$ rpki-client -vvf repo-rpki.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/3130332e3233392e32332e302f32342d3234203d3e20313336383635.roa File: 3130332e3233392e32332e302f32342d3234203d3e20313336383635.roa (raw, json) Hash identifier: POSivOx077pF2p/pUXYP2nnbwfTRFol262TOLoHtTCE= Subject key identifier: D1:D5:C0:89:A6:C5:69:DF:BD:41:BC:0E:D0:BC:85:54:AA:1E:26:89 Certificate issuer: /CN=4E054E064DCDF2E49F7282D7370B9EAFF42A944B Certificate serial: 480A54E9FF3975D8C8525B7ECEE97DA05E35476B Authority key identifier: 4E:05:4E:06:4D:CD:F2:E4:9F:72:82:D7:37:0B:9E:AF:F4:2A:94:4B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E054E064DCDF2E49F7282D7370B9EAFF42A944B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/3130332e3233392e32332e302f32342d3234203d3e20313336383635.roa Signing time: Sat 05 Oct 2024 04:01:15 +0000 ROA not before: Sat 05 Oct 2024 03:56:15 +0000 ROA not after: Sat 04 Oct 2025 04:01:15 +0000 asID: 136865 IP address blocks: 103.239.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/4E054E064DCDF2E49F7282D7370B9EAFF42A944B.crl rsync://repo-rpki.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/4E054E064DCDF2E49F7282D7370B9EAFF42A944B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E054E064DCDF2E49F7282D7370B9EAFF42A944B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:0a:54:e9:ff:39:75:d8:c8:52:5b:7e:ce:e9:7d:a0:5e:35:47:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E054E064DCDF2E49F7282D7370B9EAFF42A944B Validity Not Before: Oct 5 03:56:15 2024 GMT Not After : Oct 4 04:01:15 2025 GMT Subject: CN=D1D5C089A6C569DFBD41BC0ED0BC8554AA1E2689 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:10:8c:3b:84:68:42:33:ae:4f:aa:01:21:41: a5:cb:a3:b5:b3:3d:c9:a3:be:f4:63:14:75:2a:2b: f1:10:92:0c:3e:3f:70:24:5d:bc:a4:34:ad:69:40: c6:a1:77:93:a8:bf:07:cb:dc:e6:20:0d:63:c5:41: 6f:e1:49:a4:79:f1:21:a3:01:06:d9:f9:b5:3c:b6: 01:59:c3:03:6c:c2:a9:cc:a9:28:65:38:e1:18:89: 6f:87:6f:08:8b:b0:63:7f:bb:f6:bc:4b:e0:d9:75: 6f:7a:73:ea:c9:83:f6:b2:84:31:78:de:af:8f:e1: be:60:97:07:cb:a3:42:d1:4e:3b:5a:2d:f9:8b:6b: e0:d3:36:ef:b5:9e:b9:ca:04:73:f8:a9:23:5f:bf: 79:11:bc:8d:af:7e:b9:e9:30:46:b0:81:d5:02:90: b0:c2:c5:7b:ca:6c:0a:5d:46:e7:f9:96:40:f8:23: 49:c5:75:c7:78:aa:a9:d8:45:86:83:46:06:dc:d5: a8:7f:5c:a5:f7:dd:99:e3:d9:2b:f1:91:be:71:5d: b2:fa:2a:1a:91:88:db:20:29:7b:e6:5e:6d:09:31: 11:7b:9a:b4:7c:38:1b:e4:73:18:9e:af:81:d3:76: dd:54:27:3a:dc:a1:75:78:27:a8:4d:ae:59:d5:a2: fd:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:D5:C0:89:A6:C5:69:DF:BD:41:BC:0E:D0:BC:85:54:AA:1E:26:89 X509v3 Authority Key Identifier: keyid:4E:05:4E:06:4D:CD:F2:E4:9F:72:82:D7:37:0B:9E:AF:F4:2A:94:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/4E054E064DCDF2E49F7282D7370B9EAFF42A944B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E054E064DCDF2E49F7282D7370B9EAFF42A944B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f398063e-57a1-40f2-8527-4d0a69c5d647/0/3130332e3233392e32332e302f32342d3234203d3e20313336383635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.23.0/24 