$ rpki-client -vvf repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/3130332e3137362e34342e302f32332d3233203d3e20313437313238.roa File: 3130332e3137362e34342e302f32332d3233203d3e20313437313238.roa (raw, json) Hash identifier: aay9Jvclfs8gBm7idaaHHT8mQr3TT32/vrVHbT4o17k= Subject key identifier: 4D:66:F4:4F:F0:E6:00:9F:1E:FF:80:C5:D3:23:C5:4D:B1:AA:16:AD Certificate issuer: /CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Certificate serial: 5CF4650EA6091A8CD74923A555684FE1156D67BE Authority key identifier: 02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/3130332e3137362e34342e302f32332d3233203d3e20313437313238.roa Signing time: Sat 07 Sep 2024 15:00:01 +0000 ROA not before: Sat 07 Sep 2024 14:55:01 +0000 ROA not after: Sat 06 Sep 2025 15:00:01 +0000 asID: 147128 IP address blocks: 103.176.44.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:f4:65:0e:a6:09:1a:8c:d7:49:23:a5:55:68:4f:e1:15:6d:67:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Validity Not Before: Sep 7 14:55:01 2024 GMT Not After : Sep 6 15:00:01 2025 GMT Subject: CN=4D66F44FF0E6009F1EFF80C5D323C54DB1AA16AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:51:35:c7:10:f1:68:27:6c:e3:75:dc:bb:b8: 23:5e:a2:0e:7f:5b:3b:31:98:70:50:b9:71:dd:13: 3a:c2:ff:ae:73:f4:6a:e7:80:49:e4:8f:b1:a9:fb: e8:fc:68:4d:21:37:26:25:c7:d7:44:93:06:40:8a: 0e:52:8e:aa:db:ae:73:0a:b4:5a:ad:e4:58:55:c7: 95:98:ea:c5:f5:a8:51:71:fe:8f:d2:cf:7f:06:45: 17:e0:6a:08:d1:f3:93:9a:f8:16:f5:21:2b:e8:44: 1c:47:84:1f:12:b9:9e:34:20:d9:ef:91:65:63:02: 77:61:7f:3d:bc:b3:7e:52:59:87:64:b1:fe:68:07: 71:ee:2b:a4:0f:b7:8b:47:13:a3:5e:44:21:db:e0: 80:27:dd:30:ab:78:43:f8:42:3f:cb:ac:16:f7:bd: f9:c4:cb:e8:7f:df:0f:f3:21:22:77:54:a1:39:c2: e3:d5:48:a4:dd:24:d4:76:7e:86:f4:b7:55:6b:03: e5:91:17:8e:d7:7c:79:f3:32:cb:59:37:f5:8b:78: 65:2c:87:99:3f:62:de:91:7c:4f:8a:fd:77:b2:e6: 83:65:4e:0c:9c:f5:a1:03:fc:31:48:7e:1e:5a:82: e7:0d:be:64:86:07:88:8f:4f:bc:89:82:98:d0:5d: 25:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:66:F4:4F:F0:E6:00:9F:1E:FF:80:C5:D3:23:C5:4D:B1:AA:16:AD X509v3 Authority Key Identifier: keyid:02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/3130332e3137362e34342e302f32332d3233203d3e20313437313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.44.0/23 Signature Algorithm: sha256WithRSAEncryption 32:99:28:be:be:d5:46:8b:22:1f:34:f4:77:0c:07:df:67:8c: ae:63:1c:26:d9:2c:c5:e6:3c:37:7c:e0:96:06:6b:7c:4e:99: 