$ rpki-client -vvf repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131362e302f32332d3233203d3e20313431393638.roa File: 3130332e34322e3131362e302f32332d3233203d3e20313431393638.roa (raw, json) Hash identifier: NJkXNIe1eC0Q6FPT+kQdVAOuDq74NAADi93TOIMlX2o= Subject key identifier: 35:AF:3B:5F:11:A4:C2:F6:54:31:22:04:85:F8:4A:C1:ED:06:D2:F4 Certificate issuer: /CN=6F485ADAD2068337FDF8B28FF007BCDC5B4999D8 Certificate serial: 0F42EC1D61DD65BF26DE05DAEC35EA6FECE234BD Authority key identifier: 6F:48:5A:DA:D2:06:83:37:FD:F8:B2:8F:F0:07:BC:DC:5B:49:99:D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131362e302f32332d3233203d3e20313431393638.roa Signing time: Fri 19 Jan 2024 08:53:40 +0000 ROA not before: Fri 19 Jan 2024 08:48:40 +0000 ROA not after: Fri 17 Jan 2025 08:53:40 +0000 asID: 141968 IP address blocks: 103.42.116.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.crl rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:42:ec:1d:61:dd:65:bf:26:de:05:da:ec:35:ea:6f:ec:e2:34:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6F485ADAD2068337FDF8B28FF007BCDC5B4999D8 Validity Not Before: Jan 19 08:48:40 2024 GMT Not After : Jan 17 08:53:40 2025 GMT Subject: CN=35AF3B5F11A4C2F65431220485F84AC1ED06D2F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:46:38:00:b0:d2:37:d7:5c:31:18:86:68:18: 57:dd:58:1d:e3:3f:e8:21:d9:2c:44:8e:34:7d:08: 66:ed:9b:48:17:2d:1e:52:c6:7b:9b:d6:26:49:be: 4d:56:fb:ea:bc:eb:79:5a:56:2a:aa:64:7f:0c:61: 1b:cb:98:d0:f2:db:6d:ef:d7:02:eb:50:a3:fe:9b: 3b:11:86:81:3a:62:50:cc:74:bb:dc:ec:34:dc:b7: 3a:15:0d:4c:17:f6:11:a0:d9:9c:89:4e:58:c3:41: a9:57:14:32:84:05:c5:47:ef:91:45:54:3b:30:08: 17:3a:44:22:72:e7:4f:5f:0b:71:f1:a3:1f:e2:23: 3a:2e:6e:64:d6:4e:58:8f:6b:08:b7:ab:a6:bd:3f: 74:2e:7c:71:ec:f3:dc:26:b8:df:7f:2b:52:73:05: f6:da:df:5a:4b:28:cd:9c:53:98:d9:2a:2c:ce:4e: ef:4e:6c:1e:53:83:9d:f6:b3:38:90:4e:d7:3e:de: 58:96:27:7f:94:6c:26:b2:b1:0f:8b:02:24:15:eb: c7:c4:bb:ad:d1:26:c9:2f:05:77:b0:b3:d2:a6:1e: 1f:ea:58:9d:39:76:04:c4:3c:ed:48:7f:35:32:94: e0:d6:d4:4c:01:b3:57:1a:6d:a6:3a:5e:7c:36:54: f3:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:AF:3B:5F:11:A4:C2:F6:54:31:22:04:85:F8:4A:C1:ED:06:D2:F4 X509v3 Authority Key Identifier: keyid:6F:48:5A:DA:D2:06:83:37:FD:F8:B2:8F:F0:07:BC:DC:5B:49:99:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6F485ADAD2068337FDF8B28FF007BCDC5B4999D8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f58934d-1b00-4489-92ed-1ca6dc4b290f/0/3130332e34322e3131362e302f32332d3233203d3e20313431393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.42.116.0/23 Signature Algorithm: sha256WithRSAEncryption 