$ rpki-client -vvf repo-rpki.idnic.net/repo/9d2fa51e-3fd4-4520-b375-09eef5e0e510/0/3130332e3234342e3130352e302f32342d3234203d3e20313531353534.roa File: 3130332e3234342e3130352e302f32342d3234203d3e20313531353534.roa (raw, json) Hash identifier: A1hnHJuSS/CjegeZCbVDBe+9fc3PzAjrhUV0+3BfwCE= Subject key identifier: CB:48:48:40:22:2C:BD:4B:A0:90:5A:5F:41:5A:97:E5:65:E9:36:5E Certificate issuer: /CN=4CDDA0597DCBCA2C92A176D00847EB50F6122354 Certificate serial: 62796F515B97F49F2C02834CABB46CB810AFFDD9 Authority key identifier: 4C:DD:A0:59:7D:CB:CA:2C:92:A1:76:D0:08:47:EB:50:F6:12:23:54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4CDDA0597DCBCA2C92A176D00847EB50F6122354.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9d2fa51e-3fd4-4520-b375-09eef5e0e510/0/3130332e3234342e3130352e302f32342d3234203d3e20313531353534.roa Signing time: Wed 20 Nov 2024 04:55:56 +0000 ROA not before: Wed 20 Nov 2024 04:50:56 +0000 ROA not after: Wed 19 Nov 2025 04:55:56 +0000 asID: 151554 IP address blocks: 103.244.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9d2fa51e-3fd4-4520-b375-09eef5e0e510/0/4CDDA0597DCBCA2C92A176D00847EB50F6122354.crl rsync://repo-rpki.idnic.net/repo/9d2fa51e-3fd4-4520-b375-09eef5e0e510/0/4CDDA0597DCBCA2C92A176D00847EB50F6122354.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4CDDA0597DCBCA2C92A176D00847EB50F6122354.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 22:07:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:79:6f:51:5b:97:f4:9f:2c:02:83:4c:ab:b4:6c:b8:10:af:fd:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4CDDA0597DCBCA2C92A176D00847EB50F6122354 Validity Not Before: Nov 20 04:50:56 2024 GMT Not After : Nov 19 04:55:56 2025 GMT Subject: CN=CB484840222CBD4BA0905A5F415A97E565E9365E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:89:8c:ea:48:d1:dd:27:78:ca:b2:c7:38:69: cd:20:54:52:59:e4:cd:18:5e:e7:e8:70:11:e7:85: 14:50:50:b4:74:c1:e5:ea:a2:ba:02:95:7b:26:4d: 8d:1f:9f:c0:c2:ce:c5:76:b4:27:c0:c5:87:19:28: 7e:73:a3:79:60:2c:86:3d:07:b9:74:8a:92:b8:b5: 67:ea:a1:e5:9a:32:59:8d:37:c3:9d:76:af:76:2f: d9:5b:b1:43:62:cf:bc:e3:c0:98:94:68:03:75:11: 82:38:d6:a1:fc:3a:ec:81:37:85:55:bb:92:f6:57: 4f:ff:cf:71:1e:57:a3:f5:73:42:0f:09:29:10:6b: 4f:f5:de:05:b8:6d:30:15:bf:bb:89:d7:83:5b:d5: 39:62:10:18:13:42:b2:66:d9:de:17:53:10:bc:11: 03:8c:69:60:14:a4:51:eb:53:0e:82:f5:31:68:17: 5c:d2:e5:d3:e6:eb:35:ac:a8:28:dd:f8:11:53:9f: 2a:8d:de:d2:f9:c7:1c:31:c9:2f:75:c2:ff:44:4d: fd:30:18:7c:d5:45:02:f3:bb:25:c5:ec:6d:e1:a2: ff:d8:e7:e7:3a:ab:2b:04:e0:5f:90:f1:06:85:01: c6:19:59:f0:7b:a7:e6:b9:13:1e:3b:2f:14:d9:a8: f7:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:48:48:40:22:2C:BD:4B:A0:90:5A:5F:41:5A:97:E5:65:E9:36:5E X509v3 Authority Key Identifier: keyid:4C:DD:A0:59:7D:CB:CA:2C:92:A1:76:D0:08:47:EB:50:F6:12:23:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9d2fa51e-3fd4-4520-b375-09eef5e0e510/0/4CDDA0597DCBCA2C92A176D00847EB50F6122354.