$ rpki-client -vvf repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235352e302f32342d3234203d3e20313333373939.roa File: 3130332e34322e3235352e302f32342d3234203d3e20313333373939.roa (raw, json) Hash identifier: Kv9XshcpB7TZvzMgSiRNinGPZ8vMcr00PAHAYOovTjc= Subject key identifier: 52:AE:BB:94:0E:BE:E6:1B:25:8F:74:52:C1:38:CB:36:06:EE:FC:DD Certificate issuer: /CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Certificate serial: 31CFC27E82E9A3B72375760B2BAF488C2ADE457A Authority key identifier: 10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235352e302f32342d3234203d3e20313333373939.roa Signing time: Sat 04 May 2024 16:13:31 +0000 ROA not before: Sat 04 May 2024 16:08:31 +0000 ROA not after: Sat 03 May 2025 16:13:31 +0000 asID: 133799 IP address blocks: 103.42.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:25:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:cf:c2:7e:82:e9:a3:b7:23:75:76:0b:2b:af:48:8c:2a:de:45:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Validity Not Before: May 4 16:08:31 2024 GMT Not After : May 3 16:13:31 2025 GMT Subject: CN=52AEBB940EBEE61B258F7452C138CB3606EEFCDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:8d:22:51:60:43:7b:bb:32:7b:f6:72:d5:d0: 65:c3:9a:66:c8:0d:83:fb:4f:17:9a:b2:4c:b3:f8: 08:1b:d1:d1:c3:0b:59:8b:57:89:fd:c1:26:7c:61: e9:24:64:b3:85:e1:c4:84:cd:89:bd:ca:da:ea:1b: c7:33:71:85:a0:61:ab:76:be:25:4c:c1:83:29:2c: c3:79:7c:1e:18:03:a0:05:2a:dd:bc:bd:d0:7a:e6: 10:27:7e:95:3a:50:26:6d:70:81:2a:12:c5:ad:78: bb:07:43:4c:65:39:53:dd:6b:e0:b9:d3:79:8f:43: 91:db:cb:bd:14:2d:d6:b0:eb:71:9b:6e:63:c1:99: b8:61:20:92:b3:c2:11:ba:34:c0:37:be:b5:69:fb: ac:88:23:32:f9:0a:a2:17:04:18:78:8b:56:54:07: 31:92:fe:0a:75:50:34:d2:83:50:7e:85:69:f7:d1: 2d:d8:c1:e0:c0:5c:cc:d6:5b:06:b7:98:c9:92:50: 16:e2:57:d7:a6:59:1a:27:ec:42:d0:08:ba:89:05: fb:de:8e:1f:37:06:f1:b0:74:1c:2d:fc:c6:3d:b9: f3:b0:8b:37:ee:eb:7e:3c:38:e7:41:cb:81:35:c0: 76:88:92:3a:da:9f:a3:e3:b1:85:1b:42:e0:2a:4b: e5:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:AE:BB:94:0E:BE:E6:1B:25:8F:74:52:C1:38:CB:36:06:EE:FC:DD X509v3 Authority Key Identifier: keyid:10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/3130332e34322e3235352e302f32342d3234203d3e20313333373939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.42.255.