$ rpki-client -vvf repo-rpki.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/3130332e3134352e3230302e302f32332d3234203d3e20313339343530.roa File: 3130332e3134352e3230302e302f32332d3234203d3e20313339343530.roa (raw, json) Hash identifier: 4Mipt1XYo4EWUAqCZzxtIw2BCKhu7p3oR4rDcAMmgx4= Subject key identifier: 42:24:36:2D:A1:3C:33:7E:D0:17:21:E0:86:DA:BB:DD:52:B1:44:8B Certificate issuer: /CN=789C41F8FF72D4E00F36194AF24A543B3264FF5C Certificate serial: 40FA7C44FCA1AAD564E7B09A6DCD6A677F678C29 Authority key identifier: 78:9C:41:F8:FF:72:D4:E0:0F:36:19:4A:F2:4A:54:3B:32:64:FF:5C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789C41F8FF72D4E00F36194AF24A543B3264FF5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/3130332e3134352e3230302e302f32332d3234203d3e20313339343530.roa Signing time: Thu 21 Mar 2024 06:00:01 +0000 ROA not before: Thu 21 Mar 2024 05:55:01 +0000 ROA not after: Thu 20 Mar 2025 06:00:01 +0000 asID: 139450 IP address blocks: 103.145.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/789C41F8FF72D4E00F36194AF24A543B3264FF5C.crl rsync://repo-rpki.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/789C41F8FF72D4E00F36194AF24A543B3264FF5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789C41F8FF72D4E00F36194AF24A543B3264FF5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:fa:7c:44:fc:a1:aa:d5:64:e7:b0:9a:6d:cd:6a:67:7f:67:8c:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=789C41F8FF72D4E00F36194AF24A543B3264FF5C Validity Not Before: Mar 21 05:55:01 2024 GMT Not After : Mar 20 06:00:01 2025 GMT Subject: CN=4224362DA13C337ED01721E086DABBDD52B1448B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:91:d0:0e:ff:84:7d:30:ab:9b:84:07:48:64: 33:bb:3d:ea:31:66:41:48:51:eb:cf:01:d8:32:72: 6c:08:74:fd:1b:3f:7d:a5:32:53:2a:25:08:61:82: 46:8d:9e:b4:b3:16:31:1d:ad:3e:41:5f:cb:72:d1: 94:5a:e0:1d:cb:f6:59:96:14:cd:2a:ac:dd:aa:9b: ca:be:ec:03:97:04:d0:85:ed:3a:cc:f1:bc:eb:f5: 91:75:22:d3:fb:29:6f:16:b0:f6:7a:1f:8a:1b:c9: 1c:b3:9b:8c:88:60:3a:e1:03:db:65:69:04:55:2b: 2e:03:92:91:5a:c6:a6:03:70:30:80:5a:4d:41:56: 18:a8:d6:32:3e:c2:ca:99:a3:68:8c:ca:99:79:49: c5:b0:f8:6b:a0:21:69:7c:9a:68:73:6c:e2:a0:fe: ea:bb:d2:2c:01:12:03:79:61:08:e1:ca:c1:e6:a5: 9a:6c:83:dc:a0:a0:82:46:b1:cc:1a:14:fc:65:80: f3:b2:b4:63:e1:37:42:fa:ec:4b:c0:ba:2c:59:bc: 56:98:aa:88:a5:4b:50:28:35:b5:ac:ca:7b:1f:6c: 3f:52:b8:23:89:71:30:24:20:0b:10:06:ee:dc:bf: a7:ae:d9:ae:cb:b0:91:0f:da:e8:06:4d:c7:37:7a: e4:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:24:36:2D:A1:3C:33:7E:D0:17:21:E0:86:DA:BB:DD:52:B1:44:8B X509v3 Authority Key Identifier: keyid:78:9C:41:F8:FF:72:D4:E0:0F:36:19:4A:F2:4A:54:3B:32:64:FF:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/789C41F8FF72D4E00F36194AF24A543B3264FF5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/789C41F8FF72D4E00F36194AF24A543B3264FF5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ccf1706b-6c17-4786-abd9-47a3844da8f8/0/3130332e3134352e3230302e302f32332d3234203d3e20313339343530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.145.200.