$ rpki-client -vvf repo-rpki.idnic.net/repo/3a46360d-662b-4f7d-bb17-d86082152471/0/3130332e3136382e3134372e302f32342d3234203d3e20313430343433.roa File: 3130332e3136382e3134372e302f32342d3234203d3e20313430343433.roa (raw, json) Hash identifier: nfF6yza8WaHmO48+Z0ivbgJKOpA/mJ1TCo6EtEhvGDc= Subject key identifier: C6:09:B2:33:B8:D6:0D:92:47:9E:0A:CE:CA:18:5E:A0:9F:DE:ED:82 Certificate issuer: /CN=4F40845626DE4E373F550B654EA4E833B6EB4D27 Certificate serial: 7D650F857716DA85C381DCE1C24E2D40D296577F Authority key identifier: 4F:40:84:56:26:DE:4E:37:3F:55:0B:65:4E:A4:E8:33:B6:EB:4D:27 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F40845626DE4E373F550B654EA4E833B6EB4D27.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a46360d-662b-4f7d-bb17-d86082152471/0/3130332e3136382e3134372e302f32342d3234203d3e20313430343433.roa Signing time: Fri 29 Mar 2024 06:00:00 +0000 ROA not before: Fri 29 Mar 2024 05:55:00 +0000 ROA not after: Fri 28 Mar 2025 06:00:00 +0000 asID: 140443 IP address blocks: 103.168.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a46360d-662b-4f7d-bb17-d86082152471/0/4F40845626DE4E373F550B654EA4E833B6EB4D27.crl rsync://repo-rpki.idnic.net/repo/3a46360d-662b-4f7d-bb17-d86082152471/0/4F40845626DE4E373F550B654EA4E833B6EB4D27.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F40845626DE4E373F550B654EA4E833B6EB4D27.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:65:0f:85:77:16:da:85:c3:81:dc:e1:c2:4e:2d:40:d2:96:57:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F40845626DE4E373F550B654EA4E833B6EB4D27 Validity Not Before: Mar 29 05:55:00 2024 GMT Not After : Mar 28 06:00:00 2025 GMT Subject: CN=C609B233B8D60D92479E0ACECA185EA09FDEED82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:14:6c:68:29:14:04:81:10:39:e2:2f:0f:45: bc:e7:6e:29:a2:f8:af:f5:4f:e9:ad:4c:16:61:62: 95:24:a0:7a:ff:97:ad:14:59:96:7a:27:ab:51:9d: fe:ec:f9:b5:c7:7b:58:03:3a:a2:cf:f4:b2:c0:5e: ec:17:b7:ca:17:46:57:34:22:1a:be:85:da:28:f4: 9f:fa:e9:41:be:bc:5a:4f:3a:72:1f:53:6c:a5:4b: f8:a3:fe:e5:f9:83:64:cc:be:78:78:14:e7:eb:f0: 1c:39:f6:12:c3:a0:c4:d4:4b:be:17:bd:1e:5c:c9: af:39:61:22:1e:12:bb:6f:b7:69:10:0c:ac:ef:2b: f4:4a:0c:5e:ea:c6:87:f9:ff:61:2e:a3:28:f1:81: 40:0f:bd:43:66:b5:d0:dd:19:00:58:ec:3b:1d:22: 3d:b4:77:0b:1d:07:82:e7:ee:4c:d5:94:8e:c2:a8: d8:c3:19:af:aa:56:14:eb:fa:b3:26:17:13:2b:93: ad:33:d9:a6:8e:07:3f:eb:29:21:5e:72:51:8e:ad: de:b6:ef:40:37:c7:56:cd:37:bb:35:34:82:21:fc: aa:d0:ca:7e:9a:7d:45:1d:dd:8e:8a:8c:e5:78:93: 58:21:0b:e7:3d:96:f3:57:5f:56:06:df:5e:15:3e: 26:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:09:B2:33:B8:D6:0D:92:47:9E:0A:CE:CA:18:5E:A0:9F:DE:ED:82 X509v3 Authority Key Identifier: keyid:4F:40:84:56:26:DE:4E:37:3F:55:0B:65:4E:A4:E8:33:B6:EB:4D:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a46360d-662b-4f7d-bb17-d86082152471/0/4F40845626DE4E373F550B654EA4E833B6EB4D27.