$ rpki-client -vvf repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/3130332e3134332e3233322e302f32332d3233203d3e20313339343038.roa File: 3130332e3134332e3233322e302f32332d3233203d3e20313339343038.roa (raw, json) Hash identifier: ABcl7hjRsw3Xa0yDPigEjdLuUfujbY1jm15mYQSG+s4= Subject key identifier: 47:25:8A:D0:F2:8D:FA:F7:01:47:B3:51:F7:BB:82:91:98:B2:41:F6 Certificate issuer: /CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Certificate serial: 77D5C05AFD0ECC804927946825900FC04795A7F3 Authority key identifier: 44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/3130332e3134332e3233322e302f32332d3233203d3e20313339343038.roa Signing time: Thu 12 Sep 2024 15:15:59 +0000 ROA not before: Thu 12 Sep 2024 15:10:59 +0000 ROA not after: Thu 11 Sep 2025 15:15:59 +0000 asID: 139408 IP address blocks: 103.143.232.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:d5:c0:5a:fd:0e:cc:80:49:27:94:68:25:90:0f:c0:47:95:a7:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Validity Not Before: Sep 12 15:10:59 2024 GMT Not After : Sep 11 15:15:59 2025 GMT Subject: CN=47258AD0F28DFAF70147B351F7BB829198B241F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:11:9b:20:69:d2:fb:63:6d:15:0d:f5:62:e4: d0:78:9a:88:af:48:41:a0:03:e2:8e:28:c8:58:a2: 45:e8:c3:20:0d:f4:e2:03:40:a9:49:19:8d:f9:b2: 80:51:a6:6c:f1:30:f0:01:91:5f:4f:d6:a9:9a:71: 17:61:f3:af:b7:51:d9:01:62:21:9c:f7:04:6e:4f: 57:7d:0c:d1:82:cc:d3:67:30:bf:f2:00:4d:7d:c0: 8a:d7:de:b0:4a:0f:60:cb:83:46:4a:a6:d3:87:2b: 4b:7e:cd:c7:c4:d8:23:c5:24:ef:6c:06:57:f3:f6: 9b:6d:28:d4:fd:99:ea:2f:84:ef:f5:0e:e4:35:a3: f9:3b:f7:54:6d:fe:f3:ac:4f:af:22:9a:a8:db:01: 99:03:2e:f9:54:e5:83:23:25:02:f1:ae:85:c6:79: 17:d2:b8:82:84:4c:f0:79:8f:ed:24:e0:83:5f:47: 91:4b:88:94:88:fc:95:4c:81:39:a3:3e:bb:47:5d: 43:14:b3:5d:2e:94:1f:fe:e3:98:24:f0:17:e7:de: 73:e5:5f:e5:0d:b2:94:6e:d1:cb:00:a9:84:78:43: 73:e8:42:85:87:fc:d2:de:6f:59:73:e6:59:04:fb: 55:f3:b2:e4:ec:f5:6f:c3:0c:24:53:d6:f9:30:2c: e1:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:25:8A:D0:F2:8D:FA:F7:01:47:B3:51:F7:BB:82:91:98:B2:41:F6 X509v3 Authority Key Identifier: keyid:44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/3130332e3134332e3233322e302f32332d3233203d3e20313339343038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.232.0/23 Signature Algorithm: sha256WithRSAEncryption 91:4d:c6:1b:d1:92:47:12:a2:73:ab:ea:a8:be:55:cf:6c:c2: b0:0e:fa:4b:d1:e9:3d:27:98:62:19:4e:0e:bc:41:d5:0f:19: f9:fd:73:6f:06:e6:07:85:8d:ef:00:aa:91:8b:06:97:3f:39: 6d:ba:07:da:80:62:ef:78:24:f5:44:0e:46:1d:cf:80:8d:ea: d7:d3:2d:8a:72:fb:01:1e:15:bc:e4:b7:05:5c:7e:0c:76:f3: ed:d2:69:12:a1:63:82:2c:58:eb:13:aa:71:ac:9b:b3:15:61: dd:8c:60:00:ff:c9:c1:6f:27:0e:78:71:b1:df:1d:32:36:ec: 68:e1:4d:dd:9c:e6:26:2b:59:9d:06:73:5e:db:34:c7:9c:88: 9c:66:a0:52:0a:16:ca:b7:05:ed:99:3c:9a:09:04:c5:a1:f7: 60:a9:8d:21:7a:58:0a:8d:2b:e2:77:72:52:e4:c2:f9:87:aa: d7:64:70:6b:aa:87:2e:0b:27:12:db:8b:2c:70:dd:d0:e0:1b: b1:b0:d8:6f:60:24:a7:2b:09:f9:b5:37:75:a8:8e:b5:47:e3: d5:ea:15:43:0b:aa:90:48:f2:41:43:e6:99:98:72:4c:bd:49: d3:71:29:f6:51:86:cb:83:0f:52:2b:01:5e:51:ba:55:51:bd: 81:a1:3a:d1 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUd9XAWv0OzIBJJ5RoJZAPwEeVp/MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQz NEM0OEFGMjAeFw0yNDA5MTIxNTEwNTlaFw0yNTA5MTExNTE1NTlaMDMxMTAvBgNV BAMTKDQ3MjU4QUQwRjI4REZBRjcwMTQ3QjM1MUY3QkI4MjkxOThCMjQxRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/EZsgadL7Y20VDfVi5NB4moiv SEGgA+KOKMhYokXowyAN9OIDQKlJGY35soBRpmzxMPABkV9P1qmacRdh86+3UdkB YiGc9wRuT1d9DNGCzNNnML/yAE19wIrX3rBKD2DLg0ZKptOHK0t+zcfE2CPFJO9s Blfz9pttKNT9meovhO/1DuQ1o/k791Rt/vOsT68imqjbAZkDLvlU5YMjJQLxroXG eRfSuIKETPB5j+0k4INfR5FLiJSI/JVMgTmjPrtHXUMUs10ulB/+45gk8Bfn3nPl X+UNspRu0csAqYR4Q3PoQoWH/NLeb1lz5lkE+1XzsuTs9W/DDCRT1vkwLOFnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQURyWK0PKN+vcBR7NR97uCkZiyQfYwHwYDVR0j BBgwFoAUREPkMjnT9blnTy9bWjdxFDTEivIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NmM4YjNhOS00ZWZmLTQ2MGQtYjAxZC02YmE1ZDk5ZGFkYjkvMC80NDQzRTQzMjM5 RDNGNUI5Njc0RjJGNUI1QTM3NzExNDM0QzQ4QUYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQzNEM0 OEFGMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2YzhiM2E5LTRlZmYtNDYwZC1i MDFkLTZiYTVkOTlkYWRiOS8wLzMxMzAzMzJlMzEzNDMzMmUzMjMzMzIyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzkzNDMwMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnj+gwDQYJ KoZIhvcNAQELBQADggEBAJFNxhvRkkcSonOr6qi+Vc9swrAO+kvR6T0nmGIZTg68 QdUPGfn9c28G5geFje8AqpGLBpc/OW26B9qAYu94JPVEDkYdz4CN6tfTLYpy+wEe FbzktwVcfgx28+3SaRKhY4IsWOsTqnGsm7MVYd2MYAD/ycFvJw54cbHfHTI27Gjh Td2c5iYrWZ0Gc17bNMeciJxmoFIKFsq3Be2ZPJoJBMWh92CpjSF6WAqNK+J3clLk wvmHqtdkcGuqhy4LJxLbiyxw3dDgG7Gw2G9gJKcrCfm1N3WojrVH49XqFUMLqpBI 8kFD5pmYcky9SdNxKfZRhsuDD1IrAV5RulVRvYGhOtE= -----END CERTIFICATE-----Generated at Wed Nov 20 20:04:31 2024 by rpki-client on console-fra.rpki-client.org