$ rpki-client -vvf repo-rpki.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/3130332e3233332e3130322e302f32332d3234203d3e20313336313037.roa File: 3130332e3233332e3130322e302f32332d3234203d3e20313336313037.roa (raw, json) Hash identifier: JI3pjhPmyInlzEtZ8PXbjRWk78z+cy0q6o/inypVTws= Subject key identifier: 00:38:BE:13:A8:E8:2D:FB:70:01:92:92:1D:7F:7C:78:56:00:3C:8F Certificate issuer: /CN=439A4981549ABB151B12D6EC85FC8D0DBF99A81E Certificate serial: 4571881C4CB231B9858B780E69643140DA2089BA Authority key identifier: 43:9A:49:81:54:9A:BB:15:1B:12:D6:EC:85:FC:8D:0D:BF:99:A8:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/439A4981549ABB151B12D6EC85FC8D0DBF99A81E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/3130332e3233332e3130322e302f32332d3234203d3e20313336313037.roa Signing time: Sun 03 Nov 2024 15:00:01 +0000 ROA not before: Sun 03 Nov 2024 14:55:01 +0000 ROA not after: Sun 02 Nov 2025 15:00:01 +0000 asID: 136107 IP address blocks: 103.233.102.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/439A4981549ABB151B12D6EC85FC8D0DBF99A81E.crl rsync://repo-rpki.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/439A4981549ABB151B12D6EC85FC8D0DBF99A81E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/439A4981549ABB151B12D6EC85FC8D0DBF99A81E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:71:88:1c:4c:b2:31:b9:85:8b:78:0e:69:64:31:40:da:20:89:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=439A4981549ABB151B12D6EC85FC8D0DBF99A81E Validity Not Before: Nov 3 14:55:01 2024 GMT Not After : Nov 2 15:00:01 2025 GMT Subject: CN=0038BE13A8E82DFB700192921D7F7C7856003C8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:69:5c:f7:6d:04:c3:97:ac:44:50:29:fd:d7: 0e:50:e4:19:fd:19:ec:86:5a:63:6c:db:e1:3b:b8: af:97:50:96:8f:31:f6:c5:28:30:5c:7c:4a:8e:38: de:19:33:33:86:c1:8a:1f:cc:19:11:b2:21:34:55: 84:d1:13:47:9e:1c:fe:8e:90:1f:48:44:eb:08:98: 1a:db:8e:c9:36:f7:c7:71:18:35:20:17:c4:af:7a: 0c:25:23:fc:3b:57:7b:77:e2:52:cf:fe:95:e5:e3: 6a:4c:ff:80:20:c7:1c:19:bc:64:1b:e4:e5:38:7d: e8:2b:3c:1f:a8:91:0d:a2:b2:a2:90:ec:45:10:ac: cb:33:e5:dc:ae:b5:7b:81:da:7e:11:ee:5f:4f:ba: d8:a4:35:8d:26:3a:a0:bf:b6:91:bb:84:47:9e:da: ee:b3:ff:b2:f9:2e:84:de:f7:2d:90:4e:5a:f7:52: bc:fa:25:31:56:d4:7d:32:24:a9:b6:fb:df:96:e2: a7:aa:08:6c:8a:aa:cf:8c:28:dd:77:dd:93:f1:19: aa:66:fe:3b:c1:6c:b0:45:09:fe:3b:dc:a7:a0:7c: f3:4c:29:fd:d8:53:23:ca:e8:e3:25:5f:ba:15:06: ae:90:dd:3c:05:cf:18:99:a3:ce:92:db:5a:be:5d: 7e:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:38:BE:13:A8:E8:2D:FB:70:01:92:92:1D:7F:7C:78:56:00:3C:8F X509v3 Authority Key Identifier: keyid:43:9A:49:81:54:9A:BB:15:1B:12:D6:EC:85:FC:8D:0D:BF:99:A8:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/439A4981549ABB151B12D6EC85FC8D0DBF99A81E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/439A4981549ABB151B12D6EC85FC8D0DBF99A81E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ea47231f-02dd-49e8-aa25-2d54c0a999ca/0/3130332e3233332e3130322e302f32332d3234203d3e20313336313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.233.102.0/23 