$ rpki-client -vvf repo-rpki.idnic.net/repo/4bab8042-0e1c-43b1-b703-63438be2325b/0/3130332e3137382e3134372e302f32342d3234203d3e20313439333430.roa File: 3130332e3137382e3134372e302f32342d3234203d3e20313439333430.roa (raw, json) Hash identifier: dqkRuGkCIt9QOUsyi8rTp/z3U+ZUrvC0oRajtG04QBQ= Subject key identifier: B1:41:F2:86:63:93:9F:CC:52:31:E0:D0:B2:CB:7A:10:B4:97:19:1A Certificate issuer: /CN=31F2586537E4318089C855DE0883A690E2FB398B Certificate serial: 0FB93FEA6E652D7FFB6ED1C31AF068D95D161332 Authority key identifier: 31:F2:58:65:37:E4:31:80:89:C8:55:DE:08:83:A6:90:E2:FB:39:8B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/31F2586537E4318089C855DE0883A690E2FB398B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4bab8042-0e1c-43b1-b703-63438be2325b/0/3130332e3137382e3134372e302f32342d3234203d3e20313439333430.roa Signing time: Fri 08 Nov 2024 14:00:00 +0000 ROA not before: Fri 08 Nov 2024 13:55:00 +0000 ROA not after: Fri 07 Nov 2025 14:00:00 +0000 asID: 149340 IP address blocks: 103.178.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4bab8042-0e1c-43b1-b703-63438be2325b/0/31F2586537E4318089C855DE0883A690E2FB398B.crl rsync://repo-rpki.idnic.net/repo/4bab8042-0e1c-43b1-b703-63438be2325b/0/31F2586537E4318089C855DE0883A690E2FB398B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/31F2586537E4318089C855DE0883A690E2FB398B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 11:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:b9:3f:ea:6e:65:2d:7f:fb:6e:d1:c3:1a:f0:68:d9:5d:16:13:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=31F2586537E4318089C855DE0883A690E2FB398B Validity Not Before: Nov 8 13:55:00 2024 GMT Not After : Nov 7 14:00:00 2025 GMT Subject: CN=B141F28663939FCC5231E0D0B2CB7A10B497191A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:62:6a:a5:d2:f5:58:ba:6b:31:d6:93:40:f1: 73:b9:c8:16:60:e3:0f:c7:ab:10:87:7d:0c:e2:01: a4:f4:20:67:0a:ff:4c:98:95:b8:3b:06:76:df:85: b7:12:bb:d5:ba:6d:b3:db:9d:73:0f:b5:06:0a:3f: 4a:fe:dc:ff:40:a2:67:9a:ca:27:9f:75:0f:95:5c: 9a:33:eb:dc:79:1e:db:01:fc:2f:86:44:b5:a5:87: 16:e9:39:3c:7f:fc:7a:4e:2e:fb:24:4f:e1:01:1a: d7:32:c0:c3:90:e1:11:03:4e:4c:f8:0a:71:55:95: 58:68:ad:4f:41:a5:40:70:01:97:96:c7:be:31:f0: 04:d9:1d:6e:04:4c:67:a0:0d:bf:ae:c6:b8:14:e0: 1e:dc:bd:cb:da:43:a6:b0:49:0e:cf:cc:73:d3:ae: 69:a9:fd:f9:b4:42:dd:c8:be:3d:c7:b9:99:16:70: 6e:69:4b:84:a4:dd:8a:ed:49:0c:c9:15:56:97:8e: 91:61:98:74:d5:83:04:f5:44:77:cd:f1:d2:46:1b: f5:35:f2:3f:77:f4:b7:a7:49:f1:7c:e8:58:bd:72: ed:54:a3:ce:4c:05:5d:02:cd:da:c8:aa:f6:28:ff: fd:ae:c3:a4:6c:90:40:bf:47:38:ed:b8:b2:e1:01: 7f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:41:F2:86:63:93:9F:CC:52:31:E0:D0:B2:CB:7A:10:B4:97:19:1A X509v3 Authority Key Identifier: