$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/3130332e3134372e3234362e302f32342d3234203d3e20313339393732.roa File: 3130332e3134372e3234362e302f32342d3234203d3e20313339393732.roa (raw, json) Hash identifier: fClrGVo7KIbodlsfiTmY+K3veEcIh6A6Yqks/n4Pem0= Subject key identifier: 28:EB:D0:1F:B3:41:00:39:94:C7:6A:81:34:CD:0A:F3:BB:58:AB:91 Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9 Certificate serial: 38BB0C2A7267493EB55C17EAB2793BE83D92411A Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/3130332e3134372e3234362e302f32342d3234203d3e20313339393732.roa Signing time: Sun 06 Oct 2024 08:00:00 +0000 ROA not before: Sun 06 Oct 2024 07:55:00 +0000 ROA not after: Sun 05 Oct 2025 08:00:00 +0000 asID: 139972 IP address blocks: 103.147.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:bb:0c:2a:72:67:49:3e:b5:5c:17:ea:b2:79:3b:e8:3d:92:41:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9 Validity Not Before: Oct 6 07:55:00 2024 GMT Not After : Oct 5 08:00:00 2025 GMT Subject: CN=28EBD01FB341003994C76A8134CD0AF3BB58AB91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:2c:eb:de:d8:f9:54:db:18:da:37:3a:f2:a1: 35:70:6b:be:90:33:56:60:12:3a:29:8a:21:5d:38: 0a:65:7a:1a:99:28:ab:29:fc:94:dd:b3:d1:98:01: 37:e8:6b:47:e2:35:c4:dc:6d:28:ef:2a:0f:c2:16: 5c:70:6f:13:9c:41:1d:62:0b:2c:46:5f:d7:f1:88: 5a:d1:aa:d4:7c:61:26:56:2d:35:07:d5:d8:e1:4b: 87:e7:cf:ef:7f:92:e5:ea:67:e2:b4:e0:b3:e3:f4: 8a:35:4b:19:67:cb:d2:65:be:fc:fc:2c:b4:1d:e0: 02:88:f3:de:bb:32:2f:02:05:48:48:28:fd:32:34: c5:fc:16:4c:92:16:09:01:5b:0b:bf:42:10:be:79: 16:fb:7c:e3:72:95:0b:41:a9:89:6e:94:7f:45:5f: 9f:ca:17:8f:06:ba:0a:e2:5d:68:34:a5:37:7b:00: 66:a2:29:52:6c:d7:14:32:bd:10:79:43:09:4d:9b: 3b:48:01:57:b1:9d:4d:4c:08:05:8a:6b:6d:e4:db: 31:47:6a:ab:58:10:b1:5a:0e:39:34:5d:ae:c2:0c: b9:bf:e9:23:fc:35:d3:ad:15:65:5c:04:71:db:37: bb:c8:9c:de:5f:1b:c7:cb:93:52:46:7b:e4:e5:35: 96:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:EB:D0:1F:B3:41:00:39:94:C7:6A:81:34:CD:0A:F3:BB:58:AB:91 X509v3 Authority Key Identifier: keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/3130332e3134372e3234362e302f32342d3234203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.246.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:d4:b3:b2:74:04:5f:75:34:e0:08:e5:58:d3:fe:fe:f5:8c: 9c:ca:2b:fa:14:28:1c:e3:e1:71:ca:32:25:24:60:68:fb:ca: 47:8c:f6:e6:b2:75:0a:74:cc:da:94:ff:99:df:f7:73:68:88: 9b:85:fe:64:e7:57:e1:3f:e2:4e:07:0e:fb:74:93:cf:1e:ad: 4c:a7:c4:ec:23:b0:5e:38:f5:f0:93:9f:50:5e:88:dd:eb:51: 77:ee:ba:fb:0b:f1:8d:65:b7:47:2d:0e:a7:8b:a6:b6:c7:a8: 95:a9:3f:cf:5c:83:94:e6:1a:ae:64:a4:11:72:16:06:81:a6: 7b:d3:0c:a6:16:82:c7:94:9e:38:a6:cb:20:50:ad:4c:54:01: 2d:2c:c8:5a:c7:41:c0:62:d6:a4:41:4b:54:22:9c:e8:01:b7: 56:ed:ec:ba:3f:e2:ff:17:56:4e:8e:18:47:70:4a:06:c5:a7: cd:d9:3c:c9:aa:fe:e2:7f:58:aa:c3:8f:38:f8:ae:a5:c3:0f: ca:32:8a:af:2c:28:10:0b:84:8e:31:dd:ff:3b:8c:56:70:02: 82:aa:18:ff:db:ee:2f:48:0a:30:df:c7:f6:08:e9:ff:a2:6d: 73:f8:e4:fb:63:6b:2d:e9:dd:05:0e:c2:5d:a1:1b:d4:d2:bc: 85:f6:cb:1f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOLsMKnJnST61XBfqsnk76D2SQRowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRD NzhGOTBGOTAeFw0yNDEwMDYwNzU1MDBaFw0yNTEwMDUwODAwMDBaMDMxMTAvBgNV BAMTKDI4RUJEMDFGQjM0MTAwMzk5NEM3NkE4MTM0Q0QwQUYzQkI1OEFCOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChLOve2PlU2xjaNzryoTVwa76Q M1ZgEjopiiFdOAplehqZKKsp/JTds9GYATfoa0fiNcTcbSjvKg/CFlxwbxOcQR1i CyxGX9fxiFrRqtR8YSZWLTUH1djhS4fnz+9/kuXqZ+K04LPj9Io1Sxlny9Jlvvz8 LLQd4AKI8967Mi8CBUhIKP0yNMX8FkySFgkBWwu/QhC+eRb7fONylQtBqYlulH9F X5/KF48GugriXWg0pTd7AGaiKVJs1xQyvRB5QwlNmztIAVexnU1MCAWKa23k2zFH aqtYELFaDjk0Xa7CDLm/6SP8NdOtFWVcBHHbN7vInN5fG8fLk1JGe+TlNZZVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUKOvQH7NBADmUx2qBNM0K87tYq5EwHwYDVR0j BBgwFoAUaWmzAJZlIkVB0yIGjJ40RMePkPkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWVlYmY3Yy1mZTM4LTQ2YTktODMxMS1lMDUzZmNhNTBkZmQvMC82OTY5QjMwMDk2 NjUyMjQ1NDFEMzIyMDY4QzlFMzQ0NEM3OEY5MEY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRDNzhG OTBGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMxMzAzMzJlMzEzNDM3MmUzMjM0MzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnk/YwDQYJ KoZIhvcNAQELBQADggEBAEvUs7J0BF91NOAI5VjT/v71jJzKK/oUKBzj4XHKMiUk YGj7ykeM9uaydQp0zNqU/5nf93NoiJuF/mTnV+E/4k4HDvt0k88erUynxOwjsF44 9fCTn1BeiN3rUXfuuvsL8Y1lt0ctDqeLprbHqJWpP89cg5TmGq5kpBFyFgaBpnvT DKYWgseUnjimyyBQrUxUAS0syFrHQcBi1qRBS1QinOgBt1bt7Lo/4v8XVk6OGEdw SgbFp83ZPMmq/uJ/WKrDjzj4rqXDD8oyiq8sKBALhI4x3f87jFZwAoKqGP/b7i9I CjDfx/YI6f+ibXP45Ptjay3p3QUOwl2hG9TSvIX2yx8= -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:55 2024 by rpki-client on console-fra.rpki-client.org