$ rpki-client -vvf repo-rpki.idnic.net/repo/3a46360d-662b-4f7d-bb17-d86082152471/0/3130332e3136382e3134362e302f32342d3234203d3e20313430343433.roa File: 3130332e3136382e3134362e302f32342d3234203d3e20313430343433.roa (raw, json) Hash identifier: oXF8+YFdcm9cYBe2kMQLocV+o9Vq4WvNgvO4uFLK2SY= Subject key identifier: 04:FF:F0:ED:B1:81:08:F0:36:35:93:05:F1:3F:B8:47:EA:A5:DA:99 Certificate issuer: /CN=4F40845626DE4E373F550B654EA4E833B6EB4D27 Certificate serial: 1D463DEF5A415FDF4F764DEC85C9B97DB4568FBA Authority key identifier: 4F:40:84:56:26:DE:4E:37:3F:55:0B:65:4E:A4:E8:33:B6:EB:4D:27 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F40845626DE4E373F550B654EA4E833B6EB4D27.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a46360d-662b-4f7d-bb17-d86082152471/0/3130332e3136382e3134362e302f32342d3234203d3e20313430343433.roa Signing time: Fri 29 Mar 2024 06:00:01 +0000 ROA not before: Fri 29 Mar 2024 05:55:01 +0000 ROA not after: Fri 28 Mar 2025 06:00:01 +0000 asID: 140443 IP address blocks: 103.168.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a46360d-662b-4f7d-bb17-d86082152471/0/4F40845626DE4E373F550B654EA4E833B6EB4D27.crl rsync://repo-rpki.idnic.net/repo/3a46360d-662b-4f7d-bb17-d86082152471/0/4F40845626DE4E373F550B654EA4E833B6EB4D27.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F40845626DE4E373F550B654EA4E833B6EB4D27.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:46:3d:ef:5a:41:5f:df:4f:76:4d:ec:85:c9:b9:7d:b4:56:8f:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F40845626DE4E373F550B654EA4E833B6EB4D27 Validity Not Before: Mar 29 05:55:01 2024 GMT Not After : Mar 28 06:00:01 2025 GMT Subject: CN=04FFF0EDB18108F036359305F13FB847EAA5DA99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:cf:d3:47:ad:f0:f0:70:85:2b:76:cf:2f:db: 01:16:1c:9a:24:23:c1:08:37:3f:e6:5b:f3:df:8a: 0a:e8:a5:33:4f:cf:51:ff:af:05:8f:36:b4:29:93: 15:6a:e1:f3:b3:d2:0c:cb:92:f6:c8:12:1b:67:07: e0:38:41:21:f1:43:02:f2:02:4a:0d:82:eb:40:41: b9:2c:9e:dc:af:b4:01:07:2e:34:6e:b8:1f:9a:60: 1b:ff:11:5e:56:99:1f:5e:55:58:d6:d4:78:08:77: da:48:ec:2c:ee:70:f4:b0:b1:63:b3:6e:d9:cd:1f: a7:8c:97:05:1d:f7:71:85:0b:00:3c:82:21:bf:17: b7:89:eb:02:13:89:4c:19:fa:cb:d1:1c:54:c7:cc: 77:05:9a:e5:60:4d:de:b8:62:ab:fc:bf:e9:c1:2d: cf:ad:b0:e5:b2:44:8c:6a:35:f8:81:1f:87:2b:3c: 49:03:33:29:54:26:59:49:2f:3e:dc:e0:a0:3d:13: 0b:90:ad:00:b4:da:44:9a:df:fe:f0:63:aa:a8:de: 17:1b:f3:6e:77:05:e4:7c:54:8b:88:2c:b4:e1:92: 9c:cf:62:e1:e4:f7:f0:9c:d1:4c:2d:53:b6:52:fd: 78:6d:0c:86:a2:9a:1e:cd:93:75:a4:a0:01:e1:8f: ae:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:FF:F0:ED:B1:81:08:F0:36:35:93:05:F1:3F:B8:47:EA:A5:DA:99 X509v3 Authority Key Identifier: keyid:4F:40:84:56:26:DE:4E:37:3F:55:0B:65:4E:A4:E8:33:B6:EB:4D:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a46360d-662b-4f7d-bb17-d86082152471/0/4F40845626DE4E373F550B654EA4E833B6EB4D27.