$ rpki-client -vvf repo-rpki.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/3130332e3134372e3134382e302f32332d3234203d3e203137373639.roa File: 3130332e3134372e3134382e302f32332d3234203d3e203137373639.roa (raw, json) Hash identifier: h87GIrTJMQyGb0m1sPwlgli09SuNOJCczFxB7rjFa/w= Subject key identifier: 2F:6A:97:A9:AE:A7:C0:47:23:1C:66:4A:1A:AF:4D:84:9D:C0:4B:B0 Certificate issuer: /CN=4846B9B0D6B1DEDADE4A9C1BB6F913695D261585 Certificate serial: 7BB1E110BB614EC9ABA4CD3A9006E34A25CB00CF Authority key identifier: 48:46:B9:B0:D6:B1:DE:DA:DE:4A:9C:1B:B6:F9:13:69:5D:26:15:85 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4846B9B0D6B1DEDADE4A9C1BB6F913695D261585.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/3130332e3134372e3134382e302f32332d3234203d3e203137373639.roa Signing time: Mon 30 Sep 2024 11:01:04 +0000 ROA not before: Mon 30 Sep 2024 10:56:04 +0000 ROA not after: Mon 29 Sep 2025 11:01:04 +0000 asID: 17769 IP address blocks: 103.147.148.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/4846B9B0D6B1DEDADE4A9C1BB6F913695D261585.crl rsync://repo-rpki.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/4846B9B0D6B1DEDADE4A9C1BB6F913695D261585.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4846B9B0D6B1DEDADE4A9C1BB6F913695D261585.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:b1:e1:10:bb:61:4e:c9:ab:a4:cd:3a:90:06:e3:4a:25:cb:00:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4846B9B0D6B1DEDADE4A9C1BB6F913695D261585 Validity Not Before: Sep 30 10:56:04 2024 GMT Not After : Sep 29 11:01:04 2025 GMT Subject: CN=2F6A97A9AEA7C047231C664A1AAF4D849DC04BB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:1a:c2:92:ac:b8:37:98:21:5c:f4:a2:8a:9c: 93:18:db:2a:8a:2a:94:3f:33:fa:d4:6d:5d:7a:27: 1d:9f:38:89:49:17:43:5d:6a:17:8f:5d:2b:47:2c: e8:b9:77:d0:f5:41:e2:00:31:d9:f2:98:fd:d0:09: e8:d8:82:31:97:69:07:04:c0:9c:0f:eb:e3:c2:d1: da:3e:54:4e:83:af:75:9f:ed:a4:2e:0f:ed:26:e8: a5:a2:cf:52:a4:05:54:9c:87:f0:19:47:00:62:98: cb:57:43:91:ad:cf:b4:bc:28:15:54:0d:7a:39:c9: 5d:8c:41:cd:0a:da:aa:f9:bf:b1:af:93:ee:15:02: df:38:78:dd:8a:19:cc:58:bf:e2:bc:36:de:b0:c8: 98:30:45:32:c6:79:53:28:2d:a5:9c:ce:c8:62:08: c1:50:59:56:5d:aa:c1:d1:a8:aa:ce:c4:35:e0:81: 7c:76:df:2f:ee:c8:fb:08:62:ff:e7:6c:55:73:2c: 48:a1:26:c6:23:86:7e:8f:2f:fa:e9:55:9c:af:bc: 80:4a:a1:23:90:99:f2:5a:44:0c:62:2e:a2:7e:30: d8:a8:7b:bc:f5:60:56:55:6c:03:bd:fb:c2:06:e2: ce:bf:85:eb:67:d2:a7:c0:6e:b7:c9:37:75:56:eb: 4f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:6A:97:A9:AE:A7:C0:47:23:1C:66:4A:1A:AF:4D:84:9D:C0:4B:B0 X509v3 Authority Key Identifier: keyid:48:46:B9:B0:D6:B1:DE:DA:DE:4A:9C:1B:B6:F9:13:69:5D:26:15:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/4846B9B0D6B1DEDADE4A9C1BB6F913695D261585.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4846B9B0D6B1DEDADE4A9C1BB6F913695D261585.