$ rpki-client -vvf repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/3130332e3134332e3233322e302f32342d3234203d3e20313339343038.roa File: 3130332e3134332e3233322e302f32342d3234203d3e20313339343038.roa (raw, json) Hash identifier: TD2xB1HLXamIjjFpw2dotgVlnTzLq7PRhXP0sb7oneE= Subject key identifier: 3A:30:0A:AA:31:36:31:FD:CD:EB:25:24:31:30:72:97:B8:69:A6:79 Certificate issuer: /CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Certificate serial: 56B61F5E5B1531EFDDE5B7E578659C656A5D1D71 Authority key identifier: 44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/3130332e3134332e3233322e302f32342d3234203d3e20313339343038.roa Signing time: Wed 11 Sep 2024 13:57:21 +0000 ROA not before: Wed 11 Sep 2024 13:52:21 +0000 ROA not after: Wed 10 Sep 2025 13:57:21 +0000 asID: 139408 IP address blocks: 103.143.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:b6:1f:5e:5b:15:31:ef:dd:e5:b7:e5:78:65:9c:65:6a:5d:1d:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Validity Not Before: Sep 11 13:52:21 2024 GMT Not After : Sep 10 13:57:21 2025 GMT Subject: CN=3A300AAA313631FDCDEB252431307297B869A679 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c1:57:3a:69:ce:04:0c:1b:dd:20:ae:76:c7: b9:1c:b6:73:9a:80:79:78:ce:72:13:16:45:c3:ad: 21:20:f1:08:fd:d6:5b:fd:d1:ad:d4:30:b2:2f:85: 25:9c:5d:7b:c8:81:42:cf:9f:6f:91:c6:ab:79:00: f8:80:50:f0:ad:73:89:37:2a:44:4f:13:a4:5e:49: 02:4d:65:70:eb:25:5f:1d:10:c7:de:63:99:e8:30: 47:cf:90:ad:5c:a8:35:61:5a:fd:20:82:ad:d2:cc: fe:65:11:b7:37:21:bd:61:c0:49:3c:30:b6:d5:a0: ca:f8:9a:79:b5:72:da:b9:7a:20:bb:20:d7:b8:06: 40:59:11:d1:dd:0a:c2:91:fb:95:58:fb:ed:9f:79: 25:d1:c7:eb:d3:ad:0c:97:2d:ee:db:c6:13:fa:c4: ac:b4:06:c8:2f:5f:e7:b6:91:29:f6:3b:ea:7a:24: 0a:50:a4:34:72:41:91:e8:0e:91:37:f4:c4:a5:4a: ef:4f:05:6c:6d:86:8d:96:3e:b1:76:d0:a9:df:27: 52:f5:5e:37:16:1b:2e:4f:d4:f1:8c:b3:f1:37:7a: e9:c0:e0:bd:d1:9f:ad:b4:bc:fd:ab:09:90:58:6b: 84:93:9b:41:ae:c8:3b:98:c4:93:0a:bb:60:70:9a: 29:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:30:0A:AA:31:36:31:FD:CD:EB:25:24:31:30:72:97:B8:69:A6:79 X509v3 Authority Key Identifier: keyid:44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/3130332e3134332e3233322e302f32342d3234203d3e20313339343038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.232.0/24 Signature Algorithm: sha256WithRSAEncryption 35:78:7e:ee:46:30:89:04:45:ea:92:d0:d1:42:7b:0e:6d:f6: 56:07:33:cf:84:5a:f3:6a:1c:a4:97:ee:ac:f4:02:54:4d:0e: 