$ rpki-client -vvf repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/3130332e3137362e34352e302f32342d3234203d3e20313437313238.roa File: 3130332e3137362e34352e302f32342d3234203d3e20313437313238.roa (raw, json) Hash identifier: G2juGB6eftwsC+fsnzguy++P5zlF0bkzL2c8r+kWKkI= Subject key identifier: EA:54:46:7C:DE:BC:44:40:35:E6:F0:90:32:23:5A:74:79:87:E0:16 Certificate issuer: /CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Certificate serial: 784A451C12775CD20ECFEF29AB1C1B283669FC9D Authority key identifier: 02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/3130332e3137362e34352e302f32342d3234203d3e20313437313238.roa Signing time: Sat 07 Sep 2024 16:00:01 +0000 ROA not before: Sat 07 Sep 2024 15:55:01 +0000 ROA not after: Sat 06 Sep 2025 16:00:01 +0000 asID: 147128 IP address blocks: 103.176.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:4a:45:1c:12:77:5c:d2:0e:cf:ef:29:ab:1c:1b:28:36:69:fc:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Validity Not Before: Sep 7 15:55:01 2024 GMT Not After : Sep 6 16:00:01 2025 GMT Subject: CN=EA54467CDEBC444035E6F09032235A747987E016 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8f:1e:5d:76:eb:b6:6d:29:70:a6:fc:9c:98: e3:f5:40:cf:af:b0:dd:97:22:0c:1a:ed:6c:38:27: 60:ce:d9:e3:36:9c:20:86:8d:cb:e9:9b:4f:a5:bd: 43:7a:88:36:2a:27:6a:52:06:6f:85:78:4f:03:8e: d8:02:62:e0:56:27:ae:7b:49:74:e0:34:5e:3f:cf: b9:8d:9f:97:40:b9:2e:69:ec:d0:ad:c9:46:1a:67: 6e:10:c0:bd:71:54:9e:3e:32:60:ce:83:22:e5:f6: 71:61:9c:77:b0:96:bf:cd:da:2c:25:31:03:ca:cc: 1c:af:d9:5a:3a:98:4d:93:cc:73:d7:be:42:b8:a9: 60:5b:93:f7:41:79:34:9b:aa:7e:25:04:09:eb:72: a0:50:4f:4e:ec:29:7d:89:6e:13:8f:b7:e0:6a:3d: 4b:46:d0:59:12:66:1e:0e:9d:a2:09:d1:79:e2:63: d3:d0:a7:8c:74:18:01:de:10:8c:8d:91:f7:ff:fd: 1a:4a:18:2b:15:59:fb:09:09:6b:70:15:01:c3:4e: 9e:2e:74:fa:a3:e8:5d:82:ad:b0:66:68:ee:7c:ed: ed:4a:b7:63:7f:b3:9b:46:2d:ae:4c:b9:e2:d2:d2: a1:8b:06:d7:06:c5:e0:0b:83:d2:02:1a:29:45:8a: 3f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:54:46:7C:DE:BC:44:40:35:E6:F0:90:32:23:5A:74:79:87:E0:16 X509v3 Authority Key Identifier: keyid:02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/3130332e3137362e34352e302f32342d3234203d3e20313437313238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.45.0/24 Signature Algorithm: sha256WithRSAEncryption 75:e7:f8:ef:a2:77:12:eb:e5:70:c2:50:2a:54:67:cd:78:96: b3:1b:ba:5d:d0:db:91:d1:ac:16:1e:72:1a:49:4d:d2:f7:7e: 