keyid:31:F2:58:65:37:E4:31:80:89:C8:55:DE:08:83:A6:90:E2:FB:39:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4bab8042-0e1c-43b1-b703-63438be2325b/0/31F2586537E4318089C855DE0883A690E2FB398B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/31F2586537E4318089C855DE0883A690E2FB398B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bab8042-0e1c-43b1-b703-63438be2325b/0/3130332e3137382e3134372e302f32342d3234203d3e20313439333430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.147.0/24 Signature Algorithm: sha256WithRSAEncryption 80:5c:ea:3a:01:8b:6c:8e:de:58:f8:13:79:4a:51:ca:ec:26: 73:21:41:ff:9b:d4:db:46:c1:c2:ee:92:81:c5:73:ad:91:f4: 28:71:7d:cb:79:6b:2b:49:f6:38:0b:a1:92:69:e9:43:99:a3: 38:60:80:a3:15:f7:ad:37:ee:58:57:29:7f:d9:3b:53:4f:35: 93:78:de:4f:42:96:f7:1c:6a:20:b5:a8:5d:10:ee:ef:ac:4f: 52:90:bd:61:79:bd:33:f2:7d:8a:37:34:ef:b5:a1:95:f1:97: fd:44:57:96:97:34:95:89:40:b8:cb:52:74:60:3f:01:4f:e0: 84:47:ff:c3:74:02:44:93:b0:67:71:d9:e6:14:88:29:5f:56: 65:04:6c:b6:5c:47:f0:17:8f:75:ee:c0:c3:60:a6:89:10:63: de:a8:32:54:82:70:a1:a0:3a:be:ae:50:23:64:e0:01:80:ab: ae:4b:b0:7b:0b:dd:00:96:c5:1d:75:51:9d:c6:d5:84:b6:5e: 77:38:6f:54:2d:e8:81:24:00:c7:b3:f7:c1:4a:5c:65:6d:9c: cd:45:a3:2a:10:1d:00:3f:86:fe:f4:16:df:ab:7f:91:10:3f: 76:8f:9f:fc:1e:94:71:36:73:cc:48:67:43:17:08:83:bd:f6: 80:40:22:f2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUD7k/6m5lLX/7btHDGvBo2V0WEzIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzFGMjU4NjUzN0U0MzE4MDg5Qzg1NURFMDg4M0E2OTBF MkZCMzk4QjAeFw0yNDExMDgxMzU1MDBaFw0yNTExMDcxNDAwMDBaMDMxMTAvBgNV BAMTKEIxNDFGMjg2NjM5MzlGQ0M1MjMxRTBEMEIyQ0I3QTEwQjQ5NzE5MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdYmql0vVYumsx1pNA8XO5yBZg 4w/HqxCHfQziAaT0IGcK/0yYlbg7BnbfhbcSu9W6bbPbnXMPtQYKP0r+3P9Aomea yiefdQ+VXJoz69x5HtsB/C+GRLWlhxbpOTx//HpOLvskT+EBGtcywMOQ4REDTkz4 CnFVlVhorU9BpUBwAZeWx74x8ATZHW4ETGegDb+uxrgU4B7cvcvaQ6awSQ7PzHPT rmmp/fm0Qt3Ivj3HuZkWcG5pS4Sk3YrtSQzJFVaXjpFhmHTVgwT1RHfN8dJGG/U1 8j939LenSfF86Fi9cu1Uo85MBV0CzdrIqvYo//2uw6RskEC/RzjtuLLhAX+fAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUsUHyhmOTn8xSMeDQsst6ELSXGRowHwYDVR0j BBgwFoAUMfJYZTfkMYCJyFXeCIOmkOL7OYswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YmFiODA0Mi0wZTFjLTQzYjEtYjcwMy02MzQzOGJlMjMyNWIvMC8zMUYyNTg2NTM3 RTQzMTgwODlDODU1REUwODgzQTY5MEUyRkIzOThCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzFGMjU4NjUzN0U0MzE4MDg5Qzg1NURFMDg4M0E2OTBFMkZC Mzk4Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiYWI4MDQyLTBlMWMtNDNiMS1i NzAzLTYzNDM4YmUyMzI1Yi8wLzMxMzAzMzJlMzEzNzM4MmUzMTM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzMzM0MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnspMwDQYJ KoZIhvcNAQELBQADggEBAIBc6joBi2yO3lj4E3lKUcrsJnMhQf+b1NtGwcLukoHF c62R9Chxfct5aytJ9jgLoZJp6UOZozhggKMV96037lhXKX/ZO1NPNZN43k9Clvcc aiC1qF0Q7u+sT1KQvWF5vTPyfYo3NO+1oZXxl/1EV5aXNJWJQLjLUnRgPwFP4IRH /8N0AkSTsGdx2eYUiClfVmUEbLZcR/AXj3XuwMNgpokQY96oMlSCcKGgOr6uUCNk 4AGAq65LsHsL3QCWxR11UZ3G1YS2Xnc4b1Qt6IEkAMez98FKXGVtnM1FoyoQHQA/ hv70Ft+rf5EQP3aPn/welHE2c8xIZ0MXCIO99oBAIvI= -----END CERTIFICATE-----Generated at Mon Nov 25 10:55:38 2024 by rpki-client on console-ams.rpki-client.org