$ rpki-client -vvf repo-rpki.idnic.net/repo/a4356375-8e29-4477-b013-c44150a25a31/0/3130332e38322e3136342e302f32342d3234203d3e20313336303538.roa File: 3130332e38322e3136342e302f32342d3234203d3e20313336303538.roa (raw, json) Hash identifier: ePs+7QNvRzMlIpdqEG5AJcQ/7oSXOlNvEWF18TjLRwk= Subject key identifier: 45:03:6E:8C:47:C7:6B:56:D5:8A:51:03:71:AB:D0:99:67:A8:4C:22 Certificate issuer: /CN=A5BFDB1F243635EED1E25191C68CEBB2E325072F Certificate serial: 1B85811CBFF16CF44AF6CEE1ADB1D39932D4C347 Authority key identifier: A5:BF:DB:1F:24:36:35:EE:D1:E2:51:91:C6:8C:EB:B2:E3:25:07:2F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A5BFDB1F243635EED1E25191C68CEBB2E325072F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a4356375-8e29-4477-b013-c44150a25a31/0/3130332e38322e3136342e302f32342d3234203d3e20313336303538.roa Signing time: Wed 13 Nov 2024 09:00:39 +0000 ROA not before: Wed 13 Nov 2024 08:55:39 +0000 ROA not after: Wed 12 Nov 2025 09:00:39 +0000 asID: 136058 IP address blocks: 103.82.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a4356375-8e29-4477-b013-c44150a25a31/0/A5BFDB1F243635EED1E25191C68CEBB2E325072F.crl rsync://repo-rpki.idnic.net/repo/a4356375-8e29-4477-b013-c44150a25a31/0/A5BFDB1F243635EED1E25191C68CEBB2E325072F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A5BFDB1F243635EED1E25191C68CEBB2E325072F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:85:81:1c:bf:f1:6c:f4:4a:f6:ce:e1:ad:b1:d3:99:32:d4:c3:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5BFDB1F243635EED1E25191C68CEBB2E325072F Validity Not Before: Nov 13 08:55:39 2024 GMT Not After : Nov 12 09:00:39 2025 GMT Subject: CN=45036E8C47C76B56D58A510371ABD09967A84C22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:4c:32:cc:87:4d:1e:ec:af:ea:3e:80:0c:ce: 53:1b:88:50:c2:eb:f3:52:16:aa:99:84:fb:3e:3f: 4c:d8:e9:03:b1:84:45:73:0c:06:95:b0:64:97:63: 5e:fd:1f:52:df:30:3c:67:5f:dd:1c:82:97:f2:e5: c0:43:2c:d8:7a:40:6d:e6:da:39:d1:8f:aa:98:f5: 56:98:b6:31:a2:d7:dc:4c:cf:b1:7a:b8:9c:70:a0: a8:b0:36:24:ff:01:9d:d6:4c:c1:77:f0:41:69:90: 90:3f:a3:8a:21:c8:0a:31:da:77:b0:6d:9a:fe:9d: 59:d4:ab:41:41:f7:90:98:2a:23:3e:76:cb:60:2d: 2f:f5:12:fa:a2:5f:91:7d:dd:4d:f6:3c:1f:db:0e: 98:b5:1a:12:ff:5d:87:94:22:83:09:2d:b5:44:31: f3:44:0b:f4:7b:db:af:00:c1:02:59:3e:0d:c1:25: 17:56:38:80:5b:c5:0c:c3:29:6a:6b:e6:92:4a:0f: bd:ba:db:85:a9:5e:ed:da:04:e2:73:35:b1:ce:56: 67:1a:19:fe:2d:8e:7f:5b:4a:e2:a1:38:07:9a:78: 2a:b5:d8:5c:f9:2d:e8:b0:e4:c7:99:77:bd:05:bb: a5:4b:36:3f:88:ee:68:bd:a7:8d:a3:15:f7:43:4d: 48:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:03:6E:8C:47:C7:6B:56:D5:8A:51:03:71:AB:D0:99:67:A8:4C:22 X509v3 Authority Key Identifier: keyid:A5:BF:DB:1F:24:36:35:EE:D1:E2:51:91:C6:8C:EB:B2:E3:25:07:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a4356375-8e29-4477-b013-c44150a25a31/0/A5BFDB1F243635EED1E25191C68CEBB2E325072F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A5BFDB1F243635EED1E25191C68CEBB2E325072F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a4356375-8e29-4477-b013-c44150a25a31/0/3130332e38322e3136342e302f32342d3234203d3e20313336303538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.82.164.0/24 Signature Algorithm: sha256WithRSAEncryption 88:ff:88:47:40:dc:6c:11:ed:9c:cb:7c:57:d8:82:8b:2e:fe: 62:4f:f0:43:63:4b:e3:82:1e:7c:dc:59:5c:5c:a7:a5:10:52: 69:bb:dc:17:d6:2c:68:be:63:90:ae:b8:21:21:ad:b4:9a:16: d9:1f:d2:cc:6d:99:84:43:12:c5:66:9e:f6:a0:50:e6:e9:68: 06:c2:36:6e:6d:a3:4b:32:eb:57:fc:7b:f5:d0:6e:5e:55:9c: 9f:9f:32:bc:23:30:f9:42:e6:da:cb:8e:8b:3f:9b:69:dd:d3: 89:17:1f:31:60:60:73:03:ee:63:e7:a5:fe:36:82:12:4c:e5: f0:7c:b4:82:11:af:2e:b0:f2:1c:9e:26:e2:12:c3:12:26:96: 6e:e9:62:f6:a2:d3:c0:80:53:2f:4b:a2:80:bf:48:bd:ae:e1: f3:4a:d7:5c:90:88:b3:75:7c:73:65:fc:38:e5:d9:63:12:a6: 53:e9:40:0a:21:27:db:ff:58:37:a7:f4:9c:1d:dc:49:8b:cc: b9:a0:f6:9d:bc:44:83:ff:b8:85:3e:f3:ad:52:70:32:bb:57: 23:62:11:d3:f5:1b:1c:70:45:f5:c8:0e:94:db:0a:8a:2b:b4: 55:d7:3e:f4:66:51:0c:3a:b3:70:8c:05:5a:e5:7b:b5:8e:89: c7:46:71:ac -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUG4WBHL/xbPRK9s7hrbHTmTLUw0cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTVCRkRCMUYyNDM2MzVFRUQxRTI1MTkxQzY4Q0VCQjJF MzI1MDcyRjAeFw0yNDExMTMwODU1MzlaFw0yNTExMTIwOTAwMzlaMDMxMTAvBgNV BAMTKDQ1MDM2RThDNDdDNzZCNTZENThBNTEwMzcxQUJEMDk5NjdBODRDMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfTDLMh00e7K/qPoAMzlMbiFDC 6/NSFqqZhPs+P0zY6QOxhEVzDAaVsGSXY179H1LfMDxnX90cgpfy5cBDLNh6QG3m 2jnRj6qY9VaYtjGi19xMz7F6uJxwoKiwNiT/AZ3WTMF38EFpkJA/o4ohyAox2new bZr+nVnUq0FB95CYKiM+dstgLS/1EvqiX5F93U32PB/bDpi1GhL/XYeUIoMJLbVE MfNEC/R7268AwQJZPg3BJRdWOIBbxQzDKWpr5pJKD72624WpXu3aBOJzNbHOVmca Gf4tjn9bSuKhOAeaeCq12Fz5Leiw5MeZd70Fu6VLNj+I7mi9p42jFfdDTUidAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURQNujEfHa1bVilEDcavQmWeoTCIwHwYDVR0j BBgwFoAUpb/bHyQ2Ne7R4lGRxozrsuMlBy8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NDM1NjM3NS04ZTI5LTQ0NzctYjAxMy1jNDQxNTBhMjVhMzEvMC9BNUJGREIxRjI0 MzYzNUVFRDFFMjUxOTFDNjhDRUJCMkUzMjUwNzJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTVCRkRCMUYyNDM2MzVFRUQxRTI1MTkxQzY4Q0VCQjJFMzI1 MDcyRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E0MzU2Mzc1LThlMjktNDQ3Ny1i MDEzLWM0NDE1MGEyNWEzMS8wLzMxMzAzMzJlMzgzMjJlMzEzNjM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzAzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1KkMA0GCSqG SIb3DQEBCwUAA4IBAQCI/4hHQNxsEe2cy3xX2IKLLv5iT/BDY0vjgh583FlcXKel EFJpu9wX1ixovmOQrrghIa20mhbZH9LMbZmEQxLFZp72oFDm6WgGwjZubaNLMutX /Hv10G5eVZyfnzK8IzD5Qubay46LP5tp3dOJFx8xYGBzA+5j56X+NoISTOXwfLSC Ea8usPIcnibiEsMSJpZu6WL2otPAgFMvS6KAv0i9ruHzStdckIizdXxzZfw45dlj EqZT6UAKISfb/1g3p/ScHdxJi8y5oPadvESD/7iFPvOtUnAyu1cjYhHT9RsccEX1 yA6U2wqKK7RV1z70ZlEMOrNwjAVa5Xu1jonHRnGs -----END CERTIFICATE-----Generated at Mon Nov 25 04:42:07 2024 by rpki-client on console-ams.rpki-client.org