$ rpki-client -vvf repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235342e302f32342d3234203d3e20313333373939.roa File: 3130332e34322e3235342e302f32342d3234203d3e20313333373939.roa (raw, json) Hash identifier: KjMxjvExxv5WM0e+RcleaNj9WGu1qc5KM8bCCHJf5mE= Subject key identifier: 60:9B:03:F5:4E:D1:1F:AA:BA:A0:A0:FF:91:A2:80:50:13:EB:0F:19 Certificate issuer: /CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Certificate serial: 43C225ECE8FA78BED54EE0EAA7F2F8647B1AA896 Authority key identifier: 10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235342e302f32342d3234203d3e20313333373939.roa Signing time: Sat 04 May 2024 16:13:07 +0000 ROA not before: Sat 04 May 2024 16:08:07 +0000 ROA not after: Sat 03 May 2025 16:13:07 +0000 asID: 133799 IP address blocks: 103.42.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Sep 2024 06:11:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:c2:25:ec:e8:fa:78:be:d5:4e:e0:ea:a7:f2:f8:64:7b:1a:a8:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Validity Not Before: May 4 16:08:07 2024 GMT Not After : May 3 16:13:07 2025 GMT Subject: CN=609B03F54ED11FAABAA0A0FF91A2805013EB0F19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:50:fe:f6:c3:eb:34:c7:6d:a0:42:94:de:d5: 53:42:39:c1:f5:7c:06:74:20:b5:5d:c9:3b:f9:db: 36:52:2b:3f:dc:0a:9b:ad:96:63:b8:75:15:30:1d: f5:3b:6e:a4:be:f3:39:2e:00:29:1a:92:d8:d2:8f: 4c:a3:b9:32:f2:ac:50:84:27:c1:e4:cd:c8:f7:f2: 01:3d:07:a2:13:93:48:e2:f6:e5:83:00:ef:32:f4: af:f6:48:bf:cc:91:c2:af:8d:d7:f5:5d:3f:f2:1f: d8:95:ba:ae:b3:45:d3:17:3c:78:47:1e:ee:21:47: 61:7a:ae:d4:79:53:be:d7:cd:dd:e3:71:33:ca:08: bb:4b:66:24:a9:6e:c8:4b:29:1b:3a:25:c8:71:90: af:b6:eb:26:5d:38:b3:e2:ae:8e:21:1b:80:b3:9f: bc:6a:b2:b4:5a:c7:b2:d9:b5:f6:e3:7e:6e:1e:b9: 0e:3f:7a:0d:b5:0b:3c:ab:95:85:3e:f8:27:cb:4e: 80:b2:45:3f:60:9c:95:e9:87:e4:e7:8d:ad:4d:41: 96:e0:12:fb:8c:39:d8:0e:74:2d:6c:be:7a:d2:d5: c6:0a:97:74:da:61:0b:97:ce:cf:ba:80:f2:6c:6e: b2:04:c2:d0:0c:e0:9c:3f:ee:8f:e2:72:2a:88:03: bd:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:9B:03:F5:4E:D1:1F:AA:BA:A0:A0:FF:91:A2:80:50:13:EB:0F:19 X509v3 Authority Key Identifier: keyid:10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235342e302f32342d3234203d3e20313333373939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.42.254.