$ rpki-client -vvf repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/3130332e3134362e3139362e302f32332d3233203d3e20313339393431.roa File: 3130332e3134362e3139362e302f32332d3233203d3e20313339393431.roa (raw, json) Hash identifier: lIIq1aJkVgn61JdaqWdkMl1np7mlcmVrzeimT0s2k+E= Subject key identifier: 41:E1:19:A4:54:7D:99:5C:BB:94:96:28:07:F8:8A:35:17:F6:28:66 Certificate issuer: /CN=7008868799E77C42E437F0D7ACCF683CF5B2AA4E Certificate serial: 022F3842DF25306B396B4A92F53FBF8BF79BD13E Authority key identifier: 70:08:86:87:99:E7:7C:42:E4:37:F0:D7:AC:CF:68:3C:F5:B2:AA:4E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/3130332e3134362e3139362e302f32332d3233203d3e20313339393431.roa Signing time: Fri 13 Sep 2024 05:00:00 +0000 ROA not before: Fri 13 Sep 2024 04:55:00 +0000 ROA not after: Fri 12 Sep 2025 05:00:00 +0000 asID: 139941 IP address blocks: 103.146.196.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.crl rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 15:45:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:2f:38:42:df:25:30:6b:39:6b:4a:92:f5:3f:bf:8b:f7:9b:d1:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7008868799E77C42E437F0D7ACCF683CF5B2AA4E Validity Not Before: Sep 13 04:55:00 2024 GMT Not After : Sep 12 05:00:00 2025 GMT Subject: CN=41E119A4547D995CBB94962807F88A3517F62866 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:40:6d:d4:d4:25:95:67:16:49:18:67:89:8c: c6:6a:70:78:90:39:59:6e:7d:3a:d5:23:f0:56:60: 26:31:55:f6:64:77:86:3e:42:10:55:89:c0:ac:b9: aa:36:2c:72:2f:4c:68:a8:d4:1c:19:2d:ef:0a:7a: a6:a7:d5:5f:d3:33:72:e6:e9:f5:a1:72:d0:6d:b8: 62:e3:73:35:ec:c5:9a:86:18:89:93:f6:be:cd:79: 2d:f5:67:d3:ab:5b:41:bb:fe:1f:bd:c0:6c:2a:5e: 16:8e:8f:95:76:59:5c:60:12:41:01:0c:4b:f7:68: 12:6a:ab:1e:d9:7c:6c:97:4d:6a:dc:32:1f:54:eb: 73:54:7e:32:81:a1:f2:16:d7:99:0e:2c:28:1c:b1: 9f:d0:5b:76:d3:54:03:a3:14:4c:cb:14:7b:54:3d: 88:2a:5f:7a:3b:8f:63:ab:73:cc:9d:6d:f1:3f:cd: 90:d6:fc:5f:8b:4e:6d:be:db:24:2b:53:dd:70:53: 1f:8d:2a:ab:94:9f:55:e7:7c:11:8f:03:ae:14:49: 01:c0:53:f4:6b:65:f1:4e:18:c9:41:ce:85:e1:6e: 82:5f:f8:77:a2:1c:e0:00:24:d6:f8:fe:22:2e:1a: 51:79:89:f8:8d:d9:aa:2a:aa:89:ef:c7:45:b8:be: a9:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:E1:19:A4:54:7D:99:5C:BB:94:96:28:07:F8:8A:35:17:F6:28:66 X509v3 Authority Key Identifier: keyid:70:08:86:87:99:E7:7C:42:E4:37:F0:D7:AC:CF:68:3C:F5:B2:AA:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/3130332e3134362e3139362e302f32332d3233203d3e20313339393431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.196.0/23 Signature Algorithm: sha256WithRSAEncryption 