$ rpki-client -vvf repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e342e302f32342d3234203d3e20313339343034.roa File: 3130332e3134332e342e302f32342d3234203d3e20313339343034.roa (raw, json) Hash identifier: wBuDQDFXKY9G8FF8L1EDMdPf10b4t48te0hIV48CjDg= Subject key identifier: 3F:DC:01:D3:D4:D6:0B:14:96:B2:5C:98:AC:C3:5E:FB:6F:9B:AF:82 Certificate issuer: /CN=03F45A130990D1072FE172E1EF64AAFAEC347834 Certificate serial: 71C3BB187844198D91497BCA5365D755C167C21D Authority key identifier: 03:F4:5A:13:09:90:D1:07:2F:E1:72:E1:EF:64:AA:FA:EC:34:78:34 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e342e302f32342d3234203d3e20313339343034.roa Signing time: Mon 23 Sep 2024 09:01:40 +0000 ROA not before: Mon 23 Sep 2024 08:56:40 +0000 ROA not after: Mon 22 Sep 2025 09:01:40 +0000 asID: 139404 IP address blocks: 103.143.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.crl rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 09:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:c3:bb:18:78:44:19:8d:91:49:7b:ca:53:65:d7:55:c1:67:c2:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03F45A130990D1072FE172E1EF64AAFAEC347834 Validity Not Before: Sep 23 08:56:40 2024 GMT Not After : Sep 22 09:01:40 2025 GMT Subject: CN=3FDC01D3D4D60B1496B25C98ACC35EFB6F9BAF82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f0:e0:01:e3:09:0a:6b:7b:4b:fa:9a:c2:ed: 5e:e6:f5:b1:b9:fb:b0:a4:dd:5d:5e:a2:8f:c0:03: 19:40:63:e0:7c:e0:3e:e6:27:97:85:e9:4c:c2:90: c0:36:9c:59:98:13:8d:0f:4c:21:21:aa:16:be:30: 84:72:06:4b:ba:ab:c7:a1:52:58:9f:20:f3:c5:e3: ea:75:92:ba:34:be:3f:6a:58:47:6b:43:b3:e8:61: c6:4c:8b:69:1a:2d:ff:d1:71:47:0c:78:a4:53:5d: d0:91:95:a2:ec:f6:db:44:8c:bb:90:f4:1b:7f:39: cd:3b:9b:9f:11:f6:c1:68:ac:06:57:80:72:2c:1f: ed:a7:b2:5a:35:3b:04:73:32:97:22:26:e2:36:a8: 32:e5:d9:ff:fb:2a:c8:fd:a1:a7:29:e9:43:06:9e: 7f:0e:e6:13:fc:ba:fe:0c:c4:48:49:88:d8:3d:27: 70:5a:11:0f:b8:9d:5f:71:75:47:d3:51:c3:d8:30: b2:ad:75:0e:15:ad:98:00:d3:f9:11:35:18:fe:28: 2d:a9:31:a6:5e:fe:87:ce:3b:f0:c5:11:93:24:d2: 63:87:55:4e:a6:37:13:d2:88:52:7f:4b:a9:bc:86: d7:27:62:ab:e1:38:aa:fb:4e:c2:eb:a0:73:3f:26: 48:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:DC:01:D3:D4:D6:0B:14:96:B2:5C:98:AC:C3:5E:FB:6F:9B:AF:82 X509v3 Authority Key Identifier: keyid:03:F4:5A:13:09:90:D1:07:2F:E1:72:E1:EF:64:AA:FA:EC:34:78:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/03F45A130990D1072FE172E1EF64AAFAEC347834.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03F45A130990D1072FE172E1EF64AAFAEC347834.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/3130332e3134332e342e302f32342d3234203d3e20313339343034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.4.