$ rpki-client -vvf repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3130332e3134362e3134342e302f32342d3234203d3e20313530313836.roa File: 3130332e3134362e3134342e302f32342d3234203d3e20313530313836.roa (raw, json) Hash identifier: qojGF0usxC/jpZ/27nqg0YzAXVQOl0gNJYMfkrdSwlI= Subject key identifier: 25:83:8D:77:FB:1D:97:EE:E7:C8:01:DE:80:28:38:64:CF:E9:88:F8 Certificate issuer: /CN=3A594744F1BEA2F04C7437AD77133DD4423F2302 Certificate serial: 16B44EA3133B78181A06FDBA507CC37C5C878B6B Authority key identifier: 3A:59:47:44:F1:BE:A2:F0:4C:74:37:AD:77:13:3D:D4:42:3F:23:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A594744F1BEA2F04C7437AD77133DD4423F2302.cer Subject info access: rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3130332e3134362e3134342e302f32342d3234203d3e20313530313836.roa Signing time: Tue 23 Apr 2024 09:00:00 +0000 ROA not before: Tue 23 Apr 2024 08:55:00 +0000 ROA not after: Tue 22 Apr 2025 09:00:00 +0000 asID: 150186 IP address blocks: 103.146.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3A594744F1BEA2F04C7437AD77133DD4423F2302.crl rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3A594744F1BEA2F04C7437AD77133DD4423F2302.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A594744F1BEA2F04C7437AD77133DD4423F2302.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:b4:4e:a3:13:3b:78:18:1a:06:fd:ba:50:7c:c3:7c:5c:87:8b:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3A594744F1BEA2F04C7437AD77133DD4423F2302 Validity Not Before: Apr 23 08:55:00 2024 GMT Not After : Apr 22 09:00:00 2025 GMT Subject: CN=25838D77FB1D97EEE7C801DE80283864CFE988F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:c9:f8:f6:07:30:a2:e5:ef:70:d9:93:ea:80: 75:04:19:63:b2:89:a6:02:9a:71:51:f4:f8:d5:be: a5:25:79:30:ab:0b:ce:8b:0a:73:fe:c7:be:fe:06: 5e:b3:0b:5c:a4:8b:65:9a:0d:d8:46:2f:9d:e2:ef: 55:9c:6d:6f:ba:dc:78:0b:e7:eb:3f:28:5e:13:d8: 4a:27:b7:a4:cc:54:da:c9:e1:e3:bd:f9:ed:84:6c: e7:ea:8e:19:39:e4:b4:e4:b7:1d:6b:59:0f:9a:e9: 26:54:79:6d:c5:1c:80:66:3c:16:d8:a1:0f:bb:aa: 20:6a:7e:2e:56:ab:7d:2b:41:3f:79:d6:50:6a:46: 16:fa:d1:19:36:17:42:33:c2:90:b1:c8:cc:55:b2: 72:12:51:98:7f:3f:51:97:df:4f:78:40:98:8c:f4: c4:01:d3:71:d5:cf:3c:bd:6a:bb:cd:33:51:90:b7: ab:8f:8d:c0:71:95:c3:e3:54:fd:d5:f5:29:da:7d: 97:f3:f7:96:7c:7e:8b:2c:08:0d:01:6c:d3:03:03: 9b:50:5a:9a:23:e5:75:41:3e:29:7b:1c:b9:8b:a5: 79:5a:d3:f7:e0:55:4c:c8:71:27:e0:a0:60:55:ca: b8:69:a4:42:79:04:03:b3:69:6c:e4:53:5f:f1:6c: 6a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:83:8D:77:FB:1D:97:EE:E7:C8:01:DE:80:28:38:64:CF:E9:88:F8 X509v3 Authority Key Identifier: keyid:3A:59:47:44:F1:BE:A2:F0:4C:74:37:AD:77:13:3D:D4:42:3F:23:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3A594744F1BEA2F04C7437AD77133DD4423F2302.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A594744F1BEA2F04C7437AD77133DD4423F2302.