$ rpki-client -vvf repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3130332e37342e3136342e302f32342d3234203d3e203436303334.roa File: 3130332e37342e3136342e302f32342d3234203d3e203436303334.roa (raw, json) Hash identifier: QbAeIT3Ks6znT3hg7T+AnddPc66+/tThEc2QldGCSpw= Subject key identifier: BD:0D:21:40:FA:71:70:AB:D6:F8:85:55:60:75:A6:01:40:52:03:BC Certificate issuer: /CN=E89C93F089A07D03B5794B0C02239EF67E1D721C Certificate serial: 69A7D948D9F92809C04DDECFB6D3EED7C2DE4115 Authority key identifier: E8:9C:93:F0:89:A0:7D:03:B5:79:4B:0C:02:23:9E:F6:7E:1D:72:1C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E89C93F089A07D03B5794B0C02239EF67E1D721C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3130332e37342e3136342e302f32342d3234203d3e203436303334.roa Signing time: Thu 21 Nov 2024 12:33:59 +0000 ROA not before: Thu 21 Nov 2024 12:28:59 +0000 ROA not after: Thu 20 Nov 2025 12:33:59 +0000 asID: 46034 IP address blocks: 103.74.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/E89C93F089A07D03B5794B0C02239EF67E1D721C.crl rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/E89C93F089A07D03B5794B0C02239EF67E1D721C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E89C93F089A07D03B5794B0C02239EF67E1D721C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:a7:d9:48:d9:f9:28:09:c0:4d:de:cf:b6:d3:ee:d7:c2:de:41:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E89C93F089A07D03B5794B0C02239EF67E1D721C Validity Not Before: Nov 21 12:28:59 2024 GMT Not After : Nov 20 12:33:59 2025 GMT Subject: CN=BD0D2140FA7170ABD6F885556075A601405203BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ab:79:91:a2:2b:62:d2:40:44:a0:be:e8:5d: e7:25:5b:a3:01:6f:e2:29:78:d4:29:e2:d3:bc:73: 72:85:99:36:4f:25:57:a7:99:d6:ff:e8:0e:a9:54: 46:7c:6b:6d:9f:85:6d:f3:f7:96:11:f1:3d:d6:16: dd:64:26:ba:e5:6b:1d:25:4c:a7:42:53:39:b2:d4: 7b:32:ab:a0:46:62:72:71:9a:56:15:3d:7b:0c:05: 59:33:55:85:7c:00:81:4d:50:0d:95:49:5c:9f:83: f4:28:ea:46:b0:3d:d1:01:1c:c3:98:51:df:88:03: 3c:00:54:ed:fa:b6:8b:49:d6:a4:93:f7:c3:11:aa: b8:3f:d0:5d:59:81:9c:a2:31:fa:4c:78:23:25:4c: da:f6:e6:c5:be:6c:83:12:9b:61:a2:90:14:3e:3f: 83:7e:2d:88:0f:ee:65:19:08:9a:7c:89:2a:a7:9a: 1c:88:53:28:59:7c:25:84:eb:11:53:f3:b9:c6:6f: bd:41:6f:62:e9:a8:5f:53:92:87:7e:9b:8d:84:42: 50:8c:82:0f:19:8e:b2:64:45:52:dc:d1:87:53:6a: 02:58:32:36:1d:a0:b3:d4:99:0f:36:b9:35:67:e7: e0:78:56:4a:fe:79:fa:33:d7:51:26:2f:42:13:fd: 79:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:0D:21:40:FA:71:70:AB:D6:F8:85:55:60:75:A6:01:40:52:03:BC X509v3 Authority Key Identifier: keyid:E8:9C:93:F0:89:A0:7D:03:B5:79:4B:0C:02:23:9E:F6:7E:1D:72:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/E89C93F089A07D03B5794B0C02239EF67E1D721C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E89C93F089A07D03B5794B0C02239EF67E1D721C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f8851e5-ee5b-41e1-9abc-442651d27294/0/3130332e37342e3136342e302f32342d3234203d3e203436303334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.74.164.0/24 