$ rpki-client -vvf repo-rpki.idnic.net/repo/43a52045-a6fc-45b1-be59-825735c96f54/0/3130332e3138392e39342e302f32332d3234203d3e2034383030.roa File: 3130332e3138392e39342e302f32332d3234203d3e2034383030.roa (raw, json) Hash identifier: hAbscyxhtXS0fgGU8fiJkyRtlilBB1Y02xa0Ku6P+IY= Subject key identifier: 51:05:83:E5:B8:6F:03:AB:55:F6:D4:2E:59:1E:1F:E6:9A:83:3C:F6 Certificate issuer: /CN=945AD192B10F71CE48362295A9C6281FE3395786 Certificate serial: 42CFB10745D5490EA83DDD7CBFFCD8DEE17FFF7C Authority key identifier: 94:5A:D1:92:B1:0F:71:CE:48:36:22:95:A9:C6:28:1F:E3:39:57:86 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/945AD192B10F71CE48362295A9C6281FE3395786.cer Subject info access: rsync://repo-rpki.idnic.net/repo/43a52045-a6fc-45b1-be59-825735c96f54/0/3130332e3138392e39342e302f32332d3234203d3e2034383030.roa Signing time: Mon 22 Apr 2024 09:00:01 +0000 ROA not before: Mon 22 Apr 2024 08:55:01 +0000 ROA not after: Mon 21 Apr 2025 09:00:01 +0000 asID: 4800 IP address blocks: 103.189.94.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/43a52045-a6fc-45b1-be59-825735c96f54/0/945AD192B10F71CE48362295A9C6281FE3395786.crl rsync://repo-rpki.idnic.net/repo/43a52045-a6fc-45b1-be59-825735c96f54/0/945AD192B10F71CE48362295A9C6281FE3395786.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/945AD192B10F71CE48362295A9C6281FE3395786.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 07:19:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:cf:b1:07:45:d5:49:0e:a8:3d:dd:7c:bf:fc:d8:de:e1:7f:ff:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=945AD192B10F71CE48362295A9C6281FE3395786 Validity Not Before: Apr 22 08:55:01 2024 GMT Not After : Apr 21 09:00:01 2025 GMT Subject: CN=510583E5B86F03AB55F6D42E591E1FE69A833CF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e3:d4:2d:3c:f7:bc:f5:bf:c5:8c:f0:46:02: 41:f5:98:ae:38:dc:c4:07:4a:73:99:d2:0f:ca:a0: e3:23:e3:52:51:95:be:dc:55:ef:b1:98:e9:a3:0a: c7:13:46:5d:8f:fc:dc:42:de:19:99:e5:59:c9:0c: 3f:e6:41:2f:d2:58:a3:08:58:77:83:7f:11:a9:2c: 99:39:ee:ce:bd:4f:94:65:29:45:90:a3:09:a7:ff: ac:08:09:93:6b:25:87:d8:7e:49:1c:cd:c0:e9:ae: c1:3f:e8:07:33:6b:f1:5c:ea:bc:01:9c:c0:2b:65: 01:21:43:60:34:92:f7:8a:a5:63:4d:fa:32:8c:44: b8:54:6f:cb:65:f7:e6:fe:53:c4:b9:cf:bb:f7:00: a3:c1:6e:a9:65:51:5f:77:26:1f:9a:b9:f6:50:00: e8:47:66:55:cc:8d:12:5d:3b:5f:ce:61:b8:73:c4: 50:6a:3d:c2:02:c3:3b:9b:ac:2b:ae:64:d3:40:09: 85:93:8b:b6:22:56:59:73:d3:f5:f6:a2:8e:1d:a7: 87:05:74:3c:25:08:17:dd:b4:7d:94:ce:77:00:89: af:1c:96:33:58:c9:4d:05:d8:13:4a:9f:14:7a:1a: 48:07:e4:13:63:96:0a:20:fb:02:bc:7a:fd:5f:55: 1a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:05:83:E5:B8:6F:03:AB:55:F6:D4:2E:59:1E:1F:E6:9A:83:3C:F6 X509v3 Authority Key Identifier: keyid:94:5A:D1:92:B1:0F:71:CE:48:36:22:95:A9:C6:28:1F:E3:39:57:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/43a52045-a6fc-45b1-be59-825735c96f54/0/945AD192B10F71CE48362295A9C6281FE3395786.