$ rpki-client -vvf repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/3130332e35392e34352e302f32342d3234203d3e20313338383831.roa File: 3130332e35392e34352e302f32342d3234203d3e20313338383831.roa (raw, json) Hash identifier: 8bvQvtlBe7JNMYj2xQaIWZUm48/28VwMFP7AYXq8A30= Subject key identifier: 05:40:6D:09:F8:6F:F3:E5:28:BC:49:3C:FD:C3:DB:6B:75:FA:CE:9A Certificate issuer: /CN=9A5A8760ADE68BFD3428CC06FE6DAC982728AE95 Certificate serial: 51C8DC55D7AA4B7A47DF874E0A2D0F7C8EFADA35 Authority key identifier: 9A:5A:87:60:AD:E6:8B:FD:34:28:CC:06:FE:6D:AC:98:27:28:AE:95 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/3130332e35392e34352e302f32342d3234203d3e20313338383831.roa Signing time: Tue 29 Oct 2024 10:00:01 +0000 ROA not before: Tue 29 Oct 2024 09:55:01 +0000 ROA not after: Tue 28 Oct 2025 10:00:01 +0000 asID: 138881 IP address blocks: 103.59.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.crl rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:c8:dc:55:d7:aa:4b:7a:47:df:87:4e:0a:2d:0f:7c:8e:fa:da:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A5A8760ADE68BFD3428CC06FE6DAC982728AE95 Validity Not Before: Oct 29 09:55:01 2024 GMT Not After : Oct 28 10:00:01 2025 GMT Subject: CN=05406D09F86FF3E528BC493CFDC3DB6B75FACE9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:df:bd:ff:8b:2a:93:c2:0f:43:d1:08:d0:1e: 65:30:43:fd:b5:84:a5:06:b5:4d:fb:be:b9:8c:07: cf:70:79:bf:79:78:ca:a9:33:44:53:37:1b:27:d3: 53:ab:74:e0:65:d9:75:62:e0:e8:df:8c:99:e7:ff: c4:e6:01:3f:93:93:c7:c7:52:c4:49:76:86:99:56: af:7d:34:87:7f:0e:df:9c:83:ea:58:08:e0:bf:a3: c4:1f:08:bc:b8:ba:b0:b2:94:3c:fb:1b:00:11:45: 01:40:57:78:f2:0a:c2:6d:7b:a7:d3:2b:92:fc:e6: 35:a9:10:1b:78:7f:0d:8d:d1:7f:2c:cb:fe:b1:b5: 23:ff:18:26:73:62:a6:96:28:3f:1d:8b:18:f5:36: fc:b7:54:94:b9:92:93:19:27:9d:6c:66:d5:7c:8e: 4d:4f:86:1d:0a:c8:bf:47:90:cf:d8:0e:41:61:25: d3:90:4e:23:75:98:95:b0:aa:19:43:12:9f:05:6d: 01:54:95:23:a7:d1:21:e2:3d:bf:cd:cf:59:37:bd: 63:5b:f7:f0:b7:67:da:09:5d:6c:53:eb:01:43:38: 63:d9:cc:66:ac:aa:05:36:87:3b:a5:30:24:45:b5: 09:48:1e:cf:2e:18:92:82:a8:dc:48:68:b1:e6:2d: 92:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:40:6D:09:F8:6F:F3:E5:28:BC:49:3C:FD:C3:DB:6B:75:FA:CE:9A X509v3 Authority Key Identifier: keyid:9A:5A:87:60:AD:E6:8B:FD:34:28:CC:06:FE:6D:AC:98:27:28:AE:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A5A8760ADE68BFD3428CC06FE6DAC982728AE95.