$ rpki-client -vvf repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3130332e3134362e3134352e302f32342d3234203d3e20313530313836.roa File: 3130332e3134362e3134352e302f32342d3234203d3e20313530313836.roa (raw, json) Hash identifier: sAp6C2N02k5mmJU1c/uI9sfpVfLQkaCzK/kM9YZXFJs= Subject key identifier: F8:1F:58:C1:D8:B0:8B:AF:81:75:70:78:52:F5:07:9A:4D:7C:41:12 Certificate issuer: /CN=3A594744F1BEA2F04C7437AD77133DD4423F2302 Certificate serial: 47D2A415425DA8CDD244E311529F55D8412A8113 Authority key identifier: 3A:59:47:44:F1:BE:A2:F0:4C:74:37:AD:77:13:3D:D4:42:3F:23:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A594744F1BEA2F04C7437AD77133DD4423F2302.cer Subject info access: rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3130332e3134362e3134352e302f32342d3234203d3e20313530313836.roa Signing time: Tue 23 Apr 2024 09:00:00 +0000 ROA not before: Tue 23 Apr 2024 08:55:00 +0000 ROA not after: Tue 22 Apr 2025 09:00:00 +0000 asID: 150186 IP address blocks: 103.146.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3A594744F1BEA2F04C7437AD77133DD4423F2302.crl rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3A594744F1BEA2F04C7437AD77133DD4423F2302.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A594744F1BEA2F04C7437AD77133DD4423F2302.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:d2:a4:15:42:5d:a8:cd:d2:44:e3:11:52:9f:55:d8:41:2a:81:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3A594744F1BEA2F04C7437AD77133DD4423F2302 Validity Not Before: Apr 23 08:55:00 2024 GMT Not After : Apr 22 09:00:00 2025 GMT Subject: CN=F81F58C1D8B08BAF8175707852F5079A4D7C4112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:bb:0b:2e:6f:ec:e3:2d:ea:8d:b5:de:7f:f0: 87:25:1b:03:08:56:5e:fa:87:5d:6a:63:15:fa:00: c8:fa:5e:71:3b:a2:09:5c:15:76:3b:96:11:e5:2b: f7:72:3d:fe:14:05:bf:40:58:89:f0:9c:ae:c5:06: 8f:fb:8d:c3:9b:5f:3e:6f:a7:27:25:b4:a7:26:9e: 11:84:6c:0b:4d:7b:32:c6:85:21:d1:81:d4:af:59: cd:c1:f0:10:b0:f8:1e:1a:4f:e9:ac:76:f7:50:8c: 4a:7e:51:e1:be:41:89:b2:da:f8:f4:5a:33:55:6a: 67:9b:f4:4e:85:ff:a4:55:dc:ad:56:39:79:09:7b: 55:64:ca:a9:4f:ce:50:90:55:66:a8:4d:76:4c:1e: 33:66:a3:c2:5f:e2:69:6e:e5:75:7d:02:c9:b6:a8: c6:3c:1c:b4:25:0d:5a:e3:e3:0d:9b:9c:02:2d:aa: 9e:26:e8:fb:ba:41:51:fd:cc:3f:69:c2:3e:cc:d5: d4:db:4a:3a:a5:00:78:96:cd:66:a0:f2:98:4b:fd: a5:ef:21:5d:c1:a0:89:41:e4:19:4d:0d:32:d2:66: 1c:e3:ee:2b:b1:aa:87:aa:96:f9:9a:fb:6e:29:62: 8c:99:fc:80:cd:96:37:32:50:73:b4:f5:4d:1b:8f: 7c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:1F:58:C1:D8:B0:8B:AF:81:75:70:78:52:F5:07:9A:4D:7C:41:12 X509v3 Authority Key Identifier: keyid:3A:59:47:44:F1:BE:A2:F0:4C:74:37:AD:77:13:3D:D4:42:3F:23:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3A594744F1BEA2F04C7437AD77133DD4423F2302.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A594744F1BEA2F04C7437AD77133DD4423F2302.