1b:99:d8:fa:6e:18:26:65:cd:75:14:30:1f:6f:57:dd:98:f9: 49:f8:22:57:a6:88:47:8b:bc:87:77:e3:49:b4:8f:46:96:d0: f4:8f:56:1d:15:e2:ab:56:6b:3f:39:03:a5:c6:b6:e1:9e:2c: 4b:4b:a7:cd:f4:18:6c:a2:14:75:41:56:d4:a4:7c:81:ff:e7: 29:5c:c7:54:db:47:ce:0e:45:38:09:93:2f:0e:3b:b9:17:fd: 82:8c:cd:11:ad:e8:79:44:7b:5b:ce:b0:58:e3:06:59:5f:ae: b5:16:b2:9a:03:33:11:cc:a9:bd:f3:4f:af:cb:50:97:11:e7: 8b:e9:2d:c6:b8:e8:2e:f0:9e:85:41:31:92:3a:26:df:03:bf: a0:aa:98:ae:ae:50:cd:41:ff:e7:05:98:9f:f9:cc:32:68:ae: 36:74:ef:51:37:ca:71:73:64:70:f7:ba:bc:e5:c6:8c:18:54: b7:86:10:6a:cb:a5:53:34:2a:87:e6:1b:07:ab:f3:bc:47:f7: 03:c8:53:54:3a:fc:38:44:e7:27:d1:53:0b:c3:7e:88:79:a9: ca:c4:37:88 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUXPRlDqYJGozXSSOlVWhP4RVtZ74wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhG QTQxMEVGMTAeFw0yNDA5MDcxNDU1MDFaFw0yNTA5MDYxNTAwMDFaMDMxMTAvBgNV BAMTKDRENjZGNDRGRjBFNjAwOUYxRUZGODBDNUQzMjNDNTREQjFBQTE2QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJUTXHEPFoJ2zjddy7uCNeog5/ WzsxmHBQuXHdEzrC/65z9GrngEnkj7Gp++j8aE0hNyYlx9dEkwZAig5SjqrbrnMK tFqt5FhVx5WY6sX1qFFx/o/Sz38GRRfgagjR85Oa+Bb1ISvoRBxHhB8SuZ40INnv kWVjAndhfz28s35SWYdksf5oB3HuK6QPt4tHE6NeRCHb4IAn3TCreEP4Qj/LrBb3 vfnEy+h/3w/zISJ3VKE5wuPVSKTdJNR2fob0t1VrA+WRF47XfHnzMstZN/WLeGUs h5k/Yt6RfE+K/Xey5oNlTgyc9aED/DFIfh5agucNvmSGB4iPT7yJgpjQXSVZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTWb0T/DmAJ8e/4DF0yPFTbGqFq0wHwYDVR0j BBgwFoAUAkq/8pWaYUTMSInHD3f5aPpBDvEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzFhOTQyNi0zYzM1LTQ3MGUtYmYzNC0zMGU3ZTQxNjAyY2IvMC8wMjRBQkZGMjk1 OUE2MTQ0Q0M0ODg5QzcwRjc3Rjk2OEZBNDEwRUYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhGQTQx MEVGMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzMWE5NDI2LTNjMzUtNDcwZS1i ZjM0LTMwZTdlNDE2MDJjYi8wLzMxMzAzMzJlMzEzNzM2MmUzNDM0MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDM3MzEzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7AsMA0GCSqG SIb3DQEBCwUAA4IBAQAymSi+vtVGiyIfNPR3DAffZ4yuYxwm2SzF5jw3fOCWBmt8 Tpkbmdj6bhgmZc11FDAfb1fdmPlJ+CJXpohHi7yHd+NJtI9GltD0j1YdFeKrVms/ OQOlxrbhnixLS6fN9BhsohR1QVbUpHyB/+cpXMdU20fODkU4CZMvDju5F/2CjM0R reh5RHtbzrBY4wZZX661FrKaAzMRzKm980+vy1CXEeeL6S3GuOgu8J6FQTGSOibf A7+gqpiurlDNQf/nBZif+cwyaK42dO9RN8pxc2Rw97q85caMGFS3hhBqy6VTNCqH 5hsHq/O8R/cDyFNUOvw4ROcn0VMLw36IeanKxDeI -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:37 2024 by rpki-client on console-ams.rpki-client.org