$ rpki-client -vvf repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/3130332e32342e3231332e302f32342d3234203d3e20313332363439.roa File: 3130332e32342e3231332e302f32342d3234203d3e20313332363439.roa (raw, json) Hash identifier: XPO9afBoVf6G3D6scTPU32a6XViZeAJ4e6BikvKZs2k= Subject key identifier: EF:DB:D9:73:EB:A6:83:44:14:03:FB:59:41:C7:A3:A1:FE:6C:3E:E4 Certificate issuer: /CN=4ACFA054E26D225A10C6B0FD316D21263924491E Certificate serial: 40AF83728E8796DAA6346AB17EE5BCE2C6E0C2A2 Authority key identifier: 4A:CF:A0:54:E2:6D:22:5A:10:C6:B0:FD:31:6D:21:26:39:24:49:1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ACFA054E26D225A10C6B0FD316D21263924491E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/3130332e32342e3231332e302f32342d3234203d3e20313332363439.roa Signing time: Mon 01 Jul 2024 01:02:38 +0000 ROA not before: Mon 01 Jul 2024 00:57:38 +0000 ROA not after: Mon 30 Jun 2025 01:02:38 +0000 asID: 132649 IP address blocks: 103.24.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/4ACFA054E26D225A10C6B0FD316D21263924491E.crl rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/4ACFA054E26D225A10C6B0FD316D21263924491E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ACFA054E26D225A10C6B0FD316D21263924491E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:af:83:72:8e:87:96:da:a6:34:6a:b1:7e:e5:bc:e2:c6:e0:c2:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ACFA054E26D225A10C6B0FD316D21263924491E Validity Not Before: Jul 1 00:57:38 2024 GMT Not After : Jun 30 01:02:38 2025 GMT Subject: CN=EFDBD973EBA683441403FB5941C7A3A1FE6C3EE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:49:96:95:9d:51:30:b7:4b:5d:cf:e6:0f:1d: d8:2c:20:8f:ed:01:a0:bb:1d:d0:c8:b0:22:88:a0: 6c:78:a9:53:69:c7:57:b0:52:23:48:d4:79:f3:65: 96:4d:77:a3:63:4d:14:41:72:59:e7:a2:5d:af:61: 9b:96:42:e6:7a:54:d2:e2:a2:75:f4:91:00:19:8a: ed:6f:19:30:52:dd:1e:8b:00:0e:8b:a3:88:7f:64: e2:12:ec:b1:61:9f:ee:11:13:8c:76:2d:a1:51:08: 9f:6c:dc:2d:35:68:b1:06:93:80:de:f8:41:60:27: 31:fa:e6:40:df:a6:9e:ab:b0:10:e6:81:c8:0e:e1: c1:8f:e4:b3:43:15:f4:a0:e2:80:63:f5:c2:b3:81: 81:4f:5a:48:03:0d:e6:d7:b8:12:12:38:e8:21:3d: 97:de:64:48:a0:b1:00:f6:11:94:93:60:c0:f3:88: 72:fe:32:e9:48:f4:59:0d:a1:05:8e:ea:89:15:58: 28:49:03:d0:0a:a4:99:b6:5e:2b:10:80:7f:c2:f0: 16:74:06:08:10:d5:20:35:ea:db:10:8b:d3:88:6a: 77:58:96:d5:38:bd:7f:58:a5:81:12:11:cc:96:34: 06:c5:e4:16:70:e2:8e:ca:7c:0c:48:47:2b:f0:82: 01:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:DB:D9:73:EB:A6:83:44:14:03:FB:59:41:C7:A3:A1:FE:6C:3E:E4 X509v3 Authority Key Identifier: keyid:4A:CF:A0:54:E2:6D:22:5A:10:C6:B0:FD:31:6D:21:26:39:24:49:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/4ACFA054E26D225A10C6B0FD316D21263924491E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4ACFA054E26D225A10C6B0FD316D21263924491E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e46a305-df77-4587-8703-a905c53779ac/0/3130332e32342e3231332e302f32342d3234203d3e20313332363439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.24.213.0/24 