$ rpki-client -vvf repo-rpki.idnic.net/repo/6efb90b1-b68f-4463-a1bd-e908c8a1ed1a/0/3130332e3135322e34352e302f32342d3234203d3e20313430343335.roa File: 3130332e3135322e34352e302f32342d3234203d3e20313430343335.roa (raw, json) Hash identifier: vEQ6wd0kAD0nwn4amBmuwuFHasnrppEVMO7HFulc4a4= Subject key identifier: 2F:7C:10:07:B0:A8:C0:AB:4C:43:3F:7E:43:C8:99:ED:49:36:E4:6E Certificate issuer: /CN=FFEFEB2C96B1BED5C5D6D823EE3C6D80698B9FD6 Certificate serial: 7E0F3F3513C310D1C885E03BB91342D3125A11C0 Authority key identifier: FF:EF:EB:2C:96:B1:BE:D5:C5:D6:D8:23:EE:3C:6D:80:69:8B:9F:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FFEFEB2C96B1BED5C5D6D823EE3C6D80698B9FD6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6efb90b1-b68f-4463-a1bd-e908c8a1ed1a/0/3130332e3135322e34352e302f32342d3234203d3e20313430343335.roa Signing time: Thu 14 Mar 2024 05:01:12 +0000 ROA not before: Thu 14 Mar 2024 04:56:12 +0000 ROA not after: Thu 13 Mar 2025 05:01:12 +0000 asID: 140435 IP address blocks: 103.152.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6efb90b1-b68f-4463-a1bd-e908c8a1ed1a/0/FFEFEB2C96B1BED5C5D6D823EE3C6D80698B9FD6.crl rsync://repo-rpki.idnic.net/repo/6efb90b1-b68f-4463-a1bd-e908c8a1ed1a/0/FFEFEB2C96B1BED5C5D6D823EE3C6D80698B9FD6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FFEFEB2C96B1BED5C5D6D823EE3C6D80698B9FD6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:0f:3f:35:13:c3:10:d1:c8:85:e0:3b:b9:13:42:d3:12:5a:11:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FFEFEB2C96B1BED5C5D6D823EE3C6D80698B9FD6 Validity Not Before: Mar 14 04:56:12 2024 GMT Not After : Mar 13 05:01:12 2025 GMT Subject: CN=2F7C1007B0A8C0AB4C433F7E43C899ED4936E46E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e6:1b:72:be:30:c9:a2:17:86:dc:6e:93:ae: 30:d8:e9:d4:c0:54:0a:82:01:7c:ad:14:9a:a9:39: 81:4d:e5:07:bd:66:41:d7:7b:1f:43:a3:a0:f3:6c: a1:8b:cf:4b:b0:57:9a:97:81:7e:71:8c:cb:55:3b: ab:ef:9b:73:6c:78:34:66:08:0a:4d:33:7c:4d:4c: 84:be:ef:a7:9e:86:43:2e:ee:06:95:f7:32:f3:59: ce:f9:fb:1a:9d:c5:cd:58:4f:ed:1c:76:5a:27:a9: ca:cc:c4:e2:63:db:20:f4:9d:48:76:bf:f1:d9:ca: c4:52:9e:1a:e5:bc:37:94:d1:0a:3c:82:e5:cc:22: 4f:f3:dd:87:e5:18:2e:f8:84:1b:a8:88:01:19:1f: 92:0a:9e:eb:00:56:56:23:74:75:7c:2e:63:b9:61: 8d:6e:3f:dd:5a:f9:d7:6d:23:49:3c:e6:20:59:9d: 6e:12:ae:11:c0:e9:36:46:1d:a7:f3:f1:ee:92:51: 84:07:7a:c3:0e:8d:93:79:af:38:61:09:93:e2:65: ed:f3:18:c9:32:47:ba:8e:8b:2d:16:f8:df:d0:5a: 30:61:6a:52:06:25:2b:ba:fa:cd:6e:e1:dd:af:f1: 48:c9:b4:24:6a:a9:60:a0:83:01:13:f8:af:c7:e8: 0a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:7C:10:07:B0:A8:C0:AB:4C:43:3F:7E:43:C8:99:ED:49:36:E4:6E X509v3 Authority Key Identifier: keyid:FF:EF:EB:2C:96:B1:BE:D5:C5:D6:D8:23:EE:3C:6D:80:69:8B:9F:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6efb90b1-b68f-4463-a1bd-e908c8a1ed1a/0/FFEFEB2C96B1BED5C5D6D823EE3C6D80698B9FD6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FFEFEB2C96B1BED5C5D6D823EE3C6D80698B9FD6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6efb90b1-b68f-4463-a1bd-e908c8a1ed1a/0/3130332e3135322e34352e302f32342d3234203d3e20313430343335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.45.