$ rpki-client -vvf repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/3130332e32342e3231322e302f32322d3232203d3e20313332363439.roa File: 3130332e32342e3231322e302f32322d3232203d3e20313332363439.roa (raw, json) Hash identifier: gbhdhMcQ8OnuKOgRSfWyA3ffmR7bnm8Nrhgo3BFN04c= Subject key identifier: BA:39:3F:8F:8A:18:75:7F:F9:76:D8:72:F5:16:1C:95:D0:3B:91:94 Certificate issuer: /CN=4ACFA054E26D225A10C6B0FD316D21263924491E Certificate serial: 220EC1B01DC9A5FE79D6E0E273CB35283322032B Authority key identifier: 4A:CF:A0:54:E2:6D:22:5A:10:C6:B0:FD:31:6D:21:26:39:24:49:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ACFA054E26D225A10C6B0FD316D21263924491E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/3130332e32342e3231322e302f32322d3232203d3e20313332363439.roa Signing time: Mon 15 Jan 2024 15:00:00 +0000 ROA not before: Mon 15 Jan 2024 14:55:00 +0000 ROA not after: Mon 13 Jan 2025 15:00:00 +0000 asID: 132649 IP address blocks: 103.24.212.0/22 maxlen: 22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/4ACFA054E26D225A10C6B0FD316D21263924491E.crl rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/4ACFA054E26D225A10C6B0FD316D21263924491E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ACFA054E26D225A10C6B0FD316D21263924491E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:0e:c1:b0:1d:c9:a5:fe:79:d6:e0:e2:73:cb:35:28:33:22:03:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ACFA054E26D225A10C6B0FD316D21263924491E Validity Not Before: Jan 15 14:55:00 2024 GMT Not After : Jan 13 15:00:00 2025 GMT Subject: CN=BA393F8F8A18757FF976D872F5161C95D03B9194 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2f:a8:54:b2:34:01:e2:96:5e:45:78:7e:5f: f6:54:d0:c5:ce:a7:a5:57:92:47:7e:8c:b1:eb:b5: d9:89:bd:db:59:69:18:de:f1:ab:7b:bb:40:62:ab: 97:b7:0a:74:e9:ad:ec:ae:66:06:8a:3f:73:1c:19: 3f:82:34:46:6c:a3:93:5b:0e:1e:32:67:3b:73:2d: 7f:ad:2b:41:44:e1:c9:e1:b2:27:b3:7b:3e:78:9a: 4a:0f:7d:c3:05:ac:fc:87:dc:56:43:89:01:9d:ba: 90:2a:d0:91:64:92:13:2c:05:d3:9a:05:51:d0:a1: c1:c8:6a:66:9d:ba:46:1e:57:51:2f:c9:17:ec:11: a5:89:f7:28:ab:79:33:6b:6b:5e:62:f4:10:0b:85: 1f:05:89:04:4e:94:85:58:36:f4:64:b2:97:d6:d5: 95:e9:f0:33:f5:52:45:e3:f9:ad:17:da:61:7e:a3: 7a:55:3d:6b:a8:c6:3c:7d:3b:46:7d:83:41:07:cc: 71:b2:90:49:5d:50:6a:b7:87:d1:98:a2:cc:e2:4c: 83:e9:d8:da:3a:a1:a0:b6:2c:7d:3e:2a:0c:e9:09: cf:76:0f:ba:03:3a:7a:ee:0f:49:89:c5:e2:88:29: 52:e0:23:1e:cd:71:ce:cd:91:dd:01:80:45:14:6d: 9b:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:39:3F:8F:8A:18:75:7F:F9:76:D8:72:F5:16:1C:95:D0:3B:91:94 X509v3 Authority Key Identifier: keyid:4A:CF:A0:54:E2:6D:22:5A:10:C6:B0:FD:31:6D:21:26:39:24:49:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/4ACFA054E26D225A10C6B0FD316D21263924491E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ACFA054E26D225A10C6B0FD316D21263924491E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/3130332e32342e3231322e302f32322d3232203d3e20313332363439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.212.0/22 