$ rpki-client -vvf repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/3130332e3135382e3230382e302f32342d3234203d3e20313431313436.roa File: 3130332e3135382e3230382e302f32342d3234203d3e20313431313436.roa (raw, json) Hash identifier: SwqSF+oNUcILPVJViciO7vmypIFxSyzc6kEGhc2M+vs= Subject key identifier: A9:71:8E:F9:C7:39:A9:C2:E6:29:D7:4B:3D:A9:93:76:AB:0D:6C:ED Certificate issuer: /CN=64B46651D7B0C757E4AEDE01691F062FEEF15DB6 Certificate serial: 70821DC8C5BC1750066EB82D4666009AE53C20D2 Authority key identifier: 64:B4:66:51:D7:B0:C7:57:E4:AE:DE:01:69:1F:06:2F:EE:F1:5D:B6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/3130332e3135382e3230382e302f32342d3234203d3e20313431313436.roa Signing time: Tue 25 Jun 2024 15:00:00 +0000 ROA not before: Tue 25 Jun 2024 14:55:00 +0000 ROA not after: Tue 24 Jun 2025 15:00:00 +0000 asID: 141146 IP address blocks: 103.158.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.crl rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:82:1d:c8:c5:bc:17:50:06:6e:b8:2d:46:66:00:9a:e5:3c:20:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64B46651D7B0C757E4AEDE01691F062FEEF15DB6 Validity Not Before: Jun 25 14:55:00 2024 GMT Not After : Jun 24 15:00:00 2025 GMT Subject: CN=A9718EF9C739A9C2E629D74B3DA99376AB0D6CED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:27:13:ff:72:c8:09:c5:fa:31:18:92:0e:ab: fd:ca:c5:7e:2b:24:fe:cf:00:7d:3b:19:66:0c:57: 90:4d:fd:99:71:55:87:e5:87:df:35:99:17:99:3a: 47:25:81:72:52:95:58:20:83:23:8c:4c:f0:b8:80: 28:44:35:c5:b5:d9:d9:0c:51:5a:c0:03:be:be:8d: c2:27:9f:91:f5:ad:b6:da:79:19:42:bf:46:d9:c7: 77:7e:a6:94:20:bf:ab:a5:42:ae:77:e5:4c:3f:dd: 88:14:2d:3f:77:4e:b5:38:21:8a:4b:84:a9:29:b8: 4c:95:e3:75:32:74:c2:19:37:ad:55:9a:24:89:e3: 68:ab:c2:75:c1:4a:0f:e5:28:b9:4a:7b:3e:56:86: d8:3d:4d:63:65:3d:ce:76:da:f0:0b:8a:01:9c:0f: 5e:d4:c7:08:58:b6:df:fa:4b:47:a6:15:0e:e1:7b: 6d:11:58:88:73:71:10:8d:e2:3f:21:9b:c0:c7:8a: be:4e:9d:69:f2:8c:0a:33:f2:2d:78:44:11:30:49: b1:3e:4f:f8:aa:28:9c:95:13:5a:12:a6:c1:b6:58: ec:2d:d9:fd:64:0d:ef:42:c7:91:a0:ec:b3:d8:f0: 44:a8:5e:57:2c:68:96:a1:3b:a2:5d:49:dd:d6:23: 6d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:71:8E:F9:C7:39:A9:C2:E6:29:D7:4B:3D:A9:93:76:AB:0D:6C:ED X509v3 Authority Key Identifier: keyid:64:B4:66:51:D7:B0:C7:57:E4:AE:DE:01:69:1F:06:2F:EE:F1:5D:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/3130332e3135382e3230382e302f32342d3234203d3e20313431313436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.208.0/24 Signature Algorithm: sha256WithRSAEncryption