$ rpki-client -vvf repo-rpki.idnic.net/repo/e543241b-cfd1-4cbb-9219-c7a36237c148/0/3130332e34362e3138362e302f32332d3234203d3e20313530343632.roa File: 3130332e34362e3138362e302f32332d3234203d3e20313530343632.roa (raw, json) Hash identifier: JQFEqRZpKjpbIh5DULGVzPqKV88EB+jfioEL78re/oc= Subject key identifier: 9B:70:5C:F0:9E:42:40:83:F0:11:97:97:0A:36:82:C0:FE:02:84:95 Certificate issuer: /CN=22504F83E378CE066AD31D32EB24280CB0F6E560 Certificate serial: 24B88B815AFB1F319CDA62FECB1903CB9FF55EFC Authority key identifier: 22:50:4F:83:E3:78:CE:06:6A:D3:1D:32:EB:24:28:0C:B0:F6:E5:60 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/22504F83E378CE066AD31D32EB24280CB0F6E560.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e543241b-cfd1-4cbb-9219-c7a36237c148/0/3130332e34362e3138362e302f32332d3234203d3e20313530343632.roa Signing time: Tue 15 Oct 2024 04:02:24 +0000 ROA not before: Tue 15 Oct 2024 03:57:24 +0000 ROA not after: Tue 14 Oct 2025 04:02:24 +0000 asID: 150462 IP address blocks: 103.46.186.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e543241b-cfd1-4cbb-9219-c7a36237c148/0/22504F83E378CE066AD31D32EB24280CB0F6E560.crl rsync://repo-rpki.idnic.net/repo/e543241b-cfd1-4cbb-9219-c7a36237c148/0/22504F83E378CE066AD31D32EB24280CB0F6E560.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/22504F83E378CE066AD31D32EB24280CB0F6E560.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:21:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:b8:8b:81:5a:fb:1f:31:9c:da:62:fe:cb:19:03:cb:9f:f5:5e:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22504F83E378CE066AD31D32EB24280CB0F6E560 Validity Not Before: Oct 15 03:57:24 2024 GMT Not After : Oct 14 04:02:24 2025 GMT Subject: CN=9B705CF09E424083F01197970A3682C0FE028495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:52:d5:bd:67:cf:da:e3:8c:b6:58:45:cb:19: 0c:f4:b2:74:87:03:a5:fb:b4:aa:18:77:ed:07:c0: fd:15:e2:c7:6a:72:31:0a:2f:e0:ef:13:f0:04:aa: 82:d3:1f:be:f1:a5:66:0c:c8:e4:cf:bf:9b:d9:67: c8:07:53:f4:b9:58:48:ec:cf:59:ac:14:f0:41:f6: 62:ab:3f:cf:b5:9c:4d:2c:fe:ac:de:89:ae:a5:05: cb:fd:bf:34:fb:71:7c:bc:43:77:d0:a3:88:ef:0a: 8f:cd:35:bb:83:26:3d:d6:d7:31:25:d6:0e:2c:9c: 78:45:7e:26:24:41:0a:fe:7e:c4:df:a4:85:b3:47: 2c:1f:d7:45:39:33:36:d9:2c:2c:36:da:b1:5b:37: a9:b6:4e:e0:ac:f0:5c:b8:41:7a:35:1f:15:c6:07: c6:1a:a6:e0:59:fa:60:66:c0:c3:24:35:b8:d9:74: 62:38:e6:10:67:1e:69:04:2a:08:68:e0:b1:b6:cf: 74:ad:f1:f5:04:02:d3:d7:38:ed:47:5b:32:97:ad: 1e:2e:52:ae:6d:ef:6b:2e:2d:86:b5:d6:a5:75:16: 41:88:1a:9a:6d:61:f3:d0:42:c6:45:c2:5f:b3:38: 8f:fe:93:d8:5a:41:74:3b:ef:c7:26:94:91:5d:91: d1:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:70:5C:F0:9E:42:40:83:F0:11:97:97:0A:36:82:C0:FE:02:84:95 X509v3 Authority Key Identifier: keyid:22:50:4F:83:E3:78:CE:06:6A:D3:1D:32:EB:24:28:0C:B0:F6:E5:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e543241b-cfd1-4cbb-9219-c7a36237c148/0/22504F83E378CE066AD31D32EB24280CB0F6E560.