$ rpki-client -vvf repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/3130332e39362e3134372e302f32342d3234203d3e20313430343536.roa File: 3130332e39362e3134372e302f32342d3234203d3e20313430343536.roa (raw, json) Hash identifier: g4rcVf7ze2gY12Fw+h+9x7JFApYwzpJ9iR8UsvjWBL0= Subject key identifier: AF:1B:BF:84:DB:6A:CA:06:15:A7:34:B6:5B:E2:EE:1C:72:72:E4:A6 Certificate issuer: /CN=81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A Certificate serial: 10355A2F54679B9C4ED719B09254869C137DFDAA Authority key identifier: 81:C2:03:CF:45:8E:48:A8:FF:34:5F:B4:A5:DD:84:C6:FA:2D:CD:0A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/3130332e39362e3134372e302f32342d3234203d3e20313430343536.roa Signing time: Thu 26 Sep 2024 16:00:00 +0000 ROA not before: Thu 26 Sep 2024 15:55:00 +0000 ROA not after: Thu 25 Sep 2025 16:00:00 +0000 asID: 140456 IP address blocks: 103.96.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.crl rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:35:5a:2f:54:67:9b:9c:4e:d7:19:b0:92:54:86:9c:13:7d:fd:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A Validity Not Before: Sep 26 15:55:00 2024 GMT Not After : Sep 25 16:00:00 2025 GMT Subject: CN=AF1BBF84DB6ACA0615A734B65BE2EE1C7272E4A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d7:4c:8b:7b:ec:ec:5f:2b:c6:ef:cd:c2:6d: 8b:51:e3:9d:06:ec:01:a3:07:3d:9c:2c:87:aa:ab: a4:ca:51:a1:3e:0b:c1:f7:b4:ae:fe:42:75:e0:f1: 1b:dd:a9:e3:13:37:d4:7a:ce:ba:74:03:47:0c:56: 1a:0f:b5:c7:be:06:bc:b7:c0:fb:f3:9b:f5:ac:7a: a8:18:fe:7e:b2:27:37:72:e3:c7:24:c3:00:5d:4c: 1c:21:6f:e9:a7:0b:3a:3a:8a:01:bd:7c:f6:93:26: fa:0e:68:74:12:57:d6:96:bf:04:71:45:40:9a:17: f2:4b:7d:2b:18:05:2a:9a:d6:ae:fe:dc:c3:b5:c7: 6c:58:fe:52:54:b8:b7:b9:54:4f:64:82:c8:c3:a0: d6:a3:88:d2:38:72:71:00:1f:8b:2a:5c:04:5f:dc: 24:ef:53:dc:b0:cd:c5:34:15:58:58:fa:73:41:50: 29:35:fd:14:0e:aa:af:e4:9d:1f:2a:a8:5e:8e:95: 04:a2:12:f2:d6:b3:7e:db:54:ed:28:cb:dd:56:f2: c1:7b:f6:91:bb:af:23:4b:55:90:23:5c:28:0c:e3: e2:3a:95:ca:f8:23:05:a3:4a:38:c0:1b:ce:a1:20: c5:f7:7a:4f:8b:90:0f:fe:dc:31:06:ce:26:38:94: e6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:1B:BF:84:DB:6A:CA:06:15:A7:34:B6:5B:E2:EE:1C:72:72:E4:A6 X509v3 Authority Key Identifier: keyid:81:C2:03:CF:45:8E:48:A8:FF:34:5F:B4:A5:DD:84:C6:FA:2D:CD:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C203CF458E48A8FF345FB4A5DD84C6FA2DCD0A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/da4746b7-5ff2-4556-8a3e-5a86cbcc8598/0/3130332e39362e3134372e302f32342d3234203d3e20313430343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.96.147.0/24 