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:4b:e6:ce:a2:75:3c:87:3f:02:76:22:99:6c:25:f4:00:76: e7:49:76:a7:f0:f1:f3:b4:4f:ae:02:2c:0a:84:a0:78:b7:38: 0d:1b:70:16:d4:4c:98:55:25:8a:d3:d1:0d:93:16:f8:93:e1: 27:d2:b0:cd:89:f9:7f:75:67:13:63:92:59:6b:5b:75:1d:75: 08:77:23:17:19:3c:05:9b:af:90:0a:5c:88:6b:7b:f1:0d:ef: d3:67:5f:c8:49:63:c5:75:2d:88:85:b6:50:7d:bb:6e:98:d7: 39:ba:78:4e:53:1b:c4:54:e8:17:84:ef:a4:fc:1d:75:a1:47: 37:6a:01:5c:dd:d7:39:fd:20:1b:b6:70:26:b6:21:3f:57:7b: cb:f5:b0:c4:9f:9d:10:25:68:40:19:e5:9d:e6:ab:6e:e1:81: 8f:8e:34:b6:7d:72:0d:fc:ae:c3:1f:35:bc:ae:44:5b:1a:41: 03:da:a1:54:9d:d6:a9:d7:b5:09:57:5d:91:a4:23:4b:66:95: e3:a9:0a:53:7e:ec:95:cc:14:32:8a:af:36:01:ca:48:6d:82: 31:fc:cd:00:8d:9f:7c:ed:1e:bf:79:2b:59:bc:d2:c1:ce:81: 65:63:d0:24:13:bc:77:01:50:d3:26:f0:07:e7:e6:59:6c:8d: 6d:9d:19:dc -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQ8Il7Oj6eL7VTuDqp/L4ZHsaqJYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZD MTIwMjg1MzAeFw0yNDA1MDQxNjA4MDdaFw0yNTA1MDMxNjEzMDdaMDMxMTAvBgNV BAMTKDYwOUIwM0Y1NEVEMTFGQUFCQUEwQTBGRjkxQTI4MDUwMTNFQjBGMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCUP72w+s0x22gQpTe1VNCOcH1 fAZ0ILVdyTv52zZSKz/cCputlmO4dRUwHfU7bqS+8zkuACkaktjSj0yjuTLyrFCE J8Hkzcj38gE9B6ITk0ji9uWDAO8y9K/2SL/MkcKvjdf1XT/yH9iVuq6zRdMXPHhH Hu4hR2F6rtR5U77Xzd3jcTPKCLtLZiSpbshLKRs6JchxkK+26yZdOLPiro4hG4Cz n7xqsrRax7LZtfbjfm4euQ4/eg21CzyrlYU++CfLToCyRT9gnJXph+Tnja1NQZbg EvuMOdgOdC1svnrS1cYKl3TaYQuXzs+6gPJsbrIEwtAM4Jw/7o/iciqIA72jAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUYJsD9U7RH6q6oKD/kaKAUBPrDxkwHwYDVR0j BBgwFoAUEIJhsrWh88yCjvKlMu2U38EgKFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YjYzZjc3MS1hOTVmLTRiNTMtODdiYy04YmZmNTA0ZGExZjQvMC8xMDgyNjFCMkI1 QTFGM0NDODI4RUYyQTUzMkVEOTRERkMxMjAyODUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZDMTIw Mjg1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NiNjNmNzcxLWE5NWYtNGI1My04 N2JjLThiZmY1MDRkYTFmNC8wLzMxMzAzMzJlMzQzMjJlMzIzNTM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzczOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZyr+MA0GCSqG SIb3DQEBCwUAA4IBAQAaS+bOonU8hz8CdiKZbCX0AHbnSXan8PHztE+uAiwKhKB4 tzgNG3AW1EyYVSWK09ENkxb4k+En0rDNifl/dWcTY5JZa1t1HXUIdyMXGTwFm6+Q ClyIa3vxDe/TZ1/ISWPFdS2IhbZQfbtumNc5unhOUxvEVOgXhO+k/B11oUc3agFc 3dc5/SAbtnAmtiE/V3vL9bDEn50QJWhAGeWd5qtu4YGPjjS2fXIN/K7DHzW8rkRb GkED2qFUndap17UJV12RpCNLZpXjqQpTfuyVzBQyiq82AcpIbYIx/M0AjZ987R6/ eStZvNLBzoFlY9AkE7x3AVDTJvAH5+ZZbI1tnRnc -----END CERTIFICATE-----Generated at Fri Sep 27 12:52:46 2024 by rpki-client on console-ams.rpki-client.org