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:66:a3:44:fb:42:a3:fc:bd:5c:eb:3a:d1:d9:c0:86:96:9f: 73:78:e8:7f:9f:de:aa:a5:75:43:fc:e2:24:7a:90:db:02:2d: c8:b9:7b:30:7a:42:d6:16:dd:cf:ba:cc:ff:a8:01:f5:4e:04: f5:1a:b2:88:b8:46:3b:cf:25:2c:6e:e6:1b:b0:68:98:8e:8b: 81:91:b1:20:25:cc:1a:7c:9d:59:87:bc:1f:99:b7:8e:ff:c9: 6d:77:32:3f:a7:71:71:89:19:1e:a5:84:85:3f:3c:02:fd:3c: 05:98:50:c3:f2:ed:02:4d:e4:72:c0:32:98:21:27:b6:53:c7: 29:91:12:49:e7:02:91:c9:1d:9b:97:ed:e0:f4:25:52:66:c2: 81:a9:01:8a:64:a3:c7:37:95:50:45:94:2b:6b:ee:a4:db:92: 86:0a:51:08:ed:80:9a:11:53:a0:e5:2e:d1:14:37:9e:1d:19: 74:b8:12:1f:d6:e6:23:6d:bf:2d:20:c8:47:7c:5c:50:7d:af: 68:b0:f2:78:f7:9b:16:6d:ac:5b:11:12:33:c6:b6:a8:b3:a0: c1:43:f0:09:0d:5a:10:89:7a:51:db:5d:6c:38:ee:2b:18:41: ca:35:62:c1:0a:5d:b5:35:d5:f2:32:e2:5e:f0:bf:1f:17:8e: 4a:5b:7d:ec -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMc/CfoLpo7cjdXYLK69IjCreRXowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZD MTIwMjg1MzAeFw0yNDA1MDQxNjA4MzFaFw0yNTA1MDMxNjEzMzFaMDMxMTAvBgNV BAMTKDUyQUVCQjk0MEVCRUU2MUIyNThGNzQ1MkMxMzhDQjM2MDZFRUZDREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvjSJRYEN7uzJ79nLV0GXDmmbI DYP7Txeaskyz+Agb0dHDC1mLV4n9wSZ8YekkZLOF4cSEzYm9ytrqG8czcYWgYat2 viVMwYMpLMN5fB4YA6AFKt28vdB65hAnfpU6UCZtcIEqEsWteLsHQ0xlOVPda+C5 03mPQ5Hby70ULdaw63GbbmPBmbhhIJKzwhG6NMA3vrVp+6yIIzL5CqIXBBh4i1ZU BzGS/gp1UDTSg1B+hWn30S3YweDAXMzWWwa3mMmSUBbiV9emWRon7ELQCLqJBfve jh83BvGwdBwt/MY9ufOwizfu6348OOdBy4E1wHaIkjran6PjsYUbQuAqS+URAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUq67lA6+5hslj3RSwTjLNgbu/N0wHwYDVR0j BBgwFoAUEIJhsrWh88yCjvKlMu2U38EgKFMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YjYzZjc3MS1hOTVmLTRiNTMtODdiYy04YmZmNTA0ZGExZjQvMC8xMDgyNjFCMkI1 QTFGM0NDODI4RUYyQTUzMkVEOTRERkMxMjAyODUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTA4MjYxQjJCNUExRjNDQzgyOEVGMkE1MzJFRDk0REZDMTIw Mjg1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NiNjNmNzcxLWE5NWYtNGI1My04 N2JjLThiZmY1MDRkYTFmNC8wLzMxMzAzMzJlMzQzMjJlMzIzNTM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMzMzczOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZyr/MA0GCSqG SIb3DQEBCwUAA4IBAQArZqNE+0Kj/L1c6zrR2cCGlp9zeOh/n96qpXVD/OIkepDb Ai3IuXswekLWFt3Pusz/qAH1TgT1GrKIuEY7zyUsbuYbsGiYjouBkbEgJcwafJ1Z h7wfmbeO/8ltdzI/p3FxiRkepYSFPzwC/TwFmFDD8u0CTeRywDKYISe2U8cpkRJJ 5wKRyR2bl+3g9CVSZsKBqQGKZKPHN5VQRZQra+6k25KGClEI7YCaEVOg5S7RFDee HRl0uBIf1uYjbb8tIMhHfFxQfa9osPJ495sWbaxbERIzxraos6DBQ/AJDVoQiXpR 211sOO4rGEHKNWLBCl21NdXyMuJe8L8fF45KW33s -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:37 2024 by rpki-client on console-ams.rpki-client.org