$ rpki-client -vvf repo-rpki.idnic.net/repo/516a8ad4-06e6-40c3-98e4-fa93afc4a772/0/3130332e3134362e3138322e302f32332d3234203d3e20313335343635.roa File: 3130332e3134362e3138322e302f32332d3234203d3e20313335343635.roa (raw, json) Hash identifier: rkKkgXIJ/CaQspoksB+cH3AXQpHZt3rYAMcNxuF/JI8= Subject key identifier: B6:67:F4:8B:D2:1E:39:BB:50:79:35:BD:72:01:D5:AB:51:36:01:75 Certificate issuer: /CN=49E141888BC2948405FED00F49F101FAF7483662 Certificate serial: 40584156D82B8926BEA349A2CFBAF892BD0D9DD4 Authority key identifier: 49:E1:41:88:8B:C2:94:84:05:FE:D0:0F:49:F1:01:FA:F7:48:36:62 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49E141888BC2948405FED00F49F101FAF7483662.cer Subject info access: rsync://repo-rpki.idnic.net/repo/516a8ad4-06e6-40c3-98e4-fa93afc4a772/0/3130332e3134362e3138322e302f32332d3234203d3e20313335343635.roa Signing time: Thu 15 Aug 2024 23:39:11 +0000 ROA not before: Thu 15 Aug 2024 23:34:11 +0000 ROA not after: Thu 14 Aug 2025 23:39:11 +0000 asID: 135465 IP address blocks: 103.146.182.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/516a8ad4-06e6-40c3-98e4-fa93afc4a772/0/49E141888BC2948405FED00F49F101FAF7483662.crl rsync://repo-rpki.idnic.net/repo/516a8ad4-06e6-40c3-98e4-fa93afc4a772/0/49E141888BC2948405FED00F49F101FAF7483662.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49E141888BC2948405FED00F49F101FAF7483662.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 16:29:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:58:41:56:d8:2b:89:26:be:a3:49:a2:cf:ba:f8:92:bd:0d:9d:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49E141888BC2948405FED00F49F101FAF7483662 Validity Not Before: Aug 15 23:34:11 2024 GMT Not After : Aug 14 23:39:11 2025 GMT Subject: CN=B667F48BD21E39BB507935BD7201D5AB51360175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0d:d6:49:1f:9c:1c:65:6c:53:74:c8:c9:1e: e5:da:6e:52:fd:67:40:0a:86:45:49:da:c1:17:e0: 5c:92:09:b2:55:20:5e:8a:a9:11:0d:81:9a:e8:88: 56:2d:ed:db:a0:6f:7a:34:c3:fe:1b:bc:9f:f8:b9: d5:88:ff:bb:d7:09:99:4b:84:a8:8b:a6:55:51:f7: 50:94:f3:e7:88:03:49:6f:11:c8:e7:3b:85:43:81: 8d:3e:ad:21:c9:df:1a:52:98:dd:93:47:a9:7d:f9: 9e:8d:0d:13:19:49:04:d8:1c:cb:31:fb:53:a1:71: 68:b1:a0:02:58:71:d8:44:9c:61:13:38:d8:df:ce: 12:ec:7a:71:dd:4d:c1:c6:a3:95:1a:fe:cb:d5:33: 70:60:c8:97:54:a7:c9:0f:74:51:4f:15:2e:d7:fb: 3d:18:67:29:d5:7b:a6:a4:a6:15:69:95:71:b2:b5: 6c:d4:de:92:73:d4:c6:15:35:7a:86:5a:e4:8c:26: ed:4c:b6:9c:1a:63:73:12:ed:c7:a3:3c:2a:ef:58: 1a:ad:bf:4e:a0:5a:ac:5c:32:10:ce:d6:08:a9:38: ad:2d:1f:5d:49:bd:3a:03:68:57:0f:5f:16:27:1c: f9:ba:c5:93:40:71:08:bf:a3:4d:d7:8f:4a:49:8a: 85:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:67:F4:8B:D2:1E:39:BB:50:79:35:BD:72:01:D5:AB:51:36:01:75 X509v3 Authority Key Identifier: keyid:49:E1:41:88:8B:C2:94:84:05:FE:D0:0F:49:F1:01:FA:F7:48:36:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/516a8ad4-06e6-40c3-98e4-fa93afc4a772/0/49E141888BC2948405FED00F49F101FAF7483662.