$ rpki-client -vvf repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/3130332e3134342e34362e302f32342d3234203d3e20313430343732.roa File: 3130332e3134342e34362e302f32342d3234203d3e20313430343732.roa (raw, json) Hash identifier: nnIme8R5l/9nJUozadTtoLXl4RAtuyqHel8BkfFa9/E= Subject key identifier: 6C:14:04:58:16:06:83:39:26:28:FA:D6:36:24:33:66:AE:B4:81:16 Certificate issuer: /CN=14C8CB97FD381190392EF58B2A9CD8D566A51FD6 Certificate serial: 1C7F00216FB648CC820C1432C0905E1F4C260378 Authority key identifier: 14:C8:CB:97:FD:38:11:90:39:2E:F5:8B:2A:9C:D8:D5:66:A5:1F:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/3130332e3134342e34362e302f32342d3234203d3e20313430343732.roa Signing time: Wed 20 Mar 2024 16:00:01 +0000 ROA not before: Wed 20 Mar 2024 15:55:01 +0000 ROA not after: Wed 19 Mar 2025 16:00:01 +0000 asID: 140472 IP address blocks: 103.144.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.crl rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 19:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:7f:00:21:6f:b6:48:cc:82:0c:14:32:c0:90:5e:1f:4c:26:03:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14C8CB97FD381190392EF58B2A9CD8D566A51FD6 Validity Not Before: Mar 20 15:55:01 2024 GMT Not After : Mar 19 16:00:01 2025 GMT Subject: CN=6C140458160683392628FAD636243366AEB48116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4d:a2:f1:61:58:d5:9a:14:31:36:90:ff:f4: 26:20:05:8f:4c:12:ca:68:74:34:33:1f:96:d0:55: f3:19:4d:67:71:97:43:84:66:69:0b:94:a1:cc:c1: b6:63:00:15:77:c0:1f:c0:16:21:de:e7:9d:94:f3: 43:87:b4:04:06:3b:d6:53:84:8c:cf:6e:02:9f:99: ba:df:7c:bd:f4:38:3d:ab:ae:37:0e:b8:45:6a:2b: cf:ee:20:f2:76:67:3f:35:2c:73:84:90:87:fd:96: b1:58:28:fd:ad:58:6f:5c:15:26:8e:1d:90:35:73: b1:c6:43:4f:d3:99:4b:e8:62:67:ba:ba:70:7b:af: cb:2d:18:78:1c:1e:11:9e:95:c0:99:ab:2f:74:10: 01:68:36:53:2b:06:2d:99:9a:3e:08:0c:d6:99:4d: cf:f4:f2:84:2b:45:75:1e:70:8f:1d:29:43:11:36: 18:6b:84:77:59:63:e0:37:74:f5:6f:c3:b3:62:8e: ef:e5:2f:d9:21:81:cf:fd:dd:91:7e:76:c7:2e:c7: d2:c0:4f:bd:2f:94:0d:55:53:ad:42:5e:f5:6b:ae: 37:62:3b:45:3b:81:41:e1:39:a2:27:88:ea:65:ea: 49:10:a9:c7:79:00:a4:01:71:c8:fd:08:d1:39:b8: fa:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:14:04:58:16:06:83:39:26:28:FA:D6:36:24:33:66:AE:B4:81:16 X509v3 Authority Key Identifier: keyid:14:C8:CB:97:FD:38:11:90:39:2E:F5:8B:2A:9C:D8:D5:66:A5:1F:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/3130332e3134342e34362e302f32342d3234203d3e20313430343732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.46.