$ rpki-client -vvf repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38332e302f32342d3234203d3e20313432333733.roa File: 3130332e3137312e38332e302f32342d3234203d3e20313432333733.roa (raw, json) Hash identifier: q1try4eWeXGNMJXVZs9ilwAbNDidILu0Qdkiuiy95SY= Subject key identifier: CF:1C:D6:B1:B5:9B:D8:AF:3B:83:E1:D9:C0:3E:C6:76:A7:D4:60:68 Certificate issuer: /CN=4A906D4F534B26A0E62898882630292936CEA54A Certificate serial: 4D8E059A46BCE61E1AD532C796800498745A2EDE Authority key identifier: 4A:90:6D:4F:53:4B:26:A0:E6:28:98:88:26:30:29:29:36:CE:A5:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A906D4F534B26A0E62898882630292936CEA54A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38332e302f32342d3234203d3e20313432333733.roa Signing time: Sun 22 Sep 2024 10:00:02 +0000 ROA not before: Sun 22 Sep 2024 09:55:02 +0000 ROA not after: Sun 21 Sep 2025 10:00:02 +0000 asID: 142373 IP address blocks: 103.171.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/4A906D4F534B26A0E62898882630292936CEA54A.crl rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/4A906D4F534B26A0E62898882630292936CEA54A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A906D4F534B26A0E62898882630292936CEA54A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:8e:05:9a:46:bc:e6:1e:1a:d5:32:c7:96:80:04:98:74:5a:2e:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A906D4F534B26A0E62898882630292936CEA54A Validity Not Before: Sep 22 09:55:02 2024 GMT Not After : Sep 21 10:00:02 2025 GMT Subject: CN=CF1CD6B1B59BD8AF3B83E1D9C03EC676A7D46068 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:00:a9:8c:23:86:88:dc:4f:d5:c5:75:78:9c: ff:e5:d2:b4:92:d2:27:7b:59:73:43:22:69:bf:e7: 72:01:7f:ad:61:84:a7:8e:a8:11:e6:83:1f:5d:d4: dd:97:33:59:bd:24:92:96:e3:9e:c6:48:b0:63:d0: 99:74:dd:91:7e:38:59:12:50:23:23:f4:ca:29:66: a9:e9:0b:82:4d:af:44:38:7a:05:10:3c:2a:2f:ca: cc:b1:db:34:29:51:28:82:2e:60:4f:90:42:b4:03: a8:8a:76:84:b2:d0:e1:48:d4:bd:52:0b:c4:71:bc: 9d:fa:a9:3e:2a:33:88:0b:4e:6e:69:c9:73:de:b4: 0e:f8:92:fe:00:e1:10:cc:b2:5c:21:39:bf:f2:d9: 37:db:7c:aa:db:66:64:7d:63:e9:d3:42:df:97:68: 85:6a:9f:0c:55:22:41:c6:a8:eb:0e:a4:70:8e:9b: fb:81:83:d4:2a:76:ab:4e:c8:0a:31:a5:ab:b7:d7: 98:80:f7:8e:c8:98:92:e8:41:7b:f5:92:74:bf:42: a8:55:ee:12:2d:dd:e4:6a:fd:ee:a8:19:27:b0:3d: 77:ee:fa:f6:87:23:8f:15:66:b1:8d:0d:3d:f5:a4: 2c:d9:14:da:6c:b1:69:ed:14:c3:f1:27:44:be:6d: 7c:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:1C:D6:B1:B5:9B:D8:AF:3B:83:E1:D9:C0:3E:C6:76:A7:D4:60:68 X509v3 Authority Key Identifier: keyid:4A:90:6D:4F:53:4B:26:A0:E6:28:98:88:26:30:29:29:36:CE:A5:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/4A906D4F534B26A0E62898882630292936CEA54A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A906D4F534B26A0E62898882630292936CEA54A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae89e859-3c2c-4a09-a4a9-37323ea5de22/0/3130332e3137312e38332e302f32342d3234203d3e20313432333733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.171.83.0/24 