37:2f:82:4a:d1:05:ee:99:b8:ab:32:93:67:e1:24:6f:23:c9: af:a9:30:37:03:82:ad:1d:cc:2e:e9:bb:4c:63:56:b6:a5:c6: 38:c2:3a:97:60:34:82:99:5e:2f:84:56:1c:6f:e7:5b:36:43: f6:c9:6b:83:eb:8e:33:4b:be:66:d3:d1:8c:e0:a7:c9:15:03: 94:88:cd:88:2a:b7:c3:81:e8:32:0e:7d:32:a0:e7:8d:18:7b: 2d:56:1c:e3:66:47:c5:f0:f2:5f:21:ba:d5:bd:84:ce:f5:0a: a7:9e:5b:14:94:7f:6d:d9:27:4c:61:c0:75:69:4a:67:0f:3e: 59:4d:4c:6e:c0:1d:67:fb:23:8a:46:a9:99:c6:bf:3a:60:68: fd:0e:09:d9:7d:3e:6a:ab:9e:a9:66:ef:ff:73:b3:a3:70:ab: c3:01:ea:e6:ac:e2:be:f4:9c:42:83:86:21:ad:cc:10:a0:72: 64:4d:f4:15:6f:db:4b:26:04:51:eb:c1:78:d5:8a:50:9d:d8: b2:6c:40:fa:0c:c9:96:d2:b6:34:11:a1:6c:19:1b:e4:81:29: 19:b2:14:b2:a0:3e:cc:ee:3c:5d:ed:19:3d:08:92:ec:5e:4e: fe:0c:66:68:e7:d8:59:97:9c:99:dd:90:53:a9:e6:a7:e4:93: 01:af:4d:53 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAi84Qt8lMGs5a0qS9T+/i/eb0T4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzAwODg2ODc5OUU3N0M0MkU0MzdGMEQ3QUNDRjY4M0NG NUIyQUE0RTAeFw0yNDA5MTMwNDU1MDBaFw0yNTA5MTIwNTAwMDBaMDMxMTAvBgNV BAMTKDQxRTExOUE0NTQ3RDk5NUNCQjk0OTYyODA3Rjg4QTM1MTdGNjI4NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVQG3U1CWVZxZJGGeJjMZqcHiQ OVlufTrVI/BWYCYxVfZkd4Y+QhBVicCsuao2LHIvTGio1BwZLe8Keqan1V/TM3Lm 6fWhctBtuGLjczXsxZqGGImT9r7NeS31Z9OrW0G7/h+9wGwqXhaOj5V2WVxgEkEB DEv3aBJqqx7ZfGyXTWrcMh9U63NUfjKBofIW15kOLCgcsZ/QW3bTVAOjFEzLFHtU PYgqX3o7j2Orc8ydbfE/zZDW/F+LTm2+2yQrU91wUx+NKquUn1XnfBGPA64USQHA U/RrZfFOGMlBzoXhboJf+HeiHOAAJNb4/iIuGlF5ifiN2aoqqonvx0W4vqmpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUQeEZpFR9mVy7lJYoB/iKNRf2KGYwHwYDVR0j BBgwFoAUcAiGh5nnfELkN/DXrM9oPPWyqk4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MzUwNDhjNi04Y2NkLTQ2M2QtYWQzNC1hZTc0Mjg2NDdhOWMvMC83MDA4ODY4Nzk5 RTc3QzQyRTQzN0YwRDdBQ0NGNjgzQ0Y1QjJBQTRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzAwODg2ODc5OUU3N0M0MkU0MzdGMEQ3QUNDRjY4M0NGNUIy QUE0RS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzNTA0OGM2LThjY2QtNDYzZC1h ZDM0LWFlNzQyODY0N2E5Yy8wLzMxMzAzMzJlMzEzNDM2MmUzMTM5MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzkzOTM0MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnksQwDQYJ KoZIhvcNAQELBQADggEBADcvgkrRBe6ZuKsyk2fhJG8jya+pMDcDgq0dzC7pu0xj VralxjjCOpdgNIKZXi+EVhxv51s2Q/bJa4PrjjNLvmbT0Yzgp8kVA5SIzYgqt8OB 6DIOfTKg540Yey1WHONmR8Xw8l8hutW9hM71CqeeWxSUf23ZJ0xhwHVpSmcPPllN TG7AHWf7I4pGqZnGvzpgaP0OCdl9Pmqrnqlm7/9zs6Nwq8MB6uas4r70nEKDhiGt zBCgcmRN9BVv20smBFHrwXjVilCd2LJsQPoMyZbStjQRoWwZG+SBKRmyFLKgPszu PF3tGT0IkuxeTv4MZmjn2FmXnJndkFOp5qfkkwGvTVM= -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:51 2024 by rpki-client on console-fra.rpki-client.org