Signature Algorithm: sha256WithRSAEncryption 47:45:e2:82:66:e2:bc:3e:98:c4:6c:55:d6:ce:07:7e:35:e1: 67:18:a6:78:f2:1c:fb:0b:03:2b:ab:15:ab:6c:9e:c9:33:21: 1c:65:50:ab:1c:ee:28:7c:d1:5e:5f:e3:02:f6:ce:e2:9a:c3: 23:b2:03:18:85:f8:54:14:01:99:a5:e4:92:d8:31:26:72:f2: 7d:80:63:20:68:d8:87:ac:31:b4:0a:59:12:70:6a:55:9d:9f: 2d:ce:4f:f0:5f:9c:45:4e:67:a4:fe:64:04:56:aa:20:10:a3: 44:92:0d:37:fa:55:ba:5a:2d:db:04:d7:ff:7d:5e:4e:9f:1d: e9:f8:3a:1f:9f:c3:37:e1:c2:9a:09:fd:5a:e0:ce:0f:3e:06: be:37:8f:83:b7:06:89:fc:46:8a:16:df:71:8c:b1:8e:49:ab: 69:dc:99:64:4c:b4:e2:c6:59:7a:89:3c:61:95:92:c5:a2:de: 0c:56:81:38:40:f3:b4:5a:80:20:da:22:49:5a:0f:e3:29:0e: ee:4e:28:db:c9:e9:f8:c3:a3:21:2c:c9:46:ba:79:5a:ad:69: 9d:a6:57:cd:ad:7c:3b:31:bd:57:85:14:e9:cb:71:8b:7e:9f: 35:15:5d:bd:1d:13:65:c6:69:3b:ef:e4:ae:02:58:2d:63:37: 8f:eb:e6:58 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURXGIHEyyMbmFi3gOaWQxQNogibowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDM5QTQ5ODE1NDlBQkIxNTFCMTJENkVDODVGQzhEMERC Rjk5QTgxRTAeFw0yNDExMDMxNDU1MDFaFw0yNTExMDIxNTAwMDFaMDMxMTAvBgNV BAMTKDAwMzhCRTEzQThFODJERkI3MDAxOTI5MjFEN0Y3Qzc4NTYwMDNDOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtaVz3bQTDl6xEUCn91w5Q5Bn9 GeyGWmNs2+E7uK+XUJaPMfbFKDBcfEqOON4ZMzOGwYofzBkRsiE0VYTRE0eeHP6O kB9IROsImBrbjsk298dxGDUgF8SvegwlI/w7V3t34lLP/pXl42pM/4AgxxwZvGQb 5OU4fegrPB+okQ2isqKQ7EUQrMsz5dyutXuB2n4R7l9PutikNY0mOqC/tpG7hEee 2u6z/7L5LoTe9y2QTlr3Urz6JTFW1H0yJKm2+9+W4qeqCGyKqs+MKN133ZPxGapm /jvBbLBFCf473KegfPNMKf3YUyPK6OMlX7oVBq6Q3TwFzxiZo86S21q+XX6FAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUADi+E6joLftwAZKSHX98eFYAPI8wHwYDVR0j BBgwFoAUQ5pJgVSauxUbEtbshfyNDb+ZqB4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YTQ3MjMxZi0wMmRkLTQ5ZTgtYWEyNS0yZDU0YzBhOTk5Y2EvMC80MzlBNDk4MTU0 OUFCQjE1MUIxMkQ2RUM4NUZDOEQwREJGOTlBODFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDM5QTQ5ODE1NDlBQkIxNTFCMTJENkVDODVGQzhEMERCRjk5 QTgxRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhNDcyMzFmLTAyZGQtNDllOC1h YTI1LTJkNTRjMGE5OTljYS8wLzMxMzAzMzJlMzIzMzMzMmUzMTMwMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzYzMTMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn6WYwDQYJ KoZIhvcNAQELBQADggEBAEdF4oJm4rw+mMRsVdbOB3414WcYpnjyHPsLAyurFats nskzIRxlUKsc7ih80V5f4wL2zuKawyOyAxiF+FQUAZml5JLYMSZy8n2AYyBo2Ies MbQKWRJwalWdny3OT/BfnEVOZ6T+ZARWqiAQo0SSDTf6VbpaLdsE1/99Xk6fHen4 Oh+fwzfhwpoJ/Vrgzg8+Br43j4O3Bon8RooW33GMsY5Jq2ncmWRMtOLGWXqJPGGV ksWi3gxWgThA87RagCDaIklaD+MpDu5OKNvJ6fjDoyEsyUa6eVqtaZ2mV82tfDsx vVeFFOnLcYt+nzUVXb0dE2XGaTvv5K4CWC1jN4/r5lg= -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org