$ rpki-client -vvf repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38322e302f32342d3234203d3e20313432333733.roa File: 3130332e3137312e38322e302f32342d3234203d3e20313432333733.roa (raw, json) Hash identifier: QW0riT2ZIbJQ6bDdQHJpDVDRJpk68aw/94juFPRXEvU= Subject key identifier: 1F:F3:FB:EF:48:4D:C1:9E:6A:0C:CD:40:C0:B7:A3:09:6E:DB:EC:0D Certificate issuer: /CN=4A906D4F534B26A0E62898882630292936CEA54A Certificate serial: 0EDEF04129901A1C14B9F37E9C2812AE6CDB1B07 Authority key identifier: 4A:90:6D:4F:53:4B:26:A0:E6:28:98:88:26:30:29:29:36:CE:A5:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A906D4F534B26A0E62898882630292936CEA54A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38322e302f32342d3234203d3e20313432333733.roa Signing time: Sun 22 Sep 2024 10:00:01 +0000 ROA not before: Sun 22 Sep 2024 09:55:01 +0000 ROA not after: Sun 21 Sep 2025 10:00:01 +0000 asID: 142373 IP address blocks: 103.171.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/4A906D4F534B26A0E62898882630292936CEA54A.crl rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/4A906D4F534B26A0E62898882630292936CEA54A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A906D4F534B26A0E62898882630292936CEA54A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:de:f0:41:29:90:1a:1c:14:b9:f3:7e:9c:28:12:ae:6c:db:1b:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A906D4F534B26A0E62898882630292936CEA54A Validity Not Before: Sep 22 09:55:01 2024 GMT Not After : Sep 21 10:00:01 2025 GMT Subject: CN=1FF3FBEF484DC19E6A0CCD40C0B7A3096EDBEC0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:be:62:df:4c:fe:c0:1a:aa:d9:51:49:c6:48: 05:d0:c7:bc:50:b8:8a:4f:bb:2b:1d:04:8f:5f:a1: 58:36:7e:ba:9e:8a:1f:e6:e0:91:62:47:ce:89:0d: 89:3d:08:71:c8:1c:0a:4f:e9:20:ec:f2:35:83:35: 32:cc:51:6e:f1:27:1d:4b:83:78:38:40:1d:a4:8d: 26:82:93:91:a2:be:08:5d:7d:e3:32:85:cb:d4:73: 68:61:31:a2:76:ea:df:d9:f5:bb:8d:fe:dc:88:7c: 44:ca:b1:b6:de:34:30:e3:f4:b1:81:84:f0:96:11: 45:ad:ee:b7:6e:dd:3b:aa:8c:a0:21:79:08:cc:a0: e3:6c:ba:fa:f3:26:64:14:1f:b7:e4:58:f4:50:00: 9b:67:9a:00:d3:d1:df:15:65:ad:0b:cd:e8:ad:0f: c4:a8:95:b1:56:69:7c:76:e8:6b:e4:81:8c:5d:3a: 72:3a:e9:75:da:97:a1:9d:a0:9d:54:d0:62:ea:5d: 21:3f:f4:b8:39:15:6d:dc:3a:91:8b:84:41:25:5c: 1c:fd:5c:ff:7b:fe:3d:9e:24:19:18:fd:94:80:e5: 4d:58:f8:d8:71:93:55:e3:d9:03:e7:d8:a3:3f:5a: 67:1d:5c:72:9f:a0:2f:3e:65:cb:b8:35:95:24:db: d0:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:F3:FB:EF:48:4D:C1:9E:6A:0C:CD:40:C0:B7:A3:09:6E:DB:EC:0D X509v3 Authority Key Identifier: keyid:4A:90:6D:4F:53:4B:26:A0:E6:28:98:88:26:30:29:29:36:CE:A5:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/4A906D4F534B26A0E62898882630292936CEA54A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A906D4F534B26A0E62898882630292936CEA54A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38322e302f32342d3234203d3e20313432333733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.82.0/24 