Signature Algorithm: sha256WithRSAEncryption c6:d0:54:e9:45:7a:83:ea:85:1f:e4:56:87:d8:91:be:5b:43: e1:ac:d1:02:4f:a5:37:04:fc:72:a2:8b:8e:37:cc:75:42:10: 36:1f:4e:ce:2e:7e:53:f7:a7:9e:d5:73:db:42:8d:a5:5e:48: 2d:4e:5f:db:f8:0b:f7:6c:d6:13:79:90:db:a4:a6:6a:2e:8b: 45:b9:17:88:73:5d:ea:0a:69:7c:ad:49:e6:e8:f6:7c:2f:ab: ad:46:1b:7a:50:be:ed:27:d9:02:27:f1:5f:6a:06:66:2d:bf: fe:f8:c1:26:a1:b7:65:3e:c5:2c:8c:a9:36:d0:6e:bd:c0:b5: 61:98:f1:7b:0f:6f:7c:01:e8:81:4c:c1:99:c7:65:99:56:b1: aa:a3:e4:7a:24:41:b7:fd:05:29:ab:96:8f:85:1d:28:94:b3: 0c:43:63:65:17:f8:42:75:9d:78:59:77:b6:6f:7b:eb:1b:93: dd:1c:9a:39:8e:7a:a6:b1:ae:58:9e:64:45:44:32:82:19:59: 95:23:4c:96:d8:8b:84:0a:d1:38:72:90:e6:46:09:ba:d6:c8: eb:c3:ef:28:b4:7e:45:11:b6:45:d8:73:53:73:42:5f:9e:18: eb:57:be:a6:0e:d4:51:83:9f:c6:05:64:23:c9:bc:bd:c7:5e: 60:a5:b0:1b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUSApU6f85ddjIUlt+zul9oF41R2swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEUwNTRFMDY0RENERjJFNDlGNzI4MkQ3MzcwQjlFQUZG NDJBOTQ0QjAeFw0yNDEwMDUwMzU2MTVaFw0yNTEwMDQwNDAxMTVaMDMxMTAvBgNV BAMTKEQxRDVDMDg5QTZDNTY5REZCRDQxQkMwRUQwQkM4NTU0QUExRTI2ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkEIw7hGhCM65PqgEhQaXLo7Wz PcmjvvRjFHUqK/EQkgw+P3AkXbykNK1pQMahd5OovwfL3OYgDWPFQW/hSaR58SGj AQbZ+bU8tgFZwwNswqnMqShlOOEYiW+HbwiLsGN/u/a8S+DZdW96c+rJg/ayhDF4 3q+P4b5glwfLo0LRTjtaLfmLa+DTNu+1nrnKBHP4qSNfv3kRvI2vfrnpMEawgdUC kLDCxXvKbApdRuf5lkD4I0nFdcd4qqnYRYaDRgbc1ah/XKX33Znj2Svxkb5xXbL6 KhqRiNsgKXvmXm0JMRF7mrR8OBvkcxier4HTdt1UJzrcoXV4J6hNrlnVov2zAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU0dXAiabFad+9QbwO0LyFVKoeJokwHwYDVR0j BBgwFoAUTgVOBk3N8uSfcoLXNwuer/QqlEswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m Mzk4MDYzZS01N2ExLTQwZjItODUyNy00ZDBhNjljNWQ2NDcvMC80RTA1NEUwNjRE Q0RGMkU0OUY3MjgyRDczNzBCOUVBRkY0MkE5NDRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEUwNTRFMDY0RENERjJFNDlGNzI4MkQ3MzcwQjlFQUZGNDJB OTQ0Qi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzOTgwNjNlLTU3YTEtNDBmMi04 NTI3LTRkMGE2OWM1ZDY0Ny8wLzMxMzAzMzJlMzIzMzM5MmUzMjMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzNjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+8XMA0GCSqG SIb3DQEBCwUAA4IBAQDG0FTpRXqD6oUf5FaH2JG+W0PhrNECT6U3BPxyoouON8x1 QhA2H07OLn5T96ee1XPbQo2lXkgtTl/b+Av3bNYTeZDbpKZqLotFuReIc13qCml8 rUnm6PZ8L6utRht6UL7tJ9kCJ/FfagZmLb/++MEmobdlPsUsjKk20G69wLVhmPF7 D298AeiBTMGZx2WZVrGqo+R6JEG3/QUpq5aPhR0olLMMQ2NlF/hCdZ14WXe2b3vr G5PdHJo5jnqmsa5YnmRFRDKCGVmVI0yW2IuECtE4cpDmRgm61sjrw+8otH5FEbZF 2HNTc0JfnhjrV76mDtRRg5/GBWQjyby9x15gpbAb -----END CERTIFICATE-----Generated at Thu Nov 21 22:33:07 2024 by rpki-client on console-fra.rpki-client.org