$ rpki-client -vvf repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/3130332e3135332e34302e302f32332d3234203d3e20313430343534.roa File: 3130332e3135332e34302e302f32332d3234203d3e20313430343534.roa (raw, json) Hash identifier: +TpGrInw6MYBt52lteYHqPe/GHixGpWLSTXXOphuUSU= Subject key identifier: 9D:A3:2C:01:72:F2:CB:27:A3:AD:87:96:B8:4A:D2:F2:C6:4E:51:67 Certificate issuer: /CN=45164C20EAF7FAB583FB12C81727150895FCEC70 Certificate serial: 1DE6816D731B411C523402B313DFF2E0B78B5EFE Authority key identifier: 45:16:4C:20:EA:F7:FA:B5:83:FB:12:C8:17:27:15:08:95:FC:EC:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45164C20EAF7FAB583FB12C81727150895FCEC70.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/3130332e3135332e34302e302f32332d3234203d3e20313430343534.roa Signing time: Tue 05 Nov 2024 11:00:00 +0000 ROA not before: Tue 05 Nov 2024 10:55:00 +0000 ROA not after: Tue 04 Nov 2025 11:00:00 +0000 asID: 140454 IP address blocks: 103.153.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/45164C20EAF7FAB583FB12C81727150895FCEC70.crl rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/45164C20EAF7FAB583FB12C81727150895FCEC70.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45164C20EAF7FAB583FB12C81727150895FCEC70.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:34:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:e6:81:6d:73:1b:41:1c:52:34:02:b3:13:df:f2:e0:b7:8b:5e:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45164C20EAF7FAB583FB12C81727150895FCEC70 Validity Not Before: Nov 5 10:55:00 2024 GMT Not After : Nov 4 11:00:00 2025 GMT Subject: CN=9DA32C0172F2CB27A3AD8796B84AD2F2C64E5167 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b7:63:4c:ba:69:36:b5:63:6d:6a:9e:e4:8a: ef:21:ae:e3:a6:c8:b5:97:f4:94:30:eb:e4:f8:f3: 00:b4:22:8c:0a:82:78:3d:a8:36:27:50:d9:4a:72: 41:6e:c9:4b:73:df:e7:99:7f:12:e9:b1:ac:50:2c: 94:0e:66:59:7e:f0:38:21:b6:88:b4:27:e7:c7:36: 77:40:a1:5d:2d:be:03:86:df:4f:a1:84:a9:af:90: dd:98:ab:3d:f0:0a:e9:4a:f8:ea:dc:fd:13:df:a8: 58:a7:2b:94:82:5f:ce:82:33:49:a0:71:eb:5b:7d: 96:16:ee:b6:2a:bc:16:19:f9:41:a0:9f:f3:7a:b2: 66:25:de:45:0c:b5:cd:53:71:dd:93:d3:ad:25:1b: 4d:3c:22:4d:12:8a:db:a0:71:db:96:a4:cf:f6:a5: f6:b3:ba:62:a4:c2:22:93:12:9a:ea:3a:9d:00:7a: c3:56:74:50:cb:a9:8b:fc:1e:de:38:6b:56:c4:90: 8c:b4:cc:a1:93:be:02:c8:33:e8:b9:41:f4:ad:97: ec:84:75:df:6c:0b:a4:39:b9:65:92:a9:db:e6:c7: ef:8c:20:4e:0a:66:b0:6d:42:eb:1f:90:8b:f3:fa: e7:1b:fa:e3:45:0e:7a:9f:aa:03:94:fa:33:95:91: 41:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:A3:2C:01:72:F2:CB:27:A3:AD:87:96:B8:4A:D2:F2:C6:4E:51:67 X509v3 Authority Key Identifier: keyid:45:16:4C:20:EA:F7:FA:B5:83:FB:12:C8:17:27:15:08:95:FC:EC:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/45164C20EAF7FAB583FB12C81727150895FCEC70.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45164C20EAF7FAB583FB12C81727150895FCEC70.