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/22504F83E378CE066AD31D32EB24280CB0F6E560.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e543241b-cfd1-4cbb-9219-c7a36237c148/0/3130332e34362e3138362e302f32332d3234203d3e20313530343632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.46.186.0/23 Signature Algorithm: sha256WithRSAEncryption 31:4e:d8:16:c2:91:2a:b4:e1:e5:e5:6a:70:67:ea:14:76:59: d7:7d:a4:b2:78:d8:d7:0e:5f:0f:e5:ec:f1:5e:c6:4f:32:c1: 09:20:9d:cd:64:4f:f2:d3:cb:d4:ca:23:94:f6:cb:ff:aa:ed: 2d:1b:99:b6:d1:b1:06:69:03:a5:1e:bd:63:c2:9e:e5:7a:17: a2:96:0a:55:0b:c0:78:90:c2:d9:68:f1:b8:dc:c0:be:8a:87: 53:fa:4f:b6:5f:cd:53:92:a2:5c:f1:80:85:09:67:c0:c9:e2: bc:53:e4:c6:25:7b:0f:d3:86:bf:44:5b:bc:3d:d2:2f:9a:80: 59:02:f0:97:94:1b:4c:58:a7:e2:a4:1b:cf:02:56:30:e2:88: 6a:1b:f4:7a:f8:64:34:ec:6d:ab:84:b4:ce:96:d1:cd:ed:b3: a8:89:59:7c:d3:f4:fd:99:f6:71:ed:ab:5f:77:61:c7:32:86: b2:da:1f:0b:b4:53:44:b0:5f:7a:21:f8:0f:9a:8e:fb:1f:4b: a5:53:ab:83:71:fc:6d:98:b2:d1:cd:1b:68:b1:db:ad:52:78: 86:b6:97:ed:4f:6a:e9:d2:9f:6a:5c:4b:a7:10:d2:51:81:46: ac:b8:a5:cb:73:3d:5c:99:40:e5:c5:c5:e2:db:8c:45:57:9c: d8:2d:06:52 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJLiLgVr7HzGc2mL+yxkDy5/1XvwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI1MDRGODNFMzc4Q0UwNjZBRDMxRDMyRUIyNDI4MENC MEY2RTU2MDAeFw0yNDEwMTUwMzU3MjRaFw0yNTEwMTQwNDAyMjRaMDMxMTAvBgNV BAMTKDlCNzA1Q0YwOUU0MjQwODNGMDExOTc5NzBBMzY4MkMwRkUwMjg0OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8UtW9Z8/a44y2WEXLGQz0snSH A6X7tKoYd+0HwP0V4sdqcjEKL+DvE/AEqoLTH77xpWYMyOTPv5vZZ8gHU/S5WEjs z1msFPBB9mKrP8+1nE0s/qzeia6lBcv9vzT7cXy8Q3fQo4jvCo/NNbuDJj3W1zEl 1g4snHhFfiYkQQr+fsTfpIWzRywf10U5MzbZLCw22rFbN6m2TuCs8Fy4QXo1HxXG B8YapuBZ+mBmwMMkNbjZdGI45hBnHmkEKgho4LG2z3St8fUEAtPXOO1HWzKXrR4u Uq5t72suLYa11qV1FkGIGpptYfPQQsZFwl+zOI/+k9haQXQ778cmlJFdkdGFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUm3Bc8J5CQIPwEZeXCjaCwP4ChJUwHwYDVR0j BBgwFoAUIlBPg+N4zgZq0x0y6yQoDLD25WAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTQzMjQxYi1jZmQxLTRjYmItOTIxOS1jN2EzNjIzN2MxNDgvMC8yMjUwNEY4M0Uz NzhDRTA2NkFEMzFEMzJFQjI0MjgwQ0IwRjZFNTYwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI1MDRGODNFMzc4Q0UwNjZBRDMxRDMyRUIyNDI4MENCMEY2 RTU2MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1NDMyNDFiLWNmZDEtNGNiYi05 MjE5LWM3YTM2MjM3YzE0OC8wLzMxMzAzMzJlMzQzNjJlMzEzODM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNTMwMzQzNjMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZy66MA0GCSqG SIb3DQEBCwUAA4IBAQAxTtgWwpEqtOHl5WpwZ+oUdlnXfaSyeNjXDl8P5ezxXsZP MsEJIJ3NZE/y08vUyiOU9sv/qu0tG5m20bEGaQOlHr1jwp7leheilgpVC8B4kMLZ aPG43MC+iodT+k+2X81TkqJc8YCFCWfAyeK8U+TGJXsP04a/RFu8PdIvmoBZAvCX lBtMWKfipBvPAlYw4ohqG/R6+GQ07G2rhLTOltHN7bOoiVl80/T9mfZx7atfd2HH Moay2h8LtFNEsF96IfgPmo77H0ulU6uDcfxtmLLRzRtosdutUniGtpftT2rp0p9q XEunENJRgUasuKXLcz1cmUDlxcXi24xFV5zYLQZS -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:33 2024 by rpki-client on console-fra.rpki-client.org