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/49E141888BC2948405FED00F49F101FAF7483662.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/516a8ad4-06e6-40c3-98e4-fa93afc4a772/0/3130332e3134362e3138322e302f32332d3234203d3e20313335343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.182.0/23 Signature Algorithm: sha256WithRSAEncryption c3:ec:6b:a4:69:45:1d:9c:b6:31:2b:e5:ae:b5:29:96:8d:d9: 54:aa:4e:b1:77:6e:93:78:7e:7e:07:1c:95:29:d8:24:b2:5a: cf:66:3e:6b:9f:3e:5c:c7:32:7a:52:d0:1a:f6:e8:e2:ed:c3: b2:4e:37:82:0b:89:3a:a7:5f:d3:19:82:61:e5:b1:65:4c:61: 3b:93:8a:0d:81:e7:b6:d7:60:91:ef:94:05:9c:c0:68:74:23: a7:3e:c6:b6:8f:7d:9f:8f:e6:d8:b8:cb:e6:7b:1d:61:84:70: 0d:97:2d:a5:44:85:8b:51:1e:70:3d:c1:31:29:96:c7:01:d6: 70:e7:e8:b0:40:a2:c0:4e:32:76:6c:6f:32:71:f1:f0:b7:d4: e9:0a:60:16:ec:96:12:56:53:39:f4:30:c4:a4:0c:32:73:2a: c1:c6:67:20:c2:1c:a2:71:0c:6d:49:ea:e8:89:5e:54:3d:64: 0a:97:78:de:d8:23:72:42:2c:0a:4a:4f:a7:f6:ef:66:d7:80: f4:dd:13:02:2c:b5:b9:55:b6:71:b4:e3:71:d6:82:f7:82:47: 22:9e:64:25:1d:8b:25:34:92:ba:8d:9c:56:4f:cd:7e:38:8f: 5c:c8:e1:b6:39:27:33:a6:d0:c8:de:ab:5d:3b:9b:d0:a4:3f: ec:57:bb:27 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQFhBVtgriSa+o0miz7r4kr0NndQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDlFMTQxODg4QkMyOTQ4NDA1RkVEMDBGNDlGMTAxRkFG NzQ4MzY2MjAeFw0yNDA4MTUyMzM0MTFaFw0yNTA4MTQyMzM5MTFaMDMxMTAvBgNV BAMTKEI2NjdGNDhCRDIxRTM5QkI1MDc5MzVCRDcyMDFENUFCNTEzNjAxNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwDdZJH5wcZWxTdMjJHuXablL9 Z0AKhkVJ2sEX4FySCbJVIF6KqRENgZroiFYt7dugb3o0w/4bvJ/4udWI/7vXCZlL hKiLplVR91CU8+eIA0lvEcjnO4VDgY0+rSHJ3xpSmN2TR6l9+Z6NDRMZSQTYHMsx +1OhcWixoAJYcdhEnGETONjfzhLsenHdTcHGo5Ua/svVM3BgyJdUp8kPdFFPFS7X +z0YZynVe6akphVplXGytWzU3pJz1MYVNXqGWuSMJu1MtpwaY3MS7cejPCrvWBqt v06gWqxcMhDO1gipOK0tH11JvToDaFcPXxYnHPm6xZNAcQi/o03Xj0pJioVbAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUtmf0i9IeObtQeTW9cgHVq1E2AXUwHwYDVR0j BBgwFoAUSeFBiIvClIQF/tAPSfEB+vdINmIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTZhOGFkNC0wNmU2LTQwYzMtOThlNC1mYTkzYWZjNGE3NzIvMC80OUUxNDE4ODhC QzI5NDg0MDVGRUQwMEY0OUYxMDFGQUY3NDgzNjYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDlFMTQxODg4QkMyOTQ4NDA1RkVEMDBGNDlGMTAxRkFGNzQ4 MzY2Mi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxNmE4YWQ0LTA2ZTYtNDBjMy05 OGU0LWZhOTNhZmM0YTc3Mi8wLzMxMzAzMzJlMzEzNDM2MmUzMTM4MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzUzNDM2MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnkrYwDQYJ KoZIhvcNAQELBQADggEBAMPsa6RpRR2ctjEr5a61KZaN2VSqTrF3bpN4fn4HHJUp 2CSyWs9mPmufPlzHMnpS0Br26OLtw7JON4ILiTqnX9MZgmHlsWVMYTuTig2B57bX YJHvlAWcwGh0I6c+xraPfZ+P5ti4y+Z7HWGEcA2XLaVEhYtRHnA9wTEplscB1nDn 6LBAosBOMnZsbzJx8fC31OkKYBbslhJWUzn0MMSkDDJzKsHGZyDCHKJxDG1J6uiJ XlQ9ZAqXeN7YI3JCLApKT6f272bXgPTdEwIstblVtnG043HWgveCRyKeZCUdiyU0 krqNnFZPzX44j1zI4bY5JzOm0Mjeq107m9CkP+xXuyc= -----END CERTIFICATE-----Generated at Mon Nov 25 17:55:28 2024 by rpki-client on console-fra.rpki-client.org