Signature Algorithm: sha256WithRSAEncryption 22:fb:7f:4e:7a:87:0c:e7:81:7b:5d:64:34:66:f3:a5:3b:68: dd:d9:c1:54:80:67:f3:b2:70:87:c6:f8:f2:f6:d4:05:69:9b: 95:94:f9:8b:45:42:9b:cb:29:62:1f:e8:62:ab:04:37:ec:38: a1:c6:32:0e:fa:aa:22:c0:26:96:8e:4c:3b:d3:53:07:be:82: 71:6e:2c:5d:54:8b:79:0f:1f:ed:be:f3:8e:7f:d4:53:4e:6b: 8b:62:8f:8d:cc:90:e1:8d:39:bf:dc:f7:27:4d:70:c2:c5:90: e9:d1:a2:57:55:cb:f5:23:ce:79:0e:8c:ea:e2:9d:61:6e:52: 80:9c:d7:74:d2:b6:5b:ac:72:49:da:b7:d5:e9:19:11:e7:bb: 9a:4c:b0:57:47:e7:39:b7:f0:d8:b2:6d:61:3c:6a:30:ed:f6: 06:e1:44:3e:3f:2e:85:e4:e0:20:c9:b1:24:55:5e:0a:bb:fd: e8:f6:65:71:06:09:a1:25:bb:8e:fa:eb:36:f1:f3:9e:f7:3b: 94:05:67:79:24:d2:85:9b:a4:ff:e6:8d:ce:d3:5f:70:e2:a8: 34:56:e5:af:3a:b9:2d:60:ed:24:9a:ab:23:15:fa:84:82:33: 3e:0f:b2:b4:0d:a1:60:bf:a5:30:b2:29:f4:92:ae:36:89:51: 61:a8:d3:af -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQK+Dco6HltqmNGqxfuW84sbgwqIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFDRkEwNTRFMjZEMjI1QTEwQzZCMEZEMzE2RDIxMjYz OTI0NDkxRTAeFw0yNDA3MDEwMDU3MzhaFw0yNTA2MzAwMTAyMzhaMDMxMTAvBgNV BAMTKEVGREJEOTczRUJBNjgzNDQxNDAzRkI1OTQxQzdBM0ExRkU2QzNFRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbSZaVnVEwt0tdz+YPHdgsII/t AaC7HdDIsCKIoGx4qVNpx1ewUiNI1HnzZZZNd6NjTRRBclnnol2vYZuWQuZ6VNLi onX0kQAZiu1vGTBS3R6LAA6Lo4h/ZOIS7LFhn+4RE4x2LaFRCJ9s3C01aLEGk4De +EFgJzH65kDfpp6rsBDmgcgO4cGP5LNDFfSg4oBj9cKzgYFPWkgDDebXuBISOOgh PZfeZEigsQD2EZSTYMDziHL+MulI9FkNoQWO6okVWChJA9AKpJm2XisQgH/C8BZ0 BggQ1SA16tsQi9OIandYltU4vX9YpYESEcyWNAbF5BZw4o7KfAxIRyvwggEtAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU79vZc+umg0QUA/tZQcejof5sPuQwHwYDVR0j BBgwFoAUSs+gVOJtIloQxrD9MW0hJjkkSR4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZTQ2YTMwNS1kZjc3LTQ1ODctODcwMy1hOTA1YzUzNzc5YWMvMC80QUNGQTA1NEUy NkQyMjVBMTBDNkIwRkQzMTZEMjEyNjM5MjQ0OTFFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFDRkEwNTRFMjZEMjI1QTEwQzZCMEZEMzE2RDIxMjYzOTI0 NDkxRS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlNDZhMzA1LWRmNzctNDU4Ny04 NzAzLWE5MDVjNTM3NzlhYy8wLzMxMzAzMzJlMzIzNDJlMzIzMTMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzMyMzYzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxjVMA0GCSqG SIb3DQEBCwUAA4IBAQAi+39OeocM54F7XWQ0ZvOlO2jd2cFUgGfzsnCHxvjy9tQF aZuVlPmLRUKbyyliH+hiqwQ37DihxjIO+qoiwCaWjkw701MHvoJxbixdVIt5Dx/t vvOOf9RTTmuLYo+NzJDhjTm/3PcnTXDCxZDp0aJXVcv1I855Dozq4p1hblKAnNd0 0rZbrHJJ2rfV6RkR57uaTLBXR+c5t/DYsm1hPGow7fYG4UQ+Py6F5OAgybEkVV4K u/3o9mVxBgmhJbuO+us28fOe9zuUBWd5JNKFm6T/5o3O019w4qg0VuWvOrktYO0k mqsjFfqEgjM+D7K0DaFgv6Uwsin0kq42iVFhqNOv -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:56 2024 by rpki-client on console-fra.rpki-client.org