$ rpki-client -vvf repo-rpki.idnic.net/repo/ca96f458-ce5e-41a2-a232-9964f4988a06/0/3130332e3134342e3132392e302f32342d3234203d3e20313339343333.roa File: 3130332e3134342e3132392e302f32342d3234203d3e20313339343333.roa (raw, json) Hash identifier: tzUv6ZoVBauP5SIKaVDlU1vK/lJ77kKziRyhRQRActU= Subject key identifier: 32:3F:7D:AD:B0:79:89:DA:E5:A8:3C:0B:78:53:5D:77:97:30:FE:A1 Certificate issuer: /CN=0D800491C03BFB579D58FFC7A24CAA8710845A9C Certificate serial: 574D11307FBFAB7B3853BBB04AD52E427436CF81 Authority key identifier: 0D:80:04:91:C0:3B:FB:57:9D:58:FF:C7:A2:4C:AA:87:10:84:5A:9C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D800491C03BFB579D58FFC7A24CAA8710845A9C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ca96f458-ce5e-41a2-a232-9964f4988a06/0/3130332e3134342e3132392e302f32342d3234203d3e20313339343333.roa Signing time: Wed 16 Oct 2024 11:00:00 +0000 ROA not before: Wed 16 Oct 2024 10:55:00 +0000 ROA not after: Wed 15 Oct 2025 11:00:00 +0000 asID: 139433 IP address blocks: 103.144.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ca96f458-ce5e-41a2-a232-9964f4988a06/0/0D800491C03BFB579D58FFC7A24CAA8710845A9C.crl rsync://repo-rpki.idnic.net/repo/ca96f458-ce5e-41a2-a232-9964f4988a06/0/0D800491C03BFB579D58FFC7A24CAA8710845A9C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D800491C03BFB579D58FFC7A24CAA8710845A9C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 22:45:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:4d:11:30:7f:bf:ab:7b:38:53:bb:b0:4a:d5:2e:42:74:36:cf:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0D800491C03BFB579D58FFC7A24CAA8710845A9C Validity Not Before: Oct 16 10:55:00 2024 GMT Not After : Oct 15 11:00:00 2025 GMT Subject: CN=323F7DADB07989DAE5A83C0B78535D779730FEA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1e:84:d9:71:1e:fa:db:56:87:cb:ea:34:a5: 61:25:02:48:08:f6:cc:47:59:a0:58:7c:88:5e:21: 9f:7f:a8:f6:0f:4d:a0:e8:07:48:ef:c1:0f:8b:f9: 7f:29:25:66:46:8f:af:5c:26:41:a5:4b:1c:a2:de: 7f:95:0a:cc:19:ea:d8:79:39:be:9b:89:51:10:8a: 7a:5c:41:8e:c1:85:71:81:08:ca:40:ce:58:b9:ea: a6:3b:47:f5:43:67:8d:a6:c5:2e:93:23:75:a9:89: bf:1c:a5:ec:a6:15:8e:d9:cd:c2:55:eb:0c:67:03: 3a:21:e1:8d:0d:64:ff:dd:a3:8c:ae:6e:83:25:12: 07:5f:9b:a2:e7:d6:61:ec:7c:3c:6e:bc:e8:18:ed: 6d:71:52:79:98:95:17:e7:e4:73:6e:c4:59:cf:e5: 0e:e5:21:d9:a3:df:c8:1c:56:dc:be:04:70:72:4c: 8c:93:53:6b:f5:a3:4f:23:f1:f4:47:81:1a:68:d2: 2d:42:6a:0e:f1:85:ad:dd:90:b2:35:c6:f7:db:86: 38:36:93:0b:45:84:2b:4c:da:08:ff:32:f4:3b:a8: d7:24:ca:95:d3:0b:e6:1c:9c:77:d1:77:43:c2:56: 55:53:c9:25:ad:7b:e2:d2:41:b2:f2:b9:74:68:76: 7d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:3F:7D:AD:B0:79:89:DA:E5:A8:3C:0B:78:53:5D:77:97:30:FE:A1 X509v3 Authority Key Identifier: keyid:0D:80:04:91:C0:3B:FB:57:9D:58:FF:C7:A2:4C:AA:87:10:84:5A:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ca96f458-ce5e-41a2-a232-9964f4988a06/0/0D800491C03BFB579D58FFC7A24CAA8710845A9C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0D800491C03BFB579D58FFC7A24CAA8710845A9C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ca96f458-ce5e-41a2-a232-9964f4988a06/0/3130332e3134342e3132392e302f32342d3234203d3e20313339343333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.129.0/24 Signature Algorithm: sha256WithRSAEncryption 76:0d:f7:e4:b6:60:65:3d:3e:30:d1:35:d0:1d:2e:b2:19:3a: 4b:16:1e:e5:15:f4:8a:56:bd:f6:d9:14:6b:42:27:b0:ba:29: ed:27:06:7a:03:0a:00:ae:38:e5:f6:11:52:bb:74:d2:e0:f2: 8d:42:85:3c:94:2f:7d:78:9c:35:b2:3c:0e:34:2e:88:82:d9: 9c:2a:b5:96:b1:00:3b:b3:90:98:8a:44:8a:21:19:a5:d2:b0: f2:bc:b1:00:dc:51:00:f9:90:18:cc:d3:de:15:22:81:e9:0a: 4d:46:15:4d:ff:af:d9:96:fe:e5:61:c2:87:d2:10:9e:85:98: 15:3c:1b:5a:5c:42:fe:0a:73:db:c1:90:58:95:b3:4b:2c:f2: ea:fd:ca:1d:96:01:02:41:6b:ee:58:f4:56:95:ab:72:02:52: 39:68:d1:91:44:c3:f5:46:db:ca:f3:8a:a9:54:31:17:4f:4e: f4:55:38:31:1d:43:e4:4e:6d:77:1f:f2:c1:db:0e:6e:c2:d0: aa:74:fe:85:ab:81:b5:e0:a2:61:7c:d3:be:13:ae:2b:b0:c4: 3f:d4:2a:82:9b:57:43:36:3a:44:da:d9:fc:51:cc:1c:b8:17: 82:4f:6e:9f:51:4f:64:5d:10:8b:28:93:54:09:72:95:5d:c4: e8:68:cd:1b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUV00RMH+/q3s4U7uwStUuQnQ2z4EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEQ4MDA0OTFDMDNCRkI1NzlENThGRkM3QTI0Q0FBODcx MDg0NUE5QzAeFw0yNDEwMTYxMDU1MDBaFw0yNTEwMTUxMTAwMDBaMDMxMTAvBgNV BAMTKDMyM0Y3REFEQjA3OTg5REFFNUE4M0MwQjc4NTM1RDc3OTczMEZFQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxHoTZcR7621aHy+o0pWElAkgI 9sxHWaBYfIheIZ9/qPYPTaDoB0jvwQ+L+X8pJWZGj69cJkGlSxyi3n+VCswZ6th5 Ob6biVEQinpcQY7BhXGBCMpAzli56qY7R/VDZ42mxS6TI3Wpib8cpeymFY7ZzcJV 6wxnAzoh4Y0NZP/do4yuboMlEgdfm6Ln1mHsfDxuvOgY7W1xUnmYlRfn5HNuxFnP 5Q7lIdmj38gcVty+BHByTIyTU2v1o08j8fRHgRpo0i1Cag7xha3dkLI1xvfbhjg2 kwtFhCtM2gj/MvQ7qNckypXTC+YcnHfRd0PCVlVTySWte+LSQbLyuXRodn2TAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUMj99rbB5idrlqDwLeFNdd5cw/qEwHwYDVR0j BBgwFoAUDYAEkcA7+1edWP/HokyqhxCEWpwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YTk2ZjQ1OC1jZTVlLTQxYTItYTIzMi05OTY0ZjQ5ODhhMDYvMC8wRDgwMDQ5MUMw M0JGQjU3OUQ1OEZGQzdBMjRDQUE4NzEwODQ1QTlDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEQ4MDA0OTFDMDNCRkI1NzlENThGRkM3QTI0Q0FBODcxMDg0 NUE5Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhOTZmNDU4LWNlNWUtNDFhMi1h MjMyLTk5NjRmNDk4OGEwNi8wLzMxMzAzMzJlMzEzNDM0MmUzMTMyMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMzMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkIEwDQYJ KoZIhvcNAQELBQADggEBAHYN9+S2YGU9PjDRNdAdLrIZOksWHuUV9IpWvfbZFGtC J7C6Ke0nBnoDCgCuOOX2EVK7dNLg8o1ChTyUL314nDWyPA40LoiC2ZwqtZaxADuz kJiKRIohGaXSsPK8sQDcUQD5kBjM094VIoHpCk1GFU3/r9mW/uVhwofSEJ6FmBU8 G1pcQv4Kc9vBkFiVs0ss8ur9yh2WAQJBa+5Y9FaVq3ICUjlo0ZFEw/VG28rziqlU MRdPTvRVODEdQ+RObXcf8sHbDm7C0Kp0/oWrgbXgomF8074TriuwxD/UKoKbV0M2 OkTa2fxRzBy4F4JPbp9RT2RdEIsok1QJcpVdxOhozRs= -----END CERTIFICATE-----Generated at Thu Nov 28 00:13:57 2024 by rpki-client on console-fra.rpki-client.org