a3:36:f4:99:f6:dd:1e:43:d2:4f:7b:68:1d:16:b9:f1:da:63: be:b7:11:9a:68:c0:51:c5:5d:d4:71:57:6b:e0:61:a2:3c:0f: e1:f5:77:b6:2d:bb:4f:7c:cc:5b:63:56:84:55:39:bc:fe:fb: d6:8e:71:31:c9:80:c6:b3:4b:94:f2:57:87:94:de:62:e6:d1: cd:61:b0:7c:6d:94:17:0b:09:a7:4d:f9:a2:ac:8a:4d:f1:d7: 2d:76:b4:97:0b:24:74:40:eb:95:c5:db:1d:47:60:5d:78:5a: 33:6d:e6:9a:16:ea:a9:64:ec:69:64:73:a0:28:5d:04:7f:08: 11:7f:ff:39:aa:d0:d5:d7:cc:e0:c9:3a:eb:93:72:51:b6:a4: ca:5c:6b:19:fb:bc:40:d8:ab:15:b4:6e:68:eb:a1:32:14:21: e8:73:3e:76:bc:ab:e5:1d:14:cf:a8:40:80:1b:49:25:30:02: 9e:4c:9a:08:83:43:0a:3f:23:b2:fd:b7:e6:d2:47:42:57:5e: 45:7c:d0:da:32:12:a9:09:ef:62:c2:d8:25:89:7a:45:07:05: f6:fb:23:5d:2c:f5:96:55:b2:ff:4a:6e:35:8b:c6:2d:8f:8d: 24:66:07:71:64:ed:37:a9:e6:c2:d4:d4:e9:c4:94:12:2f:1f: 61:eb:db:62 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcIIdyMW8F1AGbrgtRmYAmuU8INIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjRCNDY2NTFEN0IwQzc1N0U0QUVERTAxNjkxRjA2MkZF RUYxNURCNjAeFw0yNDA2MjUxNDU1MDBaFw0yNTA2MjQxNTAwMDBaMDMxMTAvBgNV BAMTKEE5NzE4RUY5QzczOUE5QzJFNjI5RDc0QjNEQTk5Mzc2QUIwRDZDRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoJxP/csgJxfoxGJIOq/3KxX4r JP7PAH07GWYMV5BN/ZlxVYflh981mReZOkclgXJSlVgggyOMTPC4gChENcW12dkM UVrAA76+jcInn5H1rbbaeRlCv0bZx3d+ppQgv6ulQq535Uw/3YgULT93TrU4IYpL hKkpuEyV43UydMIZN61VmiSJ42irwnXBSg/lKLlKez5Whtg9TWNlPc522vALigGc D17UxwhYtt/6S0emFQ7he20RWIhzcRCN4j8hm8DHir5OnWnyjAoz8i14RBEwSbE+ T/iqKJyVE1oSpsG2WOwt2f1kDe9Cx5Gg7LPY8ESoXlcsaJahO6JdSd3WI21fAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUqXGO+cc5qcLmKddLPamTdqsNbO0wHwYDVR0j BBgwFoAUZLRmUdewx1fkrt4BaR8GL+7xXbYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZTcwNTkyNy1lYzY0LTQ0ZjUtOWM5ZS1jOWE1NWE1MjNiNjQvMC82NEI0NjY1MUQ3 QjBDNzU3RTRBRURFMDE2OTFGMDYyRkVFRjE1REI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjRCNDY2NTFEN0IwQzc1N0U0QUVERTAxNjkxRjA2MkZFRUYx NURCNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlNzA1OTI3LWVjNjQtNDRmNS05 YzllLWM5YTU1YTUyM2I2NC8wLzMxMzAzMzJlMzEzNTM4MmUzMjMwMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnntAwDQYJ KoZIhvcNAQELBQADggEBAKM29Jn23R5D0k97aB0WufHaY763EZpowFHFXdRxV2vg YaI8D+H1d7Ytu098zFtjVoRVObz++9aOcTHJgMazS5TyV4eU3mLm0c1hsHxtlBcL CadN+aKsik3x1y12tJcLJHRA65XF2x1HYF14WjNt5poW6qlk7Glkc6AoXQR/CBF/ /zmq0NXXzODJOuuTclG2pMpcaxn7vEDYqxW0bmjroTIUIehzPna8q+UdFM+oQIAb SSUwAp5MmgiDQwo/I7L9t+bSR0JXXkV80NoyEqkJ72LC2CWJekUHBfb7I10s9ZZV sv9KbjWLxi2PjSRmB3Fk7Tep5sLU1OnElBIvH2Hr22I= -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:29 2024 by rpki-client on console-fra.rpki-client.org