$ rpki-client -vvf repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa File: 3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa (raw, json) Hash identifier: ZcflU18QHaOG0H5AVVuZs+fe6ZIRvg4OT/QSDZzqWpk= Subject key identifier: FA:55:92:F1:68:F0:23:88:A4:C0:A0:2F:10:67:14:DD:8C:0B:EB:C5 Certificate issuer: /CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Certificate serial: 61917C1385D4C1811E6AF51B117F9540A5136F98 Authority key identifier: 02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa Signing time: Sat 07 Sep 2024 15:00:01 +0000 ROA not before: Sat 07 Sep 2024 14:55:01 +0000 ROA not after: Sat 06 Sep 2025 15:00:01 +0000 asID: 147128 IP address blocks: 103.176.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:91:7c:13:85:d4:c1:81:1e:6a:f5:1b:11:7f:95:40:a5:13:6f:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Validity Not Before: Sep 7 14:55:01 2024 GMT Not After : Sep 6 15:00:01 2025 GMT Subject: CN=FA5592F168F02388A4C0A02F106714DD8C0BEBC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a7:d0:c8:b3:4d:13:dc:59:21:20:24:6a:84: 13:07:05:b7:14:8b:d3:ba:f3:cb:8a:e4:68:67:87: 72:d4:db:fe:5a:46:91:76:db:ca:ba:db:8a:d2:8f: 56:b6:c6:e3:32:bc:71:ac:61:c3:3c:2b:bc:47:62: a4:3a:98:bc:04:58:d9:d3:88:6d:9c:b4:c2:ce:c3: ec:36:17:cf:78:fd:1b:3f:89:a8:3b:2b:8e:55:e6: e3:60:d0:51:6c:1f:59:ad:32:e1:83:57:dd:32:35: 38:72:cd:b1:60:ff:ff:2a:3f:8c:0c:ef:5a:03:1a: fc:4e:cf:25:31:09:68:c4:a7:8e:19:a1:e0:ba:58: ce:59:f8:a0:95:d5:dc:96:58:2a:c0:38:e3:e3:e6: ad:00:2e:2a:08:1f:52:bf:c2:3d:05:4b:cd:63:3a: 6e:9b:37:7e:18:c8:9b:ce:85:1c:da:42:24:89:b2: 96:8d:8f:19:d5:20:98:72:1c:d0:4a:21:bc:eb:e9: c6:66:1d:c9:a8:09:7f:59:3d:6b:53:c8:f7:9c:93: 76:d2:db:bf:8e:c7:8b:d1:55:1d:0d:9a:6c:d0:7c: b4:a5:aa:0d:e7:4e:33:dc:bc:a5:7b:48:42:19:9d: d1:37:13:98:66:33:cd:1f:08:05:cc:79:4e:d7:7a: 12:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:55:92:F1:68:F0:23:88:A4:C0:A0:2F:10:67:14:DD:8C:0B:EB:C5 X509v3 Authority Key Identifier: keyid:02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.44.0/24 Signature Algorithm: sha256WithRSAEncryption 97:90:c1:d5:f6:8c:8b:17:b7:4f:92:2c:dc:d1:46:1e:36:0a: e1:d7:a5:ad:95:f7:61:47:5f:1b:15:2f:8b:a4:2c:8c:5e:93: ad:55:35:87:e2:d7:cd:78:6c:66:88:77:4e:bf:e6:b4:75:69: b4:f3:20:e3:f2:4b:84:85:57:00:7b:f7:ec:ca:6f:ea:3b:9a: 04:10:84:16:ac:31:f7:fe:ec:85:6c:6a:13:2b:a5:7b:fb:17: f7:25:73:65:5b:9a:49:dd:51:5d:a7:28:9a:c9:c2:a3:82:24: d7:20:01:e5:cc:71:9a:4f:5b:29:67:3b:82:4d:a4:bd:64:e0: a9:fc:87:6d:9f:5c:d0:c6:43:e7:43:3b:39:cb:e0:10:29:1d: e4:0b:76:93:4a:73:18:ad:a9:0a:64:09:de:82:a6:c9:97:90: 26:65:50:f3:13:ca:dc:92:84:bc:8d:56:2e:05:8d:b6:6e:ef: 62:aa:38:72:82:a1:fc:40:2d:ee:8e:4e:fb:c9:80:fb:d3:a9: 99:ea:89:5c:9b:8b:7c:e5:48:05:be:c5:75:2b:1d:5a:66:b7: 9e:bb:f0:d1:44:b1:5f:c9:bc:1b:c2:e2:8e:fd:0b:e3:42:a8: 24:39:d7:59:3d:a2:2d:f3:fd:8f:a6:26:c6:e7:8d:14:0b:1d: 03:c9:62:79 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUYZF8E4XUwYEeavUbEX+VQKUTb5gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhG QTQxMEVGMTAeFw0yNDA5MDcxNDU1MDFaFw0yNTA5MDYxNTAwMDFaMDMxMTAvBgNV BAMTKEZBNTU5MkYxNjhGMDIzODhBNEMwQTAyRjEwNjcxNEREOEMwQkVCQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZp9DIs00T3FkhICRqhBMHBbcU i9O688uK5Ghnh3LU2/5aRpF228q624rSj1a2xuMyvHGsYcM8K7xHYqQ6mLwEWNnT iG2ctMLOw+w2F894/Rs/iag7K45V5uNg0FFsH1mtMuGDV90yNThyzbFg//8qP4wM 71oDGvxOzyUxCWjEp44ZoeC6WM5Z+KCV1dyWWCrAOOPj5q0ALioIH1K/wj0FS81j Om6bN34YyJvOhRzaQiSJspaNjxnVIJhyHNBKIbzr6cZmHcmoCX9ZPWtTyPeck3bS 27+Ox4vRVR0NmmzQfLSlqg3nTjPcvKV7SEIZndE3E5hmM80fCAXMeU7XehIxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+lWS8WjwI4ikwKAvEGcU3YwL68UwHwYDVR0j BBgwFoAUAkq/8pWaYUTMSInHD3f5aPpBDvEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzFhOTQyNi0zYzM1LTQ3MGUtYmYzNC0zMGU3ZTQxNjAyY2IvMC8wMjRBQkZGMjk1 OUE2MTQ0Q0M0ODg5QzcwRjc3Rjk2OEZBNDEwRUYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhGQTQx MEVGMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzMWE5NDI2LTNjMzUtNDcwZS1i ZjM0LTMwZTdlNDE2MDJjYi8wLzMxMzAzMzJlMzEzNzM2MmUzNDM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzEzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7AsMA0GCSqG SIb3DQEBCwUAA4IBAQCXkMHV9oyLF7dPkizc0UYeNgrh16WtlfdhR18bFS+LpCyM XpOtVTWH4tfNeGxmiHdOv+a0dWm08yDj8kuEhVcAe/fsym/qO5oEEIQWrDH3/uyF bGoTK6V7+xf3JXNlW5pJ3VFdpyiaycKjgiTXIAHlzHGaT1spZzuCTaS9ZOCp/Idt n1zQxkPnQzs5y+AQKR3kC3aTSnMYrakKZAnegqbJl5AmZVDzE8rckoS8jVYuBY22 bu9iqjhygqH8QC3ujk77yYD706mZ6olcm4t85UgFvsV1Kx1aZreeu/DRRLFfybwb wuKO/QvjQqgkOddZPaIt8/2PpibG540UCx0DyWJ5 -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:11 2024 by rpki-client on console-fra.rpki-client.org