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/3130332e3135332e34302e302f32332d3234203d3e20313430343534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.40.0/23 Signature Algorithm: sha256WithRSAEncryption 98:cf:5b:7c:86:55:16:a2:7e:be:9d:41:d3:ff:cc:dc:6f:c1: 07:e1:39:fb:99:76:2c:8b:50:ee:46:6b:82:eb:73:d2:a2:b6: 5f:fa:88:e3:fc:d1:30:8b:b8:ab:cd:50:9d:1b:d0:82:09:8e: fc:fd:ad:bf:38:05:90:24:b7:51:fe:84:d9:df:b6:0f:68:75: c7:d3:36:00:4e:0c:bf:23:9c:a5:88:bd:bc:19:0c:9a:55:49: 2a:ad:7b:bf:bd:28:82:3e:d4:c4:fd:c7:d1:88:98:df:94:97: 6b:10:ce:a2:1f:78:b7:85:0f:61:1d:b8:75:b9:aa:2a:b8:e1: e7:a4:46:ff:81:36:7f:58:d9:2f:e6:84:4a:c3:e7:76:ab:15: 0e:7d:62:08:bc:cf:91:fd:45:93:1e:2c:fd:b8:0b:cc:05:d2: 34:f8:95:06:b1:b1:81:de:37:8d:bc:63:e3:09:71:04:c9:7f: 4b:0c:39:a6:4f:91:1b:39:6f:4c:c1:e4:53:5e:a0:17:0d:13: 81:35:f4:b0:e6:f0:0c:f0:53:04:14:95:b9:88:03:fd:c1:21: df:f0:50:0f:f5:bc:2b:1c:2d:07:fb:7a:3b:31:4f:7f:3f:29: bf:80:dc:f3:2e:7a:43:b1:bf:29:96:4d:27:01:ea:cf:55:5f: 42:a0:ef:af -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHeaBbXMbQRxSNAKzE9/y4LeLXv4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUxNjRDMjBFQUY3RkFCNTgzRkIxMkM4MTcyNzE1MDg5 NUZDRUM3MDAeFw0yNDExMDUxMDU1MDBaFw0yNTExMDQxMTAwMDBaMDMxMTAvBgNV BAMTKDlEQTMyQzAxNzJGMkNCMjdBM0FEODc5NkI4NEFEMkYyQzY0RTUxNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9t2NMumk2tWNtap7kiu8hruOm yLWX9JQw6+T48wC0IowKgng9qDYnUNlKckFuyUtz3+eZfxLpsaxQLJQOZll+8Dgh toi0J+fHNndAoV0tvgOG30+hhKmvkN2Yqz3wCulK+Orc/RPfqFinK5SCX86CM0mg cetbfZYW7rYqvBYZ+UGgn/N6smYl3kUMtc1Tcd2T060lG008Ik0SitugcduWpM/2 pfazumKkwiKTEprqOp0AesNWdFDLqYv8Ht44a1bEkIy0zKGTvgLIM+i5QfStl+yE dd9sC6Q5uWWSqdvmx++MIE4KZrBtQusfkIvz+ucb+uNFDnqfqgOU+jOVkUEbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUnaMsAXLyyyejrYeWuErS8sZOUWcwHwYDVR0j BBgwFoAURRZMIOr3+rWD+xLIFycVCJX87HAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MWFlMTJmYS05OGZkLTRlNTEtOTgwZS1hZDVmNWI5MGQ3YTYvMC80NTE2NEMyMEVB RjdGQUI1ODNGQjEyQzgxNzI3MTUwODk1RkNFQzcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDUxNjRDMjBFQUY3RkFCNTgzRkIxMkM4MTcyNzE1MDg5NUZD RUM3MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxYWUxMmZhLTk4ZmQtNGU1MS05 ODBlLWFkNWY1YjkwZDdhNi8wLzMxMzAzMzJlMzEzNTMzMmUzNDMwMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNTM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5koMA0GCSqG SIb3DQEBCwUAA4IBAQCYz1t8hlUWon6+nUHT/8zcb8EH4Tn7mXYsi1DuRmuC63PS orZf+ojj/NEwi7irzVCdG9CCCY78/a2/OAWQJLdR/oTZ37YPaHXH0zYATgy/I5yl iL28GQyaVUkqrXu/vSiCPtTE/cfRiJjflJdrEM6iH3i3hQ9hHbh1uaoquOHnpEb/ gTZ/WNkv5oRKw+d2qxUOfWIIvM+R/UWTHiz9uAvMBdI0+JUGsbGB3jeNvGPjCXEE yX9LDDmmT5EbOW9MweRTXqAXDROBNfSw5vAM8FMEFJW5iAP9wSHf8FAP9bwrHC0H +3o7MU9/Pym/gNzzLnpDsb8plk0nAerPVV9CoO+v -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:38 2024 by rpki-client on console-ams.rpki-client.org