$ rpki-client -vvf repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e382e302f32342d3234203d3e20313335343838.roa File: 3130332e39352e382e302f32342d3234203d3e20313335343838.roa (raw, json) Hash identifier: OeVXsM915WjoEZGSN7OOOJLpCroE6plvIO8TV00pAxA= Subject key identifier: 38:9F:A7:54:5C:1C:4A:B2:EC:D6:34:AA:B3:ED:1D:E4:90:83:57:17 Certificate issuer: /CN=415543D423E0BD035D612DEA9BF060290E5552D2 Certificate serial: 4710EE0D0E28BE9646E66B819AEFC6FCDF9F60A7 Authority key identifier: 41:55:43:D4:23:E0:BD:03:5D:61:2D:EA:9B:F0:60:29:0E:55:52:D2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/415543D423E0BD035D612DEA9BF060290E5552D2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e382e302f32342d3234203d3e20313335343838.roa Signing time: Mon 25 Mar 2024 04:00:00 +0000 ROA not before: Mon 25 Mar 2024 03:55:00 +0000 ROA not after: Mon 24 Mar 2025 04:00:00 +0000 asID: 135488 IP address blocks: 103.95.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/415543D423E0BD035D612DEA9BF060290E5552D2.crl rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/415543D423E0BD035D612DEA9BF060290E5552D2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/415543D423E0BD035D612DEA9BF060290E5552D2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:10:ee:0d:0e:28:be:96:46:e6:6b:81:9a:ef:c6:fc:df:9f:60:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=415543D423E0BD035D612DEA9BF060290E5552D2 Validity Not Before: Mar 25 03:55:00 2024 GMT Not After : Mar 24 04:00:00 2025 GMT Subject: CN=389FA7545C1C4AB2ECD634AAB3ED1DE490835717 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9f:02:da:a1:2b:69:19:46:41:6b:7e:9d:68: 88:5b:cc:20:55:33:53:88:3c:c3:45:56:bb:ff:d0: b5:83:99:3e:30:eb:7f:48:6d:0c:26:48:f4:26:50: 82:21:44:73:8b:9e:21:09:fd:8c:34:74:ba:4d:68: 1d:91:75:6f:6d:93:74:e5:92:76:bb:0f:ca:67:2d: a3:e7:91:9b:05:96:fe:d7:c4:59:19:7d:ab:4e:8f: 27:cb:e6:3f:67:a7:b8:dd:18:69:25:2a:40:63:be: 0e:21:3a:d0:12:86:d8:52:a1:67:33:40:a7:04:18: 1d:c7:99:a3:f4:df:8a:d2:ba:f9:50:86:b1:46:49: 8c:82:3b:3a:75:82:5f:51:22:54:33:9c:9f:c1:7b: fa:73:f6:96:9c:2d:53:a2:c2:7a:08:ed:00:34:fa: 27:3d:92:fc:c8:55:51:da:d7:d3:9b:03:10:a4:84: 49:05:f8:fd:f7:e5:42:ad:cb:b8:37:11:d1:0b:88: ec:88:84:1d:af:38:f6:f9:2a:d3:fc:21:40:3e:8f: ee:9b:12:9a:68:43:86:3c:d1:9c:5f:9f:62:29:f5: 6a:c8:ae:f2:2e:2c:ee:af:bb:92:5d:1c:99:7d:0e: b8:aa:5c:f1:3a:fc:52:1f:d4:f6:d9:fc:0e:1b:90: 0c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:9F:A7:54:5C:1C:4A:B2:EC:D6:34:AA:B3:ED:1D:E4:90:83:57:17 X509v3 Authority Key Identifier: keyid:41:55:43:D4:23:E0:BD:03:5D:61:2D:EA:9B:F0:60:29:0E:55:52:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/415543D423E0BD035D612DEA9BF060290E5552D2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/415543D423E0BD035D612DEA9BF060290E5552D2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/3130332e39352e382e302f32342d3234203d3e20313335343838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.95.8.