$ rpki-client -vvf repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/3130332e3135352e3139372e302f32342d3234203d3e20313431303731.roa File: 3130332e3135352e3139372e302f32342d3234203d3e20313431303731.roa (raw, json) Hash identifier: T2dV9ECct1Ud7fOAgoF7v8UJVDJx36l7KpwFXhp6Z8U= Subject key identifier: B3:5F:B0:F4:6A:74:E1:A7:5D:AF:25:49:C3:C6:D7:AD:C4:E2:B2:9F Certificate issuer: /CN=A532AD36631301388EC939BEB0F099FCDE956410 Certificate serial: 5E04F82186784AAC64F26F555938BC605F71CACC Authority key identifier: A5:32:AD:36:63:13:01:38:8E:C9:39:BE:B0:F0:99:FC:DE:95:64:10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A532AD36631301388EC939BEB0F099FCDE956410.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/3130332e3135352e3139372e302f32342d3234203d3e20313431303731.roa Signing time: Sat 05 Oct 2024 10:00:01 +0000 ROA not before: Sat 05 Oct 2024 09:55:01 +0000 ROA not after: Sat 04 Oct 2025 10:00:01 +0000 asID: 141071 IP address blocks: 103.155.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/A532AD36631301388EC939BEB0F099FCDE956410.crl rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/A532AD36631301388EC939BEB0F099FCDE956410.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A532AD36631301388EC939BEB0F099FCDE956410.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 21:30:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:04:f8:21:86:78:4a:ac:64:f2:6f:55:59:38:bc:60:5f:71:ca:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A532AD36631301388EC939BEB0F099FCDE956410 Validity Not Before: Oct 5 09:55:01 2024 GMT Not After : Oct 4 10:00:01 2025 GMT Subject: CN=B35FB0F46A74E1A75DAF2549C3C6D7ADC4E2B29F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ff:29:b1:1b:78:7f:5d:6e:01:9d:0b:f8:b3: 6e:57:20:ef:a6:cc:71:06:01:b4:2b:ba:5c:18:cc: 8c:00:46:3e:07:84:58:ea:55:dc:ef:3b:4c:27:f8: 7b:8e:d5:b9:81:07:54:f9:23:bd:4c:35:b6:10:fa: 41:9a:57:24:d5:82:98:8f:2d:c3:5e:5a:3a:70:fa: 58:cf:a9:70:d2:55:e6:bb:59:96:c8:9b:51:a0:fa: 72:e9:9a:5b:15:57:54:4a:27:10:5e:37:af:07:51: b1:d7:ef:99:4d:a6:b1:63:5d:22:f0:9b:25:2d:89: ab:60:5d:0b:6e:08:d8:16:37:f8:61:1b:d1:bb:2d: 0b:46:41:a2:97:6a:06:6c:68:ad:e2:ce:d2:c3:f8: a4:dd:ad:bc:ea:e3:8d:94:bc:df:c6:71:fb:ca:ee: b7:07:88:b3:3f:38:95:68:ce:49:59:00:fb:22:94: 19:8c:16:2b:74:22:df:14:36:5a:43:29:22:fb:6f: cd:d2:57:40:4c:ba:a2:5c:b8:53:18:58:5c:e3:09: 4e:74:ab:9d:83:2f:a8:e1:39:22:dc:c6:dd:e6:29: 41:6a:8b:18:a8:24:73:c4:da:82:99:81:3c:80:b9: 95:51:3c:7a:fa:f9:19:24:73:3f:63:30:64:e8:da: f7:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:5F:B0:F4:6A:74:E1:A7:5D:AF:25:49:C3:C6:D7:AD:C4:E2:B2:9F X509v3 Authority Key Identifier: keyid:A5:32:AD:36:63:13:01:38:8E:C9:39:BE:B0:F0:99:FC:DE:95:64:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/A532AD36631301388EC939BEB0F099FCDE956410.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A532AD36631301388EC939BEB0F099FCDE956410.