$ rpki-client -vvf repo-rpki.idnic.net/repo/d4bfc5c3-c39c-45ed-ae87-384a6dcb7938/0/3130332e3233392e34312e302f32342d3234203d3e20313531353331.roa File: 3130332e3233392e34312e302f32342d3234203d3e20313531353331.roa (raw, json) Hash identifier: XSreqIJljknfOIObygSCrMVbPXNgjuTPQtrsZby6wgM= Subject key identifier: 2F:8F:A7:DF:30:20:90:43:85:5D:95:CF:32:E3:C5:A6:7B:E1:2B:1B Certificate issuer: /CN=037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665 Certificate serial: 4591AB574A5FDDB97960849E9D71913FBB44A857 Authority key identifier: 03:7A:1E:47:FB:1C:CE:3B:6E:6A:93:69:ED:DD:87:0D:AE:80:D6:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d4bfc5c3-c39c-45ed-ae87-384a6dcb7938/0/3130332e3233392e34312e302f32342d3234203d3e20313531353331.roa Signing time: Mon 16 Sep 2024 02:00:01 +0000 ROA not before: Mon 16 Sep 2024 01:55:01 +0000 ROA not after: Mon 15 Sep 2025 02:00:01 +0000 asID: 151531 IP address blocks: 103.239.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d4bfc5c3-c39c-45ed-ae87-384a6dcb7938/0/037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665.crl rsync://repo-rpki.idnic.net/repo/d4bfc5c3-c39c-45ed-ae87-384a6dcb7938/0/037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:91:ab:57:4a:5f:dd:b9:79:60:84:9e:9d:71:91:3f:bb:44:a8:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665 Validity Not Before: Sep 16 01:55:01 2024 GMT Not After : Sep 15 02:00:01 2025 GMT Subject: CN=2F8FA7DF30209043855D95CF32E3C5A67BE12B1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:43:2a:97:0a:df:1b:8d:89:d9:13:8b:bf:ea: 45:5b:a4:e7:71:26:0c:33:0a:27:74:33:4e:02:53: eb:21:cb:d2:e6:da:44:80:e8:99:21:f4:4f:ea:6b: 2d:e5:20:54:f1:69:5f:d7:d8:9b:c7:f2:85:6b:c9: ba:a9:a6:71:61:4b:7c:b3:ca:b2:2e:a6:5b:32:db: 46:48:62:29:0f:b5:6d:f6:ac:8c:f3:b9:8a:55:c0: 04:26:e6:71:99:e7:92:06:76:b4:0b:ce:f8:ed:59: e5:f3:06:31:9f:32:e2:95:e4:7e:ff:10:36:c2:1a: 58:c7:4a:96:fd:e5:00:97:3b:44:72:7a:3a:e9:1d: fc:1f:3a:a9:c0:f1:ca:a8:95:40:c6:94:c7:0c:1f: 9d:60:07:21:dd:df:bb:f4:be:98:66:53:84:35:69: 6d:8e:e2:63:50:77:6e:c0:1f:01:7d:42:f6:cb:f8: 40:6a:7d:85:20:07:d4:a5:6f:b9:23:55:c0:f6:2b: ce:72:e9:0b:61:4b:f1:0d:dd:50:89:9d:94:2e:8a: 21:d3:9c:99:0f:a1:b0:da:01:9f:1f:d2:0f:4b:62: 29:e2:84:90:03:f7:c0:f6:30:b5:4a:56:83:de:b0: c9:00:e8:63:7a:a1:d6:98:d3:a9:5e:26:dd:11:34: 7e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:8F:A7:DF:30:20:90:43:85:5D:95:CF:32:E3:C5:A6:7B:E1:2B:1B X509v3 Authority Key Identifier: keyid:03:7A:1E:47:FB:1C:CE:3B:6E:6A:93:69:ED:DD:87:0D:AE:80:D6:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d4bfc5c3-c39c-45ed-ae87-384a6dcb7938/0/037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/037A1E47FB1CCE3B6E6A9369EDDD870DAE80D665.