$ rpki-client -vvf repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e31302e302f32342d3234203d3e20313335343838.roa File: 3130332e39352e31302e302f32342d3234203d3e20313335343838.roa (raw, json) Hash identifier: GqU78ZBn6IDqfIolRJrFJRjUeRLPJ99PXTwzH52TmjQ= Subject key identifier: CD:8F:12:AA:86:02:56:7E:73:9F:46:34:E7:5D:3C:D1:97:1F:91:2C Certificate issuer: /CN=415543D423E0BD035D612DEA9BF060290E5552D2 Certificate serial: 2C2EC66D8DDE1E0DDAB319AA17C2E3ECD1A2D926 Authority key identifier: 41:55:43:D4:23:E0:BD:03:5D:61:2D:EA:9B:F0:60:29:0E:55:52:D2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/415543D423E0BD035D612DEA9BF060290E5552D2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e31302e302f32342d3234203d3e20313335343838.roa Signing time: Mon 25 Mar 2024 04:00:01 +0000 ROA not before: Mon 25 Mar 2024 03:55:01 +0000 ROA not after: Mon 24 Mar 2025 04:00:01 +0000 asID: 135488 IP address blocks: 103.95.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/415543D423E0BD035D612DEA9BF060290E5552D2.crl rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/415543D423E0BD035D612DEA9BF060290E5552D2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/415543D423E0BD035D612DEA9BF060290E5552D2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:2e:c6:6d:8d:de:1e:0d:da:b3:19:aa:17:c2:e3:ec:d1:a2:d9:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=415543D423E0BD035D612DEA9BF060290E5552D2 Validity Not Before: Mar 25 03:55:01 2024 GMT Not After : Mar 24 04:00:01 2025 GMT Subject: CN=CD8F12AA8602567E739F4634E75D3CD1971F912C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:18:70:d1:84:4c:51:e0:12:cf:ba:1d:e5:7a: dd:8e:47:81:11:6b:d0:e8:a7:81:e0:07:72:8b:91: 64:61:b7:1e:1c:89:a3:e0:18:64:fc:5c:b4:9c:0d: a0:6d:d9:37:c2:04:a7:60:88:19:8a:d7:bd:9c:f1: a9:99:c1:88:3e:43:f6:b4:38:81:ef:c8:f1:42:b9: 65:0c:f9:8e:0c:f1:a8:31:70:4b:20:55:20:bc:72: d3:ba:72:94:6a:e2:e5:74:cf:fe:71:30:b8:5d:e0: f4:35:7c:24:20:c1:ed:e4:6b:95:98:46:99:12:c2: 5e:66:4c:16:81:78:44:e0:53:04:2b:a2:aa:dc:f8: ec:e0:4b:f7:1a:a7:cf:b8:5a:1f:35:51:08:86:9d: 27:26:0c:73:64:7d:2d:e1:c4:fe:a4:32:57:46:ab: 21:ce:fb:2d:e9:aa:85:75:d9:d0:aa:d5:81:be:e6: f1:c2:f4:ba:87:a4:a3:46:e4:ef:1c:08:ca:28:c6: 4d:d2:7c:3a:4b:5f:67:bc:db:ed:08:23:05:a7:97: fb:05:9e:4b:38:97:f8:30:a0:7a:eb:0c:ea:a5:79: 64:f9:38:22:25:ec:5a:f7:9a:c4:3e:83:6b:3d:fe: 29:d8:89:aa:af:bf:a8:80:cc:46:b9:de:96:10:2a: 45:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:8F:12:AA:86:02:56:7E:73:9F:46:34:E7:5D:3C:D1:97:1F:91:2C X509v3 Authority Key Identifier: keyid:41:55:43:D4:23:E0:BD:03:5D:61:2D:EA:9B:F0:60:29:0E:55:52:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/415543D423E0BD035D612DEA9BF060290E5552D2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/415543D423E0BD035D612DEA9BF060290E5552D2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e31302e302f32342d3234203d3e20313335343838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.95.10.0/24 