$ rpki-client -vvf repo-rpki.idnic.net/repo/cf6d5582-9a63-41e5-8969-db919277a5e5/0/3130332e3134332e3234352e302f32342d3234203d3e20313332363337.roa File: 3130332e3134332e3234352e302f32342d3234203d3e20313332363337.roa (raw, json) Hash identifier: YpXfCL82On8UTAObXpsp+TSzduNgz0G+wsNlyOIz0pA= Subject key identifier: C2:52:1C:9D:0B:14:E9:B7:29:B8:62:2C:95:AF:1C:79:D7:A9:94:46 Certificate issuer: /CN=9EA3AB422D824FDD9A25622F84924203216B1ED1 Certificate serial: 7441EB7932AC15A95B4177AE5EB3E9315695E065 Authority key identifier: 9E:A3:AB:42:2D:82:4F:DD:9A:25:62:2F:84:92:42:03:21:6B:1E:D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EA3AB422D824FDD9A25622F84924203216B1ED1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cf6d5582-9a63-41e5-8969-db919277a5e5/0/3130332e3134332e3234352e302f32342d3234203d3e20313332363337.roa Signing time: Mon 01 Jul 2024 01:04:14 +0000 ROA not before: Mon 01 Jul 2024 00:59:14 +0000 ROA not after: Mon 30 Jun 2025 01:04:14 +0000 asID: 132637 IP address blocks: 103.143.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cf6d5582-9a63-41e5-8969-db919277a5e5/0/9EA3AB422D824FDD9A25622F84924203216B1ED1.crl rsync://repo-rpki.idnic.net/repo/cf6d5582-9a63-41e5-8969-db919277a5e5/0/9EA3AB422D824FDD9A25622F84924203216B1ED1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EA3AB422D824FDD9A25622F84924203216B1ED1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:41:eb:79:32:ac:15:a9:5b:41:77:ae:5e:b3:e9:31:56:95:e0:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9EA3AB422D824FDD9A25622F84924203216B1ED1 Validity Not Before: Jul 1 00:59:14 2024 GMT Not After : Jun 30 01:04:14 2025 GMT Subject: CN=C2521C9D0B14E9B729B8622C95AF1C79D7A99446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f2:27:b4:60:a0:0e:88:78:ed:83:de:6b:cc: f0:1d:83:e1:a7:2a:89:2d:24:9a:c2:dc:fd:09:01: 2a:6e:c7:e5:4c:6b:8d:75:01:09:83:8f:a5:2f:37: 66:ea:c6:0e:a8:b5:22:f5:cf:84:fe:1a:a6:64:94: ee:59:06:1a:3e:45:31:a0:f0:50:83:8b:d6:37:63: 50:d4:f8:bc:31:26:26:80:36:18:dc:9e:05:15:ab: a9:05:21:5b:ab:99:17:cb:2c:9c:5d:f1:bd:1a:83: 76:9f:31:05:fa:d0:45:ab:9b:89:11:79:fd:84:12: cc:ea:28:22:a5:fe:d4:83:cc:f9:5d:20:de:99:c4: f3:ab:8d:14:49:f2:0e:e8:d4:c5:ed:25:d6:cf:34: 37:dd:9d:a2:a5:97:3f:35:84:1c:97:06:ec:66:43: 47:51:09:47:0c:8f:bf:88:b9:b9:2a:37:2a:37:92: 41:4a:97:b9:f5:93:1e:ca:82:6f:13:ec:9c:4f:e1: d6:b2:1d:d0:7f:bd:ae:d8:2a:31:7f:03:8e:56:69: 70:77:c2:b5:75:dd:e5:e8:c3:b9:c3:c0:4a:68:f5: 37:3d:12:f8:1b:1d:a8:e0:16:f5:47:bf:ff:b3:6f: c4:ec:6a:b4:2d:32:47:6b:6f:74:4f:f1:c3:e7:46: 7f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:52:1C:9D:0B:14:E9:B7:29:B8:62:2C:95:AF:1C:79:D7:A9:94:46 X509v3 Authority Key Identifier: keyid:9E:A3:AB:42:2D:82:4F:DD:9A:25:62:2F:84:92:42:03:21:6B:1E:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cf6d5582-9a63-41e5-8969-db919277a5e5/0/9EA3AB422D824FDD9A25622F84924203216B1ED1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9EA3AB422D824FDD9A25622F84924203216B1ED1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cf6d5582-9a63-41e5-8969-db919277a5e5/0/3130332e3134332e3234352e302f32342d3234203d3e20313332363337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.245.0/24 Signature Algorithm: sha256WithRSAEncryption 85:c5:9e:56:c3:2a:eb:d0:8f:15:e8:a0:5e:4b:49:bf:37:e2: 95:84:c8:2d:8e:37:55:9c:4b:00:a8:7c:ce:36:dc:90:00:d8: d8:c2:af:96:8c:7a:b3:eb:66:cf:f5:ee:1a:2b:40:b1:f1:db: 95:24:29:ee:eb:e4:97:c9:9f:89:de:9a:7c:14:fa:67:d0:b8: 84:26:20:a2:35:13:ac:f3:40:c8:34:b0:68:0f:6f:92:96:25: 70:5d:92:3c:04:78:2d:76:c9:77:a6:5e:cb:3d:95:09:5a:1b: cf:fb:aa:ac:e0:2b:43:9b:22:10:50:91:24:c7:59:fa:61:12: d2:46:6d:34:f0:cd:71:f1:3a:a5:2d:c2:3d:03:df:14:b9:a6: e6:82:5f:6d:31:f5:16:41:02:ce:7a:89:9d:c5:37:48:71:16: 00:ac:e1:99:2a:0c:e6:cc:09:30:3e:fc:9e:f1:ea:91:a1:d5: d2:93:ac:19:4c:76:e2:a8:ab:29:87:d1:33:30:ca:1e:a6:df: 62:24:75:55:20:42:3e:b5:8f:2f:96:62:ac:ad:b8:ca:7b:a9: 75:bf:6d:63:e9:67:02:81:93:15:59:99:e3:b1:c4:60:31:67: 32:5a:32:ee:d4:27:a3:19:10:19:2a:07:09:21:60:d6:a1:67: 00:35:c5:59 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUdEHreTKsFalbQXeuXrPpMVaV4GUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUVBM0FCNDIyRDgyNEZERDlBMjU2MjJGODQ5MjQyMDMy MTZCMUVEMTAeFw0yNDA3MDEwMDU5MTRaFw0yNTA2MzAwMTA0MTRaMDMxMTAvBgNV BAMTKEMyNTIxQzlEMEIxNEU5QjcyOUI4NjIyQzk1QUYxQzc5RDdBOTk0NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ8ie0YKAOiHjtg95rzPAdg+Gn KoktJJrC3P0JASpux+VMa411AQmDj6UvN2bqxg6otSL1z4T+GqZklO5ZBho+RTGg 8FCDi9Y3Y1DU+LwxJiaANhjcngUVq6kFIVurmRfLLJxd8b0ag3afMQX60EWrm4kR ef2EEszqKCKl/tSDzPldIN6ZxPOrjRRJ8g7o1MXtJdbPNDfdnaKllz81hByXBuxm Q0dRCUcMj7+IubkqNyo3kkFKl7n1kx7Kgm8T7JxP4dayHdB/va7YKjF/A45WaXB3 wrV13eXow7nDwEpo9Tc9EvgbHajgFvVHv/+zb8TsarQtMkdrb3RP8cPnRn8fAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUwlIcnQsU6bcpuGIsla8cedeplEYwHwYDVR0j BBgwFoAUnqOrQi2CT92aJWIvhJJCAyFrHtEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZjZkNTU4Mi05YTYzLTQxZTUtODk2OS1kYjkxOTI3N2E1ZTUvMC85RUEzQUI0MjJE ODI0RkREOUEyNTYyMkY4NDkyNDIwMzIxNkIxRUQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUVBM0FCNDIyRDgyNEZERDlBMjU2MjJGODQ5MjQyMDMyMTZC MUVEMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NmNmQ1NTgyLTlhNjMtNDFlNS04 OTY5LWRiOTE5Mjc3YTVlNS8wLzMxMzAzMzJlMzEzNDMzMmUzMjM0MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzIzNjMzMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnj/UwDQYJ KoZIhvcNAQELBQADggEBAIXFnlbDKuvQjxXooF5LSb834pWEyC2ON1WcSwCofM42 3JAA2NjCr5aMerPrZs/17horQLHx25UkKe7r5JfJn4nemnwU+mfQuIQmIKI1E6zz QMg0sGgPb5KWJXBdkjwEeC12yXemXss9lQlaG8/7qqzgK0ObIhBQkSTHWfphEtJG bTTwzXHxOqUtwj0D3xS5puaCX20x9RZBAs56iZ3FN0hxFgCs4ZkqDObMCTA+/J7x 6pGh1dKTrBlMduKoqymH0TMwyh6m32IkdVUgQj61jy+WYqytuMp7qXW/bWPpZwKB kxVZmeOxxGAxZzJaMu7UJ6MZEBkqBwkhYNahZwA1xVk= -----END CERTIFICATE-----Generated at Sun Nov 24 09:53:16 2024 by rpki-client on console-ams.rpki-client.org