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4bfc5c3-c39c-45ed-ae87-384a6dcb7938/0/3130332e3233392e34312e302f32342d3234203d3e20313531353331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.41.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:32:07:e5:0f:a4:fb:03:e2:57:f8:1a:ae:19:af:76:4d:3c: 74:28:e8:13:f0:92:a9:ee:07:5e:40:46:c2:02:a2:50:63:f6: 30:4b:dc:98:aa:ac:6d:85:18:32:ca:ca:39:6c:bd:cd:4a:ca: 0d:12:46:c1:29:89:b6:af:74:33:8d:49:7c:57:7c:90:ab:85: 2f:17:09:8d:01:52:17:1f:ee:1a:f6:a3:c6:fc:88:ab:02:67: 73:92:8e:23:de:1b:ec:80:11:f0:e4:23:e9:65:94:ea:a1:d3: 3f:c9:32:21:f0:d4:f0:2e:5a:49:85:b7:31:47:5f:06:f7:0e: 99:eb:8b:a1:51:c9:92:ad:76:0e:d0:24:9f:dd:2c:09:f9:8b: 87:ad:27:8d:78:a7:aa:19:69:16:89:cd:eb:f9:ae:d1:b8:56: 7a:54:d7:8e:09:c3:14:fa:28:f1:c8:38:3f:68:be:91:3c:4f: 86:c0:5e:4e:00:35:05:cf:41:4c:9c:98:9f:b4:9e:62:86:ed: 7f:81:81:91:fe:7f:83:ae:ea:01:f0:df:8b:40:28:c9:ac:d4: fb:0c:e6:37:81:ae:4f:dc:84:e2:8b:0f:2c:90:4e:48:ed:ab: f1:9b:0d:0a:76:10:50:1a:6f:1b:c5:8f:a9:8e:d3:59:67:02: 73:ef:8d:79 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURZGrV0pf3bl5YISenXGRP7tEqFcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDM3QTFFNDdGQjFDQ0UzQjZFNkE5MzY5RURERDg3MERB RTgwRDY2NTAeFw0yNDA5MTYwMTU1MDFaFw0yNTA5MTUwMjAwMDFaMDMxMTAvBgNV BAMTKDJGOEZBN0RGMzAyMDkwNDM4NTVEOTVDRjMyRTNDNUE2N0JFMTJCMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOQyqXCt8bjYnZE4u/6kVbpOdx JgwzCid0M04CU+shy9Lm2kSA6Jkh9E/qay3lIFTxaV/X2JvH8oVrybqppnFhS3yz yrIuplsy20ZIYikPtW32rIzzuYpVwAQm5nGZ55IGdrQLzvjtWeXzBjGfMuKV5H7/ EDbCGljHSpb95QCXO0RyejrpHfwfOqnA8cqolUDGlMcMH51gByHd37v0vphmU4Q1 aW2O4mNQd27AHwF9QvbL+EBqfYUgB9Slb7kjVcD2K85y6QthS/EN3VCJnZQuiiHT nJkPobDaAZ8f0g9LYinihJAD98D2MLVKVoPesMkA6GN6odaY06leJt0RNH6fAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUL4+n3zAgkEOFXZXPMuPFpnvhKxswHwYDVR0j BBgwFoAUA3oeR/sczjtuapNp7d2HDa6A1mUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NGJmYzVjMy1jMzljLTQ1ZWQtYWU4Ny0zODRhNmRjYjc5MzgvMC8wMzdBMUU0N0ZC MUNDRTNCNkU2QTkzNjlFREREODcwREFFODBENjY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDM3QTFFNDdGQjFDQ0UzQjZFNkE5MzY5RURERDg3MERBRTgw RDY2NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0YmZjNWMzLWMzOWMtNDVlZC1h ZTg3LTM4NGE2ZGNiNzkzOC8wLzMxMzAzMzJlMzIzMzM5MmUzNDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMxMzUzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+8pMA0GCSqG SIb3DQEBCwUAA4IBAQCLMgflD6T7A+JX+BquGa92TTx0KOgT8JKp7gdeQEbCAqJQ Y/YwS9yYqqxthRgyyso5bL3NSsoNEkbBKYm2r3QzjUl8V3yQq4UvFwmNAVIXH+4a 9qPG/IirAmdzko4j3hvsgBHw5CPpZZTqodM/yTIh8NTwLlpJhbcxR18G9w6Z64uh UcmSrXYO0CSf3SwJ+YuHrSeNeKeqGWkWic3r+a7RuFZ6VNeOCcMU+ijxyDg/aL6R PE+GwF5OADUFz0FMnJiftJ5ihu1/gYGR/n+DruoB8N+LQCjJrNT7DOY3ga5P3ITi iw8skE5I7avxmw0KdhBQGm8bxY+pjtNZZwJz7415 -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:48 2024 by rpki-client on console-fra.rpki-client.org