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a17598e4-2064-4ecb-98f6-b259a74996a1/0/3130332e35392e34352e302f32342d3234203d3e20313338383831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.59.45.0/24 Signature Algorithm: sha256WithRSAEncryption cc:67:b9:ef:2c:16:95:bb:f4:75:7a:86:8d:74:18:55:27:dd: 24:8f:74:c3:48:98:b4:12:e5:92:3e:9e:79:f1:c2:ef:fe:0d: b1:97:cf:e1:a7:49:e9:d2:d4:e0:07:f8:d3:18:71:59:24:c3: 62:2e:dd:93:a1:6d:7d:b9:8c:65:db:69:33:8a:6a:35:46:95: b2:82:38:ae:cc:e9:3c:28:c3:f3:29:22:77:92:3a:08:85:f0: da:3e:96:e4:f0:4e:6c:e5:7b:27:93:ef:98:a7:82:31:f6:bc: f6:5d:b7:49:a5:90:72:2b:6c:db:8e:f6:2d:2a:15:95:b7:09: b8:0c:7e:67:80:86:83:dc:82:c5:04:ea:28:74:99:c8:c1:f0: c0:43:55:9c:39:3d:20:54:5c:4e:fd:db:47:cb:b1:80:f8:54: 02:67:41:78:e7:90:2e:cd:a7:1d:0f:32:be:85:d1:43:18:0b: 2a:50:bf:b9:05:49:0d:d8:7f:5d:9d:d4:6f:80:ce:72:04:c7: 6f:6a:72:f0:0b:42:44:de:00:04:ee:59:4d:24:12:df:33:75: 7f:1d:a8:27:33:5a:7a:6f:d2:3e:94:04:f5:ff:ac:ba:ea:8c: 93:92:7d:bd:c8:8e:25:b5:b6:d7:d0:2d:1a:ab:c7:17:92:5f: a2:c5:2d:27 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUcjcVdeqS3pH34dOCi0PfI762jUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1QTg3NjBBREU2OEJGRDM0MjhDQzA2RkU2REFDOTgy NzI4QUU5NTAeFw0yNDEwMjkwOTU1MDFaFw0yNTEwMjgxMDAwMDFaMDMxMTAvBgNV BAMTKDA1NDA2RDA5Rjg2RkYzRTUyOEJDNDkzQ0ZEQzNEQjZCNzVGQUNFOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs373/iyqTwg9D0QjQHmUwQ/21 hKUGtU37vrmMB89web95eMqpM0RTNxsn01OrdOBl2XVi4OjfjJnn/8TmAT+Tk8fH UsRJdoaZVq99NId/Dt+cg+pYCOC/o8QfCLy4urCylDz7GwARRQFAV3jyCsJte6fT K5L85jWpEBt4fw2N0X8sy/6xtSP/GCZzYqaWKD8dixj1Nvy3VJS5kpMZJ51sZtV8 jk1Phh0KyL9HkM/YDkFhJdOQTiN1mJWwqhlDEp8FbQFUlSOn0SHiPb/Nz1k3vWNb 9/C3Z9oJXWxT6wFDOGPZzGasqgU2hzulMCRFtQlIHs8uGJKCqNxIaLHmLZLVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUBUBtCfhv8+UovEk8/cPba3X6zpowHwYDVR0j BBgwFoAUmlqHYK3mi/00KMwG/m2smCcorpUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTc1OThlNC0yMDY0LTRlY2ItOThmNi1iMjU5YTc0OTk2YTEvMC85QTVBODc2MEFE RTY4QkZEMzQyOENDMDZGRTZEQUM5ODI3MjhBRTk1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1QTg3NjBBREU2OEJGRDM0MjhDQzA2RkU2REFDOTgyNzI4 QUU5NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExNzU5OGU0LTIwNjQtNGVjYi05 OGY2LWIyNTlhNzQ5OTZhMS8wLzMxMzAzMzJlMzUzOTJlMzQzNTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzODM4MzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGc7LTANBgkqhkiG 9w0BAQsFAAOCAQEAzGe57ywWlbv0dXqGjXQYVSfdJI90w0iYtBLlkj6eefHC7/4N sZfP4adJ6dLU4Af40xhxWSTDYi7dk6FtfbmMZdtpM4pqNUaVsoI4rszpPCjD8yki d5I6CIXw2j6W5PBObOV7J5PvmKeCMfa89l23SaWQcits2472LSoVlbcJuAx+Z4CG g9yCxQTqKHSZyMHwwENVnDk9IFRcTv3bR8uxgPhUAmdBeOeQLs2nHQ8yvoXRQxgL KlC/uQVJDdh/XZ3Ub4DOcgTHb2py8AtCRN4ABO5ZTSQS3zN1fx2oJzNaem/SPpQE 9f+suuqMk5J9vciOJbW219AtGqvHF5JfosUtJw== -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:15 2024 by rpki-client on console-ams.rpki-client.org