$ rpki-client -vvf repo-rpki.idnic.net/repo/cc09e13c-cea0-47ff-9c96-f49b39d43920/0/3130332e3231312e34392e302f32342d3234203d3e203633353035.roa File: 3130332e3231312e34392e302f32342d3234203d3e203633353035.roa (raw, json) Hash identifier: tkXv1KgW0pmENYU/rPV6kOYGymjZiF1JU1QAvIFdMGM= Subject key identifier: 82:C6:34:23:DB:CC:6F:09:80:6F:7A:24:A0:4D:86:FF:41:9A:88:C8 Certificate issuer: /CN=4A6FD7E079F543A5D5FDE4433F7BD53DCE426E5A Certificate serial: 4E6000E8CAD8BB196CFD44CCD7964D85836ADF72 Authority key identifier: 4A:6F:D7:E0:79:F5:43:A5:D5:FD:E4:43:3F:7B:D5:3D:CE:42:6E:5A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A6FD7E079F543A5D5FDE4433F7BD53DCE426E5A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cc09e13c-cea0-47ff-9c96-f49b39d43920/0/3130332e3231312e34392e302f32342d3234203d3e203633353035.roa Signing time: Mon 01 Jul 2024 01:03:13 +0000 ROA not before: Mon 01 Jul 2024 00:58:13 +0000 ROA not after: Mon 30 Jun 2025 01:03:13 +0000 asID: 63505 IP address blocks: 103.211.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cc09e13c-cea0-47ff-9c96-f49b39d43920/0/4A6FD7E079F543A5D5FDE4433F7BD53DCE426E5A.crl rsync://repo-rpki.idnic.net/repo/cc09e13c-cea0-47ff-9c96-f49b39d43920/0/4A6FD7E079F543A5D5FDE4433F7BD53DCE426E5A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A6FD7E079F543A5D5FDE4433F7BD53DCE426E5A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:60:00:e8:ca:d8:bb:19:6c:fd:44:cc:d7:96:4d:85:83:6a:df:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A6FD7E079F543A5D5FDE4433F7BD53DCE426E5A Validity Not Before: Jul 1 00:58:13 2024 GMT Not After : Jun 30 01:03:13 2025 GMT Subject: CN=82C63423DBCC6F09806F7A24A04D86FF419A88C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:1c:2f:66:60:43:e8:cd:bc:d3:a0:3b:44:90: c7:ab:b2:ea:c7:78:4a:c7:07:de:8c:03:5d:db:f0: bc:f0:28:39:38:0c:7c:85:e4:4d:e0:7a:ca:20:c3: 99:11:04:74:8f:32:df:64:91:38:5f:20:fe:16:28: 7f:56:b8:a7:93:b9:21:87:da:a8:b7:cb:d3:4c:36: dd:5e:60:4c:0f:e2:0d:c7:a5:b2:89:ef:f3:2a:0a: e4:c1:c7:43:64:47:73:2b:e0:60:fd:a4:8f:4b:51: 9e:01:ce:ab:51:c1:d8:15:87:af:7e:70:e2:42:ca: cc:71:e0:dd:be:36:57:09:1b:6a:ea:ad:e9:c3:42: fa:05:e5:1f:88:be:f0:ed:b5:64:6d:27:51:34:28: 4c:dd:c1:7e:1d:54:1b:a6:71:02:7e:e2:92:34:cb: 50:0e:05:31:dc:ef:68:97:9f:64:55:27:9c:c1:b8: f3:0f:54:19:c1:1f:09:1d:6f:d6:35:ce:08:91:ca: 15:be:97:a1:b2:c9:63:b7:08:ab:34:de:b4:3e:b2: 89:5d:d3:62:a9:a9:cc:6a:7f:f3:81:23:b7:68:2f: 5d:f4:08:cf:e3:e9:7c:c2:75:fb:9e:6d:d6:db:ba: de:ac:f8:24:02:b7:57:9c:1f:66:ea:e3:0d:ea:fb: be:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:C6:34:23:DB:CC:6F:09:80:6F:7A:24:A0:4D:86:FF:41:9A:88:C8 X509v3 Authority Key Identifier: keyid:4A:6F:D7:E0:79:F5:43:A5:D5:FD:E4:43:3F:7B:D5:3D:CE:42:6E:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cc09e13c-cea0-47ff-9c96-f49b39d43920/0/4A6FD7E079F543A5D5FDE4433F7BD53DCE426E5A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A6FD7E079F543A5D5FDE4433F7BD53DCE426E5A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cc09e13c-cea0-47ff-9c96-f49b39d43920/0/3130332e3231312e34392e302f32342d3234203d3e203633353035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.211.49.0/24 