$ rpki-client -vvf repo-rpki.idnic.net/repo/4bc8cda5-3483-42b0-b385-fc070716fbcc/0/3130332e34362e342e302f32342d3234203d3e20313530343630.roa File: 3130332e34362e342e302f32342d3234203d3e20313530343630.roa (raw, json) Hash identifier: 70RFcRoz1w22nVDdjd8xwvOHx9oaAPRDsiAFJSjZRVk= Subject key identifier: CF:F9:5D:EB:97:85:D5:91:FA:A3:F8:04:70:5C:7F:B7:CB:AB:0E:62 Certificate issuer: /CN=7D6EDFDB21B8B7E6A75A990A7BECAD85E8BEB953 Certificate serial: 520D6BF9F7D0AB11733DC9C8662754D3FECC951A Authority key identifier: 7D:6E:DF:DB:21:B8:B7:E6:A7:5A:99:0A:7B:EC:AD:85:E8:BE:B9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D6EDFDB21B8B7E6A75A990A7BECAD85E8BEB953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4bc8cda5-3483-42b0-b385-fc070716fbcc/0/3130332e34362e342e302f32342d3234203d3e20313530343630.roa Signing time: Sat 23 Nov 2024 07:02:32 +0000 ROA not before: Sat 23 Nov 2024 06:57:32 +0000 ROA not after: Sat 22 Nov 2025 07:02:32 +0000 asID: 150460 IP address blocks: 103.46.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4bc8cda5-3483-42b0-b385-fc070716fbcc/0/7D6EDFDB21B8B7E6A75A990A7BECAD85E8BEB953.crl rsync://repo-rpki.idnic.net/repo/4bc8cda5-3483-42b0-b385-fc070716fbcc/0/7D6EDFDB21B8B7E6A75A990A7BECAD85E8BEB953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D6EDFDB21B8B7E6A75A990A7BECAD85E8BEB953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 13:38:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:0d:6b:f9:f7:d0:ab:11:73:3d:c9:c8:66:27:54:d3:fe:cc:95:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D6EDFDB21B8B7E6A75A990A7BECAD85E8BEB953 Validity Not Before: Nov 23 06:57:32 2024 GMT Not After : Nov 22 07:02:32 2025 GMT Subject: CN=CFF95DEB9785D591FAA3F804705C7FB7CBAB0E62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7b:70:8a:93:f5:5b:a2:e0:f7:79:40:f5:8a: ef:c6:0b:cc:c6:5d:f1:1c:62:2a:12:f2:9d:67:10: a8:e8:02:a0:67:88:06:16:d2:fa:f2:73:43:85:64: 90:33:5e:d6:a3:2f:30:94:02:1c:61:5f:cb:c0:15: 8e:50:2e:5f:58:86:ed:98:dc:dc:b1:71:7f:9a:9d: ce:0d:25:fb:a3:76:37:9f:2f:a9:9f:b7:54:80:7f: 1a:22:6f:cd:3d:86:08:34:7d:75:c9:3c:22:19:7b: 8e:29:25:65:49:f0:2c:f4:ee:08:d2:e9:bd:bf:e5: d7:09:f5:5c:9d:90:47:c8:6e:00:b6:e8:40:7c:0e: d9:e2:3d:9f:14:19:25:7f:65:ba:c4:b5:a2:b9:50: fa:da:b3:35:d9:61:ec:6a:51:b3:fa:8a:03:9f:46: 8f:b4:71:f9:ae:cf:fd:02:e8:01:e3:03:eb:75:17: ff:88:e6:e9:2b:59:81:1a:98:74:65:76:53:3d:d7: e3:3a:1c:1b:5b:2d:46:a2:08:10:3f:45:f6:f3:1e: 36:af:e3:25:cb:1e:50:90:b1:a9:08:cb:1e:47:13: d2:58:aa:37:29:fb:db:f2:64:73:b1:f4:b4:87:46: ef:35:8e:92:df:28:f1:56:59:f1:ab:34:21:61:fa: 2c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:F9:5D:EB:97:85:D5:91:FA:A3:F8:04:70:5C:7F:B7:CB:AB:0E:62 X509v3 Authority Key Identifier: