$ rpki-client -vvf repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/3130332e3134332e3233332e302f32342d3234203d3e20313339343038.roa File: 3130332e3134332e3233332e302f32342d3234203d3e20313339343038.roa (raw, json) Hash identifier: xB/XqJ5dJTYe2nf2B7toQua0M24fdekoYi8o2PugdP4= Subject key identifier: C2:48:D2:66:6A:54:E3:FB:34:CE:AF:FE:AB:24:94:D0:E6:52:30:F0 Certificate issuer: /CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Certificate serial: 55A15647D8A5A3A1708CF9180F5BC8D8E723F9D0 Authority key identifier: 44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/3130332e3134332e3233332e302f32342d3234203d3e20313339343038.roa Signing time: Wed 11 Sep 2024 13:57:41 +0000 ROA not before: Wed 11 Sep 2024 13:52:41 +0000 ROA not after: Wed 10 Sep 2025 13:57:41 +0000 asID: 139408 IP address blocks: 103.143.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:a1:56:47:d8:a5:a3:a1:70:8c:f9:18:0f:5b:c8:d8:e7:23:f9:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Validity Not Before: Sep 11 13:52:41 2024 GMT Not After : Sep 10 13:57:41 2025 GMT Subject: CN=C248D2666A54E3FB34CEAFFEAB2494D0E65230F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:da:3d:8e:cc:fe:7d:13:db:f0:86:28:35:7f: 95:d8:63:de:f8:35:16:8a:2a:6d:0d:83:b4:ad:73: 03:4d:61:c9:28:b1:08:b5:b1:c9:4d:c6:d0:7b:02: c8:71:8f:79:16:2b:f3:34:0c:34:e2:83:93:d4:5d: 38:33:09:d1:a4:51:c0:96:db:85:f4:06:9e:7d:32: 1f:93:1c:a5:99:02:a9:9e:90:ad:81:80:29:c0:03: 97:bd:2f:e1:75:4f:4a:bc:95:c6:d6:f6:ca:7f:ef: 60:e3:7e:31:ef:c0:b5:ab:1f:4a:d0:14:09:67:5e: fd:b5:0e:f5:b0:32:29:dc:6e:49:70:fb:3d:db:6b: 9e:fa:d3:3b:b0:2b:fe:df:a8:12:ea:5f:58:d6:a8: 15:db:f4:2a:e1:68:69:73:51:25:6c:97:56:6d:3b: 35:5a:32:5f:fe:38:ad:11:24:41:3f:3a:0c:78:b0: de:5b:d8:61:7c:a3:08:cb:30:3b:d6:26:fb:62:82: cb:e1:53:02:62:d2:b9:1c:be:13:7e:db:7d:e5:b5: 6a:91:d2:47:f4:63:7d:ad:90:6a:48:db:da:3e:f1: f7:68:4d:a5:dc:f6:10:d6:48:51:bb:b2:1d:06:31: 7c:be:d5:b7:2a:6c:b1:20:57:33:c9:18:95:ca:a7: 13:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:48:D2:66:6A:54:E3:FB:34:CE:AF:FE:AB:24:94:D0:E6:52:30:F0 X509v3 Authority Key Identifier: keyid:44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/3130332e3134332e3233332e302f32342d3234203d3e20313339343038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.233.