$ rpki-client -vvf repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/3130332e3138382e3137332e302f32342d3234203d3e20313439373336.roa File: 3130332e3138382e3137332e302f32342d3234203d3e20313439373336.roa (raw, json) Hash identifier: CFUPD+5VevYKSpAUr4/yA/IYEJr/9pewXF0HRLkN4A0= Subject key identifier: 4B:2A:49:95:9C:E6:DA:43:B8:E8:01:B6:5C:57:CE:CF:29:C3:7A:1A Certificate issuer: /CN=9A499585F4E18B9B36BD842B17BE3925C9A27D43 Certificate serial: 04634F6A176F70CAA8AE425BF35D6224F74B2451 Authority key identifier: 9A:49:95:85:F4:E1:8B:9B:36:BD:84:2B:17:BE:39:25:C9:A2:7D:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/3130332e3138382e3137332e302f32342d3234203d3e20313439373336.roa Signing time: Thu 10 Oct 2024 01:57:52 +0000 ROA not before: Thu 10 Oct 2024 01:52:52 +0000 ROA not after: Thu 09 Oct 2025 01:57:52 +0000 asID: 149736 IP address blocks: 103.188.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/9A499585F4E18B9B36BD842B17BE3925C9A27D43.crl rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/9A499585F4E18B9B36BD842B17BE3925C9A27D43.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 08:29:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:63:4f:6a:17:6f:70:ca:a8:ae:42:5b:f3:5d:62:24:f7:4b:24:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A499585F4E18B9B36BD842B17BE3925C9A27D43 Validity Not Before: Oct 10 01:52:52 2024 GMT Not After : Oct 9 01:57:52 2025 GMT Subject: CN=4B2A49959CE6DA43B8E801B65C57CECF29C37A1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c8:2c:bc:4a:95:8f:91:ec:d5:e2:8e:98:43: 56:81:3a:1b:2e:1a:de:69:02:a9:93:49:c1:b3:e1: 45:01:14:1c:bc:92:40:3f:7f:46:99:47:b2:a6:31: 84:fc:96:5d:46:85:e4:2a:a7:09:65:f4:aa:13:f6: c6:f8:c3:fe:ff:a1:52:7b:77:b2:c0:2d:b8:13:5a: 34:dd:86:28:6d:59:a6:34:d9:12:b3:72:8f:63:4a: e9:41:b8:75:ae:16:96:a9:bb:b7:42:f5:06:68:a9: 7c:46:07:ac:f0:9f:e7:9b:0a:82:6e:49:ed:a1:e0: 6a:51:6a:ca:04:5c:ed:34:ba:e4:29:60:fe:22:a4: 7a:39:9c:35:1f:94:fb:93:db:66:4b:72:4d:61:c5: 81:11:d4:13:09:2f:f2:20:d9:45:19:e4:ed:b3:d5: bf:f0:8f:f4:11:c8:5d:7f:c3:43:73:e8:9a:a2:95: 43:72:fe:79:30:cb:95:8b:61:80:ae:43:2f:f7:05: b3:3d:02:1c:2a:c3:ea:4f:d6:76:fd:c4:5d:71:13: 91:ec:73:40:0a:28:79:9d:43:2b:8c:92:db:06:d5: 52:8e:eb:e5:a1:b7:94:9a:33:bc:de:3d:fd:8d:85: 14:be:d1:14:41:e2:f7:c8:f3:c9:92:47:55:09:7d: dc:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:2A:49:95:9C:E6:DA:43:B8:E8:01:B6:5C:57:CE:CF:29:C3:7A:1A X509v3 Authority Key Identifier: keyid:9A:49:95:85:F4:E1:8B:9B:36:BD:84:2B:17:BE:39:25:C9:A2:7D:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/9A499585F4E18B9B36BD842B17BE3925C9A27D43.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A499585F4E18B9B36BD842B17BE3925C9A27D43.