Signature Algorithm: sha256WithRSAEncryption 76:2b:e8:54:71:22:3b:2f:9b:5a:b1:4b:96:36:12:c3:03:17: 91:9b:c1:fc:ca:53:e1:c4:53:2a:81:70:46:86:cd:f3:41:6f: 70:44:58:4f:c2:a8:98:fe:07:15:c0:4e:81:e5:ff:f0:73:38: aa:b9:c6:64:08:0b:71:2a:1b:c8:22:03:10:d9:35:f2:f9:05: e8:12:20:fc:c1:7d:d4:75:dd:cf:f4:5c:2e:ad:e2:f4:47:90: b3:16:cd:2b:81:7b:04:ae:40:db:44:d3:4d:00:a9:7e:1d:c4: 1e:b0:f0:23:dc:ab:14:46:2e:68:c6:4e:8c:c8:dc:fa:eb:9f: 84:9c:3b:45:a0:1c:e8:84:ff:e3:1b:d4:47:6f:a6:b9:da:13: 7a:00:90:f6:8d:0a:3b:e9:b9:da:85:d7:4c:72:b9:f7:d6:35: ae:d7:16:d7:f5:be:a6:0c:4c:0a:f6:a7:c6:be:18:9b:e1:96: 85:88:53:63:b5:6f:05:19:12:c1:b7:a8:7d:11:0f:b0:17:2f: a0:c0:18:5f:09:5c:32:56:56:96:7f:e9:79:34:7a:ba:72:48: 61:41:8c:39:36:6a:3c:e4:5b:19:3a:13:3d:16:c5:1c:29:a3: 3d:a1:09:b3:f3:e6:8e:d9:ca:96:6b:ff:21:77:82:16:11:a5: 82:d4:b0:23 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEDVaL1Rnm5xO1xmwklSGnBN9/aowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODFDMjAzQ0Y0NThFNDhBOEZGMzQ1RkI0QTVERDg0QzZG QTJEQ0QwQTAeFw0yNDA5MjYxNTU1MDBaFw0yNTA5MjUxNjAwMDBaMDMxMTAvBgNV BAMTKEFGMUJCRjg0REI2QUNBMDYxNUE3MzRCNjVCRTJFRTFDNzI3MkU0QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG10yLe+zsXyvG783CbYtR450G 7AGjBz2cLIeqq6TKUaE+C8H3tK7+QnXg8RvdqeMTN9R6zrp0A0cMVhoPtce+Bry3 wPvzm/WseqgY/n6yJzdy48ckwwBdTBwhb+mnCzo6igG9fPaTJvoOaHQSV9aWvwRx RUCaF/JLfSsYBSqa1q7+3MO1x2xY/lJUuLe5VE9kgsjDoNajiNI4cnEAH4sqXARf 3CTvU9ywzcU0FVhY+nNBUCk1/RQOqq/knR8qqF6OlQSiEvLWs37bVO0oy91W8sF7 9pG7ryNLVZAjXCgM4+I6lcr4IwWjSjjAG86hIMX3ek+LkA/+3DEGziY4lOapAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUrxu/hNtqygYVpzS2W+LuHHJy5KYwHwYDVR0j BBgwFoAUgcIDz0WOSKj/NF+0pd2ExvotzQowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YTQ3NDZiNy01ZmYyLTQ1NTYtOGEzZS01YTg2Y2JjYzg1OTgvMC84MUMyMDNDRjQ1 OEU0OEE4RkYzNDVGQjRBNUREODRDNkZBMkRDRDBBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODFDMjAzQ0Y0NThFNDhBOEZGMzQ1RkI0QTVERDg0QzZGQTJE Q0QwQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhNDc0NmI3LTVmZjItNDU1Ni04 YTNlLTVhODZjYmNjODU5OC8wLzMxMzAzMzJlMzkzNjJlMzEzNDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2CTMA0GCSqG SIb3DQEBCwUAA4IBAQB2K+hUcSI7L5tasUuWNhLDAxeRm8H8ylPhxFMqgXBGhs3z QW9wRFhPwqiY/gcVwE6B5f/wcziqucZkCAtxKhvIIgMQ2TXy+QXoEiD8wX3Udd3P 9FwureL0R5CzFs0rgXsErkDbRNNNAKl+HcQesPAj3KsURi5oxk6MyNz665+EnDtF oBzohP/jG9RHb6a52hN6AJD2jQo76bnahddMcrn31jWu1xbX9b6mDEwK9qfGvhib 4ZaFiFNjtW8FGRLBt6h9EQ+wFy+gwBhfCVwyVlaWf+l5NHq6ckhhQYw5Nmo85FsZ OhM9FsUcKaM9oQmz8+aO2cqWa/8hd4IWEaWC1LAj -----END CERTIFICATE-----Generated at Thu Nov 21 15:45:24 2024 by rpki-client on console-ams.rpki-client.org