$ rpki-client -vvf repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/3130332e39362e3134362e302f32332d3233203d3e20313430343536.roa File: 3130332e39362e3134362e302f32332d3233203d3e20313430343536.roa (raw, json) Hash identifier: I90vNVHR98Ns9EbFWsBOyXpypkK4ezCBsQ4Nw555WdU= Subject key identifier: 30:31:80:29:EF:A1:C5:47:E6:58:D0:2B:0E:62:B7:B4:88:63:C2:D7 Certificate issuer: /CN=81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A Certificate serial: 43C31553A2E9C9105391F948528D83EC4D160F34 Authority key identifier: 81:C2:03:CF:45:8E:48:A8:FF:34:5F:B4:A5:DD:84:C6:FA:2D:CD:0A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/3130332e39362e3134362e302f32332d3233203d3e20313430343536.roa Signing time: Thu 26 Sep 2024 16:00:00 +0000 ROA not before: Thu 26 Sep 2024 15:55:00 +0000 ROA not after: Thu 25 Sep 2025 16:00:00 +0000 asID: 140456 IP address blocks: 103.96.146.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.crl rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:c3:15:53:a2:e9:c9:10:53:91:f9:48:52:8d:83:ec:4d:16:0f:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A Validity Not Before: Sep 26 15:55:00 2024 GMT Not After : Sep 25 16:00:00 2025 GMT Subject: CN=30318029EFA1C547E658D02B0E62B7B48863C2D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:f1:8b:77:a9:e3:27:aa:4f:75:4e:f7:1a:48: 9b:20:14:80:7a:4e:6c:a9:52:ad:64:b1:89:5a:d0: 9f:76:c7:49:2f:cf:d8:bf:81:53:f4:dd:88:55:0b: 28:82:99:ce:77:05:80:b6:f1:be:91:e8:8a:6f:77: 59:7e:c8:81:f9:f1:80:95:bf:d0:30:9c:a2:e3:8a: 76:00:e6:1f:05:78:76:e4:f4:b5:04:16:49:77:2f: 7b:27:f2:38:43:3a:fb:fb:e6:e3:9d:aa:b7:34:5d: 9b:21:23:54:d2:69:81:b1:ab:d0:d4:73:48:57:5f: e6:8a:61:47:61:e5:63:55:c4:67:be:99:b9:dd:66: c3:73:b1:fe:2b:55:7b:42:b3:dd:68:57:af:19:2d: 42:a3:56:a0:8d:87:66:07:31:db:57:47:10:0d:a3: 2b:4b:a6:11:8b:2b:58:89:84:a9:7e:a3:03:87:7b: c0:ab:c4:c0:ef:0b:61:5f:c4:6c:1e:00:3c:3a:f6: 87:af:07:4e:c0:d4:7d:64:ce:78:bf:43:a9:8c:c1: cd:07:b1:b5:8b:64:0e:aa:b9:1f:48:bf:a3:e5:b3: ba:fc:f0:4a:31:7b:1c:6d:e8:50:88:b6:f5:65:85: 94:fa:74:68:ac:f8:74:68:ab:54:f9:63:b2:ed:97: c5:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:31:80:29:EF:A1:C5:47:E6:58:D0:2B:0E:62:B7:B4:88:63:C2:D7 X509v3 Authority Key Identifier: keyid:81:C2:03:CF:45:8E:48:A8:FF:34:5F:B4:A5:DD:84:C6:FA:2D:CD:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/3130332e39362e3134362e302f32332d3233203d3e20313430343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.96.146.0/23 Signature Algorithm: sha256WithRSAEncryption 41:4f:38:5a:2e:1c:83:02:88:40:4b:4b:41:51:29:20:00:22: cc:02:43:e3:5b:45:ed:53:91:87:de:96:3c:d1:52:81:f1:f1: 29:e6:53:2d:c5:87:ab:b5:29:f3:f6:ae:76:10:73:22:51:36: 4d:13:68:74:c5:2a:16:8f:3f:59:16:08:2d:21:9a:90:83:e4: 6c:1c:5b:7d:c4:57:10:d2:a7:9a:c4:03:07:e3:76:8c:4e:d1: b1:35:57:c9:2f:74:55:70:f8:97:70:b0:ef:c7:85:ee:24:f9: 75:04:5a:28:29:82:35:26:3a:e3:66:e0:51:17:43:e3:2a:b2: 34:2c:fe:7c:d8:27:3a:78:db:01:47:d2:f8:8c:a5:ad:d5:1f: f0:bd:61:df:5b:af:12:ac:c4:78:7e:ab:e3:d9:46:a7:93:c2: 01:68:ef:aa:28:6e:67:e2:2e:4a:e5:48:f2:f0:d2:07:ea:06: fd:33:f4:be:b4:bf:7f:cc:9a:a2:9d:24:9b:af:57:6f:0c:b8: 35:a0:34:54:1c:ca:22:38:05:dc:84:74:e1:be:9d:4f:82:e2: 41:26:7b:22:6a:6a:61:2c:48:40:33:48:f6:db:ac:ff:ca:52: 55:e7:7c:42:3c:b0:e8:4f:2f:dc:e3:bd:41:f6:3e:5c:0d:62: 7a:3e:c6:99 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQ8MVU6LpyRBTkflIUo2D7E0WDzQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODFDMjAzQ0Y0NThFNDhBOEZGMzQ1RkI0QTVERDg0QzZG QTJEQ0QwQTAeFw0yNDA5MjYxNTU1MDBaFw0yNTA5MjUxNjAwMDBaMDMxMTAvBgNV BAMTKDMwMzE4MDI5RUZBMUM1NDdFNjU4RDAyQjBFNjJCN0I0ODg2M0MyRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDu8Yt3qeMnqk91TvcaSJsgFIB6 TmypUq1ksYla0J92x0kvz9i/gVP03YhVCyiCmc53BYC28b6R6Ipvd1l+yIH58YCV v9AwnKLjinYA5h8FeHbk9LUEFkl3L3sn8jhDOvv75uOdqrc0XZshI1TSaYGxq9DU c0hXX+aKYUdh5WNVxGe+mbndZsNzsf4rVXtCs91oV68ZLUKjVqCNh2YHMdtXRxAN oytLphGLK1iJhKl+owOHe8CrxMDvC2FfxGweADw69oevB07A1H1kzni/Q6mMwc0H sbWLZA6quR9Iv6Pls7r88Eoxexxt6FCItvVlhZT6dGis+HRoq1T5Y7Ltl8VxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMDGAKe+hxUfmWNArDmK3tIhjwtcwHwYDVR0j BBgwFoAUgcIDz0WOSKj/NF+0pd2ExvotzQowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YTQ3NDZiNy01ZmYyLTQ1NTYtOGEzZS01YTg2Y2JjYzg1OTgvMC84MUMyMDNDRjQ1 OEU0OEE4RkYzNDVGQjRBNUREODRDNkZBMkRDRDBBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODFDMjAzQ0Y0NThFNDhBOEZGMzQ1RkI0QTVERDg0QzZGQTJE Q0QwQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhNDc0NmI3LTVmZjItNDU1Ni04 YTNlLTVhODZjYmNjODU5OC8wLzMxMzAzMzJlMzkzNjJlMzEzNDM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMwMzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2CSMA0GCSqG SIb3DQEBCwUAA4IBAQBBTzhaLhyDAohAS0tBUSkgACLMAkPjW0XtU5GH3pY80VKB 8fEp5lMtxYertSnz9q52EHMiUTZNE2h0xSoWjz9ZFggtIZqQg+RsHFt9xFcQ0qea xAMH43aMTtGxNVfJL3RVcPiXcLDvx4XuJPl1BFooKYI1JjrjZuBRF0PjKrI0LP58 2Cc6eNsBR9L4jKWt1R/wvWHfW68SrMR4fqvj2Uank8IBaO+qKG5n4i5K5Ujy8NIH 6gb9M/S+tL9/zJqinSSbr1dvDLg1oDRUHMoiOAXchHThvp1PguJBJnsiamphLEhA M0j226z/ylJV53xCPLDoTy/c471B9j5cDWJ6PsaZ -----END CERTIFICATE-----Generated at Thu Nov 21 15:01:34 2024 by rpki-client on console-fra.rpki-client.org