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3931fae9-627a-4a08-be5c-44a0c1571487/0/3130332e3134372e3134382e302f32332d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.148.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:30:16:1b:81:35:c2:ae:17:4f:05:3b:d1:d3:88:1a:82:38: 1a:12:12:3e:0c:3c:06:0f:6b:2c:30:cb:49:f2:1c:7b:3d:d4: 1c:15:e7:93:81:fc:fc:d3:93:64:45:16:13:32:67:1c:25:f7: dd:f5:42:7b:f4:50:5d:46:ee:19:88:a7:e7:07:fa:4d:73:0c: 20:36:60:14:4a:48:ae:78:a6:ba:12:d1:29:8e:ae:cf:a3:4e: d4:82:dd:8f:b2:49:5c:b8:24:76:78:89:47:3a:bc:46:3a:6f: e7:8c:4f:3c:9f:29:15:09:20:fa:71:0b:69:9a:6f:e1:fa:a5: 2d:6a:25:4e:6f:a8:4f:44:d1:74:c2:7c:0d:c7:16:34:14:7e: 94:17:2a:14:31:1c:a0:3e:4e:91:77:21:07:d1:e2:bc:c4:50: f6:ab:9e:a3:53:d2:d0:e6:ef:7c:5b:39:a0:dc:19:d2:1f:b0: 3c:78:20:f3:c0:e0:29:d9:02:ba:ec:11:ef:6e:5d:10:5c:69: e1:59:79:22:a2:68:d9:e9:63:88:21:04:43:ac:f6:84:0d:42: d9:0c:a2:19:79:69:e2:2f:4a:53:70:06:be:85:91:27:44:8e: 5e:96:43:ed:61:9e:2c:48:37:16:f4:f7:d0:fb:ab:d6:b4:e9: 34:0f:2d:ec -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUe7HhELthTsmrpM06kAbjSiXLAM8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDg0NkI5QjBENkIxREVEQURFNEE5QzFCQjZGOTEzNjk1 RDI2MTU4NTAeFw0yNDA5MzAxMDU2MDRaFw0yNTA5MjkxMTAxMDRaMDMxMTAvBgNV BAMTKDJGNkE5N0E5QUVBN0MwNDcyMzFDNjY0QTFBQUY0RDg0OURDMDRCQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFGsKSrLg3mCFc9KKKnJMY2yqK KpQ/M/rUbV16Jx2fOIlJF0NdahePXStHLOi5d9D1QeIAMdnymP3QCejYgjGXaQcE wJwP6+PC0do+VE6Dr3Wf7aQuD+0m6KWiz1KkBVSch/AZRwBimMtXQ5Gtz7S8KBVU DXo5yV2MQc0K2qr5v7Gvk+4VAt84eN2KGcxYv+K8Nt6wyJgwRTLGeVMoLaWczshi CMFQWVZdqsHRqKrOxDXggXx23y/uyPsIYv/nbFVzLEihJsYjhn6PL/rpVZyvvIBK oSOQmfJaRAxiLqJ+MNioe7z1YFZVbAO9+8IG4s6/hetn0qfAbrfJN3VW60+jAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUL2qXqa6nwEcjHGZKGq9NhJ3AS7AwHwYDVR0j BBgwFoAUSEa5sNax3treSpwbtvkTaV0mFYUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z OTMxZmFlOS02MjdhLTRhMDgtYmU1Yy00NGEwYzE1NzE0ODcvMC80ODQ2QjlCMEQ2 QjFERURBREU0QTlDMUJCNkY5MTM2OTVEMjYxNTg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDg0NkI5QjBENkIxREVEQURFNEE5QzFCQjZGOTEzNjk1RDI2 MTU4NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM5MzFmYWU5LTYyN2EtNGEwOC1i ZTVjLTQ0YTBjMTU3MTQ4Ny8wLzMxMzAzMzJlMzEzNDM3MmUzMTM0MzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzczNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5OUMA0GCSqG SIb3DQEBCwUAA4IBAQCcMBYbgTXCrhdPBTvR04gagjgaEhI+DDwGD2ssMMtJ8hx7 PdQcFeeTgfz805NkRRYTMmccJffd9UJ79FBdRu4ZiKfnB/pNcwwgNmAUSkiueKa6 EtEpjq7Po07Ugt2PsklcuCR2eIlHOrxGOm/njE88nykVCSD6cQtpmm/h+qUtaiVO b6hPRNF0wnwNxxY0FH6UFyoUMRygPk6RdyEH0eK8xFD2q56jU9LQ5u98Wzmg3BnS H7A8eCDzwOAp2QK67BHvbl0QXGnhWXkiomjZ6WOIIQRDrPaEDULZDKIZeWniL0pT cAa+hZEnRI5elkPtYZ4sSDcW9PfQ+6vWtOk0Dy3s -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:53 2024 by rpki-client on console-fra.rpki-client.org