$ rpki-client -vvf repo-rpki.idnic.net/repo/b8117ca8-b4e5-467a-88a8-a4b63e40c3ed/0/3130332e34342e31392e302f32342d3234203d3e20313530313931.roa File: 3130332e34342e31392e302f32342d3234203d3e20313530313931.roa (raw, json) Hash identifier: yZTOcXBkGCXgKprLwFpmf211S49vRO43pg0K+2x6c9c= Subject key identifier: 10:42:FB:23:78:BF:00:9A:F2:99:19:D6:7B:07:76:2C:A6:22:FD:04 Certificate issuer: /CN=B956E5764D9917A7389654D67836D02779ED9E22 Certificate serial: 4B7AC839121A6CA1C84A347357A44F11EF951B41 Authority key identifier: B9:56:E5:76:4D:99:17:A7:38:96:54:D6:78:36:D0:27:79:ED:9E:22 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B956E5764D9917A7389654D67836D02779ED9E22.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8117ca8-b4e5-467a-88a8-a4b63e40c3ed/0/3130332e34342e31392e302f32342d3234203d3e20313530313931.roa Signing time: Thu 25 Jul 2024 18:00:00 +0000 ROA not before: Thu 25 Jul 2024 17:55:00 +0000 ROA not after: Thu 24 Jul 2025 18:00:00 +0000 asID: 150191 IP address blocks: 103.44.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8117ca8-b4e5-467a-88a8-a4b63e40c3ed/0/B956E5764D9917A7389654D67836D02779ED9E22.crl rsync://repo-rpki.idnic.net/repo/b8117ca8-b4e5-467a-88a8-a4b63e40c3ed/0/B956E5764D9917A7389654D67836D02779ED9E22.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B956E5764D9917A7389654D67836D02779ED9E22.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:7a:c8:39:12:1a:6c:a1:c8:4a:34:73:57:a4:4f:11:ef:95:1b:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B956E5764D9917A7389654D67836D02779ED9E22 Validity Not Before: Jul 25 17:55:00 2024 GMT Not After : Jul 24 18:00:00 2025 GMT Subject: CN=1042FB2378BF009AF29919D67B07762CA622FD04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:52:4e:2a:9f:10:ad:8c:61:d6:19:96:b9:83: 6b:7d:ba:15:fa:55:0b:ed:92:43:b2:cf:d1:67:56: 74:ca:9e:bd:8d:55:4d:2c:c9:a1:3b:d0:82:3f:ca: f3:68:be:0d:29:96:93:d4:db:05:cc:ec:10:50:18: 20:c2:3d:83:96:8c:42:70:4b:b4:96:2e:30:cc:1d: 02:3a:0d:1f:4d:57:3f:e0:eb:31:ab:b0:5f:e8:35: 5b:64:55:32:51:56:51:b2:c5:06:fb:fc:54:17:ea: a7:42:93:89:ff:ad:5a:9e:8c:3c:a4:7e:de:ce:ff: 9b:a6:60:0e:3f:2d:e3:b9:11:24:eb:27:f4:af:c5: 98:94:3a:95:8a:44:8d:35:33:94:65:7e:99:d7:55: 8e:13:33:f9:7b:da:72:06:22:3e:4a:83:ba:20:32: 74:13:30:6e:fb:02:c8:1b:74:2f:f1:bb:ad:b4:7f: fe:61:f1:94:a8:67:a8:7f:e8:28:b5:3a:55:aa:a8: 6f:f0:f6:7a:b0:92:05:8e:29:d3:a2:38:1a:1f:b4: a7:10:e3:a1:1b:41:78:b4:9e:24:d7:46:cc:5f:78: f6:b2:89:75:e2:1d:d6:29:8a:58:e7:63:a2:bf:46: 6a:9c:4b:80:6f:85:5c:43:e8:2b:29:60:bc:0f:65: 4d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:42:FB:23:78:BF:00:9A:F2:99:19:D6:7B:07:76:2C:A6:22:FD:04 X509v3 Authority Key Identifier: keyid:B9:56:E5:76:4D:99:17:A7:38:96:54:D6:78:36:D0:27:79:ED:9E:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8117ca8-b4e5-467a-88a8-a4b63e40c3ed/0/B956E5764D9917A7389654D67836D02779ED9E22.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B956E5764D9917A7389654D67836D02779ED9E22.