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:12:83:52:06:41:53:31:5a:18:71:77:e6:06:0a:91:bf:2f: 7f:38:54:a3:60:b1:bf:3d:8f:9e:5c:fb:43:8b:93:94:67:1b: 08:c3:2f:39:f4:e4:77:15:ab:36:54:13:18:44:de:b9:bf:8d: d8:a5:4f:23:78:c5:a1:b1:6f:69:94:15:21:db:a8:fd:5d:2c: f5:16:3a:fe:63:ff:47:fe:d5:99:d4:d2:12:d0:6a:2c:3b:fa: ad:71:e9:76:c6:56:17:f8:f6:89:21:9d:1e:b8:47:65:62:42: ae:73:e7:b0:08:ec:f0:4e:e0:09:05:9c:42:e4:77:3f:81:d7: 68:e5:c5:9e:ed:3e:59:d3:e9:37:0f:61:be:39:4f:36:65:07: a8:a6:51:9f:10:ec:7d:55:2f:46:cc:7c:6f:1c:d2:a2:d6:b2: 25:75:fd:1d:3d:96:6c:fc:70:a8:2e:be:b0:34:a5:c7:2e:5d: 33:f0:dc:b4:fd:9b:e5:da:34:d9:c3:7e:e8:75:cd:f8:51:13: 5a:c0:2a:52:f0:ef:ca:9f:9d:4c:70:83:7e:29:49:20:10:88: 42:b8:65:78:f4:5c:72:bb:4b:70:31:19:f4:ad:b3:03:6c:95: 67:47:7c:51:b7:9e:db:9c:22:c1:80:4e:e2:fe:e6:c8:d9:af: 52:7d:c3:02 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIURxDuDQ4ovpZG5muBmu/G/N+fYKcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDE1NTQzRDQyM0UwQkQwMzVENjEyREVBOUJGMDYwMjkw RTU1NTJEMjAeFw0yNDAzMjUwMzU1MDBaFw0yNTAzMjQwNDAwMDBaMDMxMTAvBgNV BAMTKDM4OUZBNzU0NUMxQzRBQjJFQ0Q2MzRBQUIzRUQxREU0OTA4MzU3MTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSnwLaoStpGUZBa36daIhbzCBV M1OIPMNFVrv/0LWDmT4w639IbQwmSPQmUIIhRHOLniEJ/Yw0dLpNaB2RdW9tk3Tl kna7D8pnLaPnkZsFlv7XxFkZfatOjyfL5j9np7jdGGklKkBjvg4hOtAShthSoWcz QKcEGB3HmaP034rSuvlQhrFGSYyCOzp1gl9RIlQznJ/Be/pz9pacLVOiwnoI7QA0 +ic9kvzIVVHa19ObAxCkhEkF+P335UKty7g3EdELiOyIhB2vOPb5KtP8IUA+j+6b EppoQ4Y80Zxfn2Ip9WrIrvIuLO6vu5JdHJl9DriqXPE6/FIf1PbZ/A4bkAxDAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUOJ+nVFwcSrLs1jSqs+0d5JCDVxcwHwYDVR0j BBgwFoAUQVVD1CPgvQNdYS3qm/BgKQ5VUtIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MzY0NjVlYy05MTYwLTQ1OWItOGQxMS05NDhmYzI2ZGExYzAvMC80MTU1NDNENDIz RTBCRDAzNUQ2MTJERUE5QkYwNjAyOTBFNTU1MkQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDE1NTQzRDQyM0UwQkQwMzVENjEyREVBOUJGMDYwMjkwRTU1 NTJEMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzNjQ2NWVjLTkxNjAtNDU5Yi04 ZDExLTk0OGZjMjZkYTFjMC8wLzMxMzAzMzJlMzkzNTJlMzgyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTMzMzUzNDM4Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnXwgwDQYJKoZIhvcN AQELBQADggEBAF4Sg1IGQVMxWhhxd+YGCpG/L384VKNgsb89j55c+0OLk5RnGwjD Lzn05HcVqzZUExhE3rm/jdilTyN4xaGxb2mUFSHbqP1dLPUWOv5j/0f+1ZnU0hLQ aiw7+q1x6XbGVhf49okhnR64R2ViQq5z57AI7PBO4AkFnELkdz+B12jlxZ7tPlnT 6TcPYb45TzZlB6imUZ8Q7H1VL0bMfG8c0qLWsiV1/R09lmz8cKguvrA0pccuXTPw 3LT9m+XaNNnDfuh1zfhRE1rAKlLw78qfnUxwg34pSSAQiEK4ZXj0XHK7S3AxGfSt swNslWdHfFG3ntucIsGATuL+5sjZr1J9wwI= -----END CERTIFICATE-----Generated at Mon Nov 25 04:52:35 2024 by rpki-client on console-fra.rpki-client.org