$ rpki-client -vvf repo-rpki.idnic.net/repo/6deef218-0d9b-4d0d-a5c5-f832b8eb5aba/0/3130332e3134322e32302e302f32342d3234203d3e20313531353734.roa File: 3130332e3134322e32302e302f32342d3234203d3e20313531353734.roa (raw, json) Hash identifier: C35SXikIhaDLGx2DtTCZTY1tvAiWcqvbFOy+lIenj/0= Subject key identifier: 4E:2B:39:F3:87:F0:51:52:39:00:26:D5:0B:2E:81:79:1A:C1:35:AC Certificate issuer: /CN=A35D0D096727FDBE2A4EED451994708ECB4A5F14 Certificate serial: 690D288315855F215F86BD50ECD7542700E1C9F5 Authority key identifier: A3:5D:0D:09:67:27:FD:BE:2A:4E:ED:45:19:94:70:8E:CB:4A:5F:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A35D0D096727FDBE2A4EED451994708ECB4A5F14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6deef218-0d9b-4d0d-a5c5-f832b8eb5aba/0/3130332e3134322e32302e302f32342d3234203d3e20313531353734.roa Signing time: Tue 22 Oct 2024 05:00:00 +0000 ROA not before: Tue 22 Oct 2024 04:55:00 +0000 ROA not after: Tue 21 Oct 2025 05:00:00 +0000 asID: 151574 IP address blocks: 103.142.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6deef218-0d9b-4d0d-a5c5-f832b8eb5aba/0/A35D0D096727FDBE2A4EED451994708ECB4A5F14.crl rsync://repo-rpki.idnic.net/repo/6deef218-0d9b-4d0d-a5c5-f832b8eb5aba/0/A35D0D096727FDBE2A4EED451994708ECB4A5F14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A35D0D096727FDBE2A4EED451994708ECB4A5F14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 18:49:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:0d:28:83:15:85:5f:21:5f:86:bd:50:ec:d7:54:27:00:e1:c9:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A35D0D096727FDBE2A4EED451994708ECB4A5F14 Validity Not Before: Oct 22 04:55:00 2024 GMT Not After : Oct 21 05:00:00 2025 GMT Subject: CN=4E2B39F387F05152390026D50B2E81791AC135AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:35:99:da:c1:f1:93:b1:1b:0a:fc:c5:de:bd: 63:07:66:b7:4f:4d:66:e7:7f:ba:e5:ce:87:cd:41: b4:b7:9c:ac:fe:90:64:69:1a:fb:9b:be:fb:b7:bb: 1b:fc:45:5f:bb:4f:f4:ed:b1:f7:3e:fd:cc:a2:a2: c3:c6:dd:80:2c:a3:cd:5f:99:3e:ff:05:f1:db:42: 00:86:f4:f0:46:4a:15:a2:64:81:bf:06:cd:fe:85: 50:cd:da:08:26:47:b6:54:63:67:5e:4e:39:96:32: 9c:98:6d:cd:60:31:dd:4d:ba:0a:12:46:52:16:47: b2:78:ee:da:c9:1a:6b:88:82:dd:7a:12:72:58:6b: cb:ca:55:d3:45:90:2e:02:03:22:e7:6b:14:8f:40: 9f:dc:ec:b6:69:38:25:70:27:4e:48:43:0d:94:ba: 16:d0:41:6e:38:a6:c1:1a:7a:ba:48:ef:94:4d:e5: 1d:67:49:d7:2e:1c:89:f1:7f:ad:eb:82:db:2f:04: 6e:6c:72:96:03:a8:69:fd:a8:fa:d1:ed:6e:fe:fc: a9:59:a4:cd:a7:3c:0c:fe:d1:14:ec:03:b8:02:05: e8:45:53:2e:b8:f6:6c:d6:c8:68:17:02:2b:e8:13: ec:6e:cc:ff:1e:32:f3:19:f0:45:cb:c7:0a:42:bf: 71:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:2B:39:F3:87:F0:51:52:39:00:26:D5:0B:2E:81:79:1A:C1:35:AC X509v3 Authority Key Identifier: keyid:A3:5D:0D:09:67:27:FD:BE:2A:4E:ED:45:19:94:70:8E:CB:4A:5F:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6deef218-0d9b-4d0d-a5c5-f832b8eb5aba/0/A35D0D096727FDBE2A4EED451994708ECB4A5F14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A35D0D096727FDBE2A4EED451994708ECB4A5F14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6deef218-0d9b-4d0d-a5c5-f832b8eb5aba/0/3130332e3134322e32302e302f32342d3234203d3e20313531353734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.20.