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:6e:a8:f3:a5:20:ec:da:b8:26:e8:d1:59:10:c8:a0:de:c5: aa:e0:24:a5:bd:cc:c8:f1:50:88:89:1b:45:23:f4:56:7e:ba: 61:1b:19:e5:e8:3c:22:21:25:7b:29:cc:2f:58:3a:3d:1a:2a: 68:53:a1:5d:b0:62:7a:a8:5e:9c:e4:bb:09:73:11:2e:c2:ec: 01:9f:18:cb:4f:15:8a:f4:6c:c7:1b:29:cf:ef:ab:be:79:e2: 58:59:c2:dd:48:c7:cc:cc:bb:02:9e:1c:2d:19:44:d1:d5:98: fd:5d:82:1f:20:4a:15:d7:48:2f:fd:26:7c:06:c3:7b:79:95: 87:80:c7:01:a4:ff:30:b3:88:49:fc:83:88:64:3e:8f:5f:f2: da:1d:e1:a6:70:f5:17:86:6f:2f:47:81:3d:02:79:df:26:3d: 7e:e3:23:92:9b:d1:5b:c5:09:b0:e1:6a:9e:6d:65:71:5e:dd: 8d:8c:0e:e8:63:4d:21:de:a5:1c:24:73:45:7a:b3:46:0d:1a: 7b:db:cb:53:6b:a8:11:3b:11:80:12:f0:17:9f:4e:71:ee:4e: 37:60:da:ca:67:37:f5:0b:6d:60:d3:b6:f4:10:cb:63:b6:ac: 50:9c:f2:80:bd:c4:38:04:8f:25:d9:3a:3e:7b:39:b3:17:60: fc:55:24:86 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHH8AIW+2SMyCDBQywJBeH0wmA3gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRDOENCOTdGRDM4MTE5MDM5MkVGNThCMkE5Q0Q4RDU2 NkE1MUZENjAeFw0yNDAzMjAxNTU1MDFaFw0yNTAzMTkxNjAwMDFaMDMxMTAvBgNV BAMTKDZDMTQwNDU4MTYwNjgzMzkyNjI4RkFENjM2MjQzMzY2QUVCNDgxMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7TaLxYVjVmhQxNpD/9CYgBY9M EspodDQzH5bQVfMZTWdxl0OEZmkLlKHMwbZjABV3wB/AFiHe552U80OHtAQGO9ZT hIzPbgKfmbrffL30OD2rrjcOuEVqK8/uIPJ2Zz81LHOEkIf9lrFYKP2tWG9cFSaO HZA1c7HGQ0/TmUvoYme6unB7r8stGHgcHhGelcCZqy90EAFoNlMrBi2Zmj4IDNaZ Tc/08oQrRXUecI8dKUMRNhhrhHdZY+A3dPVvw7Niju/lL9khgc/93ZF+dscux9LA T70vlA1VU61CXvVrrjdiO0U7gUHhOaIniOpl6kkQqcd5AKQBccj9CNE5uPqFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUbBQEWBYGgzkmKPrWNiQzZq60gRYwHwYDVR0j BBgwFoAUFMjLl/04EZA5LvWLKpzY1WalH9YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZGFlYzY2Yy05ZTFkLTQzMjEtYjA2OS1lZWFiNDc5M2EwMGIvMC8xNEM4Q0I5N0ZE MzgxMTkwMzkyRUY1OEIyQTlDRDhENTY2QTUxRkQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTRDOENCOTdGRDM4MTE5MDM5MkVGNThCMkE5Q0Q4RDU2NkE1 MUZENi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkYWVjNjZjLTllMWQtNDMyMS1i MDY5LWVlYWI0NzkzYTAwYi8wLzMxMzAzMzJlMzEzNDM0MmUzNDM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5AuMA0GCSqG SIb3DQEBCwUAA4IBAQBdbqjzpSDs2rgm6NFZEMig3sWq4CSlvczI8VCIiRtFI/RW frphGxnl6DwiISV7KcwvWDo9GipoU6FdsGJ6qF6c5LsJcxEuwuwBnxjLTxWK9GzH GynP76u+eeJYWcLdSMfMzLsCnhwtGUTR1Zj9XYIfIEoV10gv/SZ8BsN7eZWHgMcB pP8ws4hJ/IOIZD6PX/LaHeGmcPUXhm8vR4E9AnnfJj1+4yOSm9FbxQmw4WqebWVx Xt2NjA7oY00h3qUcJHNFerNGDRp728tTa6gROxGAEvAXn05x7k43YNrKZzf1C21g 07b0EMtjtqxQnPKAvcQ4BI8l2To+ezmzF2D8VSSG -----END CERTIFICATE-----Generated at Sun May 19 17:05:15 2024 by rpki-client on console-ams.rpki-client.org