Signature Algorithm: sha256WithRSAEncryption 46:97:6f:5e:a1:81:8c:7d:f5:b0:5a:9e:b2:c3:7e:40:45:02: 1f:f0:0e:39:1b:22:10:7e:cc:11:15:f6:9c:a7:69:88:6b:12: 44:8d:87:c9:92:50:ab:2b:f7:ca:04:b6:d2:b6:b4:8c:7e:be: 01:b2:fc:10:a0:58:cc:7a:73:1e:63:ba:87:34:85:74:46:b2: c1:3c:9d:44:67:c3:8e:b1:ee:69:49:19:2b:a0:b9:90:03:cb: ef:f7:69:2f:5f:17:fb:d0:28:7f:e6:61:e2:d1:a6:91:80:8c: 79:93:3a:8d:72:bf:fa:7c:b8:c5:e1:c7:c2:54:da:af:a5:c4: cf:86:9d:3d:3a:5a:61:9c:a6:55:8b:33:ee:4b:47:bd:c2:a0: 60:46:13:d2:b3:f0:0e:a3:ee:28:2e:e4:13:79:e2:3b:33:04: e3:c0:76:0e:a5:c5:46:04:01:d5:09:38:8a:70:f6:74:43:c9: 77:a3:ac:8d:14:7d:8d:0a:32:55:d9:9a:6c:5b:66:bc:c2:5a: b5:f2:ae:8b:98:0d:1d:2f:f5:fe:49:94:be:3a:80:43:ab:a9: bf:0e:56:a4:9c:6f:17:d5:32:b6:04:28:ff:17:bc:ec:ad:09: ab:74:32:7b:b3:39:66:38:d4:db:07:38:13:1b:3b:e5:47:a8: 52:35:45:93 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTmAA6MrYuxls/UTM15ZNhYNq33IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEE2RkQ3RTA3OUY1NDNBNUQ1RkRFNDQzM0Y3QkQ1M0RD RTQyNkU1QTAeFw0yNDA3MDEwMDU4MTNaFw0yNTA2MzAwMTAzMTNaMDMxMTAvBgNV BAMTKDgyQzYzNDIzREJDQzZGMDk4MDZGN0EyNEEwNEQ4NkZGNDE5QTg4QzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEHC9mYEPozbzToDtEkMersurH eErHB96MA13b8LzwKDk4DHyF5E3gesogw5kRBHSPMt9kkThfIP4WKH9WuKeTuSGH 2qi3y9NMNt1eYEwP4g3HpbKJ7/MqCuTBx0NkR3Mr4GD9pI9LUZ4BzqtRwdgVh69+ cOJCysxx4N2+NlcJG2rqrenDQvoF5R+IvvDttWRtJ1E0KEzdwX4dVBumcQJ+4pI0 y1AOBTHc72iXn2RVJ5zBuPMPVBnBHwkdb9Y1zgiRyhW+l6GyyWO3CKs03rQ+sold 02Kpqcxqf/OBI7doL130CM/j6XzCdfuebdbbut6s+CQCt1ecH2bq4w3q+743AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUgsY0I9vMbwmAb3okoE2G/0GaiMgwHwYDVR0j BBgwFoAUSm/X4Hn1Q6XV/eRDP3vVPc5CblowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YzA5ZTEzYy1jZWEwLTQ3ZmYtOWM5Ni1mNDliMzlkNDM5MjAvMC80QTZGRDdFMDc5 RjU0M0E1RDVGREU0NDMzRjdCRDUzRENFNDI2RTVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEE2RkQ3RTA3OUY1NDNBNUQ1RkRFNDQzM0Y3QkQ1M0RDRTQy NkU1QS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjMDllMTNjLWNlYTAtNDdmZi05 Yzk2LWY0OWIzOWQ0MzkyMC8wLzMxMzAzMzJlMzIzMTMxMmUzNDM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM1MzAzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGfTMTANBgkqhkiG 9w0BAQsFAAOCAQEARpdvXqGBjH31sFqessN+QEUCH/AOORsiEH7MERX2nKdpiGsS RI2HyZJQqyv3ygS20ra0jH6+AbL8EKBYzHpzHmO6hzSFdEaywTydRGfDjrHuaUkZ K6C5kAPL7/dpL18X+9Aof+Zh4tGmkYCMeZM6jXK/+ny4xeHHwlTar6XEz4adPTpa YZymVYsz7ktHvcKgYEYT0rPwDqPuKC7kE3niOzME48B2DqXFRgQB1Qk4inD2dEPJ d6OsjRR9jQoyVdmabFtmvMJatfKui5gNHS/1/kmUvjqAQ6upvw5WpJxvF9UytgQo /xe87K0Jq3Qye7M5ZjjU2wc4Exs75UeoUjVFkw== -----END CERTIFICATE-----Generated at Thu Nov 21 05:34:48 2024 by rpki-client on console-ams.rpki-client.org