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:51:0e:44:ca:d5:db:93:4a:45:c5:40:58:e9:70:c6:f0:ca: 2e:3a:b3:21:55:43:ef:35:85:f1:13:44:e2:ae:d1:3f:cf:d9: a2:e6:d4:4b:33:33:7d:12:a6:43:72:27:38:7a:e5:bc:14:3b: 09:e4:93:46:f8:fa:60:2a:2a:7b:21:27:0e:e7:3f:a4:fb:6d: ba:6c:67:eb:d7:b8:14:e6:92:18:62:c3:c9:04:44:4a:6c:5b: 44:c6:16:61:4d:4d:a4:6a:53:0b:b0:f0:dc:14:85:39:c0:32: 6c:2f:35:26:1a:94:8b:85:8a:a6:3d:7d:a1:7a:8a:32:aa:6e: 87:92:c0:ba:40:e5:05:25:e3:a3:ac:10:20:86:af:91:35:9a: bb:7b:61:58:2c:00:0e:90:7f:d8:eb:10:cf:bb:e2:83:f9:71: e9:69:7d:e9:21:ea:c5:83:f9:22:2a:31:fe:1c:97:44:05:01: ba:cd:07:56:92:c4:e5:c6:11:4d:1d:f2:1f:e5:89:d1:1a:fb: b7:ba:a3:3d:eb:04:df:c7:6a:bf:6e:cb:c9:ca:50:79:e2:72: a2:ef:61:80:62:0b:52:ba:47:36:1e:20:32:f2:91:d1:65:30: 12:90:69:c8:6d:4d:dd:b9:db:dd:93:5f:2a:e3:da:9e:74:cc: ea:c3:e8:2c -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfg8/NRPDENHIheA7uRNC0xJaEcAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkZFRkVCMkM5NkIxQkVENUM1RDZEODIzRUUzQzZEODA2 OThCOUZENjAeFw0yNDAzMTQwNDU2MTJaFw0yNTAzMTMwNTAxMTJaMDMxMTAvBgNV BAMTKDJGN0MxMDA3QjBBOEMwQUI0QzQzM0Y3RTQzQzg5OUVENDkzNkU0NkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE5htyvjDJoheG3G6TrjDY6dTA VAqCAXytFJqpOYFN5Qe9ZkHXex9Do6DzbKGLz0uwV5qXgX5xjMtVO6vvm3NseDRm CApNM3xNTIS+76eehkMu7gaV9zLzWc75+xqdxc1YT+0cdlonqcrMxOJj2yD0nUh2 v/HZysRSnhrlvDeU0Qo8guXMIk/z3YflGC74hBuoiAEZH5IKnusAVlYjdHV8LmO5 YY1uP91a+ddtI0k85iBZnW4SrhHA6TZGHafz8e6SUYQHesMOjZN5rzhhCZPiZe3z GMkyR7qOiy0W+N/QWjBhalIGJSu6+s1u4d2v8UjJtCRqqWCggwET+K/H6ApLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUL3wQB7CowKtMQz9+Q8iZ7Uk25G4wHwYDVR0j BBgwFoAU/+/rLJaxvtXF1tgj7jxtgGmLn9YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZWZiOTBiMS1iNjhmLTQ0NjMtYTFiZC1lOTA4YzhhMWVkMWEvMC9GRkVGRUIyQzk2 QjFCRUQ1QzVENkQ4MjNFRTNDNkQ4MDY5OEI5RkQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkZFRkVCMkM5NkIxQkVENUM1RDZEODIzRUUzQzZEODA2OThC OUZENi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlZmI5MGIxLWI2OGYtNDQ2My1h MWJkLWU5MDhjOGExZWQxYS8wLzMxMzAzMzJlMzEzNTMyMmUzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5gtMA0GCSqG SIb3DQEBCwUAA4IBAQBrUQ5EytXbk0pFxUBY6XDG8MouOrMhVUPvNYXxE0TirtE/ z9mi5tRLMzN9EqZDcic4euW8FDsJ5JNG+PpgKip7IScO5z+k+226bGfr17gU5pIY YsPJBERKbFtExhZhTU2kalMLsPDcFIU5wDJsLzUmGpSLhYqmPX2heooyqm6HksC6 QOUFJeOjrBAghq+RNZq7e2FYLAAOkH/Y6xDPu+KD+XHpaX3pIerFg/kiKjH+HJdE BQG6zQdWksTlxhFNHfIf5YnRGvu3uqM96wTfx2q/bsvJylB54nKi72GAYgtSukc2 HiAy8pHRZTASkGnIbU3dudvdk18q49qedMzqw+gs -----END CERTIFICATE-----Generated at Thu Nov 21 09:07:04 2024 by rpki-client on console-ams.rpki-client.org