$ rpki-client -vvf repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/3130332e3134342e34372e302f32342d3234203d3e20313430343732.roa File: 3130332e3134342e34372e302f32342d3234203d3e20313430343732.roa (raw, json) Hash identifier: G5sHOHBzxJzFIrxthLRKk6G43dQCmtWYfeL3J4nuOFw= Subject key identifier: 12:F1:A8:F0:56:22:F6:4F:92:12:45:CE:24:F0:C2:F7:90:65:48:84 Certificate issuer: /CN=14C8CB97FD381190392EF58B2A9CD8D566A51FD6 Certificate serial: 58EBEB38906118278E31D8515A07AD3041552389 Authority key identifier: 14:C8:CB:97:FD:38:11:90:39:2E:F5:8B:2A:9C:D8:D5:66:A5:1F:D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/3130332e3134342e34372e302f32342d3234203d3e20313430343732.roa Signing time: Wed 20 Mar 2024 16:00:01 +0000 ROA not before: Wed 20 Mar 2024 15:55:01 +0000 ROA not after: Wed 19 Mar 2025 16:00:01 +0000 asID: 140472 IP address blocks: 103.144.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.crl rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:eb:eb:38:90:61:18:27:8e:31:d8:51:5a:07:ad:30:41:55:23:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14C8CB97FD381190392EF58B2A9CD8D566A51FD6 Validity Not Before: Mar 20 15:55:01 2024 GMT Not After : Mar 19 16:00:01 2025 GMT Subject: CN=12F1A8F05622F64F921245CE24F0C2F790654884 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:14:90:3a:07:92:92:9a:4d:3e:23:cd:e0:ba: e3:d9:a7:eb:d3:c4:da:62:bb:f3:05:ef:32:c6:6a: 00:f1:4a:9b:09:e2:af:7c:60:eb:65:4a:db:00:a1: ca:4e:28:e8:48:78:54:7b:59:31:8a:44:9a:3c:97: 48:2e:0f:01:86:5c:f4:4c:3c:9b:ac:03:5d:0e:da: 2d:c2:a1:ed:3f:59:39:59:f6:c0:04:0c:ef:00:03: e6:73:80:f6:aa:19:21:0e:a0:b8:35:54:65:a7:0a: 27:5e:32:6a:8b:d4:0e:f2:30:f6:e2:fc:98:41:bd: 5c:50:c3:1d:09:47:b9:80:8c:b7:e1:ae:19:72:cd: 48:c2:a0:71:74:74:ec:dd:dd:66:25:2d:43:f3:ce: ab:04:a6:50:80:6c:ce:4b:c3:6d:d9:bb:c7:3f:12: ec:d1:c5:9a:67:fd:f4:96:60:f8:19:21:98:45:b6: 5b:d7:55:cc:9e:a0:a8:5f:ba:e0:3e:10:01:79:e1: 57:35:f3:eb:33:e0:3f:3f:9c:b6:ac:3a:ab:dc:3e: be:10:1a:2d:13:d5:5a:94:76:b0:6d:6d:54:23:17: 68:33:0d:eb:5e:d6:d0:c6:6f:0a:3c:d1:cc:10:42: 0c:ee:b8:86:be:69:51:31:77:51:79:7b:eb:e5:3e: 2c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:F1:A8:F0:56:22:F6:4F:92:12:45:CE:24:F0:C2:F7:90:65:48:84 X509v3 Authority Key Identifier: keyid:14:C8:CB:97:FD:38:11:90:39:2E:F5:8B:2A:9C:D8:D5:66:A5:1F:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14C8CB97FD381190392EF58B2A9CD8D566A51FD6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/edaec66c-9e1d-4321-b069-eeab4793a00b/0/3130332e3134342e34372e302f32342d3234203d3e20313430343732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.47.