Signature Algorithm: sha256WithRSAEncryption 67:75:86:82:95:c0:d2:d2:fa:a7:a9:4e:97:75:f4:47:65:32: 1a:74:13:62:62:07:eb:74:23:81:c6:c0:ad:d8:0b:af:c6:e0: 8e:07:93:9e:e8:b9:8e:c1:8e:84:b8:60:53:55:ad:0e:24:68: 1b:dd:bd:7b:fa:4c:b3:4d:e4:b7:6e:29:8f:86:5f:c1:5f:69: 5a:6d:5d:ad:7e:83:7d:dd:25:92:d8:72:eb:1d:cf:7d:77:23: df:82:9c:f1:66:15:46:4a:b4:89:31:5f:ba:28:23:96:87:63: 16:1d:a4:e4:95:5e:ff:3b:13:71:42:9d:72:ad:16:a1:04:f4: 74:4e:3d:86:f6:7b:64:01:c0:79:0d:21:a9:0e:46:ff:8d:ce: 4c:ac:5e:e1:5d:10:6a:b9:98:35:79:ec:c2:a5:a0:51:ab:1a: 94:a4:69:70:9b:3e:9a:69:5b:72:16:14:79:3e:c5:90:5e:e8: 34:e5:3d:af:a6:35:df:81:fd:37:d4:f0:5e:ad:b4:06:ba:19: e1:4d:bc:f4:2b:c9:e8:9d:c9:5f:17:de:57:7a:e0:0e:22:9b: 7d:f5:c3:94:28:ba:94:3e:9e:2a:8d:8f:17:24:e0:1c:d1:1e: 63:90:18:b8:5e:91:6f:87:2f:e5:5a:2e:be:72:e5:b1:97:ae: d4:4c:25:5c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTY4Fmka85h4a1TLHloAEmHRaLt4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEE5MDZENEY1MzRCMjZBMEU2Mjg5ODg4MjYzMDI5Mjkz NkNFQTU0QTAeFw0yNDA5MjIwOTU1MDJaFw0yNTA5MjExMDAwMDJaMDMxMTAvBgNV BAMTKENGMUNENkIxQjU5QkQ4QUYzQjgzRTFEOUMwM0VDNjc2QTdENDYwNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkAKmMI4aI3E/VxXV4nP/l0rSS 0id7WXNDImm/53IBf61hhKeOqBHmgx9d1N2XM1m9JJKW457GSLBj0Jl03ZF+OFkS UCMj9MopZqnpC4JNr0Q4egUQPCovysyx2zQpUSiCLmBPkEK0A6iKdoSy0OFI1L1S C8RxvJ36qT4qM4gLTm5pyXPetA74kv4A4RDMslwhOb/y2TfbfKrbZmR9Y+nTQt+X aIVqnwxVIkHGqOsOpHCOm/uBg9QqdqtOyAoxpau315iA947ImJLoQXv1knS/QqhV 7hIt3eRq/e6oGSewPXfu+vaHI48VZrGNDT31pCzZFNpssWntFMPxJ0S+bXx/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUzxzWsbWb2K87g+HZwD7GdqfUYGgwHwYDVR0j BBgwFoAUSpBtT1NLJqDmKJiIJjApKTbOpUowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTg5ZTg1OS0zYzJjLTRhMDktYTRhOS0zNzMyM2VhNWRlMjIvMC80QTkwNkQ0RjUz NEIyNkEwRTYyODk4ODgyNjMwMjkyOTM2Q0VBNTRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEE5MDZENEY1MzRCMjZBMEU2Mjg5ODg4MjYzMDI5MjkzNkNF QTU0QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlODllODU5LTNjMmMtNGEwOS1h NGE5LTM3MzIzZWE1ZGUyMi8wLzMxMzAzMzJlMzEzNzMxMmUzODMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6tTMA0GCSqG SIb3DQEBCwUAA4IBAQBndYaClcDS0vqnqU6XdfRHZTIadBNiYgfrdCOBxsCt2Auv xuCOB5Oe6LmOwY6EuGBTVa0OJGgb3b17+kyzTeS3bimPhl/BX2labV2tfoN93SWS 2HLrHc99dyPfgpzxZhVGSrSJMV+6KCOWh2MWHaTklV7/OxNxQp1yrRahBPR0Tj2G 9ntkAcB5DSGpDkb/jc5MrF7hXRBquZg1eezCpaBRqxqUpGlwmz6aaVtyFhR5PsWQ Xug05T2vpjXfgf031PBerbQGuhnhTbz0K8nonclfF95XeuAOIpt99cOUKLqUPp4q jY8XJOAc0R5jkBi4XpFvhy/lWi6+cuWxl67UTCVc -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:51 2024 by rpki-client on console-fra.rpki-client.org