWYVswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MmM3ZGZkNC1lNTEwLTQ3MDctOTgxOC1hMmIxZTJjNmIyMTYvMC9BOUQ0NkEwNjZE QkFFMzc3NkExNUU5QUIwOUE2Q0QzQzgyMTY2MTVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlENDZBMDY2REJBRTM3NzZBMTVFOUFCMDlBNkNEM0M4MjE2 NjE1Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQyYzdkZmQ0LWU1MTAtNDcwNy05 ODE4LWEyYjFlMmM2YjIxNi8wLzMxMzAzMzJlMzIzNDMzMmUzMTMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMyMzAzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ/MLMA0GCSqG SIb3DQEBCwUAA4IBAQBbjDdJ2jfcL2Y0uNPULWO/adpocdq2iISi68rV4ijxQKb1 RaW1xevHLPZlTaWJ8ZTX93e5fOliP6lk7/Ztkj/bCdnWZXfTg9J3GtUsBaPnuETw UNzeEydjZbMlbeioM2VGpFNV5H4Y1mt43gJ+jGg7goDkstJXA9uNCwNik939eSFf GjhSrTZfN1KgGoQMJrC+oaiGKnbpwotQ3z44kTRhvrpUKQ3LFD3t1Gr8vLwdFNCs G8pO4RIlVO9c3HQtVoiirIGybQ/UdaGMUZVAydceTEc3I+FbwbK7n1asxHN9zLdu +LeQsJp+eeXGpGL/8Si03ke78dvRPFmdCXfASSpr -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:30 2024 by rpki-client on console-fra.rpki-client.org