$ rpki-client -vvf repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/3130332e3134332e32342e302f32342d3234203d3e203536323432.roa File: 3130332e3134332e32342e302f32342d3234203d3e203536323432.roa (raw, json) Hash identifier: Zq1BBE04/WUIdBg4uEe42Vvvsm79WCJHeWG1VGLY3ls= Subject key identifier: B7:E3:E1:D9:BD:FF:A0:73:3E:25:C0:D0:92:8A:62:16:E1:55:02:88 Certificate issuer: /CN=C380A411E3CE15C60336341BB4B0994B307B920D Certificate serial: 3DE8E684109855E9FED4C10BA6A1178F016467A1 Authority key identifier: C3:80:A4:11:E3:CE:15:C6:03:36:34:1B:B4:B0:99:4B:30:7B:92:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C380A411E3CE15C60336341BB4B0994B307B920D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/3130332e3134332e32342e302f32342d3234203d3e203536323432.roa Signing time: Thu 08 Feb 2024 09:00:03 +0000 ROA not before: Thu 08 Feb 2024 08:55:03 +0000 ROA not after: Thu 06 Feb 2025 09:00:03 +0000 asID: 56242 IP address blocks: 103.143.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/C380A411E3CE15C60336341BB4B0994B307B920D.crl rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/C380A411E3CE15C60336341BB4B0994B307B920D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C380A411E3CE15C60336341BB4B0994B307B920D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 08:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:e8:e6:84:10:98:55:e9:fe:d4:c1:0b:a6:a1:17:8f:01:64:67:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C380A411E3CE15C60336341BB4B0994B307B920D Validity Not Before: Feb 8 08:55:03 2024 GMT Not After : Feb 6 09:00:03 2025 GMT Subject: CN=B7E3E1D9BDFFA0733E25C0D0928A6216E1550288 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7b:91:36:ed:40:bb:f5:c6:c3:e3:46:da:08: db:44:4d:ea:b9:e2:8a:b7:8d:78:70:7b:83:6f:cf: 25:2a:d7:2e:d5:88:a0:e6:19:81:47:8f:1a:bc:85: 42:7e:ab:34:e0:30:c0:8d:4c:d2:2a:2f:2e:25:89: 03:88:ca:e6:68:4f:f5:0f:80:8b:91:66:8c:af:e3: 8b:53:2c:f8:f0:6e:d6:e2:fa:e1:8e:73:73:45:44: 6d:af:1e:78:92:3e:03:cd:88:0c:f2:45:b0:34:e7: 1f:f0:f2:c4:87:f2:d1:d1:71:c0:d6:31:0e:4e:72: 7d:8f:98:d4:22:d4:ee:b5:d9:a9:1c:a4:c7:96:d5: 4b:95:03:21:79:56:56:85:9a:30:1e:2f:fa:89:9a: 3f:a9:c2:ee:b4:d9:98:c0:c7:8d:14:37:b8:cd:e5: 16:cf:bf:99:65:3d:67:e2:7f:50:2c:bf:26:35:83: 7b:0e:a8:f3:02:5b:17:7b:e8:bb:d6:95:b9:dc:e9: a5:1a:b3:46:d6:f9:5e:d7:5f:43:f5:d6:39:63:b1: c4:72:bb:ef:ff:c8:af:86:67:21:7f:7c:0e:dd:b5: 37:5f:9f:86:0e:de:73:02:89:96:39:16:28:9c:54: 60:e9:89:84:9d:05:78:0a:ba:9d:80:38:35:bd:7d: 21:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:E3:E1:D9:BD:FF:A0:73:3E:25:C0:D0:92:8A:62:16:E1:55:02:88 X509v3 Authority Key Identifier: keyid:C3:80:A4:11:E3:CE:15:C6:03:36:34:1B:B4:B0:99:4B:30:7B:92:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/C380A411E3CE15C60336341BB4B0994B307B920D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C380A411E3CE15C60336341BB4B0994B307B920D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/3130332e3134332e32342e302f32342d3234203d3e203536323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.24.