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:84:a0:8a:9d:a5:cd:23:0a:b8:f5:24:fa:01:38:26:dc:e2: 4d:b1:cc:60:64:3b:7d:c6:95:83:fe:b1:31:ab:16:4b:cf:54: c1:c1:1a:98:f6:8b:05:ed:13:dd:4b:2c:9d:09:aa:45:b7:d5: aa:59:48:0a:b1:22:6b:1f:6a:74:18:52:0b:f5:a3:1f:a9:f1: ad:a8:e5:5a:0b:fe:a5:49:ee:9e:f1:29:38:6f:ff:89:48:b9: 62:a0:1f:15:4d:c9:5e:33:ef:d2:71:56:89:f9:c7:bd:18:d5: f3:47:76:30:38:e3:c9:a8:51:5b:a2:d6:53:0b:9d:1b:3c:a6: dd:fd:6e:2d:59:f3:62:46:f4:3b:39:96:71:42:53:bc:3c:18: 96:67:1c:d5:0e:8d:ba:84:6c:7a:4b:0e:b1:34:71:d1:6f:b4: b2:6d:9c:ab:2c:9e:f9:8d:10:99:5f:70:a5:4f:c4:15:08:c2: ea:b0:fe:3c:07:48:34:f7:b2:db:df:85:a2:b2:21:25:c1:e5: 8e:bd:cd:c3:22:3b:72:13:fc:f1:0d:ec:22:55:87:d4:1f:8a: ec:a9:07:e5:ab:c6:38:fe:df:e9:ad:1b:51:b8:90:ee:26:82: 75:ba:28:7a:08:92:d3:73:21:78:c2:d3:fb:8f:76:85:5c:77: a8:56:22:2a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVaFWR9ilo6FwjPkYD1vI2Ocj+dAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQz NEM0OEFGMjAeFw0yNDA5MTExMzUyNDFaFw0yNTA5MTAxMzU3NDFaMDMxMTAvBgNV BAMTKEMyNDhEMjY2NkE1NEUzRkIzNENFQUZGRUFCMjQ5NEQwRTY1MjMwRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDX2j2OzP59E9vwhig1f5XYY974 NRaKKm0Ng7StcwNNYckosQi1sclNxtB7Ashxj3kWK/M0DDTig5PUXTgzCdGkUcCW 24X0Bp59Mh+THKWZAqmekK2BgCnAA5e9L+F1T0q8lcbW9sp/72DjfjHvwLWrH0rQ FAlnXv21DvWwMincbklw+z3ba5760zuwK/7fqBLqX1jWqBXb9CrhaGlzUSVsl1Zt OzVaMl/+OK0RJEE/Ogx4sN5b2GF8owjLMDvWJvtigsvhUwJi0rkcvhN+233ltWqR 0kf0Y32tkGpI29o+8fdoTaXc9hDWSFG7sh0GMXy+1bcqbLEgVzPJGJXKpxNLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUwkjSZmpU4/s0zq/+qySU0OZSMPAwHwYDVR0j BBgwFoAUREPkMjnT9blnTy9bWjdxFDTEivIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NmM4YjNhOS00ZWZmLTQ2MGQtYjAxZC02YmE1ZDk5ZGFkYjkvMC80NDQzRTQzMjM5 RDNGNUI5Njc0RjJGNUI1QTM3NzExNDM0QzQ4QUYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQzNEM0 OEFGMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2YzhiM2E5LTRlZmYtNDYwZC1i MDFkLTZiYTVkOTlkYWRiOS8wLzMxMzAzMzJlMzEzNDMzMmUzMjMzMzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzNDMwMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnj+kwDQYJ KoZIhvcNAQELBQADggEBAJqEoIqdpc0jCrj1JPoBOCbc4k2xzGBkO33GlYP+sTGr FkvPVMHBGpj2iwXtE91LLJ0JqkW31apZSAqxImsfanQYUgv1ox+p8a2o5VoL/qVJ 7p7xKThv/4lIuWKgHxVNyV4z79JxVon5x70Y1fNHdjA448moUVui1lMLnRs8pt39 bi1Z82JG9Ds5lnFCU7w8GJZnHNUOjbqEbHpLDrE0cdFvtLJtnKssnvmNEJlfcKVP xBUIwuqw/jwHSDT3stvfhaKyISXB5Y69zcMiO3IT/PEN7CJVh9QfiuypB+Wrxjj+ 3+mtG1G4kO4mgnW6KHoIktNzIXjC0/uPdoVcd6hWIio= -----END CERTIFICATE-----Generated at Wed Nov 20 20:04:31 2024 by rpki-client on console-fra.rpki-client.org