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3130332e3134362e3134352e302f32342d3234203d3e20313530313836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.145.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:10:a5:46:24:c5:62:4e:9a:bb:bf:f4:11:27:d6:9f:6f:88: 1b:56:4b:49:39:11:22:92:f5:41:73:6b:87:46:1d:09:61:71: 92:75:05:d4:66:58:1d:05:ff:09:30:d2:35:7c:91:b3:33:f2: b8:a5:7f:20:e9:86:9d:82:57:6c:e0:64:64:8d:bc:f2:6f:1e: 1c:71:10:f3:d5:28:f4:2a:0d:a1:d4:76:f9:2d:36:29:d2:6b: be:90:b2:ad:67:a3:65:2b:7e:70:fe:6e:e4:71:fe:89:d2:12: 54:c7:47:00:4a:70:41:a9:c0:d2:7f:82:0f:56:93:6c:f6:eb: 23:7d:99:e0:0f:d7:24:d9:96:dd:f3:58:66:dc:3c:87:fb:d9: 02:3e:1b:75:44:27:64:b6:85:77:25:8d:59:71:c8:57:fb:28: 16:76:88:49:ae:0e:bd:61:7e:14:1c:53:00:fa:78:96:17:fc: cb:14:78:87:c7:1c:17:fa:c5:1e:6f:20:ac:95:30:69:dd:55: 34:22:9f:16:c5:bf:6f:00:3e:57:41:70:a4:33:48:84:29:b6: e8:4e:67:4b:81:fb:4e:a0:15:7a:17:df:62:aa:8c:e6:6e:33: 83:f9:f5:a8:ef:d4:e0:5f:e4:3b:3b:7f:52:db:bd:c0:3d:ee: 97:11:71:56 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUR9KkFUJdqM3SROMRUp9V2EEqgRMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0E1OTQ3NDRGMUJFQTJGMDRDNzQzN0FENzcxMzNERDQ0 MjNGMjMwMjAeFw0yNDA0MjMwODU1MDBaFw0yNTA0MjIwOTAwMDBaMDMxMTAvBgNV BAMTKEY4MUY1OEMxRDhCMDhCQUY4MTc1NzA3ODUyRjUwNzlBNEQ3QzQxMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEuwsub+zjLeqNtd5/8IclGwMI Vl76h11qYxX6AMj6XnE7oglcFXY7lhHlK/dyPf4UBb9AWInwnK7FBo/7jcObXz5v pycltKcmnhGEbAtNezLGhSHRgdSvWc3B8BCw+B4aT+msdvdQjEp+UeG+QYmy2vj0 WjNVameb9E6F/6RV3K1WOXkJe1VkyqlPzlCQVWaoTXZMHjNmo8Jf4mlu5XV9Asm2 qMY8HLQlDVrj4w2bnAItqp4m6Pu6QVH9zD9pwj7M1dTbSjqlAHiWzWag8phL/aXv IV3BoIlB5BlNDTLSZhzj7iuxqoeqlvma+24pYoyZ/IDNljcyUHO09U0bj3w3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU+B9Ywdiwi6+BdXB4UvUHmk18QRIwHwYDVR0j BBgwFoAUOllHRPG+ovBMdDetdxM91EI/IwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MDYxNDE2My00Y2E0LTQ5MzYtYmY4Yi04NGQ4YzJkMWYwMmQvMC8zQTU5NDc0NEYx QkVBMkYwNEM3NDM3QUQ3NzEzM0RENDQyM0YyMzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0E1OTQ3NDRGMUJFQTJGMDRDNzQzN0FENzcxMzNERDQ0MjNG MjMwMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQwNjE0MTYzLTRjYTQtNDkzNi1i ZjhiLTg0ZDhjMmQxZjAyZC8wLzMxMzAzMzJlMzEzNDM2MmUzMTM0MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzMTM4MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkpEwDQYJ KoZIhvcNAQELBQADggEBAG0QpUYkxWJOmru/9BEn1p9viBtWS0k5ESKS9UFza4dG HQlhcZJ1BdRmWB0F/wkw0jV8kbMz8rilfyDphp2CV2zgZGSNvPJvHhxxEPPVKPQq DaHUdvktNinSa76Qsq1no2UrfnD+buRx/onSElTHRwBKcEGpwNJ/gg9Wk2z26yN9 meAP1yTZlt3zWGbcPIf72QI+G3VEJ2S2hXcljVlxyFf7KBZ2iEmuDr1hfhQcUwD6 eJYX/MsUeIfHHBf6xR5vIKyVMGndVTQinxbFv28APldBcKQzSIQptuhOZ0uB+06g FXoX32KqjOZuM4P59ajv1OBf5Ds7f1LbvcA97pcRcVY= -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:03 2024 by rpki-client on console-fra.rpki-client.org