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4CDDA0597DCBCA2C92A176D00847EB50F6122354.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9d2fa51e-3fd4-4520-b375-09eef5e0e510/0/3130332e3234342e3130352e302f32342d3234203d3e20313531353534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.244.105.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:fd:c0:4f:bb:76:ac:34:76:0b:95:76:d7:d3:3a:c3:a4:c4: 19:9c:da:b9:8d:6b:ae:33:94:93:27:d5:88:06:48:64:1d:2f: d5:d5:e4:43:23:1b:4d:2e:0e:c6:75:4f:dd:12:6e:ac:e5:93: df:b5:3d:cc:51:ad:c9:95:80:d7:08:b0:6b:4c:5c:38:2b:d0: ce:f2:13:85:ff:ee:e7:a8:0c:e6:3d:95:e1:17:7d:a4:ca:93: f4:c8:7e:cd:7e:1d:41:bb:04:2d:46:5c:9c:93:da:f2:8b:1b: 17:89:07:14:73:71:0d:c6:87:78:06:96:23:db:9c:3c:87:93: 28:82:ec:e1:f4:6f:ba:91:be:27:6e:1c:d1:57:43:0c:57:e3: e8:bf:15:b5:b1:cf:a5:fe:b0:df:2c:76:c1:bc:14:9f:22:32: f7:8f:37:6f:be:ca:5a:cf:a4:a0:b6:1f:e9:ac:29:43:55:4f: aa:02:27:83:9a:b5:a4:a5:16:1f:6d:8e:58:ce:38:a3:35:d6: 45:77:6c:ad:5e:6d:7b:8c:ec:e4:4e:2e:0c:84:87:a5:56:9e: 08:5c:9a:e4:01:9f:41:dc:e5:8e:74:b5:a8:83:d8:0c:de:b0: 95:d5:08:f9:2b:eb:a8:fc:9a:0d:9f:c1:1c:c4:47:7a:da:04: ae:89:b1:f2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYnlvUVuX9J8sAoNMq7RsuBCv/dkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNENEREEwNTk3RENCQ0EyQzkyQTE3NkQwMDg0N0VCNTBG NjEyMjM1NDAeFw0yNDExMjAwNDUwNTZaFw0yNTExMTkwNDU1NTZaMDMxMTAvBgNV BAMTKENCNDg0ODQwMjIyQ0JENEJBMDkwNUE1RjQxNUE5N0U1NjVFOTM2NUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+iYzqSNHdJ3jKssc4ac0gVFJZ 5M0YXufocBHnhRRQULR0weXqoroClXsmTY0fn8DCzsV2tCfAxYcZKH5zo3lgLIY9 B7l0ipK4tWfqoeWaMlmNN8Oddq92L9lbsUNiz7zjwJiUaAN1EYI41qH8OuyBN4VV u5L2V0//z3EeV6P1c0IPCSkQa0/13gW4bTAVv7uJ14Nb1TliEBgTQrJm2d4XUxC8 EQOMaWAUpFHrUw6C9TFoF1zS5dPm6zWsqCjd+BFTnyqN3tL5xxwxyS91wv9ETf0w GHzVRQLzuyXF7G3hov/Y5+c6qysE4F+Q8QaFAcYZWfB7p+a5Ex47LxTZqPdXAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUy0hIQCIsvUugkFpfQVqX5WXpNl4wHwYDVR0j BBgwFoAUTN2gWX3LyiySoXbQCEfrUPYSI1QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZDJmYTUxZS0zZmQ0LTQ1MjAtYjM3NS0wOWVlZjVlMGU1MTAvMC80Q0REQTA1OTdE Q0JDQTJDOTJBMTc2RDAwODQ3RUI1MEY2MTIyMzU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNENEREEwNTk3RENCQ0EyQzkyQTE3NkQwMDg0N0VCNTBGNjEy MjM1NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkMmZhNTFlLTNmZDQtNDUyMC1i Mzc1LTA5ZWVmNWUwZTUxMC8wLzMxMzAzMzJlMzIzNDM0MmUzMTMwMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzEzNTM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn9GkwDQYJ KoZIhvcNAQELBQADggEBAFz9wE+7dqw0dguVdtfTOsOkxBmc2rmNa64zlJMn1YgG SGQdL9XV5EMjG00uDsZ1T90Sbqzlk9+1PcxRrcmVgNcIsGtMXDgr0M7yE4X/7ueo DOY9leEXfaTKk/TIfs1+HUG7BC1GXJyT2vKLGxeJBxRzcQ3Gh3gGliPbnDyHkyiC 7OH0b7qRviduHNFXQwxX4+i/FbWxz6X+sN8sdsG8FJ8iMvePN2++ylrPpKC2H+ms KUNVT6oCJ4OataSlFh9tjljOOKM11kV3bK1ebXuM7OROLgyEh6VWnghcmuQBn0Hc 5Y50taiD2AzesJXVCPkr66j8mg2fwRzER3raBK6JsfI= -----END CERTIFICATE-----Generated at Fri Nov 29 08:51:54 2024 by rpki-client on console-fra.rpki-client.org