63:90:d8:c4:ea:90:d7:54:73:70:01:04:f0:f3:2c:7f:d1:dd: e9:f1:d5:f4:1d:33:99:47:44:3e:51:09:f2:f5:8f:0b:60:9f: 62:ca:1f:0f:b2:eb:fd:0d:48:15:32:8b:3c:bc:0e:b3:f7:1e: bd:74:81:e4:df:5a:99:f6:b4:2b:7d:c1:cd:6d:ed:1c:af:5f: 2c:70:7a:e9:a9:f5:fb:f2:1f:45:1b:2b:a3:ab:f8:49:84:59: 98:51:a3:c0:27:85:9b:39:0c:70:65:d6:6c:68:69:4f:3d:40: 46:d5:34:9d:18:e3:56:0a:9f:00:03:96:4a:18:66:b5:f3:49: 8a:6d:00:8d:16:02:7f:6e:24:9b:4f:df:44:29:1f:b1:b2:a4: 2c:b4:1a:0b:d6:75:8b:e4:8a:c7:11:cd:2b:6a:72:01:8f:8d: a4:46:c4:92:b3:9c:60:b6:a9:e8:d5:eb:35:cb:ba:71:ba:5f: e7:0d:14:ca:80:31:69:32:91:e0:79:f1:2d:bc:0f:73:02:f7: f0:f3:c6:98:43:0f:81:25:b8:7a:ed:bd:da:fc:33:2b:60:c6: 8f:4b:ca:c7:fb:9e:ef:64:f5:65:8c:fb:22:db:50:12:73:1d: 71:69:32:b9:85:4c:1b:bc:bc:d8:bc:01:5e:e9:c3:f8:cc:f4: 2c:25:00:c7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUD0LsHWHdZb8m3gXa7DXqb+ziNL0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkY0ODVBREFEMjA2ODMzN0ZERjhCMjhGRjAwN0JDREM1 QjQ5OTlEODAeFw0yNDAxMTkwODQ4NDBaFw0yNTAxMTcwODUzNDBaMDMxMTAvBgNV BAMTKDM1QUYzQjVGMTFBNEMyRjY1NDMxMjIwNDg1Rjg0QUMxRUQwNkQyRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeRjgAsNI311wxGIZoGFfdWB3j P+gh2SxEjjR9CGbtm0gXLR5Sxnub1iZJvk1W++q863laViqqZH8MYRvLmNDy223v 1wLrUKP+mzsRhoE6YlDMdLvc7DTctzoVDUwX9hGg2ZyJTljDQalXFDKEBcVH75FF VDswCBc6RCJy509fC3Hxox/iIzoubmTWTliPawi3q6a9P3QufHHs89wmuN9/K1Jz Bfba31pLKM2cU5jZKizOTu9ObB5Tg532sziQTtc+3liWJ3+UbCaysQ+LAiQV68fE u63RJskvBXews9KmHh/qWJ05dgTEPO1IfzUylODW1EwBs1cabaY6Xnw2VPPVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNa87XxGkwvZUMSIEhfhKwe0G0vQwHwYDVR0j BBgwFoAUb0ha2tIGgzf9+LKP8Ae83FtJmdgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjU4OTM0ZC0xYjAwLTQ0ODktOTJlZC0xY2E2ZGM0YjI5MGYvMC82RjQ4NUFEQUQy MDY4MzM3RkRGOEIyOEZGMDA3QkNEQzVCNDk5OUQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkY0ODVBREFEMjA2ODMzN0ZERjhCMjhGRjAwN0JDREM1QjQ5 OTlEOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNTg5MzRkLTFiMDAtNDQ4OS05 MmVkLTFjYTZkYzRiMjkwZi8wLzMxMzAzMzJlMzQzMjJlMzEzMTM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMxMzkzNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZyp0MA0GCSqG SIb3DQEBCwUAA4IBAQBjkNjE6pDXVHNwAQTw8yx/0d3p8dX0HTOZR0Q+UQny9Y8L YJ9iyh8Psuv9DUgVMos8vA6z9x69dIHk31qZ9rQrfcHNbe0cr18scHrpqfX78h9F Gyujq/hJhFmYUaPAJ4WbOQxwZdZsaGlPPUBG1TSdGONWCp8AA5ZKGGa180mKbQCN FgJ/biSbT99EKR+xsqQstBoL1nWL5IrHEc0ranIBj42kRsSSs5xgtqno1es1y7px ul/nDRTKgDFpMpHgefEtvA9zAvfw88aYQw+BJbh67b3a/DMrYMaPS8rH+57vZPVl jPsi21AScx1xaTK5hUwbvLzYvAFe6cP4zPQsJQDH -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:56 2024 by rpki-client on console-ams.rpki-client.org