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:6b:81:d3:2e:ba:5b:2a:2e:15:51:16:67:74:00:dd:e3:2f: 48:09:42:19:d6:d4:08:6e:06:d9:e4:85:20:bb:87:2d:2e:b1: 6e:26:04:69:3b:91:6c:db:1c:e4:58:1b:b9:ea:b0:f3:42:e4: 60:a2:98:05:f7:2a:2e:02:56:46:04:c2:c8:f5:6f:3a:dc:f3: c9:6f:35:c9:cf:a4:a8:9d:be:32:c5:08:b3:43:5b:90:f1:66: d6:3b:fb:67:f3:71:56:12:44:74:1e:b6:fb:2c:c0:22:5d:25: 15:59:0c:06:ff:63:4f:3d:67:13:2b:95:54:8f:4e:e0:14:50: 17:29:72:c3:04:88:d9:b0:df:bb:7f:7e:36:5c:65:e6:72:d0: 48:44:cf:13:e7:cd:0e:25:c9:98:78:2e:5b:26:1b:83:57:f2: 90:7b:48:02:78:f3:da:d0:20:54:43:aa:05:f2:3f:0c:cd:8a: 59:d0:26:28:87:31:e7:4d:c5:b4:14:ca:0b:05:26:40:3e:b9: 27:ae:03:00:0e:68:aa:8c:47:8e:bf:17:8e:a4:cc:f8:c9:a5: 0b:48:87:a5:b3:ba:ae:82:92:6d:4b:03:66:41:07:9e:bb:78: 30:46:fd:e3:8f:24:1f:a2:4c:15:96:e6:ba:42:d6:d3:8c:ae: 91:17:e8:fd -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPejmhBCYVen+1MELpqEXjwFkZ6EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzM4MEE0MTFFM0NFMTVDNjAzMzYzNDFCQjRCMDk5NEIz MDdCOTIwRDAeFw0yNDAyMDgwODU1MDNaFw0yNTAyMDYwOTAwMDNaMDMxMTAvBgNV BAMTKEI3RTNFMUQ5QkRGRkEwNzMzRTI1QzBEMDkyOEE2MjE2RTE1NTAyODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwe5E27UC79cbD40baCNtETeq5 4oq3jXhwe4NvzyUq1y7ViKDmGYFHjxq8hUJ+qzTgMMCNTNIqLy4liQOIyuZoT/UP gIuRZoyv44tTLPjwbtbi+uGOc3NFRG2vHniSPgPNiAzyRbA05x/w8sSH8tHRccDW MQ5Ocn2PmNQi1O612akcpMeW1UuVAyF5VlaFmjAeL/qJmj+pwu602ZjAx40UN7jN 5RbPv5llPWfif1AsvyY1g3sOqPMCWxd76LvWlbnc6aUas0bW+V7XX0P11jljscRy u+//yK+GZyF/fA7dtTdfn4YO3nMCiZY5FiicVGDpiYSdBXgKup2AODW9fSGTAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUt+Ph2b3/oHM+JcDQkopiFuFVAogwHwYDVR0j BBgwFoAUw4CkEePOFcYDNjQbtLCZSzB7kg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWM0MDBkMS05YmJkLTRlMmItOGQ1OC02Zjc0OWRiYzM5MmQvMC9DMzgwQTQxMUUz Q0UxNUM2MDMzNjM0MUJCNEIwOTk0QjMwN0I5MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzM4MEE0MTFFM0NFMTVDNjAzMzYzNDFCQjRCMDk5NEIzMDdC OTIwRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1YzQwMGQxLTliYmQtNGUyYi04 ZDU4LTZmNzQ5ZGJjMzkyZC8wLzMxMzAzMzJlMzEzNDMzMmUzMjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGePGDANBgkqhkiG 9w0BAQsFAAOCAQEADGuB0y66WyouFVEWZ3QA3eMvSAlCGdbUCG4G2eSFILuHLS6x biYEaTuRbNsc5Fgbueqw80LkYKKYBfcqLgJWRgTCyPVvOtzzyW81yc+kqJ2+MsUI s0NbkPFm1jv7Z/NxVhJEdB62+yzAIl0lFVkMBv9jTz1nEyuVVI9O4BRQFylywwSI 2bDfu39+Nlxl5nLQSETPE+fNDiXJmHguWyYbg1fykHtIAnjz2tAgVEOqBfI/DM2K WdAmKIcx503FtBTKCwUmQD65J64DAA5oqoxHjr8XjqTM+MmlC0iHpbO6roKSbUsD ZkEHnrt4MEb9448kH6JMFZbmukLW04yukRfo/Q== -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org