$ rpki-client -vvf repo-rpki.idnic.net/repo/54242355-a7e2-4cb9-8cff-9e17c742c2ef/0/3130332e3136322e33342e302f32342d3234203d3e20313431363337.roa File: 3130332e3136322e33342e302f32342d3234203d3e20313431363337.roa (raw, json) Hash identifier: qIkZtUPswOLSzAKIW4faoAC7V/pmv5To5cLrgWfUSjA= Subject key identifier: 48:AB:BA:51:9E:DE:E1:B7:D5:32:D6:9C:C2:34:E7:67:3A:8C:1A:AA Certificate issuer: /CN=A230D664FEDFC0266349811ED3999BE5220F1DEA Certificate serial: 117BDC2CB92634D04B5AB4CFCF872CA8AD3EE723 Authority key identifier: A2:30:D6:64:FE:DF:C0:26:63:49:81:1E:D3:99:9B:E5:22:0F:1D:EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A230D664FEDFC0266349811ED3999BE5220F1DEA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/54242355-a7e2-4cb9-8cff-9e17c742c2ef/0/3130332e3136322e33342e302f32342d3234203d3e20313431363337.roa Signing time: Thu 24 Oct 2024 12:00:02 +0000 ROA not before: Thu 24 Oct 2024 11:55:02 +0000 ROA not after: Thu 23 Oct 2025 12:00:02 +0000 asID: 141637 IP address blocks: 103.162.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/54242355-a7e2-4cb9-8cff-9e17c742c2ef/0/A230D664FEDFC0266349811ED3999BE5220F1DEA.crl rsync://repo-rpki.idnic.net/repo/54242355-a7e2-4cb9-8cff-9e17c742c2ef/0/A230D664FEDFC0266349811ED3999BE5220F1DEA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A230D664FEDFC0266349811ED3999BE5220F1DEA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:7b:dc:2c:b9:26:34:d0:4b:5a:b4:cf:cf:87:2c:a8:ad:3e:e7:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A230D664FEDFC0266349811ED3999BE5220F1DEA Validity Not Before: Oct 24 11:55:02 2024 GMT Not After : Oct 23 12:00:02 2025 GMT Subject: CN=48ABBA519EDEE1B7D532D69CC234E7673A8C1AAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:42:75:2c:f2:1e:47:f2:1e:80:e9:2e:79:c9: 5c:a6:75:dd:e3:52:36:af:19:7c:0e:f5:e0:3c:c9: f8:2c:da:ae:bb:53:1e:3e:b2:cc:c0:dc:de:71:dc: 90:af:af:e0:d7:4c:ad:34:f9:94:f4:a1:38:d8:39: 01:5a:9a:f9:21:b1:74:81:2e:8c:5e:ad:49:6c:70: 22:76:f4:6d:30:de:7f:ed:ee:b9:c4:a7:bf:68:f8: 4f:77:4f:03:80:82:86:33:df:7d:db:e5:16:6c:b4: 96:2b:6b:69:e9:89:bc:65:fa:12:47:63:10:0b:61: bd:13:82:1e:02:be:35:5d:d6:2c:2d:44:04:c6:72: 5d:6e:e2:5e:06:31:41:c4:18:b8:7d:1b:de:24:1d: 4d:36:a1:58:b9:40:d2:aa:9b:a2:dc:bd:75:90:69: 23:38:e5:28:d0:6c:d1:90:66:6d:a9:b7:cb:cf:a4: a8:8b:8f:57:cf:54:72:ca:9e:ac:35:7f:cc:14:b1: d3:94:c0:51:63:09:47:c1:5f:7a:23:38:f9:3c:5b: 9f:7e:b7:a4:ac:e7:44:4e:82:18:f1:0a:da:68:9f: b8:30:ce:d4:58:ae:46:a1:15:c7:ea:3d:61:06:48: 4c:6b:a8:de:79:64:ab:58:94:3b:c6:09:e8:ba:f5: 67:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:AB:BA:51:9E:DE:E1:B7:D5:32:D6:9C:C2:34:E7:67:3A:8C:1A:AA X509v3 Authority Key Identifier: keyid:A2:30:D6:64:FE:DF:C0:26:63:49:81:1E:D3:99:9B:E5:22:0F:1D:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/54242355-a7e2-4cb9-8cff-9e17c742c2ef/0/A230D664FEDFC0266349811ED3999BE5220F1DEA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A230D664FEDFC0266349811ED3999BE5220F1DEA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/54242355-a7e2-4cb9-8cff-9e17c742c2ef/0/3130332e3136322e33342e302f32342d3234203d3e20313431363337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.34.0/24 Signature Algorithm: sha256WithRSAEncryption 34:c9:ad:33:4b:a5:81:7d:5d:01:37:9f:b1:5c:a3:69:55:3f: 0f:b1:43:94:bf:0d:e0:63:cb:c7:ab:4a:50:78:51:60:b9:83: 65:7f:52:41:67:57:7c:50:ba:e6:5b:12:b5:ef:d4:1c:6c:42: 4d:f9:f2:4f:1c:14:a7:dd:e0:52:88:3b:4a:78:9f:b3:dc:3b: d8:29:bf:bd:f1:cd:3b:24:3e:89:82:e1:db:ec:9a:fe:c7:a5: 52:10:b5:37:a6:4d:1e:1c:a9:91:f3:c3:ee:4e:58:c1:76:80: 51:36:4b:17:c0:ce:71:5e:27:af:a0:68:bf:96:71:51:08:4c: e6:26:b9:2b:47:c7:29:c0:67:87:ef:46:5e:26:4b:43:7e:02: 0c:4b:ec:81:50:2a:64:4b:5a:0b:60:9c:b9:82:71:7d:35:e6: 8b:68:fc:79:03:64:3b:8f:c5:bc:0c:9f:5e:4f:a2:eb:63:33: 33:23:6f:04:43:6b:6a:a3:b5:7f:70:e2:30:3b:5a:cb:27:59: 10:8b:0c:f4:33:bb:a0:25:df:62:b5:b9:11:cc:bb:e8:e2:67: 1e:f9:ef:db:7b:01:3c:14:a4:c2:55:26:46:be:3b:1f:f3:ad: 37:f0:5f:27:f0:9b:c8:e7:04:3e:25:b3:f6:8c:94:b2:64:bf: c7:18:7c:96 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEXvcLLkmNNBLWrTPz4csqK0+5yMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTIzMEQ2NjRGRURGQzAyNjYzNDk4MTFFRDM5OTlCRTUy MjBGMURFQTAeFw0yNDEwMjQxMTU1MDJaFw0yNTEwMjMxMjAwMDJaMDMxMTAvBgNV BAMTKDQ4QUJCQTUxOUVERUUxQjdENTMyRDY5Q0MyMzRFNzY3M0E4QzFBQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1QnUs8h5H8h6A6S55yVymdd3j UjavGXwO9eA8yfgs2q67Ux4+sszA3N5x3JCvr+DXTK00+ZT0oTjYOQFamvkhsXSB LoxerUlscCJ29G0w3n/t7rnEp79o+E93TwOAgoYz333b5RZstJYra2npibxl+hJH YxALYb0Tgh4CvjVd1iwtRATGcl1u4l4GMUHEGLh9G94kHU02oVi5QNKqm6LcvXWQ aSM45SjQbNGQZm2pt8vPpKiLj1fPVHLKnqw1f8wUsdOUwFFjCUfBX3ojOPk8W59+ t6Ss50ROghjxCtpon7gwztRYrkahFcfqPWEGSExrqN55ZKtYlDvGCei69Wd3AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSKu6UZ7e4bfVMtacwjTnZzqMGqowHwYDVR0j BBgwFoAUojDWZP7fwCZjSYEe05mb5SIPHeowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NDI0MjM1NS1hN2UyLTRjYjktOGNmZi05ZTE3Yzc0MmMyZWYvMC9BMjMwRDY2NEZF REZDMDI2NjM0OTgxMUVEMzk5OUJFNTIyMEYxREVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTIzMEQ2NjRGRURGQzAyNjYzNDk4MTFFRDM5OTlCRTUyMjBG MURFQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU0MjQyMzU1LWE3ZTItNGNiOS04 Y2ZmLTllMTdjNzQyYzJlZi8wLzMxMzAzMzJlMzEzNjMyMmUzMzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzMzM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6IiMA0GCSqG SIb3DQEBCwUAA4IBAQA0ya0zS6WBfV0BN5+xXKNpVT8PsUOUvw3gY8vHq0pQeFFg uYNlf1JBZ1d8ULrmWxK179QcbEJN+fJPHBSn3eBSiDtKeJ+z3DvYKb+98c07JD6J guHb7Jr+x6VSELU3pk0eHKmR88PuTljBdoBRNksXwM5xXievoGi/lnFRCEzmJrkr R8cpwGeH70ZeJktDfgIMS+yBUCpkS1oLYJy5gnF9NeaLaPx5A2Q7j8W8DJ9eT6Lr YzMzI28EQ2tqo7V/cOIwO1rLJ1kQiwz0M7ugJd9itbkRzLvo4mce+e/bewE8FKTC VSZGvjsf86038F8n8JvI5wQ+JbP2jJSyZL/HGHyW -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:43 2024 by rpki-client on console-fra.rpki-client.org