$ rpki-client -vvf repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/3130332e3135352e3139362e302f32342d3234203d3e20313431303731.roa File: 3130332e3135352e3139362e302f32342d3234203d3e20313431303731.roa (raw, json) Hash identifier: r4bbE3J74imEfGNc3Yq/RkOZJXcnua5imBb7qm1BGas= Subject key identifier: 19:39:D9:4C:11:83:7D:0F:BF:08:41:DF:53:75:1B:F7:40:49:3D:21 Certificate issuer: /CN=A532AD36631301388EC939BEB0F099FCDE956410 Certificate serial: 336B1281C64E978A5EA95DF7C7158984E5115F6A Authority key identifier: A5:32:AD:36:63:13:01:38:8E:C9:39:BE:B0:F0:99:FC:DE:95:64:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A532AD36631301388EC939BEB0F099FCDE956410.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/3130332e3135352e3139362e302f32342d3234203d3e20313431303731.roa Signing time: Sat 05 Oct 2024 09:00:02 +0000 ROA not before: Sat 05 Oct 2024 08:55:02 +0000 ROA not after: Sat 04 Oct 2025 09:00:02 +0000 asID: 141071 IP address blocks: 103.155.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/A532AD36631301388EC939BEB0F099FCDE956410.crl rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/A532AD36631301388EC939BEB0F099FCDE956410.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A532AD36631301388EC939BEB0F099FCDE956410.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 21:30:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:6b:12:81:c6:4e:97:8a:5e:a9:5d:f7:c7:15:89:84:e5:11:5f:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A532AD36631301388EC939BEB0F099FCDE956410 Validity Not Before: Oct 5 08:55:02 2024 GMT Not After : Oct 4 09:00:02 2025 GMT Subject: CN=1939D94C11837D0FBF0841DF53751BF740493D21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b2:d9:5c:d5:95:e5:6e:d2:9d:49:03:93:91: af:8f:34:cc:af:f7:0b:4b:23:3b:88:44:36:63:52: 16:fb:ca:70:28:6a:94:2f:ef:24:32:9a:26:58:96: ca:cb:d6:43:8d:59:16:ba:d5:11:b6:79:4f:ca:e0: 72:f1:8e:38:62:85:7c:58:57:5b:eb:04:5b:4c:f5: aa:62:ac:e7:d1:58:28:c5:1e:15:7c:38:43:c9:07: d2:af:46:7e:a5:dd:16:13:9a:f0:31:03:30:9e:ee: 9b:2d:93:1b:3d:2a:0b:42:8a:3f:20:50:53:ed:e9: 98:93:6d:4d:65:18:63:fb:9a:3f:63:03:a0:18:63: 8e:8b:13:45:80:50:5f:b0:10:73:eb:51:b7:41:bb: 77:a3:01:9b:e4:e5:c7:ff:bb:cb:54:96:8b:93:b1: 78:7f:6a:d3:ea:f5:93:c0:f7:0a:16:07:b6:70:36: 79:ec:cb:64:de:d1:62:ca:a8:73:34:cf:d8:c4:ea: 7f:ac:df:15:90:1f:cc:7a:38:bf:1e:5b:64:78:ce: 07:48:73:56:72:0f:5f:cd:d6:80:db:37:88:33:60: 0d:19:84:30:51:a9:94:2b:a4:3f:0b:36:49:2f:c5: d5:ec:d3:8a:63:bb:dd:0d:db:17:de:fd:c4:4b:70: 75:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:39:D9:4C:11:83:7D:0F:BF:08:41:DF:53:75:1B:F7:40:49:3D:21 X509v3 Authority Key Identifier: keyid:A5:32:AD:36:63:13:01:38:8E:C9:39:BE:B0:F0:99:FC:DE:95:64:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/A532AD36631301388EC939BEB0F099FCDE956410.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A532AD36631301388EC939BEB0F099FCDE956410.