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:52:cf:29:da:0d:a5:59:2b:16:20:65:d2:cb:f7:d9:b3:a9: 36:b9:fa:69:ea:9b:cc:cc:e7:5a:39:26:e4:44:b8:fc:7f:de: 66:ef:cd:39:fc:74:15:ff:b9:fa:28:dc:37:8a:46:75:86:27: 93:6e:16:de:af:f5:c4:c5:7c:04:58:ed:25:1c:31:16:76:69: 49:28:f0:26:78:44:9d:36:d3:04:6d:6f:9c:67:54:a3:99:9c: ee:39:02:46:7b:f6:56:50:a4:91:68:14:b7:bd:fa:dd:30:ad: 06:d8:e8:a0:d1:bc:88:88:f4:42:82:bc:8e:1e:da:cd:cc:7d: 08:b0:61:c8:4d:21:65:50:c2:5b:2a:8e:59:85:0e:7b:ac:0c: c9:c8:b2:85:4b:b2:d9:a8:00:38:77:e4:50:62:ed:3a:1a:fc: e3:69:cb:ba:d7:d1:eb:0f:5c:74:28:3f:73:cf:d0:1e:1a:8b: 1c:84:be:f3:74:14:b9:1a:21:6e:d4:5d:76:17:98:3f:c2:24: 7a:71:ea:d8:a6:df:98:1e:84:09:e7:99:6f:c8:38:02:0b:20: 82:cf:21:81:f5:01:4e:69:65:36:ce:93:93:3f:18:7b:43:05: ce:a0:ab:ca:63:09:57:b0:90:13:72:24:f4:56:fb:c6:29:5f: 40:74:88:99 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaQ0ogxWFXyFfhr1Q7NdUJwDhyfUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTM1RDBEMDk2NzI3RkRCRTJBNEVFRDQ1MTk5NDcwOEVD QjRBNUYxNDAeFw0yNDEwMjIwNDU1MDBaFw0yNTEwMjEwNTAwMDBaMDMxMTAvBgNV BAMTKDRFMkIzOUYzODdGMDUxNTIzOTAwMjZENTBCMkU4MTc5MUFDMTM1QUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5NZnawfGTsRsK/MXevWMHZrdP TWbnf7rlzofNQbS3nKz+kGRpGvubvvu3uxv8RV+7T/Ttsfc+/cyiosPG3YAso81f mT7/BfHbQgCG9PBGShWiZIG/Bs3+hVDN2ggmR7ZUY2deTjmWMpyYbc1gMd1NugoS RlIWR7J47trJGmuIgt16EnJYa8vKVdNFkC4CAyLnaxSPQJ/c7LZpOCVwJ05IQw2U uhbQQW44psEaerpI75RN5R1nSdcuHInxf63rgtsvBG5scpYDqGn9qPrR7W7+/KlZ pM2nPAz+0RTsA7gCBehFUy649mzWyGgXAivoE+xuzP8eMvMZ8EXLxwpCv3HHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUTis584fwUVI5ACbVCy6BeRrBNawwHwYDVR0j BBgwFoAUo10NCWcn/b4qTu1FGZRwjstKXxQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZGVlZjIxOC0wZDliLTRkMGQtYTVjNS1mODMyYjhlYjVhYmEvMC9BMzVEMEQwOTY3 MjdGREJFMkE0RUVENDUxOTk0NzA4RUNCNEE1RjE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTM1RDBEMDk2NzI3RkRCRTJBNEVFRDQ1MTk5NDcwOEVDQjRB NUYxNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZkZWVmMjE4LTBkOWItNGQwZC1h NWM1LWY4MzJiOGViNWFiYS8wLzMxMzAzMzJlMzEzNDMyMmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ44UMA0GCSqG SIb3DQEBCwUAA4IBAQAKUs8p2g2lWSsWIGXSy/fZs6k2ufpp6pvMzOdaOSbkRLj8 f95m7805/HQV/7n6KNw3ikZ1hieTbhber/XExXwEWO0lHDEWdmlJKPAmeESdNtME bW+cZ1SjmZzuOQJGe/ZWUKSRaBS3vfrdMK0G2Oig0byIiPRCgryOHtrNzH0IsGHI TSFlUMJbKo5ZhQ57rAzJyLKFS7LZqAA4d+RQYu06Gvzjacu619HrD1x0KD9zz9Ae GoschL7zdBS5GiFu1F12F5g/wiR6cerYpt+YHoQJ55lvyDgCCyCCzyGB9QFOaWU2 zpOTPxh7QwXOoKvKYwlXsJATciT0VvvGKV9AdIiZ -----END CERTIFICATE-----Generated at Mon Nov 25 15:26:44 2024 by rpki-client on console-fra.rpki-client.org