keyid:7D:6E:DF:DB:21:B8:B7:E6:A7:5A:99:0A:7B:EC:AD:85:E8:BE:B9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4bc8cda5-3483-42b0-b385-fc070716fbcc/0/7D6EDFDB21B8B7E6A75A990A7BECAD85E8BEB953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7D6EDFDB21B8B7E6A75A990A7BECAD85E8BEB953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bc8cda5-3483-42b0-b385-fc070716fbcc/0/3130332e34362e342e302f32342d3234203d3e20313530343630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.46.4.0/24 Signature Algorithm: sha256WithRSAEncryption c1:5c:66:f9:74:3c:07:67:c7:ab:36:3b:a9:e9:30:cf:22:ba: 0f:01:63:74:f4:ef:0d:a2:1a:d0:cf:69:f6:ab:87:d4:af:b0: 7c:9e:ed:58:b1:82:d7:b4:2b:e1:9f:3f:23:3f:65:12:77:ba: 97:79:2b:7e:15:6f:cb:30:75:ac:19:e1:f2:a9:80:60:45:ad: be:7c:f8:52:b0:6e:6c:5d:4b:c7:07:78:b4:d3:b5:0a:d1:ad: 0c:f5:fa:32:b3:95:96:2f:52:07:b2:36:be:6e:dc:1b:02:7a: c6:b0:d9:73:b5:00:1b:cd:cf:78:95:e2:bf:e2:2d:7d:fe:d6: 18:b8:57:35:66:22:ff:80:37:0b:38:a4:4b:1b:1b:dc:e4:d6: 99:36:07:30:ee:e6:18:bc:00:fd:89:17:03:ac:81:9d:6e:f5: 4f:9d:7d:5b:55:56:17:a5:af:6b:74:e5:6d:b6:8f:fb:b8:2c: f8:00:be:56:50:42:e0:33:39:62:08:6f:87:e8:51:79:fb:7c: cf:59:52:9c:90:86:a9:8b:37:b6:b1:6d:d0:c2:e3:03:3e:0a: 59:fb:e1:15:60:f4:7d:0c:95:85:c1:59:63:84:28:21:6f:ac: 5f:88:d9:3f:ca:d7:2b:1c:02:0d:38:d9:91:65:c3:92:66:31: 14:45:74:6f -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUUg1r+ffQqxFzPcnIZidU0/7MlRowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0Q2RURGREIyMUI4QjdFNkE3NUE5OTBBN0JFQ0FEODVF OEJFQjk1MzAeFw0yNDExMjMwNjU3MzJaFw0yNTExMjIwNzAyMzJaMDMxMTAvBgNV BAMTKENGRjk1REVCOTc4NUQ1OTFGQUEzRjgwNDcwNUM3RkI3Q0JBQjBFNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCze3CKk/VbouD3eUD1iu/GC8zG XfEcYioS8p1nEKjoAqBniAYW0vryc0OFZJAzXtajLzCUAhxhX8vAFY5QLl9Yhu2Y 3NyxcX+anc4NJfujdjefL6mft1SAfxoib809hgg0fXXJPCIZe44pJWVJ8Cz07gjS 6b2/5dcJ9VydkEfIbgC26EB8DtniPZ8UGSV/ZbrEtaK5UPraszXZYexqUbP6igOf Ro+0cfmuz/0C6AHjA+t1F/+I5ukrWYEamHRldlM91+M6HBtbLUaiCBA/RfbzHjav 4yXLHlCQsakIyx5HE9JYqjcp+9vyZHOx9LSHRu81jpLfKPFWWfGrNCFh+iy5AgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUz/ld65eF1ZH6o/gEcFx/t8urDmIwHwYDVR0j BBgwFoAUfW7f2yG4t+anWpkKe+ythei+uVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YmM4Y2RhNS0zNDgzLTQyYjAtYjM4NS1mYzA3MDcxNmZiY2MvMC83RDZFREZEQjIx QjhCN0U2QTc1QTk5MEE3QkVDQUQ4NUU4QkVCOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0Q2RURGREIyMUI4QjdFNkE3NUE5OTBBN0JFQ0FEODVFOEJF Qjk1My5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiYzhjZGE1LTM0ODMtNDJiMC1i Mzg1LWZjMDcwNzE2ZmJjYy8wLzMxMzAzMzJlMzQzNjJlMzQyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMTM1MzAzNDM2MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnLgQwDQYJKoZIhvcN AQELBQADggEBAMFcZvl0PAdnx6s2O6npMM8iug8BY3T07w2iGtDPafarh9SvsHye 7Vixgte0K+GfPyM/ZRJ3upd5K34Vb8swdawZ4fKpgGBFrb58+FKwbmxdS8cHeLTT tQrRrQz1+jKzlZYvUgeyNr5u3BsCesaw2XO1ABvNz3iV4r/iLX3+1hi4VzVmIv+A Nws4pEsbG9zk1pk2BzDu5hi8AP2JFwOsgZ1u9U+dfVtVVhelr2t05W22j/u4LPgA vlZQQuAzOWIIb4foUXn7fM9ZUpyQhqmLN7axbdDC4wM+Cln74RVg9H0MlYXBWWOE KCFvrF+I2T/K1yscAg042ZFlw5JmMRRFdG8= -----END CERTIFICATE-----Generated at Mon Nov 25 15:49:31 2024 by rpki-client on console-ams.rpki-client.org