$ rpki-client -vvf repo-rpki.idnic.net/repo/a85477ce-0717-47c0-8766-8b9bec0c086c/0/3130332e3131342e37382e302f32342d3234203d3e203233363739.roa File: 3130332e3131342e37382e302f32342d3234203d3e203233363739.roa (raw, json) Hash identifier: Y1Vihz5eGX2AzVcWQ91/gpmDYbj9KyGR/KlLe+kEUq8= Subject key identifier: 72:EE:9E:C5:32:7F:6C:24:00:2B:65:3B:37:D6:EB:2F:DF:69:40:E7 Certificate issuer: /CN=44430FD6ABCAB254BAE7AEF86E5F5D777FCC8045 Certificate serial: 10F95B426835CD49AD55225D3650B4726E3709AA Authority key identifier: 44:43:0F:D6:AB:CA:B2:54:BA:E7:AE:F8:6E:5F:5D:77:7F:CC:80:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44430FD6ABCAB254BAE7AEF86E5F5D777FCC8045.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a85477ce-0717-47c0-8766-8b9bec0c086c/0/3130332e3131342e37382e302f32342d3234203d3e203233363739.roa Signing time: Sat 24 Aug 2024 11:00:02 +0000 ROA not before: Sat 24 Aug 2024 10:55:02 +0000 ROA not after: Sat 23 Aug 2025 11:00:02 +0000 asID: 23679 IP address blocks: 103.114.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a85477ce-0717-47c0-8766-8b9bec0c086c/0/44430FD6ABCAB254BAE7AEF86E5F5D777FCC8045.crl rsync://repo-rpki.idnic.net/repo/a85477ce-0717-47c0-8766-8b9bec0c086c/0/44430FD6ABCAB254BAE7AEF86E5F5D777FCC8045.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44430FD6ABCAB254BAE7AEF86E5F5D777FCC8045.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:f9:5b:42:68:35:cd:49:ad:55:22:5d:36:50:b4:72:6e:37:09:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44430FD6ABCAB254BAE7AEF86E5F5D777FCC8045 Validity Not Before: Aug 24 10:55:02 2024 GMT Not After : Aug 23 11:00:02 2025 GMT Subject: CN=72EE9EC5327F6C24002B653B37D6EB2FDF6940E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c8:91:64:9d:43:88:1a:60:a5:2f:77:c0:a3: 41:50:70:73:7d:73:4a:93:7b:19:e5:66:65:ae:24: cf:cf:ba:5f:d6:6c:0f:d0:bf:45:8d:ee:50:01:d2: b6:61:f0:93:c9:18:01:60:fa:95:59:7b:4f:49:42: 4d:cb:8f:a6:ff:af:c5:22:07:42:97:ed:2e:9f:cc: e6:bc:9d:00:73:f9:e1:bc:13:48:e3:2d:aa:98:39: 10:a1:29:68:02:ef:89:2d:dd:67:32:4c:cb:a3:a5: 64:a9:57:06:cc:13:7f:98:91:a6:06:79:a6:df:d4: b2:98:9c:f9:9d:da:fe:7a:ab:5b:e7:47:a6:e1:c0: 8a:da:e2:b2:f5:5b:17:00:3b:94:f2:4d:42:92:c5: 6d:3b:da:49:79:19:97:d9:a6:3b:50:82:7a:11:d3: 9c:64:81:c0:e0:54:70:30:15:bc:f5:a7:09:50:10: 7d:44:25:ec:25:71:71:a9:7c:3e:31:35:c3:34:2d: 98:17:01:ac:05:cb:be:e2:ab:45:ea:77:7e:7b:98: ae:3f:c9:d3:cc:e1:cf:87:aa:1b:74:2e:5a:22:29: 8a:26:4e:6a:1e:95:8d:a1:8d:10:f2:97:27:1b:80: 28:4b:2e:30:19:66:04:81:8f:53:ce:5a:35:06:26: 8a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:EE:9E:C5:32:7F:6C:24:00:2B:65:3B:37:D6:EB:2F:DF:69:40:E7 X509v3 Authority Key Identifier: keyid:44:43:0F:D6:AB:CA:B2:54:BA:E7:AE:F8:6E:5F:5D:77:7F:CC:80:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a85477ce-0717-47c0-8766-8b9bec0c086c/0/44430FD6ABCAB254BAE7AEF86E5F5D777FCC8045.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/44430FD6ABCAB254BAE7AEF86E5F5D777FCC8045.