$ rpki-client -vvf repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/3130332e3134322e3139352e302f32342d3234203d3e20313339333737.roa File: 3130332e3134322e3139352e302f32342d3234203d3e20313339333737.roa (raw, json) Hash identifier: +/f3QiszY3XbrdRJyoIxW8G+STpu2ntK0BASvPpvFYs= Subject key identifier: 97:54:2E:60:93:22:97:AA:87:86:40:9E:2C:C1:E1:12:99:2E:0F:E1 Certificate issuer: /CN=C43D9C91D389ADDD2039882757F731CAFAAC740F Certificate serial: 247FDC9F338507F369A73B3E50A69F707FAB21E2 Authority key identifier: C4:3D:9C:91:D3:89:AD:DD:20:39:88:27:57:F7:31:CA:FA:AC:74:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C43D9C91D389ADDD2039882757F731CAFAAC740F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/3130332e3134322e3139352e302f32342d3234203d3e20313339333737.roa Signing time: Sun 16 Jun 2024 10:00:00 +0000 ROA not before: Sun 16 Jun 2024 09:55:00 +0000 ROA not after: Sun 15 Jun 2025 10:00:00 +0000 asID: 139377 IP address blocks: 103.142.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/C43D9C91D389ADDD2039882757F731CAFAAC740F.crl rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/C43D9C91D389ADDD2039882757F731CAFAAC740F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C43D9C91D389ADDD2039882757F731CAFAAC740F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:7f:dc:9f:33:85:07:f3:69:a7:3b:3e:50:a6:9f:70:7f:ab:21:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C43D9C91D389ADDD2039882757F731CAFAAC740F Validity Not Before: Jun 16 09:55:00 2024 GMT Not After : Jun 15 10:00:00 2025 GMT Subject: CN=97542E60932297AA8786409E2CC1E112992E0FE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:be:c8:d0:0d:dd:4f:54:ba:7b:c4:48:0a:4b: f1:de:6b:64:28:af:19:f3:58:ee:c2:e8:3a:fc:ad: 48:93:6d:f7:06:73:e1:e8:56:1b:c0:d0:29:56:51: 65:0b:bd:83:46:64:7e:fb:d9:1d:94:cc:00:ab:09: 57:94:78:93:89:40:49:23:f8:9a:ab:17:00:ef:e1: 55:a0:44:1f:05:2c:a2:7f:6b:dc:07:c0:24:65:69: d1:c3:f4:3d:de:b6:73:45:19:78:f5:5c:70:ed:2e: 7b:01:db:8f:21:4c:7c:0e:e4:1f:75:87:b5:99:43: b8:88:da:9e:93:1a:06:ae:f0:89:b7:9e:a5:6d:a6: 5c:b1:cc:35:d4:c6:bd:0f:e4:a2:ba:24:e8:f8:37: ee:16:c3:be:8d:32:7e:42:dd:eb:b3:13:1d:5e:42: df:28:30:33:67:b1:28:24:f2:fa:2b:a2:57:0b:81: bb:37:c4:a4:84:1c:f1:cf:e8:5b:9b:cc:58:e6:05: 34:ee:80:b9:0e:39:26:1a:07:d8:48:88:c6:71:04: 0f:ce:d9:d6:06:07:7e:42:b1:41:85:58:a9:7e:fe: 2f:46:f1:8d:3d:3e:b9:64:e8:71:46:02:80:db:5a: fc:bc:09:f3:02:e4:75:28:94:8b:cc:9e:f7:f4:49: 24:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:54:2E:60:93:22:97:AA:87:86:40:9E:2C:C1:E1:12:99:2E:0F:E1 X509v3 Authority Key Identifier: keyid:C4:3D:9C:91:D3:89:AD:DD:20:39:88:27:57:F7:31:CA:FA:AC:74:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/C43D9C91D389ADDD2039882757F731CAFAAC740F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C43D9C91D389ADDD2039882757F731CAFAAC740F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/3130332e3134322e3139352e302f32342d3234203d3e20313339333737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.195.0/24 