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:48:4c:e8:a0:3d:14:0c:48:73:bb:da:c9:a8:33:1f:f1:82: ed:3e:b4:32:6e:05:d5:3f:45:76:3c:13:06:14:95:f9:ba:ed: 3a:6c:4f:38:b3:5a:f4:68:0c:52:36:c4:32:62:66:43:66:fc: 0c:f9:03:e2:bc:5e:5f:3a:d9:ac:9f:11:32:8b:fd:6a:22:29: 2c:89:66:9a:d8:ba:5f:31:b6:f2:06:f8:17:13:8c:a7:04:0c: 41:39:d0:6c:ab:5f:6e:fc:1b:55:8c:55:6f:ef:82:ff:85:28: 61:f1:d0:a6:ae:ae:0b:38:25:16:b5:db:64:6e:04:a6:60:71: 2a:dc:2d:92:43:32:0c:12:0a:69:aa:ba:aa:e1:1c:85:40:5a: 20:16:26:65:92:16:5a:f5:d6:f0:d0:5b:f0:f5:2b:46:f4:b2: a0:ad:46:d0:7a:ab:29:69:1e:a2:57:fe:5c:fe:39:c5:73:98: 73:fe:52:32:42:c3:46:a2:8f:8f:65:ba:f3:1a:a4:65:a4:be: 55:5d:c5:ee:5f:82:23:0a:d3:65:6e:bd:bc:d8:de:ca:a1:c8: d7:4f:95:98:f4:95:8d:aa:cd:5d:d9:2e:57:42:41:7f:9b:9e: 29:3c:94:b2:3f:18:cd:2c:4d:f6:f9:db:64:1b:2b:80:88:6a: 9f:20:61:d2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUccO7GHhEGY2RSXvKU2XXVcFnwh0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDNGNDVBMTMwOTkwRDEwNzJGRTE3MkUxRUY2NEFBRkFF QzM0NzgzNDAeFw0yNDA5MjMwODU2NDBaFw0yNTA5MjIwOTAxNDBaMDMxMTAvBgNV BAMTKDNGREMwMUQzRDRENjBCMTQ5NkIyNUM5OEFDQzM1RUZCNkY5QkFGODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDk8OAB4wkKa3tL+prC7V7m9bG5 +7Ck3V1eoo/AAxlAY+B84D7mJ5eF6UzCkMA2nFmYE40PTCEhqha+MIRyBku6q8eh UlifIPPF4+p1kro0vj9qWEdrQ7PoYcZMi2kaLf/RcUcMeKRTXdCRlaLs9ttEjLuQ 9Bt/Oc07m58R9sForAZXgHIsH+2nslo1OwRzMpciJuI2qDLl2f/7Ksj9oacp6UMG nn8O5hP8uv4MxEhJiNg9J3BaEQ+4nV9xdUfTUcPYMLKtdQ4VrZgA0/kRNRj+KC2p MaZe/ofOO/DFEZMk0mOHVU6mNxPSiFJ/S6m8htcnYqvhOKr7TsLroHM/JkjhAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUP9wB09TWCxSWslyYrMNe+2+br4IwHwYDVR0j BBgwFoAUA/RaEwmQ0Qcv4XLh72Sq+uw0eDQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OTk4ZDZlZS02ZmQ3LTRlMmQtYWU0MS02OTM5ZmRiMTUzZWUvMC8wM0Y0NUExMzA5 OTBEMTA3MkZFMTcyRTFFRjY0QUFGQUVDMzQ3ODM0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDNGNDVBMTMwOTkwRDEwNzJGRTE3MkUxRUY2NEFBRkFFQzM0 NzgzNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5OThkNmVlLTZmZDctNGUyZC1h ZTQxLTY5MzlmZGIxNTNlZS8wLzMxMzAzMzJlMzEzNDMzMmUzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzOTM0MzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGePBDANBgkqhkiG 9w0BAQsFAAOCAQEAbUhM6KA9FAxIc7vayagzH/GC7T60Mm4F1T9FdjwTBhSV+brt OmxPOLNa9GgMUjbEMmJmQ2b8DPkD4rxeXzrZrJ8RMov9aiIpLIlmmti6XzG28gb4 FxOMpwQMQTnQbKtfbvwbVYxVb++C/4UoYfHQpq6uCzglFrXbZG4EpmBxKtwtkkMy DBIKaaq6quEchUBaIBYmZZIWWvXW8NBb8PUrRvSyoK1G0HqrKWkeolf+XP45xXOY c/5SMkLDRqKPj2W68xqkZaS+VV3F7l+CIwrTZW69vNjeyqHI10+VmPSVjarNXdku V0JBf5ueKTyUsj8YzSxN9vnbZBsrgIhqnyBh0g== -----END CERTIFICATE-----Generated at Fri Feb 21 11:02:48 2025 by rpki-client