Signature Algorithm: sha256WithRSAEncryption 99:49:d5:ff:6c:c4:b8:a2:be:1f:8c:c8:ca:e7:81:52:30:70: 57:0c:02:fe:d0:4d:cd:bb:31:54:73:b8:79:4e:f7:d5:5d:16: da:c1:f8:7e:52:a4:29:a6:17:bd:dc:8d:47:f4:7c:f6:3c:7c: c7:36:ef:27:0e:f3:1c:a3:37:25:65:87:d8:90:13:19:4b:3f: 4a:6a:6a:22:8b:a7:46:07:31:bd:65:98:6e:83:32:f4:01:e2: b7:fd:f2:42:06:3d:d4:82:e3:d8:64:5f:45:b5:fe:0e:2a:39: 69:00:3e:75:48:f9:3d:ca:cb:d2:62:b5:d6:12:0e:0f:e6:19: ef:8d:04:74:1a:27:b0:5c:a7:cc:53:dc:0c:5d:59:2e:d8:82: 4a:5f:2f:b4:75:27:5b:76:dc:c4:96:8a:7d:8e:74:66:f9:95: 91:15:54:56:d0:45:d4:14:42:00:4a:e6:2d:38:4e:7b:c4:52: 3c:b6:e4:23:1e:8f:74:53:70:7c:9d:d4:1f:5b:eb:ac:d0:81: 7d:b8:b5:63:ed:6b:f7:dd:d7:ff:d9:a8:2f:60:75:2d:e1:b0: 87:a9:2e:2a:40:6f:51:f9:f0:01:02:55:60:0c:37:93:8d:e7: 94:17:fe:88:e6:34:2e:f4:b6:75:b8:ab:30:14:22:56:ad:4a: c7:59:25:2d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUaafZSNn5KAnATd7PttPu18LeQRUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5QzkzRjA4OUEwN0QwM0I1Nzk0QjBDMDIyMzlFRjY3 RTFENzIxQzAeFw0yNDExMjExMjI4NTlaFw0yNTExMjAxMjMzNTlaMDMxMTAvBgNV BAMTKEJEMEQyMTQwRkE3MTcwQUJENkY4ODU1NTYwNzVBNjAxNDA1MjAzQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAq3mRoiti0kBEoL7oXeclW6MB b+IpeNQp4tO8c3KFmTZPJVenmdb/6A6pVEZ8a22fhW3z95YR8T3WFt1kJrrlax0l TKdCUzmy1Hsyq6BGYnJxmlYVPXsMBVkzVYV8AIFNUA2VSVyfg/Qo6kawPdEBHMOY Ud+IAzwAVO36totJ1qST98MRqrg/0F1ZgZyiMfpMeCMlTNr25sW+bIMSm2GikBQ+ P4N+LYgP7mUZCJp8iSqnmhyIUyhZfCWE6xFT87nGb71Bb2LpqF9Tkod+m42EQlCM gg8ZjrJkRVLc0YdTagJYMjYdoLPUmQ82uTVn5+B4Vkr+efoz11EmL0IT/XmTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvQ0hQPpxcKvW+IVVYHWmAUBSA7wwHwYDVR0j BBgwFoAU6JyT8ImgfQO1eUsMAiOe9n4dchwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 Zjg4NTFlNS1lZTViLTQxZTEtOWFiYy00NDI2NTFkMjcyOTQvMC9FODlDOTNGMDg5 QTA3RDAzQjU3OTRCMEMwMjIzOUVGNjdFMUQ3MjFDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTg5QzkzRjA4OUEwN0QwM0I1Nzk0QjBDMDIyMzlFRjY3RTFE NzIxQy5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmODg1MWU1LWVlNWItNDFlMS05 YWJjLTQ0MjY1MWQyNzI5NC8wLzMxMzAzMzJlMzczNDJlMzEzNjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdKpDANBgkqhkiG 9w0BAQsFAAOCAQEAmUnV/2zEuKK+H4zIyueBUjBwVwwC/tBNzbsxVHO4eU731V0W 2sH4flKkKaYXvdyNR/R89jx8xzbvJw7zHKM3JWWH2JATGUs/SmpqIounRgcxvWWY boMy9AHit/3yQgY91ILj2GRfRbX+Dio5aQA+dUj5PcrL0mK11hIOD+YZ740EdBon sFynzFPcDF1ZLtiCSl8vtHUnW3bcxJaKfY50ZvmVkRVUVtBF1BRCAErmLThOe8RS PLbkIx6PdFNwfJ3UH1vrrNCBfbi1Y+1r993X/9moL2B1LeGwh6kuKkBvUfnwAQJV YAw3k43nlBf+iOY0LvS2dbirMBQiVq1Kx1klLQ== -----END CERTIFICATE-----Generated at Thu Nov 21 13:37:46 2024 by rpki-client on console-ams.rpki-client.org