Signature Algorithm: sha256WithRSAEncryption b4:ed:26:85:62:97:b0:f6:50:a4:29:83:8d:20:3d:e1:8b:c6: dc:a2:95:5c:40:f0:5b:1f:dd:ff:cb:82:c9:f7:1b:e5:ce:65: 79:52:0e:6c:94:7e:51:3e:76:2f:11:3c:87:88:a1:c9:05:09: 79:4e:f8:88:2e:dc:7e:12:66:24:5f:38:23:06:32:30:aa:e3: d2:05:1d:b0:fc:5e:dc:95:55:b2:a9:e0:76:88:a4:e3:b8:b9: 88:c3:dd:f1:d7:76:d8:5d:09:89:70:2b:70:5d:66:d1:dd:21: 3f:83:43:ad:33:20:25:c9:b7:05:4c:ff:0c:d4:34:34:65:21: 56:e2:55:c8:ac:52:25:fe:a8:ae:46:8a:04:e0:e1:43:6a:99: 2a:2b:3e:c0:bb:73:db:00:64:a0:8f:dd:b4:95:b9:8f:4a:aa: 8b:6c:54:f4:c9:06:6e:da:33:3c:57:13:1f:ce:e1:a2:38:f2: 04:75:a7:cd:1a:5d:52:70:6e:8f:50:64:ac:a3:8a:87:33:95: be:8e:5a:7c:2f:18:a3:e6:5e:f5:95:fb:a2:2d:bf:4c:ae:43: 26:ec:6d:f8:1b:ec:92:78:49:ef:4c:06:ae:f5:b6:50:65:2d: f3:28:7f:e7:f2:2e:da:01:cd:15:0d:28:41:70:04:7e:92:f6: a4:de:0b:30 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJH/cnzOFB/Nppzs+UKafcH+rIeIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzQzRDlDOTFEMzg5QURERDIwMzk4ODI3NTdGNzMxQ0FG QUFDNzQwRjAeFw0yNDA2MTYwOTU1MDBaFw0yNTA2MTUxMDAwMDBaMDMxMTAvBgNV BAMTKDk3NTQyRTYwOTMyMjk3QUE4Nzg2NDA5RTJDQzFFMTEyOTkyRTBGRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyvsjQDd1PVLp7xEgKS/Hea2Qo rxnzWO7C6Dr8rUiTbfcGc+HoVhvA0ClWUWULvYNGZH772R2UzACrCVeUeJOJQEkj +JqrFwDv4VWgRB8FLKJ/a9wHwCRladHD9D3etnNFGXj1XHDtLnsB248hTHwO5B91 h7WZQ7iI2p6TGgau8Im3nqVtplyxzDXUxr0P5KK6JOj4N+4Ww76NMn5C3euzEx1e Qt8oMDNnsSgk8vorolcLgbs3xKSEHPHP6FubzFjmBTTugLkOOSYaB9hIiMZxBA/O 2dYGB35CsUGFWKl+/i9G8Y09Prlk6HFGAoDbWvy8CfMC5HUolIvMnvf0SSQTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUl1QuYJMil6qHhkCeLMHhEpkuD+EwHwYDVR0j BBgwFoAUxD2ckdOJrd0gOYgnV/cxyvqsdA8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MmFhMmQxMC0zZmFhLTQyNzItYmUxZi04MTAyOTU3YjY1ZTYvMC9DNDNEOUM5MUQz ODlBREREMjAzOTg4Mjc1N0Y3MzFDQUZBQUM3NDBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzQzRDlDOTFEMzg5QURERDIwMzk4ODI3NTdGNzMxQ0FGQUFD NzQwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YyYWEyZDEwLTNmYWEtNDI3Mi1i ZTFmLTgxMDI5NTdiNjVlNi8wLzMxMzAzMzJlMzEzNDMyMmUzMTM5MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzMzM3Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnjsMwDQYJ KoZIhvcNAQELBQADggEBALTtJoVil7D2UKQpg40gPeGLxtyilVxA8Fsf3f/Lgsn3 G+XOZXlSDmyUflE+di8RPIeIockFCXlO+Igu3H4SZiRfOCMGMjCq49IFHbD8XtyV VbKp4HaIpOO4uYjD3fHXdthdCYlwK3BdZtHdIT+DQ60zICXJtwVM/wzUNDRlIVbi VcisUiX+qK5GigTg4UNqmSorPsC7c9sAZKCP3bSVuY9KqotsVPTJBm7aMzxXEx/O 4aI48gR1p80aXVJwbo9QZKyjioczlb6OWnwvGKPmXvWV+6Itv0yuQybsbfgb7JJ4 Se9MBq71tlBlLfMof+fyLtoBzRUNKEFwBH6S9qTeCzA= -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org