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:3c:dc:50:6e:ae:8d:b2:b8:88:81:d1:1f:9a:4a:2f:19:38: 42:e3:55:29:f2:ac:0f:76:0b:d9:94:c7:fe:b3:22:8e:77:04: 37:0e:c1:81:d4:a7:77:2f:89:ac:36:68:ec:69:d2:1f:42:06: 74:cd:87:0c:a6:d4:2b:fa:bb:78:e9:81:36:d3:0c:5c:75:b6: 59:c1:06:3f:81:c4:8e:f7:d0:b8:23:4b:08:6a:9d:84:ef:09: 17:47:df:15:51:3d:f2:d2:91:f5:44:7d:5e:ba:d5:6a:02:ee: 0c:8e:f4:a5:e7:ee:65:7c:2c:d9:0d:d0:96:c5:5a:b9:ff:e3: be:76:a7:67:b4:f0:d8:3c:32:ac:7d:ff:23:fc:84:5e:61:b0: 2e:b9:2c:50:f2:5c:3d:c7:7f:8a:93:1e:a3:65:5a:f3:e3:8b: 66:80:8c:92:bc:63:d8:f7:f9:c2:b3:39:ff:72:b6:42:74:c2: de:b8:46:74:4b:68:dd:df:2d:99:ca:1f:61:57:a3:90:ee:d8: e0:1d:d7:38:6b:a6:da:df:35:ea:b2:fc:fd:8f:d3:ba:7c:9e: 5c:9e:c3:72:96:25:d0:be:b3:05:ce:0b:37:ab:2c:b6:f1:92: 9a:dc:25:06:97:15:ca:3c:b5:c6:50:7d:da:b5:0f:43:40:bd: 47:20:95:4a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWOvrOJBhGCeOMdhRWgetMEFVI4kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRDOENCOTdGRDM4MTE5MDM5MkVGNThCMkE5Q0Q4RDU2 NkE1MUZENjAeFw0yNDAzMjAxNTU1MDFaFw0yNTAzMTkxNjAwMDFaMDMxMTAvBgNV BAMTKDEyRjFBOEYwNTYyMkY2NEY5MjEyNDVDRTI0RjBDMkY3OTA2NTQ4ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeFJA6B5KSmk0+I83guuPZp+vT xNpiu/MF7zLGagDxSpsJ4q98YOtlStsAocpOKOhIeFR7WTGKRJo8l0guDwGGXPRM PJusA10O2i3Coe0/WTlZ9sAEDO8AA+ZzgPaqGSEOoLg1VGWnCideMmqL1A7yMPbi /JhBvVxQwx0JR7mAjLfhrhlyzUjCoHF0dOzd3WYlLUPzzqsEplCAbM5Lw23Zu8c/ EuzRxZpn/fSWYPgZIZhFtlvXVcyeoKhfuuA+EAF54Vc18+sz4D8/nLasOqvcPr4Q Gi0T1VqUdrBtbVQjF2gzDete1tDGbwo80cwQQgzuuIa+aVExd1F5e+vlPixjAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUEvGo8FYi9k+SEkXOJPDC95BlSIQwHwYDVR0j BBgwFoAUFMjLl/04EZA5LvWLKpzY1WalH9YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZGFlYzY2Yy05ZTFkLTQzMjEtYjA2OS1lZWFiNDc5M2EwMGIvMC8xNEM4Q0I5N0ZE MzgxMTkwMzkyRUY1OEIyQTlDRDhENTY2QTUxRkQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTRDOENCOTdGRDM4MTE5MDM5MkVGNThCMkE5Q0Q4RDU2NkE1 MUZENi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VkYWVjNjZjLTllMWQtNDMyMS1i MDY5LWVlYWI0NzkzYTAwYi8wLzMxMzAzMzJlMzEzNDM0MmUzNDM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzNzMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5AvMA0GCSqG SIb3DQEBCwUAA4IBAQBNPNxQbq6NsriIgdEfmkovGThC41Up8qwPdgvZlMf+syKO dwQ3DsGB1Kd3L4msNmjsadIfQgZ0zYcMptQr+rt46YE20wxcdbZZwQY/gcSO99C4 I0sIap2E7wkXR98VUT3y0pH1RH1eutVqAu4MjvSl5+5lfCzZDdCWxVq5/+O+dqdn tPDYPDKsff8j/IReYbAuuSxQ8lw9x3+Kkx6jZVrz44tmgIySvGPY9/nCszn/crZC dMLeuEZ0S2jd3y2Zyh9hV6OQ7tjgHdc4a6ba3zXqsvz9j9O6fJ5cnsNyliXQvrMF zgs3qyy28ZKa3CUGlxXKPLXGUH3atQ9DQL1HIJVK -----END CERTIFICATE-----Generated at Sun Nov 24 23:56:43 2024 by rpki-client on console-fra.rpki-client.org