$ rpki-client -vvf repo-rpki.idnic.net/repo/c6c570ef-6efd-4f97-bf31-968126ab57c0/0/3130332e3134372e38312e302f32342d3234203d3e20313339393533.roa File: 3130332e3134372e38312e302f32342d3234203d3e20313339393533.roa (raw, json) Hash identifier: Sh2ahHo2vx0VefU0fIGxJdD6J9/Blbf3sv24iCZWiw4= Subject key identifier: 2A:D5:25:42:C1:64:F2:8A:E9:0F:CE:37:F6:DB:6D:3A:FB:0B:AD:4C Certificate issuer: /CN=A3EFDDDAD526EFA3F2821E9E6EC6E747BB5B1246 Certificate serial: 105208D42BE5D36C6C37A7EB3EA351653E1AF85A Authority key identifier: A3:EF:DD:DA:D5:26:EF:A3:F2:82:1E:9E:6E:C6:E7:47:BB:5B:12:46 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A3EFDDDAD526EFA3F2821E9E6EC6E747BB5B1246.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c6c570ef-6efd-4f97-bf31-968126ab57c0/0/3130332e3134372e38312e302f32342d3234203d3e20313339393533.roa Signing time: Wed 30 Oct 2024 03:00:00 +0000 ROA not before: Wed 30 Oct 2024 02:55:00 +0000 ROA not after: Wed 29 Oct 2025 03:00:00 +0000 asID: 139953 IP address blocks: 103.147.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c6c570ef-6efd-4f97-bf31-968126ab57c0/0/A3EFDDDAD526EFA3F2821E9E6EC6E747BB5B1246.crl rsync://repo-rpki.idnic.net/repo/c6c570ef-6efd-4f97-bf31-968126ab57c0/0/A3EFDDDAD526EFA3F2821E9E6EC6E747BB5B1246.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A3EFDDDAD526EFA3F2821E9E6EC6E747BB5B1246.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:52:08:d4:2b:e5:d3:6c:6c:37:a7:eb:3e:a3:51:65:3e:1a:f8:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A3EFDDDAD526EFA3F2821E9E6EC6E747BB5B1246 Validity Not Before: Oct 30 02:55:00 2024 GMT Not After : Oct 29 03:00:00 2025 GMT Subject: CN=2AD52542C164F28AE90FCE37F6DB6D3AFB0BAD4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:da:44:da:1b:da:d3:89:ac:a9:68:85:8f:63: 9e:34:61:cc:19:d2:53:91:c7:6f:a0:82:c0:65:68: 5f:cf:12:02:6f:87:34:02:6a:18:f5:58:28:61:94: 51:d5:7b:78:bf:69:d6:90:f5:58:d5:f5:e6:89:5f: c2:a6:2f:bb:37:d1:f8:37:3d:0d:fb:48:1b:7a:14: d3:69:d4:20:bb:7b:b5:12:e4:5d:0a:9d:24:34:83: 23:d5:a8:28:96:43:f3:3b:ab:dd:15:91:83:37:0c: 78:56:51:5e:69:31:87:dd:34:92:e4:34:f6:c7:a8: 0d:a9:4c:6a:3f:3c:e7:fe:40:d5:c0:68:32:66:f3: 5b:8e:c0:62:51:ff:87:47:84:dd:c0:d3:6c:7e:74: 30:39:13:d0:fc:d3:76:5f:25:f3:9c:b4:5f:17:78: 8d:df:c1:16:d4:13:f8:f9:f7:f2:3f:07:3c:25:6a: f4:39:d8:b0:e5:a1:58:5e:ca:6f:a0:a4:1c:7c:41: 3a:7d:06:d7:87:71:93:b9:56:8c:dc:3d:bc:34:aa: 94:85:a9:02:2f:79:81:0b:b5:d9:b5:d5:ca:b1:41: fa:d8:94:eb:ce:6d:d3:b3:d1:67:af:03:07:9a:ba: 27:f1:17:52:0f:4e:59:70:9d:b6:a2:82:58:7c:32: 33:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:D5:25:42:C1:64:F2:8A:E9:0F:CE:37:F6:DB:6D:3A:FB:0B:AD:4C X509v3 Authority Key Identifier: keyid:A3:EF:DD:DA:D5:26:EF:A3:F2:82:1E:9E:6E:C6:E7:47:BB:5B:12:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c6c570ef-6efd-4f97-bf31-968126ab57c0/0/A3EFDDDAD526EFA3F2821E9E6EC6E747BB5B1246.