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a85477ce-0717-47c0-8766-8b9bec0c086c/0/3130332e3131342e37382e302f32342d3234203d3e203233363739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.114.78.0/24 Signature Algorithm: sha256WithRSAEncryption 03:7d:5d:7f:9f:62:0b:5e:c2:e2:b8:82:d7:34:76:c6:43:16: f8:94:cb:50:1e:af:c1:06:6e:5a:cd:a3:3d:61:38:29:f0:bf: 2b:86:fe:90:e2:9a:f1:3d:7c:1a:1d:40:1c:3f:9e:b3:6f:d4: 68:0a:c8:6e:25:67:5c:a1:32:75:2d:d2:c5:30:c5:bc:97:99: 17:d0:cb:02:74:b6:52:34:39:29:4c:28:d3:72:7b:91:e3:99: bb:63:f8:53:8f:59:64:00:b9:e6:d2:e9:46:93:47:7a:aa:82: d6:ad:5b:38:4c:82:e2:a0:67:39:a8:88:0d:61:a1:bb:36:0a: aa:43:61:ae:5f:5b:ba:25:f7:e1:75:e2:b8:94:6e:70:8e:a0: 6b:49:d2:ca:31:db:bc:81:ee:74:77:39:a6:b9:f0:65:68:83: 90:29:2a:7e:af:b1:33:98:8a:12:08:65:bd:74:b8:a0:38:1b: 51:40:d7:1c:ce:5f:8b:59:f8:60:6e:3a:00:c4:ae:ee:cf:9d: 8a:05:50:3f:23:91:e9:6e:a6:8c:53:c1:04:6d:e0:03:c5:68: 2f:58:27:6e:96:70:08:11:38:0f:ec:5c:81:d0:a0:53:24:f8: 78:a6:ba:ba:80:06:b3:6e:3e:85:88:eb:1a:71:5c:18:d2:48: 04:40:40:cc -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUEPlbQmg1zUmtVSJdNlC0cm43CaowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDQ0MzBGRDZBQkNBQjI1NEJBRTdBRUY4NkU1RjVENzc3 RkNDODA0NTAeFw0yNDA4MjQxMDU1MDJaFw0yNTA4MjMxMTAwMDJaMDMxMTAvBgNV BAMTKDcyRUU5RUM1MzI3RjZDMjQwMDJCNjUzQjM3RDZFQjJGREY2OTQwRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCryJFknUOIGmClL3fAo0FQcHN9 c0qTexnlZmWuJM/Pul/WbA/Qv0WN7lAB0rZh8JPJGAFg+pVZe09JQk3Lj6b/r8Ui B0KX7S6fzOa8nQBz+eG8E0jjLaqYORChKWgC74kt3WcyTMujpWSpVwbME3+YkaYG eabf1LKYnPmd2v56q1vnR6bhwIra4rL1WxcAO5TyTUKSxW072kl5GZfZpjtQgnoR 05xkgcDgVHAwFbz1pwlQEH1EJewlcXGpfD4xNcM0LZgXAawFy77iq0Xqd357mK4/ ydPM4c+Hqht0LloiKYomTmoelY2hjRDylycbgChLLjAZZgSBj1POWjUGJoodAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUcu6exTJ/bCQAK2U7N9brL99pQOcwHwYDVR0j BBgwFoAUREMP1qvKslS65674bl9dd3/MgEUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODU0NzdjZS0wNzE3LTQ3YzAtODc2Ni04YjliZWMwYzA4NmMvMC80NDQzMEZENkFC Q0FCMjU0QkFFN0FFRjg2RTVGNUQ3NzdGQ0M4MDQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDQ0MzBGRDZBQkNBQjI1NEJBRTdBRUY4NkU1RjVENzc3RkND ODA0NS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NTQ3N2NlLTA3MTctNDdjMC04 NzY2LThiOWJlYzBjMDg2Yy8wLzMxMzAzMzJlMzEzMTM0MmUzNzM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM2MzczOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdyTjANBgkqhkiG 9w0BAQsFAAOCAQEAA31df59iC17C4riC1zR2xkMW+JTLUB6vwQZuWs2jPWE4KfC/ K4b+kOKa8T18Gh1AHD+es2/UaArIbiVnXKEydS3SxTDFvJeZF9DLAnS2UjQ5KUwo 03J7keOZu2P4U49ZZAC55tLpRpNHeqqC1q1bOEyC4qBnOaiIDWGhuzYKqkNhrl9b uiX34XXiuJRucI6ga0nSyjHbvIHudHc5prnwZWiDkCkqfq+xM5iKEghlvXS4oDgb UUDXHM5fi1n4YG46AMSu7s+digVQPyOR6W6mjFPBBG3gA8VoL1gnbpZwCBE4D+xc gdCgUyT4eKa6uoAGs24+hYjrGnFcGNJIBEBAzA== -----END CERTIFICATE-----Generated at Fri Nov 22 08:00:09 2024 by rpki-client on console-ams.rpki-client.org