$ rpki-client -vvf repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/3130332e36312e3233342e302f32342d3234203d3e20313530353130.roa File: 3130332e36312e3233342e302f32342d3234203d3e20313530353130.roa (raw, json) Hash identifier: PuGqfHcydQuqoCONGXOct2VXtKwTg12TX+qnTuGnidA= Subject key identifier: 38:43:D9:45:43:CA:3B:C4:F7:6F:E7:58:44:42:C0:62:4E:B4:8D:F0 Certificate issuer: /CN=4F022459BA46CF30700E070671C752B44729E249 Certificate serial: 44ECCA5AB5A2A1703813ECA6E3966E4B1891CDE6 Authority key identifier: 4F:02:24:59:BA:46:CF:30:70:0E:07:06:71:C7:52:B4:47:29:E2:49 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F022459BA46CF30700E070671C752B44729E249.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/3130332e36312e3233342e302f32342d3234203d3e20313530353130.roa Signing time: Mon 01 Jan 2024 09:00:38 +0000 ROA not before: Mon 01 Jan 2024 08:55:38 +0000 ROA not after: Mon 30 Dec 2024 09:00:38 +0000 asID: 150510 IP address blocks: 103.61.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/4F022459BA46CF30700E070671C752B44729E249.crl rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/4F022459BA46CF30700E070671C752B44729E249.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F022459BA46CF30700E070671C752B44729E249.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:07:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:ec:ca:5a:b5:a2:a1:70:38:13:ec:a6:e3:96:6e:4b:18:91:cd:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F022459BA46CF30700E070671C752B44729E249 Validity Not Before: Jan 1 08:55:38 2024 GMT Not After : Dec 30 09:00:38 2024 GMT Subject: CN=3843D94543CA3BC4F76FE7584442C0624EB48DF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:3c:d2:aa:20:e3:2b:a6:3f:15:50:dc:96:c4: 4f:7a:fe:9e:91:bc:ba:2b:3c:64:56:00:f1:68:d0: 9e:a5:44:d7:10:b9:d2:c5:7e:c0:ca:b4:67:ed:de: 32:a2:0c:b4:8d:e9:b4:89:04:18:16:78:36:1a:f6: ff:00:e2:14:2b:16:da:74:1a:d5:8a:98:d3:5c:e3: 6e:51:5e:16:05:ee:43:a3:99:a8:4c:d4:8d:37:c0: 58:6b:6a:31:96:e6:94:03:d3:33:2d:f5:8d:8b:34: 1e:49:89:e7:68:80:71:5d:85:1a:1f:b0:84:9e:83: 81:c8:b6:df:99:ce:2b:c4:86:2e:a9:6d:e7:22:bb: c6:6c:2f:6a:6f:bd:00:e8:9a:29:0d:e9:62:e2:1a: f0:57:77:06:70:78:3b:22:58:fe:0c:a7:1c:4f:fb: 87:e4:c6:44:37:8a:94:61:03:f9:9d:b2:be:b2:5b: 40:9b:72:da:65:b9:68:fd:b4:c7:e0:49:a6:4a:6b: 5c:47:93:bd:c9:92:e0:c8:64:a6:c1:6d:ac:5b:fb: 72:3f:b2:7b:5f:2c:85:06:b2:1b:ba:66:45:0a:05: bb:34:a9:4e:b6:89:ae:b4:1d:6c:c1:3b:00:7d:d5: d5:66:44:64:bc:85:2c:6f:5b:03:2d:22:34:d1:32: 82:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:43:D9:45:43:CA:3B:C4:F7:6F:E7:58:44:42:C0:62:4E:B4:8D:F0 X509v3 Authority Key Identifier: keyid:4F:02:24:59:BA:46:CF:30:70:0E:07:06:71:C7:52:B4:47:29:E2:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/4F022459BA46CF30700E070671C752B44729E249.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F022459BA46CF30700E070671C752B44729E249.