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A3EFDDDAD526EFA3F2821E9E6EC6E747BB5B1246.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c6c570ef-6efd-4f97-bf31-968126ab57c0/0/3130332e3134372e38312e302f32342d3234203d3e20313339393533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.81.0/24 Signature Algorithm: sha256WithRSAEncryption 50:52:30:a4:26:2a:f7:dc:1a:49:6c:b7:e4:67:bf:ed:99:6a: f3:fa:09:9a:13:3d:4c:89:07:03:fc:d6:47:9d:09:0c:7d:83: 13:5d:4a:ec:49:d5:a0:dc:6d:7a:1f:5c:b1:6f:eb:15:c9:ef: 61:69:90:84:09:09:74:38:4a:00:79:8a:9b:5e:35:67:e3:30: 27:2b:59:f5:bd:9a:2d:95:59:9b:e2:d8:b9:03:05:e7:cb:79: 03:85:48:a2:18:65:6d:de:6d:af:36:07:0c:31:63:e7:0e:f2: 10:80:06:b2:dc:dc:0c:eb:df:67:c2:b2:04:6b:f8:1e:0d:c0: 0a:ca:7c:65:84:2a:6a:32:47:7b:f9:f8:89:ab:f5:d1:ca:e4: cd:d0:73:f3:ee:ba:2b:54:5d:56:21:8b:b2:be:d3:0f:63:c2: 98:19:8b:5c:ff:5e:50:08:5a:5c:8c:71:b5:8d:ef:73:04:e9: bb:1a:e5:54:1d:52:03:49:fb:03:93:c7:33:04:8b:f1:d4:bf: 66:df:2d:37:5c:fd:b6:7d:48:e9:db:0e:e0:e3:29:a7:86:d1: 2e:fc:91:3a:b0:46:46:c5:c7:bf:b6:45:4d:13:a9:8f:06:fa: 62:a5:e9:c5:51:d4:c2:d7:4e:35:1d:44:b4:40:52:d0:cc:df: c1:84:9b:83 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUEFII1Cvl02xsN6frPqNRZT4a+FowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTNFRkREREFENTI2RUZBM0YyODIxRTlFNkVDNkU3NDdC QjVCMTI0NjAeFw0yNDEwMzAwMjU1MDBaFw0yNTEwMjkwMzAwMDBaMDMxMTAvBgNV BAMTKDJBRDUyNTQyQzE2NEYyOEFFOTBGQ0UzN0Y2REI2RDNBRkIwQkFENEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDo2kTaG9rTiaypaIWPY540YcwZ 0lORx2+ggsBlaF/PEgJvhzQCahj1WChhlFHVe3i/adaQ9VjV9eaJX8KmL7s30fg3 PQ37SBt6FNNp1CC7e7US5F0KnSQ0gyPVqCiWQ/M7q90VkYM3DHhWUV5pMYfdNJLk NPbHqA2pTGo/POf+QNXAaDJm81uOwGJR/4dHhN3A02x+dDA5E9D803ZfJfOctF8X eI3fwRbUE/j59/I/BzwlavQ52LDloVheym+gpBx8QTp9BteHcZO5VozcPbw0qpSF qQIveYELtdm11cqxQfrYlOvObdOz0WevAweauifxF1IPTllwnbaiglh8MjOdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKtUlQsFk8orpD8439tttOvsLrUwwHwYDVR0j BBgwFoAUo+/d2tUm76Pygh6ebsbnR7tbEkYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NmM1NzBlZi02ZWZkLTRmOTctYmYzMS05NjgxMjZhYjU3YzAvMC9BM0VGREREQUQ1 MjZFRkEzRjI4MjFFOUU2RUM2RTc0N0JCNUIxMjQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTNFRkREREFENTI2RUZBM0YyODIxRTlFNkVDNkU3NDdCQjVC MTI0Ni5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2YzU3MGVmLTZlZmQtNGY5Ny1i ZjMxLTk2ODEyNmFiNTdjMC8wLzMxMzAzMzJlMzEzNDM3MmUzODMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNTMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5NRMA0GCSqG SIb3DQEBCwUAA4IBAQBQUjCkJir33BpJbLfkZ7/tmWrz+gmaEz1MiQcD/NZHnQkM fYMTXUrsSdWg3G16H1yxb+sVye9haZCECQl0OEoAeYqbXjVn4zAnK1n1vZotlVmb 4ti5AwXny3kDhUiiGGVt3m2vNgcMMWPnDvIQgAay3NwM699nwrIEa/geDcAKynxl hCpqMkd7+fiJq/XRyuTN0HPz7rorVF1WIYuyvtMPY8KYGYtc/15QCFpcjHG1je9z BOm7GuVUHVIDSfsDk8czBIvx1L9m3y03XP22fUjp2w7g4ymnhtEu/JE6sEZGxce/ tkVNE6mPBvpipenFUdTC1041HUS0QFLQzN/BhJuD -----END CERTIFICATE-----Generated at Sun Nov 24 09:08:48 2024 by rpki-client on console-fra.rpki-client.org