$ rpki-client -vvf repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/3130332e3135382e3230392e302f32342d3234203d3e20313431313436.roa File: 3130332e3135382e3230392e302f32342d3234203d3e20313431313436.roa (raw, json) Hash identifier: xkgaskag55C2ZNPy2mls6/Sa/6nRWAsBNS+0aUv4PjA= Subject key identifier: 80:D8:C2:27:55:BD:B2:10:3B:F4:E3:87:5C:F9:FB:B7:52:27:D7:8A Certificate issuer: /CN=64B46651D7B0C757E4AEDE01691F062FEEF15DB6 Certificate serial: 4AE933EC031ABEB58F25704426F8D8E891BDB9AE Authority key identifier: 64:B4:66:51:D7:B0:C7:57:E4:AE:DE:01:69:1F:06:2F:EE:F1:5D:B6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/3130332e3135382e3230392e302f32342d3234203d3e20313431313436.roa Signing time: Tue 25 Jun 2024 15:00:00 +0000 ROA not before: Tue 25 Jun 2024 14:55:00 +0000 ROA not after: Tue 24 Jun 2025 15:00:00 +0000 asID: 141146 IP address blocks: 103.158.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.crl rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:e9:33:ec:03:1a:be:b5:8f:25:70:44:26:f8:d8:e8:91:bd:b9:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64B46651D7B0C757E4AEDE01691F062FEEF15DB6 Validity Not Before: Jun 25 14:55:00 2024 GMT Not After : Jun 24 15:00:00 2025 GMT Subject: CN=80D8C22755BDB2103BF4E3875CF9FBB75227D78A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:fc:69:d9:79:ca:26:25:e3:aa:78:1f:84:8b: e5:25:28:cc:27:20:c9:aa:0e:e4:26:99:85:4b:79: 44:22:e3:6e:9f:61:c9:38:28:f0:a1:e5:d5:4c:8c: ec:04:a4:ad:e3:25:d4:e4:6c:4d:05:db:77:ca:bc: f6:16:66:63:6f:11:ee:dc:c4:2f:9a:cf:16:3d:e3: 48:84:69:33:2a:6d:dd:f8:40:48:05:ae:39:1c:cb: 08:56:36:46:64:14:cf:fc:e1:c6:f6:da:c5:8d:16: b8:7a:57:b7:9f:2c:58:dc:d9:33:89:90:ce:49:67: 6f:53:2b:2a:7f:37:59:34:f4:6d:10:05:06:88:17: 96:a5:49:ab:97:04:00:a5:44:46:38:38:a9:40:56: 1a:cd:22:8d:66:89:0b:93:22:12:36:2a:b3:60:22: f6:5e:b3:8b:1b:f0:25:6c:16:41:69:27:b7:e4:65: bd:2e:17:ac:79:1e:b9:78:04:d5:31:a0:3f:bb:a6: ec:aa:eb:b7:8c:ca:45:33:11:8b:5f:d8:92:e1:6b: cc:04:3f:0a:ea:ac:c0:e3:68:1f:f9:57:ca:20:94: e9:0f:5f:53:89:07:f0:a5:1d:ad:1a:67:b7:9f:4f: b1:04:09:e7:f5:b0:36:fd:c0:7c:71:fb:78:1a:48: 8e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:D8:C2:27:55:BD:B2:10:3B:F4:E3:87:5C:F9:FB:B7:52:27:D7:8A X509v3 Authority Key Identifier: keyid:64:B4:66:51:D7:B0:C7:57:E4:AE:DE:01:69:1F:06:2F:EE:F1:5D:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/64B46651D7B0C757E4AEDE01691F062FEEF15DB6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e705927-ec64-44f5-9c9e-c9a55a523b64/0/3130332e3135382e3230392e302f32342d3234203d3e20313431313436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.209.0/24 Signature Algorithm: sha256WithRSAEncryption 25:5d:16:78:ca:54:da:3e:53:c7:cd:71:75:a0:8e:4d:b6:5f: f3:ae:83:1e:e6:9d:6e:e3:65:66:54:47:43:3a:08:75:67:b9: 10:75:87:b6:6d:42:97:5e:82:0f:ff:99:8a:e9:18:a4:c3:0c: 0e:29:9b:05:7a:0d:6e:11:85:05:19:22:03:23:ce:68:dd:1c: 51:ff:7d:34:53:7f:83:34:69:c6:7c:7d:a6:d7:73:b5:7c:98: 95:22:21:fc:2d:49:c8:c1:9e:bb:a7:89:ae:a0:22:0f:d2:9d: f5:5c:82:11:65:09:83:18:20:6e:be:17:74:6d:78:01:e1:f7: 32:46:31:f2:15:a7:27:dd:04:5d:98:c0:f6:6f:7b:63:d6:69: 35:02:21:9a:40:de:62:72:12:1d:f9:16:95:5d:61:35:d2:8e: 01:6c:71:18:cf:86:43:88:59:0b:0e:ff:15:6b:4c:64:32:3a: d5:87:9e:02:5e:4c:cc:fa:95:25:e3:1b:c3:f2:97:56:09:3f: 6b:fc:cd:f0:9e:da:cc:46:8e:76:25:0d:62:3f:7f:33:cb:e3: 91:83:1e:d3:99:c6:3a:03:6a:68:72:d4:cc:38:06:ac:a7:e1: ab:2f:64:53:cc:9a:fe:3f:8d:71:8f:44:16:33:57:e5:af:b1: d8:ba:90:75 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSukz7AMavrWPJXBEJvjY6JG9ua4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjRCNDY2NTFEN0IwQzc1N0U0QUVERTAxNjkxRjA2MkZF RUYxNURCNjAeFw0yNDA2MjUxNDU1MDBaFw0yNTA2MjQxNTAwMDBaMDMxMTAvBgNV BAMTKDgwRDhDMjI3NTVCREIyMTAzQkY0RTM4NzVDRjlGQkI3NTIyN0Q3OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi/GnZecomJeOqeB+Ei+UlKMwn IMmqDuQmmYVLeUQi426fYck4KPCh5dVMjOwEpK3jJdTkbE0F23fKvPYWZmNvEe7c xC+azxY940iEaTMqbd34QEgFrjkcywhWNkZkFM/84cb22sWNFrh6V7efLFjc2TOJ kM5JZ29TKyp/N1k09G0QBQaIF5alSauXBAClREY4OKlAVhrNIo1miQuTIhI2KrNg IvZes4sb8CVsFkFpJ7fkZb0uF6x5Hrl4BNUxoD+7puyq67eMykUzEYtf2JLha8wE PwrqrMDjaB/5V8oglOkPX1OJB/ClHa0aZ7efT7EECef1sDb9wHxx+3gaSI4jAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUgNjCJ1W9shA79OOHXPn7t1In14owHwYDVR0j BBgwFoAUZLRmUdewx1fkrt4BaR8GL+7xXbYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZTcwNTkyNy1lYzY0LTQ0ZjUtOWM5ZS1jOWE1NWE1MjNiNjQvMC82NEI0NjY1MUQ3 QjBDNzU3RTRBRURFMDE2OTFGMDYyRkVFRjE1REI2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjRCNDY2NTFEN0IwQzc1N0U0QUVERTAxNjkxRjA2MkZFRUYx NURCNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlNzA1OTI3LWVjNjQtNDRmNS05 YzllLWM5YTU1YTUyM2I2NC8wLzMxMzAzMzJlMzEzNTM4MmUzMjMwMzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMTM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnntEwDQYJ KoZIhvcNAQELBQADggEBACVdFnjKVNo+U8fNcXWgjk22X/Ougx7mnW7jZWZUR0M6 CHVnuRB1h7ZtQpdegg//mYrpGKTDDA4pmwV6DW4RhQUZIgMjzmjdHFH/fTRTf4M0 acZ8fabXc7V8mJUiIfwtScjBnrunia6gIg/SnfVcghFlCYMYIG6+F3RteAHh9zJG MfIVpyfdBF2YwPZve2PWaTUCIZpA3mJyEh35FpVdYTXSjgFscRjPhkOIWQsO/xVr TGQyOtWHngJeTMz6lSXjG8Pyl1YJP2v8zfCe2sxGjnYlDWI/fzPL45GDHtOZxjoD amhy1Mw4Bqyn4asvZFPMmv4/jXGPRBYzV+Wvsdi6kHU= -----END CERTIFICATE-----Generated at Mon Nov 25 22:02:29 2024 by rpki-client on console-fra.rpki-client.org