$ rpki-client -vvf repo-rpki.idnic.net/repo/b6e504c5-d7ba-4fe9-9e56-792dc01a97cb/0/3130332e37352e35322e302f32322d3234203d3e203436303233.roa File: 3130332e37352e35322e302f32322d3234203d3e203436303233.roa (raw, json) Hash identifier: reynj2rdnK/jisos3BLgNO3WmPAN7XuUU4JIx1owC9M= Subject key identifier: 46:54:AD:4E:67:12:04:91:1F:CD:AC:74:7F:FC:8B:DC:19:55:0B:2A Certificate issuer: /CN=154CAF946B4FEF9C2EE0FFA245BBA429C03B4D2A Certificate serial: 04D6DF6D99DD7A98346F7F910E060078420A368A Authority key identifier: 15:4C:AF:94:6B:4F:EF:9C:2E:E0:FF:A2:45:BB:A4:29:C0:3B:4D:2A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154CAF946B4FEF9C2EE0FFA245BBA429C03B4D2A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b6e504c5-d7ba-4fe9-9e56-792dc01a97cb/0/3130332e37352e35322e302f32322d3234203d3e203436303233.roa Signing time: Wed 13 Nov 2024 09:16:11 +0000 ROA not before: Wed 13 Nov 2024 09:11:11 +0000 ROA not after: Wed 12 Nov 2025 09:16:11 +0000 asID: 46023 IP address blocks: 103.75.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b6e504c5-d7ba-4fe9-9e56-792dc01a97cb/0/154CAF946B4FEF9C2EE0FFA245BBA429C03B4D2A.crl rsync://repo-rpki.idnic.net/repo/b6e504c5-d7ba-4fe9-9e56-792dc01a97cb/0/154CAF946B4FEF9C2EE0FFA245BBA429C03B4D2A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154CAF946B4FEF9C2EE0FFA245BBA429C03B4D2A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:d6:df:6d:99:dd:7a:98:34:6f:7f:91:0e:06:00:78:42:0a:36:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=154CAF946B4FEF9C2EE0FFA245BBA429C03B4D2A Validity Not Before: Nov 13 09:11:11 2024 GMT Not After : Nov 12 09:16:11 2025 GMT Subject: CN=4654AD4E671204911FCDAC747FFC8BDC19550B2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:5d:61:c6:7e:03:ca:34:ee:c7:29:72:18:8c: 03:37:43:27:9d:15:f8:4a:2f:ad:60:65:d2:01:e7: 9c:de:36:32:d6:09:a7:86:52:e4:28:da:d7:74:74: 90:a8:09:d9:d2:de:56:54:99:70:0e:bd:f4:18:df: 47:7a:8d:a2:b2:f0:af:c2:44:17:76:fc:3f:b6:e8: da:ed:65:72:f2:1f:71:b9:90:3f:91:3f:b5:a7:64: 7d:cb:ac:5c:43:a3:74:b2:eb:63:15:3a:30:ad:7e: 36:04:89:36:69:e8:23:9e:e8:d2:0c:49:37:43:3c: 53:c3:a7:96:08:11:cf:14:8c:77:a0:25:86:41:ca: 65:fa:fd:17:f4:7b:00:7b:e9:91:35:4a:98:0f:4e: 19:4b:e4:c6:c8:09:b2:15:12:8a:01:06:64:b4:20: a7:30:b1:46:a8:85:7d:09:e8:f1:63:9a:f1:d5:0d: 0c:29:65:e4:e5:ab:97:48:26:c2:99:68:f6:6f:2b: 99:52:69:23:0b:3a:39:fc:b8:4c:3e:68:47:d4:f6: c9:50:13:ba:43:a0:f7:11:ce:84:60:e6:be:50:45: 6d:f3:56:f2:82:72:64:00:15:71:c1:87:3c:75:b4: fd:b9:bf:85:ab:47:13:fc:c8:6b:65:d6:73:9b:f0: ef:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:54:AD:4E:67:12:04:91:1F:CD:AC:74:7F:FC:8B:DC:19:55:0B:2A X509v3 Authority Key Identifier: