$ rpki-client -vvf repo-rpki.idnic.net/repo/5a3b6881-ba11-4330-a164-b55f42085b89/0/3130332e3231312e3134332e302f32342d3234203d3e203435333138.roa File: 3130332e3231312e3134332e302f32342d3234203d3e203435333138.roa (raw, json) Hash identifier: WW7W6Yj2G/47WPhY9FaJiFfRCgajmearKgt2Y7lE/bA= Subject key identifier: 0A:07:95:6A:44:C7:F6:F2:43:9F:47:65:96:C0:BC:E3:EE:C5:F6:B0 Certificate issuer: /CN=789C8FCBCFFC68C483A968DF14EE37E75AFEA2ED Certificate serial: 53E20DA94FD5DA0543208D56E39EBB6E19CD261B Authority key identifier: 78:9C:8F:CB:CF:FC:68:C4:83:A9:68:DF:14:EE:37:E7:5A:FE:A2:ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789C8FCBCFFC68C483A968DF14EE37E75AFEA2ED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a3b6881-ba11-4330-a164-b55f42085b89/0/3130332e3231312e3134332e302f32342d3234203d3e203435333138.roa Signing time: Mon 11 Nov 2024 04:00:02 +0000 ROA not before: Mon 11 Nov 2024 03:55:02 +0000 ROA not after: Mon 10 Nov 2025 04:00:02 +0000 asID: 45318 IP address blocks: 103.211.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a3b6881-ba11-4330-a164-b55f42085b89/0/789C8FCBCFFC68C483A968DF14EE37E75AFEA2ED.crl rsync://repo-rpki.idnic.net/repo/5a3b6881-ba11-4330-a164-b55f42085b89/0/789C8FCBCFFC68C483A968DF14EE37E75AFEA2ED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789C8FCBCFFC68C483A968DF14EE37E75AFEA2ED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 11:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:e2:0d:a9:4f:d5:da:05:43:20:8d:56:e3:9e:bb:6e:19:cd:26:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=789C8FCBCFFC68C483A968DF14EE37E75AFEA2ED Validity Not Before: Nov 11 03:55:02 2024 GMT Not After : Nov 10 04:00:02 2025 GMT Subject: CN=0A07956A44C7F6F2439F476596C0BCE3EEC5F6B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:17:18:62:ab:b4:60:fc:84:c5:b3:16:49:92: fe:9a:44:ff:e2:17:3c:d3:f0:ae:2a:db:e5:27:39: 7c:8f:2e:3c:3d:0a:d4:9b:af:db:d7:58:06:04:41: e6:fa:2f:70:88:1d:be:63:04:4e:be:0e:a7:c0:62: 16:c0:b3:5f:a2:89:b0:78:d0:43:8c:7c:70:cd:43: ac:ac:eb:7f:8c:3c:76:83:ec:70:86:df:2f:15:5a: 1d:7a:0b:f3:bf:ea:f2:8f:e4:84:72:db:ff:c1:b5: 51:56:e5:a1:4a:8a:b1:ba:fb:eb:57:98:0b:0d:1f: 2d:fe:73:74:e3:dc:f4:94:f5:1e:a5:79:a2:ff:4b: d6:05:88:43:51:fc:c9:59:3d:ac:a7:75:78:d6:fb: 5d:46:1f:6c:65:51:da:37:17:00:a5:f0:9e:09:be: 7b:e2:27:04:73:c0:47:43:de:39:ed:db:47:08:87: 4c:94:80:c9:4a:5f:31:33:6c:cb:13:8c:ac:6c:21: e9:4b:6c:c3:2f:4c:0c:bf:5d:9e:e2:aa:22:c2:c7: c3:73:a5:81:20:20:cc:92:b5:94:62:4e:db:47:20: 85:12:8c:cb:52:63:c3:11:70:30:a0:53:ca:82:7b: 70:44:12:5c:a0:71:8e:a1:c7:ad:36:ac:f7:e4:7c: d1:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:07:95:6A:44:C7:F6:F2:43:9F:47:65:96:C0:BC:E3:EE:C5:F6:B0 X509v3 Authority Key Identifier: keyid:78:9C:8F:CB:CF:FC:68:C4:83:A9:68:DF:14:EE:37:E7:5A:FE:A2:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a3b6881-ba11-4330-a164-b55f42085b89/0/789C8FCBCFFC68C483A968DF14EE37E75AFEA2ED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789C8FCBCFFC68C483A968DF14EE37E75AFEA2ED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a3b6881-ba11-4330-a164-b55f42085b89/0/3130332e3231312e3134332e302f32342d3234203d3e203435333138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.211.143.0/24 Signature Algorithm: sha256WithRSAEncryption 07:cc:e7:dd:67:ec:b3:d4:77:9f:7b:d3:26:bf:88:40:f1:0e: 2a:51:0a:f4:3b:86:c9:e6:6f:3e:c7:db:a7:f1:8d:52:0a:ff: 67:ae:73:f2:39:83:f6:e9:a3:d9:9e:c6:6c:da:13:e7:68:38: 06:1e:50:c2:33:c4:d5:40:07:c6:aa:69:21:04:0e:92:4b:42: 2e:79:e1:ee:51:b6:8b:09:4d:ef:5f:13:a1:94:d6:7c:ad:fc: c0:bc:3a:3d:43:9e:a5:f1:22:28:0d:9c:39:34:71:e8:ea:ad: ae:86:1e:9b:5b:9e:91:cc:24:2c:cd:88:83:2b:55:3e:46:57: 15:e4:9e:67:fe:8f:f8:b5:99:fe:d3:2d:5b:5c:1d:58:a1:f1: a8:f6:3b:f5:76:47:fc:a1:4a:7b:70:c9:34:d2:30:ad:ad:3d: 55:00:73:3c:8a:51:e1:7e:f3:1e:46:38:12:f7:37:f2:67:f4: b3:c4:56:da:9b:71:9e:3b:39:76:bc:24:ca:fd:a7:ad:88:fe: e4:3c:3e:2a:c2:da:b7:12:47:6a:33:a9:0b:99:e7:7c:90:99: 96:3f:ba:d8:1f:9d:b4:44:f6:6e:95:c9:b2:d2:bb:af:44:b7: 2b:9c:73:e8:56:18:43:f7:13:08:ee:10:98:91:59:4a:45:06: 45:fd:0a:06 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUU+INqU/V2gVDII1W4567bhnNJhswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzg5QzhGQ0JDRkZDNjhDNDgzQTk2OERGMTRFRTM3RTc1 QUZFQTJFRDAeFw0yNDExMTEwMzU1MDJaFw0yNTExMTAwNDAwMDJaMDMxMTAvBgNV BAMTKDBBMDc5NTZBNDRDN0Y2RjI0MzlGNDc2NTk2QzBCQ0UzRUVDNUY2QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4Fxhiq7Rg/ITFsxZJkv6aRP/i FzzT8K4q2+UnOXyPLjw9CtSbr9vXWAYEQeb6L3CIHb5jBE6+DqfAYhbAs1+iibB4 0EOMfHDNQ6ys63+MPHaD7HCG3y8VWh16C/O/6vKP5IRy2//BtVFW5aFKirG6++tX mAsNHy3+c3Tj3PSU9R6leaL/S9YFiENR/MlZPayndXjW+11GH2xlUdo3FwCl8J4J vnviJwRzwEdD3jnt20cIh0yUgMlKXzEzbMsTjKxsIelLbMMvTAy/XZ7iqiLCx8Nz pYEgIMyStZRiTttHIIUSjMtSY8MRcDCgU8qCe3BEElygcY6hx602rPfkfNEbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCgeVakTH9vJDn0dllsC84+7F9rAwHwYDVR0j BBgwFoAUeJyPy8/8aMSDqWjfFO4351r+ou0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTNiNjg4MS1iYTExLTQzMzAtYTE2NC1iNTVmNDIwODViODkvMC83ODlDOEZDQkNG RkM2OEM0ODNBOTY4REYxNEVFMzdFNzVBRkVBMkVELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzg5QzhGQ0JDRkZDNjhDNDgzQTk2OERGMTRFRTM3RTc1QUZF QTJFRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhM2I2ODgxLWJhMTEtNDMzMC1h MTY0LWI1NWY0MjA4NWI4OS8wLzMxMzAzMzJlMzIzMTMxMmUzMTM0MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzMzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ9OPMA0GCSqG SIb3DQEBCwUAA4IBAQAHzOfdZ+yz1Hefe9Mmv4hA8Q4qUQr0O4bJ5m8+x9un8Y1S Cv9nrnPyOYP26aPZnsZs2hPnaDgGHlDCM8TVQAfGqmkhBA6SS0IueeHuUbaLCU3v XxOhlNZ8rfzAvDo9Q56l8SIoDZw5NHHo6q2uhh6bW56RzCQszYiDK1U+RlcV5J5n /o/4tZn+0y1bXB1YofGo9jv1dkf8oUp7cMk00jCtrT1VAHM8ilHhfvMeRjgS9zfy Z/SzxFbam3GeOzl2vCTK/aetiP7kPD4qwtq3EkdqM6kLmed8kJmWP7rYH520RPZu lcmy0ruvRLcrnHPoVhhD9xMI7hCYkVlKRQZF/QoG -----END CERTIFICATE-----Generated at Mon Nov 25 10:55:38 2024 by rpki-client on console-ams.rpki-client.org