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9a2bfe9a-3823-44e9-97c0-2191a56bafd3/0/3130332e36312e3233342e302f32342d3234203d3e20313530353130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.61.234.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:f3:5a:59:2d:2d:63:4a:1d:d9:91:e0:4e:da:f5:7c:55:63: 24:db:5a:09:38:83:d5:95:68:af:23:5c:e2:94:35:73:c4:5f: b3:ac:90:ba:a5:28:9c:5e:88:13:fd:8a:f1:f3:a4:78:4a:c0: c6:cf:41:20:57:37:a0:9d:ce:f9:a1:0c:77:6b:68:3c:34:54: 98:bc:cc:bc:3a:30:e3:9b:96:00:24:bc:6a:3a:74:e1:18:f5: f8:25:44:fc:c6:3b:04:58:91:76:0d:bf:10:8c:f6:18:23:fb: 68:06:9c:62:f8:e6:f8:67:ae:91:a1:77:d7:06:66:a6:76:c2: 35:80:fc:d4:22:46:4e:6a:5f:f1:ce:1a:a8:05:94:3f:32:96: 9d:70:9f:07:f2:81:66:2e:a5:bb:48:9a:2a:09:c5:55:df:ec: 48:9c:ec:4e:0d:a7:12:66:2f:44:04:5d:d3:b1:05:03:34:9b: f2:7f:d0:fe:f7:cf:50:a1:f0:5b:35:54:61:21:c8:37:9e:d0: d9:59:9e:2d:42:a1:bb:35:a7:ab:c6:8e:3b:ad:95:a6:00:20: 7b:c4:7a:fd:0e:b0:85:09:0e:c7:95:bc:9c:22:15:71:5f:d8: e4:bc:fa:e1:c1:68:ec:d5:ae:1b:3d:d3:c4:6f:64:00:69:8c: b3:84:20:12 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUROzKWrWioXA4E+ym45ZuSxiRzeYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEYwMjI0NTlCQTQ2Q0YzMDcwMEUwNzA2NzFDNzUyQjQ0 NzI5RTI0OTAeFw0yNDAxMDEwODU1MzhaFw0yNDEyMzAwOTAwMzhaMDMxMTAvBgNV BAMTKDM4NDNEOTQ1NDNDQTNCQzRGNzZGRTc1ODQ0NDJDMDYyNEVCNDhERjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClPNKqIOMrpj8VUNyWxE96/p6R vLorPGRWAPFo0J6lRNcQudLFfsDKtGft3jKiDLSN6bSJBBgWeDYa9v8A4hQrFtp0 GtWKmNNc425RXhYF7kOjmahM1I03wFhrajGW5pQD0zMt9Y2LNB5JiedogHFdhRof sISeg4HItt+ZzivEhi6pbeciu8ZsL2pvvQDomikN6WLiGvBXdwZweDsiWP4MpxxP +4fkxkQ3ipRhA/mdsr6yW0CbctpluWj9tMfgSaZKa1xHk73JkuDIZKbBbaxb+3I/ sntfLIUGshu6ZkUKBbs0qU62ia60HWzBOwB91dVmRGS8hSxvWwMtIjTRMoLdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOEPZRUPKO8T3b+dYRELAYk60jfAwHwYDVR0j BBgwFoAUTwIkWbpGzzBwDgcGccdStEcp4kkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YTJiZmU5YS0zODIzLTQ0ZTktOTdjMC0yMTkxYTU2YmFmZDMvMC80RjAyMjQ1OUJB NDZDRjMwNzAwRTA3MDY3MUM3NTJCNDQ3MjlFMjQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEYwMjI0NTlCQTQ2Q0YzMDcwMEUwNzA2NzFDNzUyQjQ0NzI5 RTI0OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhMmJmZTlhLTM4MjMtNDRlOS05 N2MwLTIxOTFhNTZiYWZkMy8wLzMxMzAzMzJlMzYzMTJlMzIzMzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzUzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZz3qMA0GCSqG SIb3DQEBCwUAA4IBAQB/81pZLS1jSh3ZkeBO2vV8VWMk21oJOIPVlWivI1zilDVz xF+zrJC6pSicXogT/Yrx86R4SsDGz0EgVzegnc75oQx3a2g8NFSYvMy8OjDjm5YA JLxqOnThGPX4JUT8xjsEWJF2Db8QjPYYI/toBpxi+Ob4Z66RoXfXBmamdsI1gPzU IkZOal/xzhqoBZQ/MpadcJ8H8oFmLqW7SJoqCcVV3+xInOxODacSZi9EBF3TsQUD NJvyf9D+989QofBbNVRhIcg3ntDZWZ4tQqG7Naerxo47rZWmACB7xHr9DrCFCQ7H lbycIhVxX9jkvPrhwWjs1a4bPdPEb2QAaYyzhCAS -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:21 2024 by rpki-client on console-fra.rpki-client.org