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/3130332e3135352e3139362e302f32342d3234203d3e20313431303731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.196.0/24 Signature Algorithm: sha256WithRSAEncryption eb:75:d8:3a:4e:6c:0a:33:b3:c1:28:bc:4d:0e:a2:5f:73:80: bf:28:eb:60:f5:d1:d6:1f:2e:28:e1:6c:f2:fe:b0:02:3e:e0: 41:df:5f:21:3e:8c:00:a1:61:90:c9:67:59:2e:5f:26:71:23: 01:27:4f:bd:d9:b8:4e:39:1f:8f:ce:98:93:ab:fc:30:29:e9: a3:db:9f:00:9c:eb:30:88:f8:4d:1b:1f:52:4b:0f:e6:c6:ef: cf:c8:79:d3:fe:01:0c:01:af:3c:16:81:3c:37:97:ad:27:99: f7:cd:95:24:8c:b9:0e:e9:df:98:2b:45:f0:16:69:5c:8a:83: ae:0e:b7:ed:2e:2a:a2:dc:35:ff:d8:57:79:c6:d5:6b:cf:bf: 4c:68:38:7d:d6:11:da:76:18:a5:ee:ad:d5:39:8e:8d:7c:4d: 3d:6a:ca:a2:94:d3:90:bc:c9:87:70:20:ce:71:8c:07:a9:d3: ed:3e:77:e8:49:6c:33:d8:61:30:e6:2f:bf:7d:31:d8:56:3a: 98:fe:d1:c4:a7:c4:e3:e0:6d:c8:65:fa:b1:ff:46:79:a6:9a: 1a:a3:e9:92:7c:ad:4c:a9:8d:27:36:2a:50:85:51:ec:60:5a: eb:42:d3:60:de:f2:28:da:7b:98:37:6f:f6:2a:cc:eb:01:0d: 50:2e:14:4b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUM2sSgcZOl4peqV33xxWJhOURX2owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUzMkFEMzY2MzEzMDEzODhFQzkzOUJFQjBGMDk5RkNE RTk1NjQxMDAeFw0yNDEwMDUwODU1MDJaFw0yNTEwMDQwOTAwMDJaMDMxMTAvBgNV BAMTKDE5MzlEOTRDMTE4MzdEMEZCRjA4NDFERjUzNzUxQkY3NDA0OTNEMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDastlc1ZXlbtKdSQOTka+PNMyv 9wtLIzuIRDZjUhb7ynAoapQv7yQymiZYlsrL1kONWRa61RG2eU/K4HLxjjhihXxY V1vrBFtM9apirOfRWCjFHhV8OEPJB9KvRn6l3RYTmvAxAzCe7pstkxs9KgtCij8g UFPt6ZiTbU1lGGP7mj9jA6AYY46LE0WAUF+wEHPrUbdBu3ejAZvk5cf/u8tUlouT sXh/atPq9ZPA9woWB7ZwNnnsy2Te0WLKqHM0z9jE6n+s3xWQH8x6OL8eW2R4zgdI c1ZyD1/N1oDbN4gzYA0ZhDBRqZQrpD8LNkkvxdXs04pju90N2xfe/cRLcHVHAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGTnZTBGDfQ+/CEHfU3Ub90BJPSEwHwYDVR0j BBgwFoAUpTKtNmMTATiOyTm+sPCZ/N6VZBAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OWNlMGM5NC0wZDZjLTQ1YjMtYWFjNi0zNGQwY2U5YjFmMDgvMC9BNTMyQUQzNjYz MTMwMTM4OEVDOTM5QkVCMEYwOTlGQ0RFOTU2NDEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTUzMkFEMzY2MzEzMDEzODhFQzkzOUJFQjBGMDk5RkNERTk1 NjQxMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5Y2UwYzk0LTBkNmMtNDViMy1h YWM2LTM0ZDBjZTliMWYwOC8wLzMxMzAzMzJlMzEzNTM1MmUzMTM5MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM3MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnm8QwDQYJ KoZIhvcNAQELBQADggEBAOt12DpObAozs8EovE0Ool9zgL8o62D10dYfLijhbPL+ sAI+4EHfXyE+jAChYZDJZ1kuXyZxIwEnT73ZuE45H4/OmJOr/DAp6aPbnwCc6zCI +E0bH1JLD+bG78/IedP+AQwBrzwWgTw3l60nmffNlSSMuQ7p35grRfAWaVyKg64O t+0uKqLcNf/YV3nG1WvPv0xoOH3WEdp2GKXurdU5jo18TT1qyqKU05C8yYdwIM5x jAep0+0+d+hJbDPYYTDmL799MdhWOpj+0cSnxOPgbchl+rH/Rnmmmhqj6ZJ8rUyp jSc2KlCFUexgWutC02De8ijae5g3b/YqzOsBDVAuFEs= -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:58 2024 by rpki-client on console-ams.rpki-client.org