$ rpki-client -vvf repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/3130332e33312e3234312e302f32342d3234203d3e20313339393532.roa File: 3130332e33312e3234312e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: G08Zsb0m7nLFy8P1hWnzM0k+V4xtFf95Ynj7WmJyU4w= Subject key identifier: 7D:53:C1:ED:03:47:5F:23:06:87:5D:EC:1D:6B:66:0C:BF:0B:D0:BE Certificate issuer: /CN=DEB4279F0D4CD8368462787573162FB753A9B04B Certificate serial: 5305D720814293E89120E903ABE4D54BB953AD8B Authority key identifier: DE:B4:27:9F:0D:4C:D8:36:84:62:78:75:73:16:2F:B7:53:A9:B0:4B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEB4279F0D4CD8368462787573162FB753A9B04B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/3130332e33312e3234312e302f32342d3234203d3e20313339393532.roa Signing time: Thu 26 Sep 2024 01:00:00 +0000 ROA not before: Thu 26 Sep 2024 00:55:00 +0000 ROA not after: Thu 25 Sep 2025 01:00:00 +0000 asID: 139952 IP address blocks: 103.31.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/DEB4279F0D4CD8368462787573162FB753A9B04B.crl rsync://repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/DEB4279F0D4CD8368462787573162FB753A9B04B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEB4279F0D4CD8368462787573162FB753A9B04B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:05:d7:20:81:42:93:e8:91:20:e9:03:ab:e4:d5:4b:b9:53:ad:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DEB4279F0D4CD8368462787573162FB753A9B04B Validity Not Before: Sep 26 00:55:00 2024 GMT Not After : Sep 25 01:00:00 2025 GMT Subject: CN=7D53C1ED03475F2306875DEC1D6B660CBF0BD0BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a1:9a:26:46:78:a0:5c:33:d7:39:51:0b:45: e6:44:33:18:88:1a:c1:99:1b:6c:1e:ca:30:61:2d: 62:66:4e:e3:15:d0:96:30:a2:1d:2f:39:d8:a6:60: 81:d2:14:f7:8b:cc:0f:14:a8:bb:40:69:39:46:92: b4:61:3f:e4:e4:e3:01:6a:46:ce:4d:ea:02:24:02: bc:59:47:db:57:c6:4a:b2:ef:f7:96:08:ad:2d:f9: 55:74:bd:45:96:86:cc:f4:7d:b5:18:bd:f5:64:11: f1:43:f0:9d:cb:75:77:4c:64:32:a1:af:e1:bd:e0: 11:bb:21:a3:96:07:c6:55:fd:73:c5:66:b2:22:5d: 4a:6d:43:52:0b:68:b8:60:a1:f7:67:2c:36:03:9c: 3b:8b:7d:a1:c7:80:80:8e:95:6b:40:b2:a8:79:ad: 1f:5e:bb:4f:d3:a8:86:24:80:87:b0:96:de:36:2f: 19:4e:b4:9e:f9:19:55:04:ef:9f:75:f1:79:9c:34: 74:e1:e5:26:6e:d7:31:19:63:75:90:af:0c:e4:71: 33:d4:8a:61:bd:02:84:3e:f9:2c:00:0e:68:34:6d: 51:5e:04:cf:14:c2:20:0a:94:81:18:20:4e:dc:4e: ed:0d:49:e2:0e:a0:12:c1:e0:04:37:6c:d5:61:2c: e9:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:53:C1:ED:03:47:5F:23:06:87:5D:EC:1D:6B:66:0C:BF:0B:D0:BE X509v3 Authority Key Identifier: keyid:DE:B4:27:9F:0D:4C:D8:36:84:62:78:75:73:16:2F:B7:53:A9:B0:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/DEB4279F0D4CD8368462787573162FB753A9B04B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DEB4279F0D4CD8368462787573162FB753A9B04B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/643034aa-f39c-48f5-852e-d1bd7f17aa42/0/3130332e33312e3234312e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.241.0/24 Signature Algorithm: sha256WithRSAEncryption 88:7f:df:d2:05:2a:08:a8:21:f3:ec:84:10:02:36:94:f6:bc: 79:f6:2a:bd:99:dd:06:5e:fc:1f:17:15:5e:33:1f:5d:5e:33: 74:3c:49:a0:ca:19:bb:b9:9b:87:28:08:bb:10:ad:53:d6:61: 4f:e3:2d:cd:88:2b:29:91:d8:31:dd:21:12:2e:7a:55:62:d1: 77:68:b5:64:db:c9:f5:7c:ad:f0:a0:10:1f:1f:dd:18:d0:1a: a9:be:91:c2:98:b8:1d:85:5a:d0:49:22:5e:87:62:91:bb:9c: 56:c5:a9:31:01:5e:b8:5c:c6:ed:38:15:4a:ae:54:65:9f:c9: 57:8e:f3:7e:d2:51:df:e4:8f:e9:86:9e:d7:1f:cd:f8:a4:e2: 12:15:c2:2a:d3:dc:74:d8:64:77:ec:68:f0:9c:48:ef:1f:45: 88:a0:ac:1b:4e:c9:89:ab:39:ff:1c:5b:44:7e:d1:fa:ab:88: 06:df:1a:32:15:39:6e:df:45:60:83:1c:d4:df:8d:7a:e8:89: 94:da:b0:b7:9e:60:5a:13:31:05:48:51:2e:9d:28:4e:a0:10: ca:56:17:0a:7d:24:18:16:83:ec:cc:4a:9c:ed:21:8f:1a:30: 66:37:13:c0:64:42:cc:9d:c0:6b:4d:39:74:01:c2:2f:c1:59: 2a:5b:0f:0f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUwXXIIFCk+iRIOkDq+TVS7lTrYswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREVCNDI3OUYwRDRDRDgzNjg0NjI3ODc1NzMxNjJGQjc1 M0E5QjA0QjAeFw0yNDA5MjYwMDU1MDBaFw0yNTA5MjUwMTAwMDBaMDMxMTAvBgNV BAMTKDdENTNDMUVEMDM0NzVGMjMwNjg3NURFQzFENkI2NjBDQkYwQkQwQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpoZomRnigXDPXOVELReZEMxiI GsGZG2weyjBhLWJmTuMV0JYwoh0vOdimYIHSFPeLzA8UqLtAaTlGkrRhP+Tk4wFq Rs5N6gIkArxZR9tXxkqy7/eWCK0t+VV0vUWWhsz0fbUYvfVkEfFD8J3LdXdMZDKh r+G94BG7IaOWB8ZV/XPFZrIiXUptQ1ILaLhgofdnLDYDnDuLfaHHgICOlWtAsqh5 rR9eu0/TqIYkgIewlt42LxlOtJ75GVUE75918XmcNHTh5SZu1zEZY3WQrwzkcTPU imG9AoQ++SwADmg0bVFeBM8UwiAKlIEYIE7cTu0NSeIOoBLB4AQ3bNVhLOmXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfVPB7QNHXyMGh13sHWtmDL8L0L4wHwYDVR0j BBgwFoAU3rQnnw1M2DaEYnh1cxYvt1OpsEswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDMwMzRhYS1mMzljLTQ4ZjUtODUyZS1kMWJkN2YxN2FhNDIvMC9ERUI0Mjc5RjBE NENEODM2ODQ2Mjc4NzU3MzE2MkZCNzUzQTlCMDRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREVCNDI3OUYwRDRDRDgzNjg0NjI3ODc1NzMxNjJGQjc1M0E5 QjA0Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0MzAzNGFhLWYzOWMtNDhmNS04 NTJlLWQxYmQ3ZjE3YWE0Mi8wLzMxMzAzMzJlMzMzMTJlMzIzNDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZx/xMA0GCSqG SIb3DQEBCwUAA4IBAQCIf9/SBSoIqCHz7IQQAjaU9rx59iq9md0GXvwfFxVeMx9d XjN0PEmgyhm7uZuHKAi7EK1T1mFP4y3NiCspkdgx3SESLnpVYtF3aLVk28n1fK3w oBAfH90Y0BqpvpHCmLgdhVrQSSJeh2KRu5xWxakxAV64XMbtOBVKrlRln8lXjvN+ 0lHf5I/php7XH834pOISFcIq09x02GR37GjwnEjvH0WIoKwbTsmJqzn/HFtEftH6 q4gG3xoyFTlu30VggxzU34166ImU2rC3nmBaEzEFSFEunShOoBDKVhcKfSQYFoPs zEqc7SGPGjBmNxPAZELMncBrTTl0AcIvwVkqWw8P -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org