Signature Algorithm: sha256WithRSAEncryption cc:33:f7:9c:52:bc:cc:20:a0:c6:78:56:93:e9:bb:4b:da:0b: 30:45:ca:a1:1b:8e:1c:ef:c3:a3:63:24:14:f5:de:84:e5:36: 68:65:08:c6:eb:02:94:06:ad:23:65:c8:da:dd:89:03:68:72: 26:5a:04:67:b9:a3:82:64:14:df:bc:10:b2:05:12:53:8d:6e: bf:81:62:e9:4a:4f:24:d6:0a:e6:ca:e3:32:2a:45:e5:4d:cd: 38:e0:1a:e1:32:62:5d:50:07:55:f8:37:99:50:99:f7:79:08: b5:5d:74:c5:25:1c:80:b5:e7:89:37:8b:87:e1:86:4a:48:76: c4:90:00:aa:69:d3:00:62:f2:fa:47:57:c2:df:37:a0:46:f1: 8f:fe:1f:6c:f9:46:1a:a6:dd:af:17:59:da:02:52:b7:c5:5f: f3:aa:6e:ac:01:3c:7f:46:81:79:37:87:d5:e4:64:8d:51:30: d8:5e:e8:3a:ca:1c:e6:c4:5a:e4:18:ec:69:fe:a0:0d:12:eb: 08:57:f1:29:84:f8:e3:2e:6c:f7:9e:92:50:e4:73:a4:6c:da: 0f:cc:62:76:bc:b4:d6:1a:5e:7b:bf:cc:27:60:07:27:15:20: 5e:6e:44:6d:1a:56:ce:2f:82:a2:4f:3f:ba:eb:af:7f:8a:80: f3:0e:9b:50 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUDt7wQSmQGhwUufN+nCgSrmzbGwcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEE5MDZENEY1MzRCMjZBMEU2Mjg5ODg4MjYzMDI5Mjkz NkNFQTU0QTAeFw0yNDA5MjIwOTU1MDFaFw0yNTA5MjExMDAwMDFaMDMxMTAvBgNV BAMTKDFGRjNGQkVGNDg0REMxOUU2QTBDQ0Q0MEMwQjdBMzA5NkVEQkVDMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEvmLfTP7AGqrZUUnGSAXQx7xQ uIpPuysdBI9foVg2frqeih/m4JFiR86JDYk9CHHIHApP6SDs8jWDNTLMUW7xJx1L g3g4QB2kjSaCk5GivghdfeMyhcvUc2hhMaJ26t/Z9buN/tyIfETKsbbeNDDj9LGB hPCWEUWt7rdu3TuqjKAheQjMoONsuvrzJmQUH7fkWPRQAJtnmgDT0d8VZa0Lzeit D8SolbFWaXx26GvkgYxdOnI66XXal6GdoJ1U0GLqXSE/9Lg5FW3cOpGLhEElXBz9 XP97/j2eJBkY/ZSA5U1Y+Nhxk1Xj2QPn2KM/WmcdXHKfoC8+Zcu4NZUk29BBAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUH/P770hNwZ5qDM1AwLejCW7b7A0wHwYDVR0j BBgwFoAUSpBtT1NLJqDmKJiIJjApKTbOpUowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTg5ZTg1OS0zYzJjLTRhMDktYTRhOS0zNzMyM2VhNWRlMjIvMC80QTkwNkQ0RjUz NEIyNkEwRTYyODk4ODgyNjMwMjkyOTM2Q0VBNTRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEE5MDZENEY1MzRCMjZBMEU2Mjg5ODg4MjYzMDI5MjkzNkNF QTU0QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlODllODU5LTNjMmMtNGEwOS1h NGE5LTM3MzIzZWE1ZGUyMi8wLzMxMzAzMzJlMzEzNzMxMmUzODMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6tSMA0GCSqG SIb3DQEBCwUAA4IBAQDMM/ecUrzMIKDGeFaT6btL2gswRcqhG44c78OjYyQU9d6E 5TZoZQjG6wKUBq0jZcja3YkDaHImWgRnuaOCZBTfvBCyBRJTjW6/gWLpSk8k1grm yuMyKkXlTc044BrhMmJdUAdV+DeZUJn3eQi1XXTFJRyAteeJN4uH4YZKSHbEkACq adMAYvL6R1fC3zegRvGP/h9s+UYapt2vF1naAlK3xV/zqm6sATx/RoF5N4fV5GSN UTDYXug6yhzmxFrkGOxp/qANEusIV/EphPjjLmz3npJQ5HOkbNoPzGJ2vLTWGl57 v8wnYAcnFSBebkRtGlbOL4KiTz+6669/ioDzDptQ -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:15 2024 by rpki-client on console-ams.rpki-client.org