$ rpki-client -vvf repo-rpki.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/3130332e3134332e32302e302f32342d3234203d3e20313339343035.roa File: 3130332e3134332e32302e302f32342d3234203d3e20313339343035.roa (raw, json) Hash identifier: 486gYpHFPIGrMV4cst/8HcDYBuujcWoRBQU44C89Iu0= Subject key identifier: 7B:70:F9:26:55:70:58:55:B3:AE:DA:95:E2:EA:F7:7A:48:91:13:97 Certificate issuer: /CN=408395914A1A74FF4E6AB1DE063F82C61E0801F2 Certificate serial: 6D3BD8C585F2F7D2D1EB581B746CFDDAF1320D52 Authority key identifier: 40:83:95:91:4A:1A:74:FF:4E:6A:B1:DE:06:3F:82:C6:1E:08:01:F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408395914A1A74FF4E6AB1DE063F82C61E0801F2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/3130332e3134332e32302e302f32342d3234203d3e20313339343035.roa Signing time: Sun 22 Sep 2024 11:00:00 +0000 ROA not before: Sun 22 Sep 2024 10:55:00 +0000 ROA not after: Sun 21 Sep 2025 11:00:00 +0000 asID: 139405 IP address blocks: 103.143.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/408395914A1A74FF4E6AB1DE063F82C61E0801F2.crl rsync://repo-rpki.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/408395914A1A74FF4E6AB1DE063F82C61E0801F2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408395914A1A74FF4E6AB1DE063F82C61E0801F2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 10:12:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:3b:d8:c5:85:f2:f7:d2:d1:eb:58:1b:74:6c:fd:da:f1:32:0d:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=408395914A1A74FF4E6AB1DE063F82C61E0801F2 Validity Not Before: Sep 22 10:55:00 2024 GMT Not After : Sep 21 11:00:00 2025 GMT Subject: CN=7B70F92655705855B3AEDA95E2EAF77A48911397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:41:35:76:95:6a:8a:66:88:93:3e:95:b9:59: 35:69:ec:a6:a2:80:dc:bd:c0:7c:06:1d:76:56:63: 2e:97:04:db:63:cd:43:7f:6c:af:83:6c:c6:45:de: aa:77:fe:67:4f:27:1b:51:bf:ec:c2:a6:e3:a1:f5: 2b:bf:3b:77:5a:a9:89:81:77:c8:ef:b3:58:4a:cd: 81:c7:8b:6d:b3:db:6c:ff:5b:ab:3c:8d:07:22:0a: 34:cf:1c:4d:7b:b1:af:3f:4c:d6:9a:7d:88:94:d1: 2a:ef:78:13:79:14:03:47:80:2b:83:81:42:dd:3c: f7:54:53:18:0e:03:b0:58:7c:96:5e:e4:1a:05:5b: aa:25:65:ce:90:88:5d:50:19:61:9c:26:5b:ac:3e: 5d:2c:21:86:73:49:35:b6:75:4e:8e:ca:66:5f:61: bd:47:43:30:b4:4d:a8:21:84:02:67:5c:77:f9:e8: 2f:ad:14:0b:fa:90:9d:b7:b0:ee:ac:f5:69:ec:db: 08:ee:6f:53:94:21:5a:ce:df:01:b7:df:5f:20:9f: 8b:c5:60:b3:16:7b:9e:cc:36:cb:a0:95:6d:cd:57: d0:e5:8d:e6:42:ca:3d:14:2e:0c:cb:3c:ac:08:f5: 40:c4:12:31:f7:8b:a8:f8:3e:82:23:c0:1c:7c:65: cb:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:70:F9:26:55:70:58:55:B3:AE:DA:95:E2:EA:F7:7A:48:91:13:97 X509v3 Authority Key Identifier: keyid:40:83:95:91:4A:1A:74:FF:4E:6A:B1:DE:06:3F:82:C6:1E:08:01:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/408395914A1A74FF4E6AB1DE063F82C61E0801F2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/408395914A1A74FF4E6AB1DE063F82C61E0801F2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c78c3c69-36d0-4ae8-a8df-63d3f44ccd8d/0/3130332e3134332e32302e302f32342d3234203d3e20313339343035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.20.0/24 Signature Algorithm: sha256WithRSAEncryption 10:52:92:9c:dd:31:b7:e8:f7:d3:3c:8c:db:c6:35:9d:c3:f4: ec:8c:88:b4:22:f7:d7:5f:4b:64:a7:67:0d:ac:1c:ac:d3:97: da:53:5e:76:57:cd:7a:f9:72:88:90:2f:21:18:ac:53:39:6a: 22:e6:41:7d:54:cd:90:75:ff:66:e0:7e:33:1f:ae:3c:53:99: 74:20:75:59:79:b0:2d:88:ce:19:83:be:d6:19:89:a0:7d:16: 5b:d7:7d:7f:a1:ea:a1:fc:e0:cf:c4:77:14:47:11:7c:30:ee: 7a:5b:ab:7c:61:ad:69:6f:0a:ce:41:8b:d5:c8:e9:df:86:dd: 28:10:4d:1b:0e:fb:d4:8c:a6:b5:70:d5:15:71:ee:44:3e:e8: 7c:b9:2e:03:66:88:e7:11:7c:65:5a:8d:a4:21:0b:69:8e:49: af:12:21:23:ea:fd:38:85:8f:54:a1:be:02:40:a4:a4:56:96: 05:d7:a3:e4:e0:8c:c3:f5:8a:50:c1:b2:c4:59:25:2c:16:68: b3:0d:b0:87:ea:69:49:cd:26:8b:33:3b:72:70:2c:44:cd:63: 67:64:76:20:aa:16:68:97:62:a9:b1:43:ff:fa:30:b4:e4:26: 66:87:58:c9:32:f5:7e:06:26:5d:98:96:f8:71:6d:ea:31:65: d9:00:4f:28 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbTvYxYXy99LR61gbdGz92vEyDVIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA4Mzk1OTE0QTFBNzRGRjRFNkFCMURFMDYzRjgyQzYx RTA4MDFGMjAeFw0yNDA5MjIxMDU1MDBaFw0yNTA5MjExMTAwMDBaMDMxMTAvBgNV BAMTKDdCNzBGOTI2NTU3MDU4NTVCM0FFREE5NUUyRUFGNzdBNDg5MTEzOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzQTV2lWqKZoiTPpW5WTVp7Kai gNy9wHwGHXZWYy6XBNtjzUN/bK+DbMZF3qp3/mdPJxtRv+zCpuOh9Su/O3daqYmB d8jvs1hKzYHHi22z22z/W6s8jQciCjTPHE17sa8/TNaafYiU0SrveBN5FANHgCuD gULdPPdUUxgOA7BYfJZe5BoFW6olZc6QiF1QGWGcJlusPl0sIYZzSTW2dU6OymZf Yb1HQzC0TaghhAJnXHf56C+tFAv6kJ23sO6s9Wns2wjub1OUIVrO3wG3318gn4vF YLMWe57MNsuglW3NV9DljeZCyj0ULgzLPKwI9UDEEjH3i6j4PoIjwBx8Zct5AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUe3D5JlVwWFWzrtqV4ur3ekiRE5cwHwYDVR0j BBgwFoAUQIOVkUoadP9OarHeBj+Cxh4IAfIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NzhjM2M2OS0zNmQwLTRhZTgtYThkZi02M2QzZjQ0Y2NkOGQvMC80MDgzOTU5MTRB MUE3NEZGNEU2QUIxREUwNjNGODJDNjFFMDgwMUYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDA4Mzk1OTE0QTFBNzRGRjRFNkFCMURFMDYzRjgyQzYxRTA4 MDFGMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M3OGMzYzY5LTM2ZDAtNGFlOC1h OGRmLTYzZDNmNDRjY2Q4ZC8wLzMxMzAzMzJlMzEzNDMzMmUzMjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ48UMA0GCSqG SIb3DQEBCwUAA4IBAQAQUpKc3TG36PfTPIzbxjWdw/TsjIi0IvfXX0tkp2cNrBys 05faU152V816+XKIkC8hGKxTOWoi5kF9VM2Qdf9m4H4zH648U5l0IHVZebAtiM4Z g77WGYmgfRZb131/oeqh/ODPxHcURxF8MO56W6t8Ya1pbwrOQYvVyOnfht0oEE0b DvvUjKa1cNUVce5EPuh8uS4DZojnEXxlWo2kIQtpjkmvEiEj6v04hY9Uob4CQKSk VpYF16Pk4IzD9YpQwbLEWSUsFmizDbCH6mlJzSaLMztycCxEzWNnZHYgqhZol2Kp sUP/+jC05CZmh1jJMvV+BiZdmJb4cW3qMWXZAE8o -----END CERTIFICATE-----Generated at Fri Nov 22 09:39:13 2024 by rpki-client on console-ams.rpki-client.org