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8117ca8-b4e5-467a-88a8-a4b63e40c3ed/0/3130332e34342e31392e302f32342d3234203d3e20313530313931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.44.19.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:17:e4:a3:fb:6a:36:21:33:94:1a:8f:33:08:fa:3f:b8:7f: 5f:d9:7b:0e:b1:ae:74:54:d5:64:0e:8d:26:3c:43:bb:81:d8: 5f:87:8b:39:45:90:ce:64:4b:79:86:f5:af:c0:bf:63:c2:0c: 64:de:8e:48:c0:9b:46:4e:fd:f9:38:96:05:1a:b3:07:0a:36: d0:25:0c:a8:bf:0d:e2:de:3e:69:36:40:f3:e0:17:54:b2:e9: b3:cf:71:d4:56:07:df:4e:53:c9:ad:b4:bf:db:c6:34:fc:9b: 39:e3:1b:06:dc:79:28:9a:84:65:fc:d7:74:80:1e:69:8a:e2: fa:54:b5:18:b8:4f:9a:8b:46:74:8b:da:9e:0f:61:07:95:6a: c9:cb:66:04:11:3e:c3:13:00:fe:58:68:03:bc:14:53:e3:70: e6:dd:fd:33:90:d8:3a:93:32:8a:7f:44:c7:7d:46:26:03:a8: d1:45:b3:08:fa:bf:a3:80:69:52:f7:5d:3c:89:62:77:6d:8b: cd:34:37:6e:b7:08:37:48:be:f1:60:96:13:1a:0b:75:14:8d: 47:a1:b0:d1:9b:06:49:06:fe:3b:56:82:52:da:52:c1:2b:51: 10:e3:a4:fa:9f:c1:0a:ef:72:3a:a1:47:16:17:1e:03:1e:31: bc:7d:05:4e -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUS3rIORIabKHISjRzV6RPEe+VG0EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjk1NkU1NzY0RDk5MTdBNzM4OTY1NEQ2NzgzNkQwMjc3 OUVEOUUyMjAeFw0yNDA3MjUxNzU1MDBaFw0yNTA3MjQxODAwMDBaMDMxMTAvBgNV BAMTKDEwNDJGQjIzNzhCRjAwOUFGMjk5MTlENjdCMDc3NjJDQTYyMkZEMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+Uk4qnxCtjGHWGZa5g2t9uhX6 VQvtkkOyz9FnVnTKnr2NVU0syaE70II/yvNovg0plpPU2wXM7BBQGCDCPYOWjEJw S7SWLjDMHQI6DR9NVz/g6zGrsF/oNVtkVTJRVlGyxQb7/FQX6qdCk4n/rVqejDyk ft7O/5umYA4/LeO5ESTrJ/SvxZiUOpWKRI01M5RlfpnXVY4TM/l72nIGIj5Kg7og MnQTMG77AsgbdC/xu620f/5h8ZSoZ6h/6Ci1OlWqqG/w9nqwkgWOKdOiOBoftKcQ 46EbQXi0niTXRsxfePayiXXiHdYpiljnY6K/RmqcS4BvhVxD6CspYLwPZU3RAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUEEL7I3i/AJrymRnWewd2LKYi/QQwHwYDVR0j BBgwFoAUuVbldk2ZF6c4llTWeDbQJ3ntniIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODExN2NhOC1iNGU1LTQ2N2EtODhhOC1hNGI2M2U0MGMzZWQvMC9COTU2RTU3NjRE OTkxN0E3Mzg5NjU0RDY3ODM2RDAyNzc5RUQ5RTIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjk1NkU1NzY0RDk5MTdBNzM4OTY1NEQ2NzgzNkQwMjc3OUVE OUUyMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4MTE3Y2E4LWI0ZTUtNDY3YS04 OGE4LWE0YjYzZTQwYzNlZC8wLzMxMzAzMzJlMzQzNDJlMzEzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMxMzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcsEzANBgkqhkiG 9w0BAQsFAAOCAQEAXxfko/tqNiEzlBqPMwj6P7h/X9l7DrGudFTVZA6NJjxDu4HY X4eLOUWQzmRLeYb1r8C/Y8IMZN6OSMCbRk79+TiWBRqzBwo20CUMqL8N4t4+aTZA 8+AXVLLps89x1FYH305Tya20v9vGNPybOeMbBtx5KJqEZfzXdIAeaYri+lS1GLhP motGdIvang9hB5VqyctmBBE+wxMA/lhoA7wUU+Nw5t39M5DYOpMyin9Ex31GJgOo 0UWzCPq/o4BpUvddPIlid22LzTQ3brcIN0i+8WCWExoLdRSNR6Gw0ZsGSQb+O1aC UtpSwStREOOk+p/BCu9yOqFHFhceAx4xvH0FTg== -----END CERTIFICATE-----Generated at Fri Nov 22 23:37:26 2024 by rpki-client on console-fra.rpki-client.org