Signature Algorithm: sha256WithRSAEncryption a2:80:12:27:d8:49:30:b7:72:ca:d1:a8:e8:f8:78:c0:84:97: bb:d3:65:81:01:13:01:8b:7c:34:a6:03:01:0b:33:f1:e8:0c: 4b:97:ec:ce:a1:d7:53:84:58:58:bb:1c:d5:6f:31:30:18:d8: 83:18:ac:b9:13:3e:b5:64:ac:cf:67:a1:13:dc:fb:ac:a5:f9: 4f:0c:77:f0:8b:02:2a:f7:1a:c0:83:f8:17:af:d6:c5:02:5a: 1b:a0:56:e0:b8:81:cb:8b:2f:82:2f:d1:fe:c2:7f:08:bc:94: 2d:b5:d4:57:30:bd:d7:e4:d4:7d:26:37:9a:21:10:52:ee:38: d7:0c:dc:22:6b:a6:7f:68:1a:8f:67:e2:e8:9c:c1:04:0b:e5: 20:94:5f:58:14:32:8c:f6:61:39:da:33:34:8a:7a:b3:49:f1: 51:76:af:63:1f:18:5a:d1:de:4a:24:8a:6a:2e:15:5a:27:14: 00:7c:fe:f4:c1:b8:dd:15:4d:8f:9a:fc:80:92:b6:c1:9e:ba: 6c:26:aa:ba:5b:72:24:1b:28:ae:91:67:6d:e5:ce:db:76:0e: b8:25:b8:0a:79:de:65:70:22:64:e3:c7:42:79:55:60:c3:48: 4a:f6:26:9c:25:f1:9d:b1:2e:99:97:35:19:cd:9f:b1:67:61: 99:f0:9a:05 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULC7GbY3eHg3asxmqF8Lj7NGi2SYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDE1NTQzRDQyM0UwQkQwMzVENjEyREVBOUJGMDYwMjkw RTU1NTJEMjAeFw0yNDAzMjUwMzU1MDFaFw0yNTAzMjQwNDAwMDFaMDMxMTAvBgNV BAMTKENEOEYxMkFBODYwMjU2N0U3MzlGNDYzNEU3NUQzQ0QxOTcxRjkxMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuGHDRhExR4BLPuh3let2OR4ER a9Dop4HgB3KLkWRhtx4ciaPgGGT8XLScDaBt2TfCBKdgiBmK172c8amZwYg+Q/a0 OIHvyPFCuWUM+Y4M8agxcEsgVSC8ctO6cpRq4uV0z/5xMLhd4PQ1fCQgwe3ka5WY RpkSwl5mTBaBeETgUwQroqrc+OzgS/cap8+4Wh81UQiGnScmDHNkfS3hxP6kMldG qyHO+y3pqoV12dCq1YG+5vHC9LqHpKNG5O8cCMooxk3SfDpLX2e82+0IIwWnl/sF nks4l/gwoHrrDOqleWT5OCIl7Fr3msQ+g2s9/inYiaqvv6iAzEa53pYQKkWbAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUzY8SqoYCVn5zn0Y051080ZcfkSwwHwYDVR0j BBgwFoAUQVVD1CPgvQNdYS3qm/BgKQ5VUtIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MzY0NjVlYy05MTYwLTQ1OWItOGQxMS05NDhmYzI2ZGExYzAvMC80MTU1NDNENDIz RTBCRDAzNUQ2MTJERUE5QkYwNjAyOTBFNTU1MkQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDE1NTQzRDQyM0UwQkQwMzVENjEyREVBOUJGMDYwMjkwRTU1 NTJEMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzNjQ2NWVjLTkxNjAtNDU5Yi04 ZDExLTk0OGZjMjZkYTFjMC8wLzMxMzAzMzJlMzkzNTJlMzEzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzNTM0MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdfCjANBgkqhkiG 9w0BAQsFAAOCAQEAooASJ9hJMLdyytGo6Ph4wISXu9NlgQETAYt8NKYDAQsz8egM S5fszqHXU4RYWLsc1W8xMBjYgxisuRM+tWSsz2ehE9z7rKX5Twx38IsCKvcawIP4 F6/WxQJaG6BW4LiBy4svgi/R/sJ/CLyULbXUVzC91+TUfSY3miEQUu441wzcImum f2gaj2fi6JzBBAvlIJRfWBQyjPZhOdozNIp6s0nxUXavYx8YWtHeSiSKai4VWicU AHz+9MG43RVNj5r8gJK2wZ66bCaqultyJBsorpFnbeXO23YOuCW4CnneZXAiZOPH QnlVYMNISvYmnCXxnbEumZc1Gc2fsWdhmfCaBQ== -----END CERTIFICATE-----Generated at Mon Nov 25 04:42:07 2024 by rpki-client on console-ams.rpki-client.org