$ rpki-client -vvf repo-rpki.idnic.net/repo/54f1372c-43a6-4fda-b50e-d01eb42c689f/0/3130332e3137332e3134332e302f32342d3234203d3e20313437303930.roa File: 3130332e3137332e3134332e302f32342d3234203d3e20313437303930.roa (raw, json) Hash identifier: r4CQVIpRywKXgCsC2t4e/xoYTyV75w/DvckyuQWS6hE= Subject key identifier: 4B:28:70:44:87:16:1E:53:96:0F:04:66:BE:59:C6:B5:A2:88:A6:98 Certificate issuer: /CN=4515472806DD01B59715410103D51C05E4F28B96 Certificate serial: 2848419BD2C20605853018A35707F5DD36A26274 Authority key identifier: 45:15:47:28:06:DD:01:B5:97:15:41:01:03:D5:1C:05:E4:F2:8B:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4515472806DD01B59715410103D51C05E4F28B96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/54f1372c-43a6-4fda-b50e-d01eb42c689f/0/3130332e3137332e3134332e302f32342d3234203d3e20313437303930.roa Signing time: Thu 22 Feb 2024 02:00:00 +0000 ROA not before: Thu 22 Feb 2024 01:55:00 +0000 ROA not after: Thu 20 Feb 2025 02:00:00 +0000 asID: 147090 IP address blocks: 103.173.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/54f1372c-43a6-4fda-b50e-d01eb42c689f/0/4515472806DD01B59715410103D51C05E4F28B96.crl rsync://repo-rpki.idnic.net/repo/54f1372c-43a6-4fda-b50e-d01eb42c689f/0/4515472806DD01B59715410103D51C05E4F28B96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4515472806DD01B59715410103D51C05E4F28B96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:48:41:9b:d2:c2:06:05:85:30:18:a3:57:07:f5:dd:36:a2:62:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4515472806DD01B59715410103D51C05E4F28B96 Validity Not Before: Feb 22 01:55:00 2024 GMT Not After : Feb 20 02:00:00 2025 GMT Subject: CN=4B28704487161E53960F0466BE59C6B5A288A698 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:cd:31:fc:24:8d:44:cc:e2:ae:9d:5d:43:c1: a5:92:a0:e3:50:9a:40:11:be:d4:3b:0e:1c:56:cf: 5b:3e:50:4f:71:ee:8b:d9:95:fa:77:05:60:f1:cb: 22:a9:c6:1d:a1:f1:5b:e4:d6:2b:7b:d6:11:13:42: 85:ee:b9:01:e1:60:57:e1:a5:c0:02:81:9e:98:89: 23:ca:b8:b3:9d:b3:7b:15:0c:e0:33:ec:4b:88:52: 78:50:d6:03:e9:d5:07:a8:af:af:42:3b:89:56:c8: 29:3c:02:52:2f:8b:13:aa:ab:8b:67:e3:32:56:68: ce:db:87:8d:6b:f6:b2:2a:44:1e:be:a9:84:27:9c: 84:55:b2:df:99:92:b4:02:27:63:6a:7f:33:63:6f: ed:5c:9f:44:1c:c8:4f:80:bb:1c:a6:a0:b6:97:91: 07:3c:62:72:dc:75:29:14:a2:e1:48:e1:4a:9c:25: 35:86:6e:52:c4:34:54:61:65:75:f2:c2:11:42:bf: 27:36:61:ea:ba:02:57:30:9b:09:cc:92:f6:ef:ce: 7a:8f:ed:58:25:19:16:ee:66:87:18:bf:ff:8f:8a: 8e:fd:a5:9d:06:5e:45:40:c3:9d:2c:52:e6:2d:76: 7a:9e:4d:25:9e:e5:a2:f9:98:c6:8f:f5:ef:04:35: d6:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:28:70:44:87:16:1E:53:96:0F:04:66:BE:59:C6:B5:A2:88:A6:98 X509v3 Authority Key Identifier: keyid:45:15:47:28:06:DD:01:B5:97:15:41:01:03:D5:1C:05:E4:F2:8B:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/54f1372c-43a6-4fda-b50e-d01eb42c689f/0/4515472806DD01B59715410103D51C05E4F28B96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4515472806DD01B59715410103D51C05E4F28B96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/54f1372c-43a6-4fda-b50e-d01eb42c689f/0/3130332e3137332e3134332e302f32342d3234203d3e20313437303930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.143.0/24 Signature Algorithm: sha256WithRSAEncryption 33:0d:90:d0:67:72:20:9e:25:d2:14:40:5c:36:fa:76:fe:33: 7d:0c:ba:4d:15:25:2c:2f:19:f1:8e:c1:e6:73:82:c3:de:5a: f0:57:aa:20:08:1b:b6:0f:3b:0e:50:7a:51:35:2a:4c:7c:ba: e7:97:27:cd:c7:9a:0c:e3:e3:64:c1:00:c1:0c:c8:dd:89:84: 6c:8f:70:f5:22:4c:07:d5:63:65:e7:b9:bb:b0:91:8b:85:3c: 5d:b1:9a:fc:b0:dd:71:58:01:0a:e0:b4:56:06:77:06:f4:a7: d6:61:17:dd:a7:71:53:1a:23:df:98:11:66:3d:f2:da:df:ef: ed:53:ad:e7:7a:fc:c6:4d:58:c7:69:5d:63:d4:10:bd:36:40: 73:fb:e8:8e:7f:d4:66:85:0f:e1:43:8a:51:44:59:c1:36:70: 22:52:f2:b3:fa:7f:28:18:d1:72:0f:cb:6b:b5:86:64:00:d8: 1b:7b:14:45:a4:5e:b3:47:30:b1:fa:da:e3:39:13:50:ca:95: 86:23:72:68:5a:05:99:be:0c:13:85:e1:ff:75:8e:ec:e6:54: a6:c5:c8:47:59:dc:27:47:4f:7c:10:2b:44:2f:2c:99:11:d9: e4:a3:34:d0:16:b8:60:9c:38:6a:b9:b1:29:a0:4f:25:b5:89: 3f:d7:eb:91 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKEhBm9LCBgWFMBijVwf13TaiYnQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUxNTQ3MjgwNkREMDFCNTk3MTU0MTAxMDNENTFDMDVF NEYyOEI5NjAeFw0yNDAyMjIwMTU1MDBaFw0yNTAyMjAwMjAwMDBaMDMxMTAvBgNV BAMTKDRCMjg3MDQ0ODcxNjFFNTM5NjBGMDQ2NkJFNTlDNkI1QTI4OEE2OTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4zTH8JI1EzOKunV1DwaWSoONQ mkARvtQ7DhxWz1s+UE9x7ovZlfp3BWDxyyKpxh2h8Vvk1it71hETQoXuuQHhYFfh pcACgZ6YiSPKuLOds3sVDOAz7EuIUnhQ1gPp1Qeor69CO4lWyCk8AlIvixOqq4tn 4zJWaM7bh41r9rIqRB6+qYQnnIRVst+ZkrQCJ2NqfzNjb+1cn0QcyE+AuxymoLaX kQc8YnLcdSkUouFI4UqcJTWGblLENFRhZXXywhFCvyc2Yeq6AlcwmwnMkvbvznqP 7VglGRbuZocYv/+Pio79pZ0GXkVAw50sUuYtdnqeTSWe5aL5mMaP9e8ENdZbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUSyhwRIcWHlOWDwRmvlnGtaKIppgwHwYDVR0j BBgwFoAURRVHKAbdAbWXFUEBA9UcBeTyi5YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NGYxMzcyYy00M2E2LTRmZGEtYjUwZS1kMDFlYjQyYzY4OWYvMC80NTE1NDcyODA2 REQwMUI1OTcxNTQxMDEwM0Q1MUMwNUU0RjI4Qjk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDUxNTQ3MjgwNkREMDFCNTk3MTU0MTAxMDNENTFDMDVFNEYy OEI5Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU0ZjEzNzJjLTQzYTYtNGZkYS1i NTBlLWQwMWViNDJjNjg5Zi8wLzMxMzAzMzJlMzEzNzMzMmUzMTM0MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMDM5MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrY8wDQYJ KoZIhvcNAQELBQADggEBADMNkNBnciCeJdIUQFw2+nb+M30Muk0VJSwvGfGOweZz gsPeWvBXqiAIG7YPOw5QelE1Kkx8uueXJ83Hmgzj42TBAMEMyN2JhGyPcPUiTAfV Y2XnubuwkYuFPF2xmvyw3XFYAQrgtFYGdwb0p9ZhF92ncVMaI9+YEWY98trf7+1T red6/MZNWMdpXWPUEL02QHP76I5/1GaFD+FDilFEWcE2cCJS8rP6fygY0XIPy2u1 hmQA2Bt7FEWkXrNHMLH62uM5E1DKlYYjcmhaBZm+DBOF4f91juzmVKbFyEdZ3CdH T3wQK0QvLJkR2eSjNNAWuGCcOGq5sSmgTyW1iT/X65E= -----END CERTIFICATE-----Generated at Thu Nov 21 01:24:16 2024 by rpki-client on console-ams.rpki-client.org