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca8b54e6-1015-48eb-9bbd-51c16cd45445/0/3130332e3138382e3137332e302f32342d3234203d3e20313439373336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.188.173.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:20:d8:83:d0:e9:34:8e:c1:2a:3c:a2:2b:89:1f:d1:f7:1d: 60:a0:84:63:ee:42:b6:40:65:b1:a8:24:8d:29:32:53:70:a6: 71:47:b4:35:5d:a3:64:d0:27:8d:1b:db:37:d7:35:a6:ce:40: 28:21:81:66:88:01:7f:20:7d:4d:d9:bb:b8:ed:09:59:8d:3c: d1:c1:13:f2:e3:9d:8a:7f:18:f7:0b:6f:9b:74:43:0b:bb:d0: 04:ba:2b:6e:1a:0a:17:33:63:06:05:63:f2:45:a0:50:84:39: 33:d6:b1:05:f7:67:62:4b:cd:9b:c0:4b:12:86:60:59:cd:ca: f6:26:ea:01:9d:76:d8:1c:fc:5b:4a:50:4d:39:f6:7c:ec:47: fa:c1:c8:54:d4:20:25:ce:b5:40:9f:80:c6:73:67:71:df:c5: 88:22:15:b4:21:e1:fc:84:08:2c:6b:c3:11:c5:73:44:95:3b: d5:00:e7:b0:78:40:d4:58:b2:6f:0b:5a:4e:15:c3:04:02:c0: a2:5f:0b:1b:7f:c4:a9:3d:f2:b3:c6:d6:b4:9f:07:58:3e:42: bb:0b:c4:f0:ba:05:2a:c0:ac:af:6b:00:d6:7c:cb:82:1b:c9: ae:2c:a6:52:35:cc:ba:f8:d8:03:3d:6c:02:40:49:6e:77:f6: 3a:aa:c0:62 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUBGNPahdvcMqorkJb811iJPdLJFEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE0OTk1ODVGNEUxOEI5QjM2QkQ4NDJCMTdCRTM5MjVD OUEyN0Q0MzAeFw0yNDEwMTAwMTUyNTJaFw0yNTEwMDkwMTU3NTJaMDMxMTAvBgNV BAMTKDRCMkE0OTk1OUNFNkRBNDNCOEU4MDFCNjVDNTdDRUNGMjlDMzdBMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDByCy8SpWPkezV4o6YQ1aBOhsu Gt5pAqmTScGz4UUBFBy8kkA/f0aZR7KmMYT8ll1GheQqpwll9KoT9sb4w/7/oVJ7 d7LALbgTWjTdhihtWaY02RKzco9jSulBuHWuFpapu7dC9QZoqXxGB6zwn+ebCoJu Se2h4GpRasoEXO00uuQpYP4ipHo5nDUflPuT22ZLck1hxYER1BMJL/Ig2UUZ5O2z 1b/wj/QRyF1/w0Nz6JqilUNy/nkwy5WLYYCuQy/3BbM9Ahwqw+pP1nb9xF1xE5Hs c0AKKHmdQyuMktsG1VKO6+Wht5SaM7zePf2NhRS+0RRB4vfI88mSR1UJfdw1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUSypJlZzm2kO46AG2XFfOzynDehowHwYDVR0j BBgwFoAUmkmVhfThi5s2vYQrF745JcmifUMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YThiNTRlNi0xMDE1LTQ4ZWItOWJiZC01MWMxNmNkNDU0NDUvMC85QTQ5OTU4NUY0 RTE4QjlCMzZCRDg0MkIxN0JFMzkyNUM5QTI3RDQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE0OTk1ODVGNEUxOEI5QjM2QkQ4NDJCMTdCRTM5MjVDOUEy N0Q0My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhOGI1NGU2LTEwMTUtNDhlYi05 YmJkLTUxYzE2Y2Q0NTQ0NS8wLzMxMzAzMzJlMzEzODM4MmUzMTM3MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzMzMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnvK0wDQYJ KoZIhvcNAQELBQADggEBAGwg2IPQ6TSOwSo8oiuJH9H3HWCghGPuQrZAZbGoJI0p MlNwpnFHtDVdo2TQJ40b2zfXNabOQCghgWaIAX8gfU3Zu7jtCVmNPNHBE/LjnYp/ GPcLb5t0Qwu70AS6K24aChczYwYFY/JFoFCEOTPWsQX3Z2JLzZvASxKGYFnNyvYm 6gGddtgc/FtKUE059nzsR/rByFTUICXOtUCfgMZzZ3HfxYgiFbQh4fyECCxrwxHF c0SVO9UA57B4QNRYsm8LWk4VwwQCwKJfCxt/xKk98rPG1rSfB1g+QrsLxPC6BSrA rK9rANZ8y4Ibya4splI1zLr42AM9bAJASW539jqqwGI= -----END CERTIFICATE-----Generated at Mon Nov 25 09:02:06 2024 by rpki-client on console-ams.rpki-client.org