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3130332e3134362e3134342e302f32342d3234203d3e20313530313836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.144.0/24 Signature Algorithm: sha256WithRSAEncryption 36:4f:79:62:ce:c6:d0:dc:94:97:f2:7c:90:14:5b:9f:1e:e0: 7d:54:a5:eb:a2:d5:37:30:f4:ec:2f:d0:6d:13:e1:52:64:1e: 77:03:9b:e5:21:40:05:5d:46:59:49:f3:4d:8c:ac:0d:3b:45: 9b:e5:f0:89:f4:a5:07:25:da:0e:f5:cb:54:dd:c3:e2:7b:14: c9:ba:82:2b:16:5a:cf:a5:f2:63:5b:98:8e:02:95:3a:74:a9: 76:4e:1f:73:ba:61:3b:fe:88:b3:3d:a7:60:59:4c:28:52:49: 2a:b7:89:ed:de:25:9c:61:87:27:c7:95:88:30:b3:ad:11:3c: 16:89:3f:e7:ed:b4:40:d1:09:11:08:1d:46:25:da:ab:51:8e: 43:38:1a:dd:b2:08:05:cf:94:a3:1d:84:f5:8f:d1:88:12:8e: 6c:36:66:ac:21:3e:62:f0:41:24:bd:a6:97:2d:86:22:cb:59: d7:3d:24:71:77:96:10:7a:17:0b:ab:1e:62:5a:86:0f:6a:44: 19:d3:45:97:b3:3f:7f:ea:0d:93:f5:d0:45:39:3a:94:36:3c: f0:45:b5:82:73:6f:6b:d2:14:09:3c:ee:38:1f:68:0a:46:c2: bc:44:12:40:dd:a6:fa:e5:e5:77:45:b1:ce:39:73:f3:c0:03: ae:a4:50:95 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFrROoxM7eBgaBv26UHzDfFyHi2swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0E1OTQ3NDRGMUJFQTJGMDRDNzQzN0FENzcxMzNERDQ0 MjNGMjMwMjAeFw0yNDA0MjMwODU1MDBaFw0yNTA0MjIwOTAwMDBaMDMxMTAvBgNV BAMTKDI1ODM4RDc3RkIxRDk3RUVFN0M4MDFERTgwMjgzODY0Q0ZFOTg4RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpyfj2BzCi5e9w2ZPqgHUEGWOy iaYCmnFR9PjVvqUleTCrC86LCnP+x77+Bl6zC1yki2WaDdhGL53i71WcbW+63HgL 5+s/KF4T2Eont6TMVNrJ4eO9+e2EbOfqjhk55LTktx1rWQ+a6SZUeW3FHIBmPBbY oQ+7qiBqfi5Wq30rQT951lBqRhb60Rk2F0IzwpCxyMxVsnISUZh/P1GX3094QJiM 9MQB03HVzzy9arvNM1GQt6uPjcBxlcPjVP3V9SnafZfz95Z8fossCA0BbNMDA5tQ Wpoj5XVBPil7HLmLpXla0/fgVUzIcSfgoGBVyrhppEJ5BAOzaWzkU1/xbGq7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJYONd/sdl+7nyAHegCg4ZM/piPgwHwYDVR0j BBgwFoAUOllHRPG+ovBMdDetdxM91EI/IwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MDYxNDE2My00Y2E0LTQ5MzYtYmY4Yi04NGQ4YzJkMWYwMmQvMC8zQTU5NDc0NEYx QkVBMkYwNEM3NDM3QUQ3NzEzM0RENDQyM0YyMzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0E1OTQ3NDRGMUJFQTJGMDRDNzQzN0FENzcxMzNERDQ0MjNG MjMwMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQwNjE0MTYzLTRjYTQtNDkzNi1i ZjhiLTg0ZDhjMmQxZjAyZC8wLzMxMzAzMzJlMzEzNDM2MmUzMTM0MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzMTM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkpAwDQYJ KoZIhvcNAQELBQADggEBADZPeWLOxtDclJfyfJAUW58e4H1Upeui1Tcw9Owv0G0T 4VJkHncDm+UhQAVdRllJ802MrA07RZvl8In0pQcl2g71y1Tdw+J7FMm6gisWWs+l 8mNbmI4ClTp0qXZOH3O6YTv+iLM9p2BZTChSSSq3ie3eJZxhhyfHlYgws60RPBaJ P+fttEDRCREIHUYl2qtRjkM4Gt2yCAXPlKMdhPWP0YgSjmw2ZqwhPmLwQSS9ppct hiLLWdc9JHF3lhB6FwurHmJahg9qRBnTRZezP3/qDZP10EU5OpQ2PPBFtYJzb2vS FAk87jgfaApGwrxEEkDdpvrl5XdFsc45c/PAA66kUJU= -----END CERTIFICATE-----Generated at Sun Nov 24 13:26:10 2024 by rpki-client on console-ams.rpki-client.org