$ rpki-client -vvf repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/3130332e3134332e32352e302f32342d3234203d3e203536323432.roa File: 3130332e3134332e32352e302f32342d3234203d3e203536323432.roa (raw, json) Hash identifier: g5OQGkNnjF932prGcTlB+I4oSiFOP+wuK44avt0YWNg= Subject key identifier: E9:B5:02:89:55:20:2F:0B:3F:8D:8F:41:6B:9E:F3:FB:45:AB:5F:A7 Certificate issuer: /CN=C380A411E3CE15C60336341BB4B0994B307B920D Certificate serial: 4D2AF3DD56DEE0927671FFA28C80E29E43319C45 Authority key identifier: C3:80:A4:11:E3:CE:15:C6:03:36:34:1B:B4:B0:99:4B:30:7B:92:0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C380A411E3CE15C60336341BB4B0994B307B920D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/3130332e3134332e32352e302f32342d3234203d3e203536323432.roa Signing time: Thu 08 Feb 2024 09:00:04 +0000 ROA not before: Thu 08 Feb 2024 08:55:04 +0000 ROA not after: Thu 06 Feb 2025 09:00:04 +0000 asID: 56242 IP address blocks: 103.143.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/C380A411E3CE15C60336341BB4B0994B307B920D.crl rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/C380A411E3CE15C60336341BB4B0994B307B920D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C380A411E3CE15C60336341BB4B0994B307B920D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 08:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:2a:f3:dd:56:de:e0:92:76:71:ff:a2:8c:80:e2:9e:43:31:9c:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C380A411E3CE15C60336341BB4B0994B307B920D Validity Not Before: Feb 8 08:55:04 2024 GMT Not After : Feb 6 09:00:04 2025 GMT Subject: CN=E9B5028955202F0B3F8D8F416B9EF3FB45AB5FA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:02:9e:0b:83:87:1e:4f:a7:c4:f4:41:d1:3d: 77:e2:6e:33:19:09:a7:7c:79:6a:0f:fa:b9:ce:14: 59:57:ac:ce:2d:c8:d0:ec:24:5e:43:f8:8b:52:97: 3a:d7:d1:57:3d:c8:c6:f8:be:64:d9:15:17:b7:9f: 8f:cc:7c:51:e1:24:5d:0f:e7:36:71:20:ff:10:12: 6d:5e:64:65:7d:20:6a:a6:04:e5:9f:04:4e:67:1e: 67:a6:7c:a5:45:f4:91:7a:45:56:3c:66:2d:90:e0: 3b:73:da:82:55:b7:44:bd:95:93:39:bd:55:39:3f: 38:4b:a0:2b:b7:78:63:94:d2:44:46:51:ca:70:9d: a0:8e:d3:37:9c:34:37:ab:3a:2c:49:c1:b9:e6:94: 18:78:82:b6:31:a7:6b:6c:98:83:89:a6:97:d3:6b: 7b:ec:84:67:ee:61:c5:10:11:07:d9:1d:db:26:31: 57:43:b6:3e:18:e6:fb:17:98:c2:cf:54:21:ec:3b: cf:94:36:77:2b:11:1b:08:0f:72:b1:cf:7c:80:82: 64:99:cf:82:a9:8e:67:67:7e:d1:ff:2a:5c:b6:9a: de:a6:7d:94:40:23:19:cb:39:dc:76:e2:82:52:b8: 7a:20:b1:24:f9:e7:5b:c9:24:94:cd:85:dc:54:1b: 12:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:B5:02:89:55:20:2F:0B:3F:8D:8F:41:6B:9E:F3:FB:45:AB:5F:A7 X509v3 Authority Key Identifier: keyid:C3:80:A4:11:E3:CE:15:C6:03:36:34:1B:B4:B0:99:4B:30:7B:92:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/C380A411E3CE15C60336341BB4B0994B307B920D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C380A411E3CE15C60336341BB4B0994B307B920D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65c400d1-9bbd-4e2b-8d58-6f749dbc392d/0/3130332e3134332e32352e302f32342d3234203d3e203536323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.25.0/24 Signature Algorithm: sha256WithRSAEncryption 63:73:10:32:67:76:76:81:1b:ab:53:ef:dd:bc:7f:11:7c:49: a4:11:39:80:d8:d8:aa:6c:b2:a8:ab:ac:c8:e9:8b:06:d8:f5: 0b:cf:5b:cf:73:88:96:e3:d6:80:1a:78:bf:54:08:eb:58:f6: 35:3f:ac:34:be:1e:61:a4:5f:fc:a8:7e:b3:45:c2:71:81:5f: c1:54:0d:e9:a1:60:0d:e9:60:89:3e:42:36:bd:0b:08:bc:0e: 48:b9:0d:a1:79:62:9a:aa:f5:1f:e9:4a:39:e2:e4:48:ab:a4: 9f:d1:c6:06:bf:73:de:f4:f3:72:24:f4:cd:79:3a:b8:fb:ba: 08:84:85:29:24:6f:2f:70:3a:13:09:c2:99:05:0b:43:10:a3: df:35:92:7f:e7:0d:2e:4d:f8:ee:59:9e:c5:f7:a5:34:23:fb: 8c:54:e6:50:bf:8e:4a:63:7e:9e:46:f4:df:9c:d4:b7:53:ef: 1c:79:c4:58:0b:08:f6:29:b9:38:93:bf:e2:ec:54:41:d7:43: 45:58:04:5a:49:55:6b:0e:19:2f:cc:eb:34:ec:dd:1f:62:ed: 43:6f:78:2a:ca:3c:63:0f:66:c8:82:c5:1d:5e:e5:e4:40:fd: 22:c0:b8:c2:4f:dd:0c:e2:60:85:06:6d:d1:c2:c6:a8:70:16: b0:f3:4f:fa -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTSrz3Vbe4JJ2cf+ijIDinkMxnEUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzM4MEE0MTFFM0NFMTVDNjAzMzYzNDFCQjRCMDk5NEIz MDdCOTIwRDAeFw0yNDAyMDgwODU1MDRaFw0yNTAyMDYwOTAwMDRaMDMxMTAvBgNV BAMTKEU5QjUwMjg5NTUyMDJGMEIzRjhEOEY0MTZCOUVGM0ZCNDVBQjVGQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4Ap4Lg4ceT6fE9EHRPXfibjMZ Cad8eWoP+rnOFFlXrM4tyNDsJF5D+ItSlzrX0Vc9yMb4vmTZFRe3n4/MfFHhJF0P 5zZxIP8QEm1eZGV9IGqmBOWfBE5nHmemfKVF9JF6RVY8Zi2Q4Dtz2oJVt0S9lZM5 vVU5PzhLoCu3eGOU0kRGUcpwnaCO0zecNDerOixJwbnmlBh4grYxp2tsmIOJppfT a3vshGfuYcUQEQfZHdsmMVdDtj4Y5vsXmMLPVCHsO8+UNncrERsID3Kxz3yAgmSZ z4KpjmdnftH/Kly2mt6mfZRAIxnLOdx24oJSuHogsST551vJJJTNhdxUGxJ9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU6bUCiVUgLws/jY9Ba57z+0WrX6cwHwYDVR0j BBgwFoAUw4CkEePOFcYDNjQbtLCZSzB7kg0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWM0MDBkMS05YmJkLTRlMmItOGQ1OC02Zjc0OWRiYzM5MmQvMC9DMzgwQTQxMUUz Q0UxNUM2MDMzNjM0MUJCNEIwOTk0QjMwN0I5MjBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzM4MEE0MTFFM0NFMTVDNjAzMzYzNDFCQjRCMDk5NEIzMDdC OTIwRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1YzQwMGQxLTliYmQtNGUyYi04 ZDU4LTZmNzQ5ZGJjMzkyZC8wLzMxMzAzMzJlMzEzNDMzMmUzMjM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGePGTANBgkqhkiG 9w0BAQsFAAOCAQEAY3MQMmd2doEbq1Pv3bx/EXxJpBE5gNjYqmyyqKusyOmLBtj1 C89bz3OIluPWgBp4v1QI61j2NT+sNL4eYaRf/Kh+s0XCcYFfwVQN6aFgDelgiT5C Nr0LCLwOSLkNoXlimqr1H+lKOeLkSKukn9HGBr9z3vTzciT0zXk6uPu6CISFKSRv L3A6EwnCmQULQxCj3zWSf+cNLk347lmexfelNCP7jFTmUL+OSmN+nkb035zUt1Pv HHnEWAsI9im5OJO/4uxUQddDRVgEWklVaw4ZL8zrNOzdH2LtQ294Kso8Yw9myILF HV7l5ED9IsC4wk/dDOJghQZt0cLGqHAWsPNP+g== -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:34 2024 by rpki-client on console-ams.rpki-client.org