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F40845626DE4E373F550B654EA4E833B6EB4D27.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a46360d-662b-4f7d-bb17-d86082152471/0/3130332e3136382e3134372e302f32342d3234203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.147.0/24 Signature Algorithm: sha256WithRSAEncryption 35:20:a0:e4:cc:68:2f:b8:b3:33:d7:c4:38:d6:aa:91:95:de: 9c:28:a2:85:64:86:ca:7c:7c:ca:6c:72:5f:15:aa:a5:b5:c0: 44:16:f2:b5:cc:c0:95:37:5e:de:7b:7b:d8:5f:8d:44:45:5d: 40:3b:38:df:49:39:52:d7:fd:06:34:95:6e:01:e7:f1:65:86: 06:1d:2f:aa:91:cc:72:80:83:52:80:2f:92:8a:98:22:7d:26: 44:b1:fc:a3:36:90:ce:26:1a:1c:f1:18:15:91:5f:92:9f:0c: 98:2a:ac:8d:48:f0:59:75:d4:13:28:84:9b:2f:6d:d6:35:53: 76:59:3d:4f:ab:06:a8:fc:f6:3e:18:0b:72:77:74:53:92:33: 0c:cc:51:84:38:27:b5:d7:5e:97:bf:a4:97:70:8c:d3:62:3a: e0:b0:56:1f:c0:f0:9f:3a:b4:b6:d8:74:18:58:c3:7b:21:2c: d4:b5:86:41:4b:dd:77:33:77:f2:2c:ba:0f:2a:1d:6d:a6:86: 56:62:e1:19:d4:9d:0c:f5:0e:7c:c3:ea:e1:d9:dd:79:39:ae: e5:79:a4:43:f4:7b:dc:8d:0a:e2:6a:f0:bf:37:39:fe:b0:ea: 3f:60:7a:da:0e:73:63:1c:3a:f2:a1:f9:1d:92:30:f0:31:1d: 0c:a7:6f:f7 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfWUPhXcW2oXDgdzhwk4tQNKWV38wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEY0MDg0NTYyNkRFNEUzNzNGNTUwQjY1NEVBNEU4MzNC NkVCNEQyNzAeFw0yNDAzMjkwNTU1MDBaFw0yNTAzMjgwNjAwMDBaMDMxMTAvBgNV BAMTKEM2MDlCMjMzQjhENjBEOTI0NzlFMEFDRUNBMTg1RUEwOUZERUVEODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrFGxoKRQEgRA54i8PRbznbimi +K/1T+mtTBZhYpUkoHr/l60UWZZ6J6tRnf7s+bXHe1gDOqLP9LLAXuwXt8oXRlc0 Ihq+hdoo9J/66UG+vFpPOnIfU2ylS/ij/uX5g2TMvnh4FOfr8Bw59hLDoMTUS74X vR5cya85YSIeErtvt2kQDKzvK/RKDF7qxof5/2EuoyjxgUAPvUNmtdDdGQBY7Dsd Ij20dwsdB4Ln7kzVlI7CqNjDGa+qVhTr+rMmFxMrk60z2aaOBz/rKSFeclGOrd62 70A3x1bNN7s1NIIh/KrQyn6afUUd3Y6KjOV4k1ghC+c9lvNXX1YG314VPiaTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUxgmyM7jWDZJHngrOyhheoJ/e7YIwHwYDVR0j BBgwFoAUT0CEVibeTjc/VQtlTqToM7brTScwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTQ2MzYwZC02NjJiLTRmN2QtYmIxNy1kODYwODIxNTI0NzEvMC80RjQwODQ1NjI2 REU0RTM3M0Y1NTBCNjU0RUE0RTgzM0I2RUI0RDI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEY0MDg0NTYyNkRFNEUzNzNGNTUwQjY1NEVBNEU4MzNCNkVC NEQyNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNDYzNjBkLTY2MmItNGY3ZC1i YjE3LWQ4NjA4MjE1MjQ3MS8wLzMxMzAzMzJlMzEzNjM4MmUzMTM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqJMwDQYJ KoZIhvcNAQELBQADggEBADUgoOTMaC+4szPXxDjWqpGV3pwoooVkhsp8fMpscl8V qqW1wEQW8rXMwJU3Xt57e9hfjURFXUA7ON9JOVLX/QY0lW4B5/FlhgYdL6qRzHKA g1KAL5KKmCJ9JkSx/KM2kM4mGhzxGBWRX5KfDJgqrI1I8Fl11BMohJsvbdY1U3ZZ PU+rBqj89j4YC3J3dFOSMwzMUYQ4J7XXXpe/pJdwjNNiOuCwVh/A8J86tLbYdBhY w3shLNS1hkFL3Xczd/Isug8qHW2mhlZi4RnUnQz1DnzD6uHZ3Xk5ruV5pEP0e9yN CuJq8L83Of6w6j9getoOc2McOvKh+R2SMPAxHQynb/c= -----END CERTIFICATE-----Generated at Sun May 5 00:13:44 2024 by rpki-client on console-ams.rpki-client.org