$ rpki-client -vvf repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa File: 3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa (raw, json) Hash identifier: XgjVYfJl/xlVtua0sjuxOo3f+EBPiESInzuFXaA9I4w= Subject key identifier: BD:00:0D:67:66:C6:64:22:A1:9B:FE:F0:46:53:13:E6:F9:9D:FB:E8 Certificate issuer: /CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Certificate serial: 110C0232CE246848800C1A72FAFBF47F610374D6 Authority key identifier: 02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa Signing time: Sat 07 Oct 2023 15:00:00 +0000 ROA not before: Sat 07 Oct 2023 14:55:00 +0000 ROA not after: Sat 05 Oct 2024 15:00:00 +0000 asID: 147128 IP address blocks: 103.176.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 14:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:0c:02:32:ce:24:68:48:80:0c:1a:72:fa:fb:f4:7f:61:03:74:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Validity Not Before: Oct 7 14:55:00 2023 GMT Not After : Oct 5 15:00:00 2024 GMT Subject: CN=BD000D6766C66422A19BFEF0465313E6F99DFBE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ff:11:5f:1f:52:fc:a1:c5:3d:c2:dd:b1:b9: 7c:44:15:8a:be:10:f2:5d:9a:11:3f:8a:f4:d8:40: af:eb:c7:4d:64:3a:c3:c3:8b:75:27:4d:28:8a:7a: 16:90:75:7c:12:b7:ac:c1:29:30:c0:fd:07:e3:2f: 6a:d1:3a:d3:46:b4:c4:57:dd:5b:41:79:76:57:85: ab:db:fd:aa:61:55:64:0f:21:54:f9:86:c5:3e:bf: 56:01:70:dc:b4:d1:26:0d:93:86:8d:d2:93:08:b9: 89:51:13:c9:47:17:9a:5c:72:11:da:47:f1:52:65: 0e:52:6b:d4:96:cd:3a:a3:eb:4a:e5:d2:03:16:3f: 70:28:55:cd:6e:75:8b:a1:a9:30:60:31:c3:05:73: 2c:d6:79:d4:b4:e1:18:c3:84:de:37:c9:8b:02:f1: 1c:4b:f1:1e:ff:e4:f1:95:fa:b7:35:5a:8b:b7:78: a0:fb:32:cf:21:73:e8:76:25:c6:a3:6b:19:11:69: 61:d8:d9:dc:2b:46:3c:37:83:03:5b:26:89:09:b5: 56:c4:bb:49:02:6f:0b:e4:98:5d:e6:f6:33:c4:bb: fe:20:2d:9f:cf:4c:64:1a:09:74:0c:af:a4:0c:07: 0c:61:98:e3:cc:a6:97:ed:39:ee:c0:78:58:8a:b4: c9:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:00:0D:67:66:C6:64:22:A1:9B:FE:F0:46:53:13:E6:F9:9D:FB:E8 X509v3 Authority Key Identifier: keyid:02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.44.0/24 Signature Algorithm: sha256WithRSAEncryption 25:cc:c9:f9:df:27:40:a7:aa:34:e4:06:a2:36:9b:f5:b9:d0: 52:ed:54:55:82:70:ed:51:6b:dc:97:5a:19:12:a1:b0:84:51: 09:36:cc:dd:15:bb:9b:6c:cd:b5:95:19:3d:f8:d0:64:c2:b2: bd:d9:d7:e2:87:b9:a7:3a:42:67:77:e9:d8:22:96:c6:9a:3a: df:99:f6:69:0f:a5:ea:90:29:2d:06:3d:ab:db:d5:66:17:bf: 17:df:32:b5:22:4b:38:f0:13:72:e3:42:8e:79:4f:f8:4b:2e: fb:a8:b6:82:14:a0:87:bc:87:42:93:5f:33:56:75:02:0c:03: cc:51:d9:2c:dd:87:50:c1:5e:b9:e1:bb:01:24:cb:a2:69:85: 81:12:b9:5c:90:a8:7b:bc:d6:1e:c5:5e:2b:32:25:9d:46:24: 0a:ec:57:eb:33:74:e0:ca:46:56:e8:99:11:5b:07:ad:cb:e8: ee:e8:1d:c0:85:20:b2:ec:67:42:64:45:47:f9:82:39:98:d6: 12:14:7b:bc:54:c4:6a:9b:f3:52:30:00:a7:8b:ca:ae:d0:b9: 9c:b7:51:42:6a:95:e5:44:c2:37:78:8b:e1:8f:8a:32:8e:f6: e0:3a:88:7b:ec:40:7e:05:72:d7:73:15:14:51:40:3c:48:57: ff:7e:cc:91 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEQwCMs4kaEiADBpy+vv0f2EDdNYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhG QTQxMEVGMTAeFw0yMzEwMDcxNDU1MDBaFw0yNDEwMDUxNTAwMDBaMDMxMTAvBgNV BAMTKEJEMDAwRDY3NjZDNjY0MjJBMTlCRkVGMDQ2NTMxM0U2Rjk5REZCRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM/xFfH1L8ocU9wt2xuXxEFYq+ EPJdmhE/ivTYQK/rx01kOsPDi3UnTSiKehaQdXwSt6zBKTDA/QfjL2rROtNGtMRX 3VtBeXZXhavb/aphVWQPIVT5hsU+v1YBcNy00SYNk4aN0pMIuYlRE8lHF5pcchHa R/FSZQ5Sa9SWzTqj60rl0gMWP3AoVc1udYuhqTBgMcMFcyzWedS04RjDhN43yYsC 8RxL8R7/5PGV+rc1Wou3eKD7Ms8hc+h2JcajaxkRaWHY2dwrRjw3gwNbJokJtVbE u0kCbwvkmF3m9jPEu/4gLZ/PTGQaCXQMr6QMBwxhmOPMppftOe7AeFiKtMmTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUvQANZ2bGZCKhm/7wRlMT5vmd++gwHwYDVR0j BBgwFoAUAkq/8pWaYUTMSInHD3f5aPpBDvEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzFhOTQyNi0zYzM1LTQ3MGUtYmYzNC0zMGU3ZTQxNjAyY2IvMC8wMjRBQkZGMjk1 OUE2MTQ0Q0M0ODg5QzcwRjc3Rjk2OEZBNDEwRUYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhGQTQx MEVGMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzMWE5NDI2LTNjMzUtNDcwZS1i ZjM0LTMwZTdlNDE2MDJjYi8wLzMxMzAzMzJlMzEzNzM2MmUzNDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzEzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7AsMA0GCSqG SIb3DQEBCwUAA4IBAQAlzMn53ydAp6o05AaiNpv1udBS7VRVgnDtUWvcl1oZEqGw hFEJNszdFbubbM21lRk9+NBkwrK92dfih7mnOkJnd+nYIpbGmjrfmfZpD6XqkCkt Bj2r29VmF78X3zK1Iks48BNy40KOeU/4Sy77qLaCFKCHvIdCk18zVnUCDAPMUdks 3YdQwV654bsBJMuiaYWBErlckKh7vNYexV4rMiWdRiQK7FfrM3TgykZW6JkRWwet y+ju6B3AhSCy7GdCZEVH+YI5mNYSFHu8VMRqm/NSMACni8qu0Lmct1FCapXlRMI3 eIvhj4oyjvbgOoh77EB+BXLXcxUUUUA8SFf/fsyR -----END CERTIFICATE-----Generated at Fri Jun 21 16:09:57 2024 by rpki-client on console-fra.rpki-client.org