$ rpki-client -vvf repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/3130332e35392e34342e302f32342d3234203d3e20313338383831.roa File: 3130332e35392e34342e302f32342d3234203d3e20313338383831.roa (raw, json) Hash identifier: UR0TWMWgXqudddMKhRSP7Y5sJnog+ckXeMzXSamPQ84= Subject key identifier: 16:69:F9:72:8E:16:30:9F:D5:A5:2A:01:68:78:16:AB:C8:93:8D:1B Certificate issuer: /CN=9A5A8760ADE68BFD3428CC06FE6DAC982728AE95 Certificate serial: 5DA96906AA5EF1545092F2D0551B5FFA27370E2E Authority key identifier: 9A:5A:87:60:AD:E6:8B:FD:34:28:CC:06:FE:6D:AC:98:27:28:AE:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/3130332e35392e34342e302f32342d3234203d3e20313338383831.roa Signing time: Tue 29 Oct 2024 10:00:01 +0000 ROA not before: Tue 29 Oct 2024 09:55:01 +0000 ROA not after: Tue 28 Oct 2025 10:00:01 +0000 asID: 138881 IP address blocks: 103.59.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.crl rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:a9:69:06:aa:5e:f1:54:50:92:f2:d0:55:1b:5f:fa:27:37:0e:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A5A8760ADE68BFD3428CC06FE6DAC982728AE95 Validity Not Before: Oct 29 09:55:01 2024 GMT Not After : Oct 28 10:00:01 2025 GMT Subject: CN=1669F9728E16309FD5A52A01687816ABC8938D1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:61:7c:3f:6f:e6:ba:29:a7:46:f7:d5:91:6a: 14:f2:c6:b9:82:f2:06:ef:c3:1f:7e:e7:33:44:22: f0:45:25:97:6a:c7:93:f0:e0:31:a5:5f:1d:c1:97: 81:e1:a3:a8:a9:9e:f5:85:6a:22:2d:83:61:6c:15: 22:23:7d:c8:71:fc:d7:2d:1c:bd:6c:b4:59:f6:b1: 99:2f:d5:8a:6b:5d:39:97:1e:98:1c:87:9f:43:11: 01:d4:19:eb:e8:9d:51:71:88:bc:d1:e0:f5:5d:94: b8:41:e8:05:12:f5:b3:c9:c5:ca:5c:29:02:d2:17: 0a:fd:38:26:c8:eb:8d:2d:fe:f2:6e:9e:6c:81:79: c1:d7:1b:42:1d:08:b0:97:7c:5a:c4:2d:b9:27:08: f5:d7:a8:71:61:c7:75:48:dd:dd:4d:3f:fd:5c:06: cc:83:88:3a:a8:7d:8e:83:b0:2d:d8:37:bf:66:73: 86:0a:3d:15:9c:6c:a9:11:0e:c9:cb:16:df:8a:85: 4a:50:74:19:f3:49:8e:ab:45:d3:b6:2f:b7:24:f2: 58:1d:36:69:8b:2e:e4:dc:0e:96:51:50:4f:16:d3: a0:1e:67:e9:a4:36:49:ee:6c:ea:92:e4:58:0b:22: 9f:a3:64:37:88:ba:bd:d6:a2:94:e5:ae:90:70:2e: 45:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:69:F9:72:8E:16:30:9F:D5:A5:2A:01:68:78:16:AB:C8:93:8D:1B X509v3 Authority Key Identifier: keyid:9A:5A:87:60:AD:E6:8B:FD:34:28:CC:06:FE:6D:AC:98:27:28:AE:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/3130332e35392e34342e302f32342d3234203d3e20313338383831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.59.44.0/24 Signature Algorithm: sha256WithRSAEncryption 99:97:35:27:e5:c7:95:32:cf:4d:7f:9b:65:52:d4:49:c1:f7: b1:0a:f2:98:2a:7f:c6:96:53:65:9d:9e:0c:33:33:70:7c:0d: a9:23:aa:09:88:36:49:d7:58:fd:36:85:03:39:0e:59:e0:ce: 34:8a:95:63:f5:cf:6a:fa:d9:e7:b2:fb:c6:71:33:2b:a7:4b: f8:4d:39:2e:90:9f:8c:94:41:6c:47:38:82:2d:61:07:b8:fb: 5d:bd:8a:d2:c7:11:14:cc:1d:17:02:ea:38:2e:b1:37:16:5d: 8a:52:4a:7c:ca:ed:3d:bf:26:ae:a2:91:58:b2:aa:a6:b0:30: a7:ba:b0:4b:bc:3f:2c:f3:bd:1b:2a:00:48:54:68:ac:17:4d: 30:81:d8:d6:07:05:88:fe:bb:20:ce:1b:ef:78:18:3e:79:23: 2a:af:b1:93:91:4a:17:4f:9a:65:78:a7:ef:d4:29:c2:a9:b4: 8d:0a:ca:f4:5f:bb:49:93:66:d9:fe:7c:4f:33:7b:5b:f6:94: 69:7e:1b:fa:ba:87:df:59:d9:b3:e6:d2:30:b4:2d:ce:b2:7e: 26:6d:e4:90:2c:f2:70:f3:a3:69:ff:74:73:ef:55:b5:2a:97: 2d:b2:d4:51:19:00:b8:06:94:6e:e7:dc:54:76:5c:93:07:c5: 0f:a1:63:a1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXalpBqpe8VRQkvLQVRtf+ic3Di4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1QTg3NjBBREU2OEJGRDM0MjhDQzA2RkU2REFDOTgy NzI4QUU5NTAeFw0yNDEwMjkwOTU1MDFaFw0yNTEwMjgxMDAwMDFaMDMxMTAvBgNV BAMTKDE2NjlGOTcyOEUxNjMwOUZENUE1MkEwMTY4NzgxNkFCQzg5MzhEMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuYXw/b+a6KadG99WRahTyxrmC 8gbvwx9+5zNEIvBFJZdqx5Pw4DGlXx3Bl4Hho6ipnvWFaiItg2FsFSIjfchx/Nct HL1stFn2sZkv1YprXTmXHpgch59DEQHUGevonVFxiLzR4PVdlLhB6AUS9bPJxcpc KQLSFwr9OCbI640t/vJunmyBecHXG0IdCLCXfFrELbknCPXXqHFhx3VI3d1NP/1c BsyDiDqofY6DsC3YN79mc4YKPRWcbKkRDsnLFt+KhUpQdBnzSY6rRdO2L7ck8lgd NmmLLuTcDpZRUE8W06AeZ+mkNknubOqS5FgLIp+jZDeIur3WopTlrpBwLkWFAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUFmn5co4WMJ/VpSoBaHgWq8iTjRswHwYDVR0j BBgwFoAUmlqHYK3mi/00KMwG/m2smCcorpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTc1OThlNC0yMDY0LTRlY2ItOThmNi1iMjU5YTc0OTk2YTEvMC85QTVBODc2MEFE RTY4QkZEMzQyOENDMDZGRTZEQUM5ODI3MjhBRTk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1QTg3NjBBREU2OEJGRDM0MjhDQzA2RkU2REFDOTgyNzI4 QUU5NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExNzU5OGU0LTIwNjQtNGVjYi05 OGY2LWIyNTlhNzQ5OTZhMS8wLzMxMzAzMzJlMzUzOTJlMzQzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzODM4MzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc7LDANBgkqhkiG 9w0BAQsFAAOCAQEAmZc1J+XHlTLPTX+bZVLUScH3sQrymCp/xpZTZZ2eDDMzcHwN qSOqCYg2SddY/TaFAzkOWeDONIqVY/XPavrZ57L7xnEzK6dL+E05LpCfjJRBbEc4 gi1hB7j7Xb2K0scRFMwdFwLqOC6xNxZdilJKfMrtPb8mrqKRWLKqprAwp7qwS7w/ LPO9GyoASFRorBdNMIHY1gcFiP67IM4b73gYPnkjKq+xk5FKF0+aZXin79Qpwqm0 jQrK9F+7SZNm2f58TzN7W/aUaX4b+rqH31nZs+bSMLQtzrJ+Jm3kkCzycPOjaf90 c+9VtSqXLbLUURkAuAaUbufcVHZckwfFD6FjoQ== -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:51 2024 by rpki-client on console-fra.rpki-client.org