Signature Algorithm: sha256WithRSAEncryption 83:30:98:99:c4:4f:e8:e5:99:1b:c0:79:8d:da:18:3d:b0:70: 0a:77:d1:13:45:22:28:c8:50:9c:e3:64:d2:d0:8d:6b:f0:33: 94:62:2d:ba:29:93:43:27:05:3d:3c:61:1d:7c:ee:bb:19:7f: 6b:3a:b7:eb:5f:1c:ff:19:21:a2:38:45:8a:03:91:db:c8:e0: 62:e0:a0:39:fa:ae:20:e7:f8:be:c3:ef:fe:81:fd:a6:65:15: 11:cc:4d:fe:b9:25:aa:d7:99:88:f4:7d:46:cd:31:63:3c:40: 2d:2c:c4:3f:ff:e3:6b:a2:ea:60:95:5b:06:e6:3e:41:6c:4d: f8:f2:cc:54:8b:f5:cb:62:b8:09:d6:65:08:3d:eb:12:5b:de: 48:0e:0a:c5:e6:54:ba:6e:74:b4:8b:92:01:10:b3:ae:bd:15: eb:8a:cf:b8:f2:de:30:f2:a2:8c:a3:5d:ca:2c:4c:62:72:b3: 45:c3:d5:2c:9d:6c:3a:be:f9:12:3e:c9:09:44:bc:b0:5f:f2: f6:f4:f8:a6:65:16:d0:56:64:ab:4a:26:48:7b:7b:c4:6d:d5: 65:23:cf:03:0c:03:83:ec:9a:11:e1:0e:3a:7a:99:b5:b1:94: ed:e6:f4:ae:37:93:ed:2c:d4:f2:05:51:38:a7:e6:26:24:1b: 73:05:52:75 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUIg7BsB3Jpf551uDic8s1KDMiAyswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFDRkEwNTRFMjZEMjI1QTEwQzZCMEZEMzE2RDIxMjYz OTI0NDkxRTAeFw0yNDAxMTUxNDU1MDBaFw0yNTAxMTMxNTAwMDBaMDMxMTAvBgNV BAMTKEJBMzkzRjhGOEExODc1N0ZGOTc2RDg3MkY1MTYxQzk1RDAzQjkxOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7L6hUsjQB4pZeRXh+X/ZU0MXO p6VXkkd+jLHrtdmJvdtZaRje8at7u0Biq5e3CnTpreyuZgaKP3McGT+CNEZso5Nb Dh4yZztzLX+tK0FE4cnhsiezez54mkoPfcMFrPyH3FZDiQGdupAq0JFkkhMsBdOa BVHQocHIamadukYeV1EvyRfsEaWJ9yireTNra15i9BALhR8FiQROlIVYNvRkspfW 1ZXp8DP1UkXj+a0X2mF+o3pVPWuoxjx9O0Z9g0EHzHGykEldUGq3h9GYosziTIPp 2No6oaC2LH0+KgzpCc92D7oDOnruD0mJxeKIKVLgIx7Ncc7Nkd0BgEUUbZvzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUujk/j4oYdX/5dthy9RYcldA7kZQwHwYDVR0j BBgwFoAUSs+gVOJtIloQxrD9MW0hJjkkSR4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZTQ2YTMwNS1kZjc3LTQ1ODctODcwMy1hOTA1YzUzNzc5YWMvMC80QUNGQTA1NEUy NkQyMjVBMTBDNkIwRkQzMTZEMjEyNjM5MjQ0OTFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFDRkEwNTRFMjZEMjI1QTEwQzZCMEZEMzE2RDIxMjYzOTI0 NDkxRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlNDZhMzA1LWRmNzctNDU4Ny04 NzAzLWE5MDVjNTM3NzlhYy8wLzMxMzAzMzJlMzIzNDJlMzIzMTMyMmUzMDJmMzIz MjJkMzIzMjIwM2QzZTIwMzEzMzMyMzYzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZxjUMA0GCSqG SIb3DQEBCwUAA4IBAQCDMJiZxE/o5ZkbwHmN2hg9sHAKd9ETRSIoyFCc42TS0I1r 8DOUYi26KZNDJwU9PGEdfO67GX9rOrfrXxz/GSGiOEWKA5HbyOBi4KA5+q4g5/i+ w+/+gf2mZRURzE3+uSWq15mI9H1GzTFjPEAtLMQ//+NroupglVsG5j5BbE348sxU i/XLYrgJ1mUIPesSW95IDgrF5lS6bnS0i5IBELOuvRXris+48t4w8qKMo13KLExi crNFw9UsnWw6vvkSPskJRLywX/L29PimZRbQVmSrSiZIe3vEbdVlI88DDAOD7JoR 4Q46epm1sZTt5vSuN5PtLNTyBVE4p+YmJBtzBVJ1 -----END CERTIFICATE-----Generated at Fri May 3 17:52:30 2024 by rpki-client on console-fra.rpki-client.org