$ rpki-client -vvf repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/3130332e32342e3231332e302f32342d3234203d3e20313332363439.roa File: 3130332e32342e3231332e302f32342d3234203d3e20313332363439.roa (raw, json) Hash identifier: 0wK1G7R3H7ZWJ+WMnO9yy1WeCnxA8kqP9RaBD/oOr7U= Subject key identifier: 56:8A:B2:CE:32:AF:B0:B7:17:05:03:81:87:25:B7:ED:32:63:85:41 Certificate issuer: /CN=4ACFA054E26D225A10C6B0FD316D21263924491E Certificate serial: 6488F361E27A8AF7E5E3D9EE8E2986562B407918 Authority key identifier: 4A:CF:A0:54:E2:6D:22:5A:10:C6:B0:FD:31:6D:21:26:39:24:49:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ACFA054E26D225A10C6B0FD316D21263924491E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/3130332e32342e3231332e302f32342d3234203d3e20313332363439.roa Signing time: Mon 31 Jul 2023 00:03:08 +0000 ROA not before: Sun 30 Jul 2023 23:58:08 +0000 ROA not after: Mon 29 Jul 2024 00:03:08 +0000 asID: 132649 IP address blocks: 103.24.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/4ACFA054E26D225A10C6B0FD316D21263924491E.crl rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/4ACFA054E26D225A10C6B0FD316D21263924491E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ACFA054E26D225A10C6B0FD316D21263924491E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 15:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:88:f3:61:e2:7a:8a:f7:e5:e3:d9:ee:8e:29:86:56:2b:40:79:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ACFA054E26D225A10C6B0FD316D21263924491E Validity Not Before: Jul 30 23:58:08 2023 GMT Not After : Jul 29 00:03:08 2024 GMT Subject: CN=568AB2CE32AFB0B7170503818725B7ED32638541 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:21:23:37:79:2a:9f:c0:ec:91:27:12:9e:15: 54:f1:87:85:61:cd:0c:56:7f:35:ac:57:7b:2a:45: cc:29:c2:9b:ce:4b:d7:fd:3c:ab:20:55:00:cc:68: 05:f4:d8:e3:9a:61:cc:67:5a:3b:64:ad:7c:04:c7: 76:5a:14:d7:0c:65:b1:f3:fd:e9:b9:53:21:0b:dc: 6e:2d:d2:39:41:7a:e6:36:32:7e:af:52:dd:74:69: ff:dc:9d:fb:ab:e4:09:f2:fa:4b:f7:ab:26:a3:7f: 0c:a8:b8:fc:c2:0f:23:db:9b:15:86:1e:53:cb:62: be:7b:b4:9a:73:1c:41:25:28:fc:92:5e:89:ae:63: ec:0c:bd:92:b6:21:ad:da:e2:c2:44:1f:62:6e:d5: 97:67:d2:37:8e:b1:88:5c:31:ca:4a:e7:dc:37:42: 11:d7:04:fb:fa:00:12:34:9c:a2:3b:6d:8a:0c:1d: f3:85:f0:ba:d5:e5:e0:42:84:b6:7d:d3:1c:6d:f8: 16:b1:85:8d:d5:a5:a8:5f:85:b0:d0:c9:cd:84:64: f2:b3:f0:d4:cc:3b:c5:c7:09:9c:4d:08:07:bc:5b: 89:2f:f6:ab:a3:bd:29:c7:4c:3b:dc:48:14:ef:e0: b5:eb:28:99:b7:07:d7:6d:b0:a7:80:53:3d:3a:a3: 6d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:8A:B2:CE:32:AF:B0:B7:17:05:03:81:87:25:B7:ED:32:63:85:41 X509v3 Authority Key Identifier: keyid:4A:CF:A0:54:E2:6D:22:5A:10:C6:B0:FD:31:6D:21:26:39:24:49:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/4ACFA054E26D225A10C6B0FD316D21263924491E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ACFA054E26D225A10C6B0FD316D21263924491E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/3130332e32342e3231332e302f32342d3234203d3e20313332363439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.213.