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/945AD192B10F71CE48362295A9C6281FE3395786.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/43a52045-a6fc-45b1-be59-825735c96f54/0/3130332e3138392e39342e302f32332d3234203d3e2034383030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.94.0/23 Signature Algorithm: sha256WithRSAEncryption 35:05:e8:49:6c:a0:95:9d:e3:d0:3d:f7:4c:eb:57:1c:62:23: af:2b:09:1b:d7:28:ac:dd:44:78:fa:56:a3:d5:66:5a:d9:d1: 3b:cd:7f:e4:65:87:88:b9:cd:4a:d6:11:5c:3a:0a:18:8d:f1: 65:cd:38:aa:29:de:17:2d:fd:15:b9:28:6f:d4:c9:41:4f:e7: a3:0b:9d:a4:83:75:1f:6f:b3:84:3a:bc:3d:ab:b4:40:44:74: 16:86:2f:d1:2a:c1:5f:fe:da:6a:cd:22:ce:b9:b4:d2:fe:cc: 99:27:ee:67:cb:c2:75:15:ae:bf:df:47:8a:26:c0:a6:af:00: 8a:5e:b4:15:a1:96:c9:86:a2:8a:21:64:1d:9f:4f:fa:a9:42: 0e:38:80:f6:9e:69:7a:60:4d:2c:10:5a:01:75:4f:b5:27:7e: 6f:1e:8b:bd:87:b6:ee:9e:21:02:50:42:49:75:4c:56:1e:b5: ed:05:e4:7c:30:3f:b0:f9:e1:67:59:30:86:e4:26:1f:fc:d3: 66:ba:5c:a8:c0:8a:34:26:7d:c7:48:51:be:f1:b9:cd:72:01: 4a:8a:2f:e3:70:7c:e2:71:1b:e9:ad:f7:09:1b:e3:e0:57:f2: ce:6f:f8:b0:21:a5:1e:ca:3f:cf:a3:57:8e:1f:f7:ca:00:15: f5:cc:e4:b5 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUQs+xB0XVSQ6oPd18v/zY3uF//3wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQ1QUQxOTJCMTBGNzFDRTQ4MzYyMjk1QTlDNjI4MUZF MzM5NTc4NjAeFw0yNDA0MjIwODU1MDFaFw0yNTA0MjEwOTAwMDFaMDMxMTAvBgNV BAMTKDUxMDU4M0U1Qjg2RjAzQUI1NUY2RDQyRTU5MUUxRkU2OUE4MzNDRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq49QtPPe89b/FjPBGAkH1mK44 3MQHSnOZ0g/KoOMj41JRlb7cVe+xmOmjCscTRl2P/NxC3hmZ5VnJDD/mQS/SWKMI WHeDfxGpLJk57s69T5RlKUWQowmn/6wICZNrJYfYfkkczcDprsE/6Acza/Fc6rwB nMArZQEhQ2A0kveKpWNN+jKMRLhUb8tl9+b+U8S5z7v3AKPBbqllUV93Jh+aufZQ AOhHZlXMjRJdO1/OYbhzxFBqPcICwzubrCuuZNNACYWTi7YiVllz0/X2oo4dp4cF dDwlCBfdtH2UzncAia8cljNYyU0F2BNKnxR6GkgH5BNjlgog+wK8ev1fVRo9AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUUQWD5bhvA6tV9tQuWR4f5pqDPPYwHwYDVR0j BBgwFoAUlFrRkrEPcc5INiKVqcYoH+M5V4YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 M2E1MjA0NS1hNmZjLTQ1YjEtYmU1OS04MjU3MzVjOTZmNTQvMC85NDVBRDE5MkIx MEY3MUNFNDgzNjIyOTVBOUM2MjgxRkUzMzk1Nzg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTQ1QUQxOTJCMTBGNzFDRTQ4MzYyMjk1QTlDNjI4MUZFMzM5 NTc4Ni5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzYTUyMDQ1LWE2ZmMtNDViMS1i ZTU5LTgyNTczNWM5NmY1NC8wLzMxMzAzMzJlMzEzODM5MmUzOTM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzQzODMwMzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnvV4wDQYJKoZIhvcN AQELBQADggEBADUF6ElsoJWd49A990zrVxxiI68rCRvXKKzdRHj6VqPVZlrZ0TvN f+Rlh4i5zUrWEVw6ChiN8WXNOKop3hct/RW5KG/UyUFP56MLnaSDdR9vs4Q6vD2r tEBEdBaGL9EqwV/+2mrNIs65tNL+zJkn7mfLwnUVrr/fR4omwKavAIpetBWhlsmG ooohZB2fT/qpQg44gPaeaXpgTSwQWgF1T7Unfm8ei72Htu6eIQJQQkl1TFYete0F 5HwwP7D54WdZMIbkJh/802a6XKjAijQmfcdIUb7xuc1yAUqKL+NwfOJxG+mt9wkb 4+BX8s5v+LAhpR7KP8+jV44f98oAFfXM5LU= -----END CERTIFICATE-----Generated at Tue Nov 26 04:35:16 2024 by rpki-client on console-fra.rpki-client.org