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:0c:ba:8b:2c:5b:e4:b4:e7:70:aa:7b:63:70:a1:35:de:26: 4a:39:06:6c:41:fb:fa:f4:6f:a1:b8:f8:04:74:cd:6c:42:0f: c2:49:0b:1e:28:c5:b3:77:84:4f:73:b0:f8:5e:13:49:78:95: 8e:b6:cf:d5:96:05:21:2c:b8:a7:e6:36:7f:de:3d:71:2c:0a: f2:47:5f:ec:bf:9f:86:2f:fb:8e:33:8a:b8:a3:24:ca:49:c8: fc:7e:2d:a5:ef:cc:51:6c:73:61:a5:06:3b:c8:67:8a:29:82: e2:c7:90:d9:9d:ab:ce:2f:2a:83:bb:c3:b3:4a:e4:9b:c2:62: c6:88:0e:64:72:90:65:04:c4:d1:ef:8f:fb:a6:ff:be:25:0b: 2a:99:0e:d4:22:04:d6:36:1f:34:8c:a2:20:53:72:b4:1d:0d: 97:bf:73:ad:78:05:d1:5f:86:72:ae:26:98:1d:16:0f:a0:e7: 82:6f:e9:13:43:db:ec:fe:fc:4c:b6:ec:88:90:b6:c7:a6:74: ea:3c:93:82:96:b4:a8:9b:34:65:27:1e:3c:cf:28:55:dc:8d: 0e:61:f7:dc:3a:5e:30:80:2b:49:c4:a8:ac:69:a2:81:f4:4b: be:00:c5:be:16:c7:1a:6a:31:3a:6c:d7:44:98:ab:d7:75:f9: 8c:e5:3a:a3 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQPp8RPyhqtVk57Cabc1qZ39njCkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzg5QzQxRjhGRjcyRDRFMDBGMzYxOTRBRjI0QTU0M0Iz MjY0RkY1QzAeFw0yNDAzMjEwNTU1MDFaFw0yNTAzMjAwNjAwMDFaMDMxMTAvBgNV BAMTKDQyMjQzNjJEQTEzQzMzN0VEMDE3MjFFMDg2REFCQkRENTJCMTQ0OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYkdAO/4R9MKubhAdIZDO7Peox ZkFIUevPAdgycmwIdP0bP32lMlMqJQhhgkaNnrSzFjEdrT5BX8ty0ZRa4B3L9lmW FM0qrN2qm8q+7AOXBNCF7TrM8bzr9ZF1ItP7KW8WsPZ6H4obyRyzm4yIYDrhA9tl aQRVKy4DkpFaxqYDcDCAWk1BVhio1jI+wsqZo2iMypl5ScWw+GugIWl8mmhzbOKg /uq70iwBEgN5YQjhysHmpZpsg9ygoIJGscwaFPxlgPOytGPhN0L67EvAuixZvFaY qoilS1AoNbWsynsfbD9SuCOJcTAkIAsQBu7cv6eu2a7LsJEP2ugGTcc3euR1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUQiQ2LaE8M37QFyHghtq73VKxRIswHwYDVR0j BBgwFoAUeJxB+P9y1OAPNhlK8kpUOzJk/1wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j Y2YxNzA2Yi02YzE3LTQ3ODYtYWJkOS00N2EzODQ0ZGE4ZjgvMC83ODlDNDFGOEZG NzJENEUwMEYzNjE5NEFGMjRBNTQzQjMyNjRGRjVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzg5QzQxRjhGRjcyRDRFMDBGMzYxOTRBRjI0QTU0M0IzMjY0 RkY1Qy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjZjE3MDZiLTZjMTctNDc4Ni1h YmQ5LTQ3YTM4NDRkYThmOC8wLzMxMzAzMzJlMzEzNDM1MmUzMjMwMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzNDM1MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnkcgwDQYJ KoZIhvcNAQELBQADggEBADsMuossW+S053Cqe2NwoTXeJko5BmxB+/r0b6G4+AR0 zWxCD8JJCx4oxbN3hE9zsPheE0l4lY62z9WWBSEsuKfmNn/ePXEsCvJHX+y/n4Yv +44zirijJMpJyPx+LaXvzFFsc2GlBjvIZ4opguLHkNmdq84vKoO7w7NK5JvCYsaI DmRykGUExNHvj/um/74lCyqZDtQiBNY2HzSMoiBTcrQdDZe/c614BdFfhnKuJpgd Fg+g54Jv6RND2+z+/Ey27IiQtsemdOo8k4KWtKibNGUnHjzPKFXcjQ5h99w6XjCA K0nEqKxpooH0S74Axb4WxxpqMTps10SYq9d1+YzlOqM= -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:57 2024 by rpki-client on console-fra.rpki-client.org