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:bb:3b:a4:b5:e3:ac:10:b7:19:d9:99:1c:ec:52:69:b0:bd: 76:61:9b:89:34:d5:32:3e:32:78:a5:04:08:60:8e:5a:a5:2c: 0a:10:79:af:40:f2:e3:4a:59:76:f0:6a:92:9e:c3:a7:01:97: f9:dd:09:e7:ac:26:7c:60:c6:b2:7f:87:2c:dc:bd:f7:67:54: 23:1c:51:68:cd:e8:92:8a:9e:05:c0:cf:61:52:58:a2:a4:33: 2d:e9:64:fd:f3:1b:5e:0e:af:2b:74:d7:38:ff:9d:9d:64:c0: 37:50:1e:89:be:f6:25:c6:80:c2:ec:c8:16:d9:00:a7:91:25: a0:b5:bf:ae:23:8e:4e:98:74:20:d4:fb:f8:a2:7a:63:a8:e8: 9a:cb:65:11:df:83:b1:59:80:68:c9:d6:48:bc:21:cf:db:da: c2:45:c8:4a:c6:10:4e:e7:01:70:bb:df:17:bf:8a:a8:93:ce: 48:47:ba:a1:63:e7:0c:65:d7:d6:e9:ba:9c:6e:79:87:44:fe: a2:ad:15:cc:45:a5:ff:f2:fe:16:2d:da:44:c5:39:c4:0d:77: d3:0d:57:41:d1:fd:46:bf:cd:4b:d4:15:12:d9:ab:e7:e8:15: 16:c7:29:1f:c7:cb:d5:01:7b:44:b8:c9:17:eb:8d:fc:5c:6c: 57:e3:11:44 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZIjzYeJ6ivfl49nujimGVitAeRgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFDRkEwNTRFMjZEMjI1QTEwQzZCMEZEMzE2RDIxMjYz OTI0NDkxRTAeFw0yMzA3MzAyMzU4MDhaFw0yNDA3MjkwMDAzMDhaMDMxMTAvBgNV BAMTKDU2OEFCMkNFMzJBRkIwQjcxNzA1MDM4MTg3MjVCN0VEMzI2Mzg1NDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/ISM3eSqfwOyRJxKeFVTxh4Vh zQxWfzWsV3sqRcwpwpvOS9f9PKsgVQDMaAX02OOaYcxnWjtkrXwEx3ZaFNcMZbHz /em5UyEL3G4t0jlBeuY2Mn6vUt10af/cnfur5Any+kv3qyajfwyouPzCDyPbmxWG HlPLYr57tJpzHEElKPySXomuY+wMvZK2Ia3a4sJEH2Ju1Zdn0jeOsYhcMcpK59w3 QhHXBPv6ABI0nKI7bYoMHfOF8LrV5eBChLZ90xxt+BaxhY3VpahfhbDQyc2EZPKz 8NTMO8XHCZxNCAe8W4kv9qujvSnHTDvcSBTv4LXrKJm3B9dtsKeAUz06o209AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUVoqyzjKvsLcXBQOBhyW37TJjhUEwHwYDVR0j BBgwFoAUSs+gVOJtIloQxrD9MW0hJjkkSR4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZTQ2YTMwNS1kZjc3LTQ1ODctODcwMy1hOTA1YzUzNzc5YWMvMC80QUNGQTA1NEUy NkQyMjVBMTBDNkIwRkQzMTZEMjEyNjM5MjQ0OTFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFDRkEwNTRFMjZEMjI1QTEwQzZCMEZEMzE2RDIxMjYzOTI0 NDkxRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlNDZhMzA1LWRmNzctNDU4Ny04 NzAzLWE5MDVjNTM3NzlhYy8wLzMxMzAzMzJlMzIzNDJlMzIzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMyMzYzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxjVMA0GCSqG SIb3DQEBCwUAA4IBAQCKuzukteOsELcZ2Zkc7FJpsL12YZuJNNUyPjJ4pQQIYI5a pSwKEHmvQPLjSll28GqSnsOnAZf53QnnrCZ8YMayf4cs3L33Z1QjHFFozeiSip4F wM9hUliipDMt6WT98xteDq8rdNc4/52dZMA3UB6JvvYlxoDC7MgW2QCnkSWgtb+u I45OmHQg1Pv4onpjqOiay2UR34OxWYBoydZIvCHP29rCRchKxhBO5wFwu98Xv4qo k85IR7qhY+cMZdfW6bqcbnmHRP6irRXMRaX/8v4WLdpExTnEDXfTDVdB0f1Gv81L 1BUS2avn6BUWxykfx8vVAXtEuMkX6438XGxX4xFE -----END CERTIFICATE-----Generated at Wed Apr 24 15:47:54 2024 by rpki-client on console-ams.rpki-client.org