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9ce0c94-0d6c-45b3-aac6-34d0ce9b1f08/0/3130332e3135352e3139372e302f32342d3234203d3e20313431303731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.197.0/24 Signature Algorithm: sha256WithRSAEncryption ee:41:e1:b8:fd:09:09:a3:70:cf:40:6d:f7:5a:27:91:71:56: 70:f7:66:83:f8:9e:66:a7:96:44:95:52:2f:bd:0c:24:0b:54: 93:fc:b3:32:8d:f7:21:22:1c:01:98:52:49:c6:2e:7a:a1:96: 64:5b:62:59:44:3b:fc:98:d2:be:f1:6d:0b:e4:ca:df:aa:4c: 3f:34:86:32:f5:ea:ab:f0:29:cf:0d:71:e3:3a:18:69:5d:eb: 86:51:b7:d1:56:e2:9d:46:2f:1a:5c:1f:5c:1b:b1:a6:63:43: cc:34:87:78:52:e4:60:f4:30:88:db:3c:f5:3a:67:68:33:42: 64:e9:8e:e9:8b:12:6e:0a:99:55:34:5c:dc:16:75:09:04:3b: 2f:21:a6:ac:4a:ff:1d:44:97:24:9d:c0:f7:68:57:9d:b1:c7: 51:7c:f1:27:d8:c4:bf:58:54:c2:c7:0e:e3:7f:9a:04:7d:95: 77:68:bf:ff:98:84:50:18:56:36:c6:c9:70:09:f3:7f:8c:70: d3:22:9b:d9:b9:89:81:31:15:b6:df:8f:83:cb:28:e8:6d:c0: b3:db:cd:ba:af:7a:cf:fb:33:bb:8a:f7:65:21:bf:b2:98:35: 81:f7:61:ff:9b:d4:5f:29:a0:c4:6b:43:c3:6c:06:4f:f7:56: f0:8b:2b:e5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUXgT4IYZ4Sqxk8m9VWTi8YF9xyswwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUzMkFEMzY2MzEzMDEzODhFQzkzOUJFQjBGMDk5RkNE RTk1NjQxMDAeFw0yNDEwMDUwOTU1MDFaFw0yNTEwMDQxMDAwMDFaMDMxMTAvBgNV BAMTKEIzNUZCMEY0NkE3NEUxQTc1REFGMjU0OUMzQzZEN0FEQzRFMkIyOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi/ymxG3h/XW4BnQv4s25XIO+m zHEGAbQrulwYzIwARj4HhFjqVdzvO0wn+HuO1bmBB1T5I71MNbYQ+kGaVyTVgpiP LcNeWjpw+ljPqXDSVea7WZbIm1Gg+nLpmlsVV1RKJxBeN68HUbHX75lNprFjXSLw myUtiatgXQtuCNgWN/hhG9G7LQtGQaKXagZsaK3iztLD+KTdrbzq442UvN/GcfvK 7rcHiLM/OJVozklZAPsilBmMFit0It8UNlpDKSL7b83SV0BMuqJcuFMYWFzjCU50 q52DL6jhOSLcxt3mKUFqixioJHPE2oKZgTyAuZVRPHr6+Rkkcz9jMGTo2vepAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUs1+w9Gp04addryVJw8bXrcTisp8wHwYDVR0j BBgwFoAUpTKtNmMTATiOyTm+sPCZ/N6VZBAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OWNlMGM5NC0wZDZjLTQ1YjMtYWFjNi0zNGQwY2U5YjFmMDgvMC9BNTMyQUQzNjYz MTMwMTM4OEVDOTM5QkVCMEYwOTlGQ0RFOTU2NDEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTUzMkFEMzY2MzEzMDEzODhFQzkzOUJFQjBGMDk5RkNERTk1 NjQxMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5Y2UwYzk0LTBkNmMtNDViMy1h YWM2LTM0ZDBjZTliMWYwOC8wLzMxMzAzMzJlMzEzNTM1MmUzMTM5MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM3MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnm8UwDQYJ KoZIhvcNAQELBQADggEBAO5B4bj9CQmjcM9AbfdaJ5FxVnD3ZoP4nmanlkSVUi+9 DCQLVJP8szKN9yEiHAGYUknGLnqhlmRbYllEO/yY0r7xbQvkyt+qTD80hjL16qvw Kc8NceM6GGld64ZRt9FW4p1GLxpcH1wbsaZjQ8w0h3hS5GD0MIjbPPU6Z2gzQmTp jumLEm4KmVU0XNwWdQkEOy8hpqxK/x1ElySdwPdoV52xx1F88SfYxL9YVMLHDuN/ mgR9lXdov/+YhFAYVjbGyXAJ83+McNMim9m5iYExFbbfj4PLKOhtwLPbzbqves/7 M7uK92Uhv7KYNYH3Yf+b1F8poMRrQ8NsBk/3VvCLK+U= -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:40 2024 by rpki-client on console-fra.rpki-client.org