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4F40845626DE4E373F550B654EA4E833B6EB4D27.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a46360d-662b-4f7d-bb17-d86082152471/0/3130332e3136382e3134362e302f32342d3234203d3e20313430343433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.146.0/24 Signature Algorithm: sha256WithRSAEncryption a0:09:32:d3:ba:84:b7:8e:e2:65:a7:8a:e0:38:a7:ef:84:7e: cf:9d:4c:76:42:11:f8:d0:e2:19:03:f3:eb:62:55:3f:84:bb: fc:14:33:b7:14:ae:dd:c6:99:ce:7b:58:5e:d0:b0:65:66:a4: b0:85:00:56:1d:90:ad:15:ad:49:cd:15:88:f3:29:51:d3:e3: eb:70:f7:d3:65:5c:3f:f2:5d:42:a9:79:0f:a8:7d:b2:f4:75: b5:e4:db:61:0f:3c:af:53:fd:3d:69:ca:f6:f5:c4:fa:a2:af: b5:71:6d:61:d0:30:75:80:2a:59:c4:d2:22:c1:ac:e1:4d:c2: d4:ff:9e:16:af:80:7e:4d:62:a8:f5:86:6e:a4:31:2c:e6:d0: 92:cf:d3:b3:bc:cb:96:a4:39:2f:38:1b:2f:80:c3:3b:e6:db: 97:ab:f0:85:c0:c5:7c:0e:0c:82:1e:fe:de:fc:f9:8b:91:30: bf:2f:6a:f3:a3:82:df:51:c5:80:3e:35:7c:f9:5b:90:7b:04: c9:f0:51:aa:1d:ac:78:9b:82:a8:e6:b3:69:5d:57:93:98:30: 56:d2:45:ab:d5:27:8e:96:7c:aa:81:6b:36:9b:60:a1:41:42: 0d:1d:49:b4:20:3d:27:d8:27:e8:54:d2:64:e6:6c:08:95:2e: e0:15:2f:eb -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUHUY971pBX99Pdk3shcm5fbRWj7owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEY0MDg0NTYyNkRFNEUzNzNGNTUwQjY1NEVBNEU4MzNC NkVCNEQyNzAeFw0yNDAzMjkwNTU1MDFaFw0yNTAzMjgwNjAwMDFaMDMxMTAvBgNV BAMTKDA0RkZGMEVEQjE4MTA4RjAzNjM1OTMwNUYxM0ZCODQ3RUFBNURBOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDez9NHrfDwcIUrds8v2wEWHJok I8EINz/mW/PfigropTNPz1H/rwWPNrQpkxVq4fOz0gzLkvbIEhtnB+A4QSHxQwLy AkoNgutAQbksntyvtAEHLjRuuB+aYBv/EV5WmR9eVVjW1HgId9pI7CzucPSwsWOz btnNH6eMlwUd93GFCwA8giG/F7eJ6wITiUwZ+svRHFTHzHcFmuVgTd64Yqv8v+nB Lc+tsOWyRIxqNfiBH4crPEkDMylUJllJLz7c4KA9EwuQrQC02kSa3/7wY6qo3hcb 8253BeR8VIuILLThkpzPYuHk9/Cc0UwtU7ZS/XhtDIaimh7Nk3WkoAHhj67hAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBP/w7bGBCPA2NZMF8T+4R+ql2pkwHwYDVR0j BBgwFoAUT0CEVibeTjc/VQtlTqToM7brTScwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTQ2MzYwZC02NjJiLTRmN2QtYmIxNy1kODYwODIxNTI0NzEvMC80RjQwODQ1NjI2 REU0RTM3M0Y1NTBCNjU0RUE0RTgzM0I2RUI0RDI3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEY0MDg0NTYyNkRFNEUzNzNGNTUwQjY1NEVBNEU4MzNCNkVC NEQyNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNDYzNjBkLTY2MmItNGY3ZC1i YjE3LWQ4NjA4MjE1MjQ3MS8wLzMxMzAzMzJlMzEzNjM4MmUzMTM0MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM0MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnqJIwDQYJ KoZIhvcNAQELBQADggEBAKAJMtO6hLeO4mWniuA4p++Efs+dTHZCEfjQ4hkD8+ti VT+Eu/wUM7cUrt3Gmc57WF7QsGVmpLCFAFYdkK0VrUnNFYjzKVHT4+tw99NlXD/y XUKpeQ+ofbL0dbXk22EPPK9T/T1pyvb1xPqir7VxbWHQMHWAKlnE0iLBrOFNwtT/ nhavgH5NYqj1hm6kMSzm0JLP07O8y5akOS84Gy+Awzvm25er8IXAxXwODIIe/t78 +YuRML8vavOjgt9RxYA+NXz5W5B7BMnwUaodrHibgqjms2ldV5OYMFbSRavVJ46W fKqBazabYKFBQg0dSbQgPSfYJ+hU0mTmbAiVLuAVL+s= -----END CERTIFICATE-----Generated at Thu Nov 21 22:33:05 2024 by rpki-client on console-fra.rpki-client.org