$ rpki-client -vvf repo-rpki.idnic.net/repo/f735e15f-d449-46d8-be0e-85e389bedc5e/0/3130332e3137372e36302e302f32342d3234203d3e20313437313432.roa File: 3130332e3137372e36302e302f32342d3234203d3e20313437313432.roa (raw, json) Hash identifier: ppbrVEcBgfohP7PzWmA4cMeDdxEOvWIR45yY7aB8pfc= Subject key identifier: 9B:25:03:E7:D4:23:C1:43:57:5B:8A:BB:01:44:FB:CF:15:D7:C3:12 Certificate issuer: /CN=542851974B72056B3D43792A5ED83E94DA8583CF Certificate serial: 437A565DE22CC5D7CEFE8AE6756C55FA568D201E Authority key identifier: 54:28:51:97:4B:72:05:6B:3D:43:79:2A:5E:D8:3E:94:DA:85:83:CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/542851974B72056B3D43792A5ED83E94DA8583CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f735e15f-d449-46d8-be0e-85e389bedc5e/0/3130332e3137372e36302e302f32342d3234203d3e20313437313432.roa Signing time: Fri 13 Sep 2024 02:00:00 +0000 ROA not before: Fri 13 Sep 2024 01:55:00 +0000 ROA not after: Fri 12 Sep 2025 02:00:00 +0000 asID: 147142 IP address blocks: 103.177.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f735e15f-d449-46d8-be0e-85e389bedc5e/0/542851974B72056B3D43792A5ED83E94DA8583CF.crl rsync://repo-rpki.idnic.net/repo/f735e15f-d449-46d8-be0e-85e389bedc5e/0/542851974B72056B3D43792A5ED83E94DA8583CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/542851974B72056B3D43792A5ED83E94DA8583CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:18:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:7a:56:5d:e2:2c:c5:d7:ce:fe:8a:e6:75:6c:55:fa:56:8d:20:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=542851974B72056B3D43792A5ED83E94DA8583CF Validity Not Before: Sep 13 01:55:00 2024 GMT Not After : Sep 12 02:00:00 2025 GMT Subject: CN=9B2503E7D423C143575B8ABB0144FBCF15D7C312 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a4:1c:43:d4:de:86:f3:e5:12:e5:47:7c:55: ee:3d:50:5e:84:45:59:22:db:0a:ea:ce:bb:04:ec: b8:60:98:55:40:d7:26:33:16:40:2e:34:e8:43:f0: 88:13:c0:b7:5c:fa:06:8d:d0:f5:92:07:34:32:52: be:cd:75:32:c1:b5:34:fa:7f:bc:61:5d:02:0b:af: e8:5b:8b:d2:80:71:95:46:df:fc:89:3e:de:b7:94: 56:45:6b:ac:7c:a4:f7:ec:da:a3:d1:69:f7:2e:1b: 6c:c3:87:40:85:0f:b4:5f:63:0c:c4:1d:17:11:b1: ee:49:26:fe:d7:fd:eb:0f:1d:78:45:24:d7:f5:ba: 46:da:40:f3:c6:62:f6:6d:d2:ff:17:3f:00:83:62: bf:7d:13:16:44:9a:50:89:13:b8:e8:e0:bc:83:78: 40:db:59:00:01:b1:d4:a7:13:b3:62:82:58:80:07: 03:3c:c9:10:ec:f8:7c:7c:e6:4b:a0:a3:e8:29:00: 94:f2:2b:a7:4a:8e:b9:2c:94:ed:30:1c:f0:29:44: 76:3b:c2:23:8d:eb:6a:f8:3c:62:a8:a9:2b:e3:4e: c8:9e:80:f4:73:35:6f:3b:e7:e0:3e:b7:93:c1:29: 3d:e6:9d:e0:4b:ae:08:09:bd:23:3b:1f:a9:4e:8c: 7c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:25:03:E7:D4:23:C1:43:57:5B:8A:BB:01:44:FB:CF:15:D7:C3:12 X509v3 Authority Key Identifier: keyid:54:28:51:97:4B:72:05:6B:3D:43:79:2A:5E:D8:3E:94:DA:85:83:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f735e15f-d449-46d8-be0e-85e389bedc5e/0/542851974B72056B3D43792A5ED83E94DA8583CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/542851974B72056B3D43792A5ED83E94DA8583CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f735e15f-d449-46d8-be0e-85e389bedc5e/0/3130332e3137372e36302e302f32342d3234203d3e20313437313432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.60.0/24 Signature Algorithm: sha256WithRSAEncryption ad:73:4d:81:7f:22:56:d4:cb:d1:bb:4c:46:13:78:60:d2:44: 50:d3:e5:02:cf:8d:3d:70:84:dd:a8:3f:99:87:79:2b:bd:50: 9e:00:07:15:96:30:4d:2a:f9:33:5e:fe:57:1f:52:08:f3:aa: 31:1f:08:21:c9:03:0b:5b:3c:43:95:60:50:4b:4c:d9:87:5a: b6:99:af:fb:cb:d6:f5:53:38:2d:30:96:18:ce:94:a9:ba:aa: 52:e5:f9:c2:b2:3d:b7:3c:4b:05:0d:d4:e5:13:f5:19:4e:7e: 1d:78:d9:74:92:13:02:61:ba:81:09:c6:03:e4:e7:14:1c:d8: e0:f9:27:1d:e7:42:9d:fb:b5:b9:11:8a:68:75:f0:f9:19:5c: 36:65:f3:60:ee:3a:44:73:33:53:4a:20:a2:38:08:43:67:b2: 93:14:85:7d:66:b5:0f:ac:5e:06:87:8f:c7:5e:53:2c:f8:46: 73:cf:c7:9b:ef:38:12:c4:39:54:c4:52:59:cf:72:93:e1:6b: ca:41:2f:8d:fb:a7:af:c3:91:cf:e8:8d:1d:85:6c:80:4b:9c: 00:9e:6a:1d:b1:3c:b0:54:db:65:95:9c:9b:f8:b3:80:93:02: 03:06:4e:6e:50:11:d1:4a:8e:61:62:33:77:80:ca:27:a5:7a: f9:20:35:28 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQ3pWXeIsxdfO/ormdWxV+laNIB4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTQyODUxOTc0QjcyMDU2QjNENDM3OTJBNUVEODNFOTRE QTg1ODNDRjAeFw0yNDA5MTMwMTU1MDBaFw0yNTA5MTIwMjAwMDBaMDMxMTAvBgNV BAMTKDlCMjUwM0U3RDQyM0MxNDM1NzVCOEFCQjAxNDRGQkNGMTVEN0MzMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSpBxD1N6G8+US5Ud8Ve49UF6E RVki2wrqzrsE7LhgmFVA1yYzFkAuNOhD8IgTwLdc+gaN0PWSBzQyUr7NdTLBtTT6 f7xhXQILr+hbi9KAcZVG3/yJPt63lFZFa6x8pPfs2qPRafcuG2zDh0CFD7RfYwzE HRcRse5JJv7X/esPHXhFJNf1ukbaQPPGYvZt0v8XPwCDYr99ExZEmlCJE7jo4LyD eEDbWQABsdSnE7NigliABwM8yRDs+Hx85kugo+gpAJTyK6dKjrkslO0wHPApRHY7 wiON62r4PGKoqSvjTsiegPRzNW875+A+t5PBKT3mneBLrggJvSM7H6lOjHxPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmyUD59QjwUNXW4q7AUT7zxXXwxIwHwYDVR0j BBgwFoAUVChRl0tyBWs9Q3kqXtg+lNqFg88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m NzM1ZTE1Zi1kNDQ5LTQ2ZDgtYmUwZS04NWUzODliZWRjNWUvMC81NDI4NTE5NzRC NzIwNTZCM0Q0Mzc5MkE1RUQ4M0U5NERBODU4M0NGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTQyODUxOTc0QjcyMDU2QjNENDM3OTJBNUVEODNFOTREQTg1 ODNDRi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3MzVlMTVmLWQ0NDktNDZkOC1i ZTBlLTg1ZTM4OWJlZGM1ZS8wLzMxMzAzMzJlMzEzNzM3MmUzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzEzNDMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7E8MA0GCSqG SIb3DQEBCwUAA4IBAQCtc02BfyJW1MvRu0xGE3hg0kRQ0+UCz409cITdqD+Zh3kr vVCeAAcVljBNKvkzXv5XH1II86oxHwghyQMLWzxDlWBQS0zZh1q2ma/7y9b1Uzgt MJYYzpSpuqpS5fnCsj23PEsFDdTlE/UZTn4deNl0khMCYbqBCcYD5OcUHNjg+Scd 50Kd+7W5EYpodfD5GVw2ZfNg7jpEczNTSiCiOAhDZ7KTFIV9ZrUPrF4Gh4/HXlMs +EZzz8eb7zgSxDlUxFJZz3KT4WvKQS+N+6evw5HP6I0dhWyAS5wAnmodsTywVNtl lZyb+LOAkwIDBk5uUBHRSo5hYjN3gMonpXr5IDUo -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:20 2024 by rpki-client on console-fra.rpki-client.org