06:6c:cc:c0:c6:8e:9d:a0:68:88:45:e5:26:08:ab:9c:d8:20: 5b:a9:cb:d3:1d:a4:c4:a3:a8:8e:0e:2b:f5:87:d8:cd:9f:8a: 56:0d:5f:00:a3:60:de:9e:27:19:f1:0e:ba:27:6c:8d:b7:ca: a8:3a:eb:68:e5:09:49:eb:f8:8a:10:2f:d7:48:df:88:99:44: 4c:46:a2:2d:04:a5:86:39:a2:ee:c4:6f:7e:01:90:dc:9e:17: 24:42:ba:cd:30:e9:46:63:42:65:9b:3e:5c:01:43:0e:98:f5: 29:fd:3d:1c:07:9a:3e:f7:a8:ed:81:d3:21:a7:96:5d:37:bc: 83:f8:9b:d8:1a:a2:97:ff:64:54:ea:9e:ea:14:23:59:1b:6f: 52:4c:79:e0:7c:04:23:18:9e:a1:38:62:cb:02:f6:49:56:b4: b5:84:e4:73:8d:c5:0a:08:9a:e9:26:4c:7d:21:a6:55:86:2f: fe:76:ff:f0:00:bb:e1:88:7e:b0:ea:7c:e2:42:8b:8d:e3:38: aa:79:98:a5:2e:28:b5:52:b9:b6:51:0a:e1:6e:e5:e3:e6:48: 61:d0:a0:d5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVrYfXlsVMe/d5bfleGWcZWpdHXEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQz NEM0OEFGMjAeFw0yNDA5MTExMzUyMjFaFw0yNTA5MTAxMzU3MjFaMDMxMTAvBgNV BAMTKDNBMzAwQUFBMzEzNjMxRkRDREVCMjUyNDMxMzA3Mjk3Qjg2OUE2NzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvwVc6ac4EDBvdIK52x7kctnOa gHl4znITFkXDrSEg8Qj91lv90a3UMLIvhSWcXXvIgULPn2+Rxqt5APiAUPCtc4k3 KkRPE6ReSQJNZXDrJV8dEMfeY5noMEfPkK1cqDVhWv0ggq3SzP5lEbc3Ib1hwEk8 MLbVoMr4mnm1ctq5eiC7INe4BkBZEdHdCsKR+5VY++2feSXRx+vTrQyXLe7bxhP6 xKy0BsgvX+e2kSn2O+p6JApQpDRyQZHoDpE39MSlSu9PBWxtho2WPrF20KnfJ1L1 XjcWGy5P1PGMs/E3eunA4L3Rn620vP2rCZBYa4STm0GuyDuYxJMKu2BwmikfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUOjAKqjE2Mf3N6yUkMTByl7hppnkwHwYDVR0j BBgwFoAUREPkMjnT9blnTy9bWjdxFDTEivIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NmM4YjNhOS00ZWZmLTQ2MGQtYjAxZC02YmE1ZDk5ZGFkYjkvMC80NDQzRTQzMjM5 RDNGNUI5Njc0RjJGNUI1QTM3NzExNDM0QzQ4QUYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQzNEM0 OEFGMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2YzhiM2E5LTRlZmYtNDYwZC1i MDFkLTZiYTVkOTlkYWRiOS8wLzMxMzAzMzJlMzEzNDMzMmUzMjMzMzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMwMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnj+gwDQYJ KoZIhvcNAQELBQADggEBADV4fu5GMIkEReqS0NFCew5t9lYHM8+EWvNqHKSX7qz0 AlRNDgZszMDGjp2gaIhF5SYIq5zYIFupy9MdpMSjqI4OK/WH2M2filYNXwCjYN6e JxnxDronbI23yqg662jlCUnr+IoQL9dI34iZRExGoi0EpYY5ou7Eb34BkNyeFyRC us0w6UZjQmWbPlwBQw6Y9Sn9PRwHmj73qO2B0yGnll03vIP4m9gaopf/ZFTqnuoU I1kbb1JMeeB8BCMYnqE4YssC9klWtLWE5HONxQoImukmTH0hplWGL/52//AAu+GI frDqfOJCi43jOKp5mKUuKLVSubZRCuFu5ePmSGHQoNU= -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:15 2024 by rpki-client on console-ams.rpki-client.org