keyid:15:4C:AF:94:6B:4F:EF:9C:2E:E0:FF:A2:45:BB:A4:29:C0:3B:4D:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b6e504c5-d7ba-4fe9-9e56-792dc01a97cb/0/154CAF946B4FEF9C2EE0FFA245BBA429C03B4D2A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/154CAF946B4FEF9C2EE0FFA245BBA429C03B4D2A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b6e504c5-d7ba-4fe9-9e56-792dc01a97cb/0/3130332e37352e35322e302f32322d3234203d3e203436303233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.75.52.0/22 Signature Algorithm: sha256WithRSAEncryption 2e:d8:37:5e:83:d1:2e:50:5f:33:4e:63:2b:36:c6:7d:d8:a4: b2:6b:c0:76:0d:65:3d:f2:60:82:65:ff:cc:81:4d:9e:7e:72: 6e:a3:50:e3:02:e5:48:8b:86:87:12:0c:2c:2f:7e:9b:01:9b: 4d:41:a7:4e:7a:ef:e1:16:12:d1:50:f0:68:d1:1a:68:13:d2: d0:1a:31:79:72:c0:93:ea:af:bc:ff:6b:f5:d8:ac:e7:55:87: 3c:96:e3:a9:cb:a8:b6:b9:70:4f:74:38:7c:0c:05:20:b1:22: fa:23:f8:31:2b:f4:fa:9d:ef:61:f8:b2:df:78:f2:ea:fe:92: 20:b1:49:18:6e:96:d8:44:2c:ca:db:5d:60:9f:b2:1b:aa:d4: 25:47:1b:d5:c8:5a:3f:05:92:4e:8a:c8:b1:5e:89:b7:2c:75: 6b:e3:dd:e8:36:49:0e:8d:f3:8b:29:d4:05:39:14:c2:c4:d1: 6d:8d:e8:4c:88:a7:d9:14:d0:d9:9b:f4:9f:32:1f:a7:12:a8: 7d:86:04:45:0b:e4:9b:e8:11:8d:70:a7:1b:61:17:db:f4:0b: c9:cb:24:4b:aa:c6:6b:ad:cb:cd:95:b5:92:a7:79:de:00:99: 5c:b6:6d:f0:01:5a:08:64:f5:a7:cd:d0:f8:e7:ff:b7:1b:05: 93:42:14:98 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUBNbfbZndepg0b3+RDgYAeEIKNoowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU0Q0FGOTQ2QjRGRUY5QzJFRTBGRkEyNDVCQkE0MjlD MDNCNEQyQTAeFw0yNDExMTMwOTExMTFaFw0yNTExMTIwOTE2MTFaMDMxMTAvBgNV BAMTKDQ2NTRBRDRFNjcxMjA0OTExRkNEQUM3NDdGRkM4QkRDMTk1NTBCMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0XWHGfgPKNO7HKXIYjAM3Qyed FfhKL61gZdIB55zeNjLWCaeGUuQo2td0dJCoCdnS3lZUmXAOvfQY30d6jaKy8K/C RBd2/D+26NrtZXLyH3G5kD+RP7WnZH3LrFxDo3Sy62MVOjCtfjYEiTZp6COe6NIM STdDPFPDp5YIEc8UjHegJYZBymX6/Rf0ewB76ZE1SpgPThlL5MbICbIVEooBBmS0 IKcwsUaohX0J6PFjmvHVDQwpZeTlq5dIJsKZaPZvK5lSaSMLOjn8uEw+aEfU9slQ E7pDoPcRzoRg5r5QRW3zVvKCcmQAFXHBhzx1tP25v4WrRxP8yGtl1nOb8O9rAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQURlStTmcSBJEfzax0f/yL3BlVCyowHwYDVR0j BBgwFoAUFUyvlGtP75wu4P+iRbukKcA7TSowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NmU1MDRjNS1kN2JhLTRmZTktOWU1Ni03OTJkYzAxYTk3Y2IvMC8xNTRDQUY5NDZC NEZFRjlDMkVFMEZGQTI0NUJCQTQyOUMwM0I0RDJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU0Q0FGOTQ2QjRGRUY5QzJFRTBGRkEyNDVCQkE0MjlDMDNC NEQyQS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I2ZTUwNGM1LWQ3YmEtNGZlOS05 ZTU2LTc5MmRjMDFhOTdjYi8wLzMxMzAzMzJlMzczNTJlMzUzMjJlMzAyZjMyMzIy ZDMyMzQyMDNkM2UyMDM0MzYzMDMyMzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnSzQwDQYJKoZIhvcN AQELBQADggEBAC7YN16D0S5QXzNOYys2xn3YpLJrwHYNZT3yYIJl/8yBTZ5+cm6j UOMC5UiLhocSDCwvfpsBm01Bp0567+EWEtFQ8GjRGmgT0tAaMXlywJPqr7z/a/XY rOdVhzyW46nLqLa5cE90OHwMBSCxIvoj+DEr9Pqd72H4st948ur+kiCxSRhulthE LMrbXWCfshuq1CVHG9XIWj8Fkk6KyLFeibcsdWvj3eg2SQ6N84sp1AU5FMLE0W2N 6EyIp9kU0Nmb9J8yH6cSqH2GBEUL5JvoEY1wpxthF9v0C8nLJEuqxmuty82VtZKn ed4AmVy2bfABWghk9afN0Pjn/7cbBZNCFJg= -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:58 2024 by rpki-client on console-ams.rpki-client.org