4e:65:07:ba:65:5b:da:17:98:61:56:be:c8:51:d1:fe:b7:8e: f8:f8:56:9c:15:38:f6:a1:10:04:d9:8d:75:bb:ed:65:ba:90: 92:29:28:51:33:9f:b8:53:97:7d:f7:97:a5:dd:0e:4b:55:49: ea:50:9b:25:6d:e0:4a:f3:9e:3a:97:8e:b9:db:79:59:90:0b: 70:f3:d2:d0:49:c0:b2:f4:0e:62:e3:e3:87:ff:90:29:f4:01: 0a:7e:b6:dc:4c:44:e3:a2:4d:58:3d:93:29:c7:d6:6b:11:63: 6a:be:b9:4d:5e:c7:8e:c5:19:b8:fe:0a:c7:5f:dc:97:cd:f8: 92:94:22:51:d4:f2:15:40:93:f4:15:f3:f9:46:b1:0b:40:b9: 68:ef:2b:06:65:46:76:df:05:c2:e5:2b:68:9f:3c:5d:f8:f5: 5f:93:46:df:5c:51:bb:cb:e5:de:2e:3e:a6:30:36:33:ff:cf: c4:c9:c0:11:96:cc:3d:bb:72:13:11:85:52:da:24:7b:ad:23: d3:b9:65:51:bd:2d:6f:76:b7:63:46:9e:7d:44:31:5a:98:d9: 54:10:4d:4d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUeEpFHBJ3XNIOz+8pqxwbKDZp/J0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhG QTQxMEVGMTAeFw0yNDA5MDcxNTU1MDFaFw0yNTA5MDYxNjAwMDFaMDMxMTAvBgNV BAMTKEVBNTQ0NjdDREVCQzQ0NDAzNUU2RjA5MDMyMjM1QTc0Nzk4N0UwMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtjx5dduu2bSlwpvycmOP1QM+v sN2XIgwa7Ww4J2DO2eM2nCCGjcvpm0+lvUN6iDYqJ2pSBm+FeE8DjtgCYuBWJ657 SXTgNF4/z7mNn5dAuS5p7NCtyUYaZ24QwL1xVJ4+MmDOgyLl9nFhnHewlr/N2iwl MQPKzByv2Vo6mE2TzHPXvkK4qWBbk/dBeTSbqn4lBAnrcqBQT07sKX2JbhOPt+Bq PUtG0FkSZh4OnaIJ0XniY9PQp4x0GAHeEIyNkff//RpKGCsVWfsJCWtwFQHDTp4u dPqj6F2CrbBmaO587e1Kt2N/s5tGLa5MueLS0qGLBtcGxeALg9ICGilFij+HAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6lRGfN68REA15vCQMiNadHmH4BYwHwYDVR0j BBgwFoAUAkq/8pWaYUTMSInHD3f5aPpBDvEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzFhOTQyNi0zYzM1LTQ3MGUtYmYzNC0zMGU3ZTQxNjAyY2IvMC8wMjRBQkZGMjk1 OUE2MTQ0Q0M0ODg5QzcwRjc3Rjk2OEZBNDEwRUYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhGQTQx MEVGMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzMWE5NDI2LTNjMzUtNDcwZS1i ZjM0LTMwZTdlNDE2MDJjYi8wLzMxMzAzMzJlMzEzNzM2MmUzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzEzMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7AtMA0GCSqG SIb3DQEBCwUAA4IBAQB15/jvoncS6+VwwlAqVGfNeJazG7pd0NuR0awWHnIaSU3S 935OZQe6ZVvaF5hhVr7IUdH+t474+FacFTj2oRAE2Y11u+1lupCSKShRM5+4U5d9 95el3Q5LVUnqUJslbeBK8546l46523lZkAtw89LQScCy9A5i4+OH/5Ap9AEKfrbc TETjok1YPZMpx9ZrEWNqvrlNXseOxRm4/grHX9yXzfiSlCJR1PIVQJP0FfP5RrEL QLlo7ysGZUZ23wXC5Stonzxd+PVfk0bfXFG7y+XeLj6mMDYz/8/EycARlsw9u3IT EYVS2iR7rSPTuWVRvS1vdrdjRp59RDFamNlUEE1N -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:11 2024 by rpki-client on console-fra.rpki-client.org