$ rpki-client -vvf repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/3130332e3130382e3135362e302f32322d3234203d3e20313430343534.roa File: 3130332e3130382e3135362e302f32322d3234203d3e20313430343534.roa (raw, json) Hash identifier: KQBwI3mDk7Di2Hgh9pZD8sQ4+9+63h0EFvm7NCb7Spk= Subject key identifier: 92:93:FF:B1:50:6D:E1:80:DD:A2:26:4E:3C:A7:A4:8A:20:80:DE:26 Certificate issuer: /CN=45164C20EAF7FAB583FB12C81727150895FCEC70 Certificate serial: 301332CB11DE607FA38E56516EA3BE8F6E340CB9 Authority key identifier: 45:16:4C:20:EA:F7:FA:B5:83:FB:12:C8:17:27:15:08:95:FC:EC:70 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45164C20EAF7FAB583FB12C81727150895FCEC70.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/3130332e3130382e3135362e302f32322d3234203d3e20313430343534.roa Signing time: Tue 05 Nov 2024 11:00:00 +0000 ROA not before: Tue 05 Nov 2024 10:55:00 +0000 ROA not after: Tue 04 Nov 2025 11:00:00 +0000 asID: 140454 IP address blocks: 103.108.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/45164C20EAF7FAB583FB12C81727150895FCEC70.crl rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/45164C20EAF7FAB583FB12C81727150895FCEC70.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45164C20EAF7FAB583FB12C81727150895FCEC70.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:34:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:13:32:cb:11:de:60:7f:a3:8e:56:51:6e:a3:be:8f:6e:34:0c:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45164C20EAF7FAB583FB12C81727150895FCEC70 Validity Not Before: Nov 5 10:55:00 2024 GMT Not After : Nov 4 11:00:00 2025 GMT Subject: CN=9293FFB1506DE180DDA2264E3CA7A48A2080DE26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:03:0e:d4:96:2e:b5:80:5c:2f:c4:ce:ba:e2: 04:42:a1:6e:76:94:c6:56:5a:c8:2a:26:d7:69:76: 6b:be:db:c1:31:45:ae:b6:81:9f:00:fa:e3:3e:e0: 47:ad:a5:96:59:16:d5:9c:fb:32:9b:91:3e:39:c4: 53:1b:da:a7:1d:d9:85:83:bd:78:0b:c4:3c:0f:83: b2:61:88:67:01:c8:6c:65:7c:a3:66:9e:f5:cf:18: dd:f1:c5:b6:75:5c:f1:43:60:4e:b9:c4:02:72:67: 9d:8b:2e:0a:4d:46:8c:96:57:ed:5e:bb:5c:10:3f: f3:f0:36:61:99:64:79:51:10:e8:ee:28:bf:eb:96: 51:25:2b:db:58:95:f4:75:26:94:79:90:a6:21:78: c8:da:73:a1:d7:b2:d0:3e:47:d1:6f:ba:68:32:11: 27:74:17:71:5e:7f:67:b6:c5:7f:14:99:39:1e:41: b3:54:7d:cf:f2:51:23:70:62:9a:66:bd:1e:79:c9: b5:67:ce:e0:08:df:a9:78:6b:c7:16:87:aa:a9:bd: bb:a6:b4:64:12:b1:95:99:64:0e:b5:26:c7:db:01: 82:6b:83:08:27:54:3c:82:c1:48:0f:e1:a5:22:39: 5d:1c:3d:ad:b3:ca:ea:25:a8:23:81:f5:cb:e0:b9: 21:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:93:FF:B1:50:6D:E1:80:DD:A2:26:4E:3C:A7:A4:8A:20:80:DE:26 X509v3 Authority Key Identifier: keyid:45:16:4C:20:EA:F7:FA:B5:83:FB:12:C8:17:27:15:08:95:FC:EC:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/45164C20EAF7FAB583FB12C81727150895FCEC70.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45164C20EAF7FAB583FB12C81727150895FCEC70.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/3130332e3130382e3135362e302f32322d3234203d3e20313430343534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.156.0/22 Signature Algorithm: sha256WithRSAEncryption 7b:52:fe:9e:c4:73:3f:a2:2d:c3:30:97:39:3d:af:ab:42:f5: 26:7f:b3:58:e9:ff:6b:01:75:85:91:fe:9e:88:81:ef:d3:80: 26:33:b8:eb:14:38:e0:14:c3:6f:a0:35:98:74:6c:ed:7d:90: c6:5b:93:b6:e6:91:8f:95:9c:6b:5a:34:b8:30:ff:22:b1:00: 23:bf:99:73:d8:09:01:24:83:fa:62:fd:31:ac:8c:f9:14:d3: a6:ce:59:bd:5f:3f:bd:d2:b7:5f:ef:2a:a9:d9:39:94:f0:0b: 04:9f:6f:00:7c:3b:e2:c5:96:e2:65:8b:3b:d4:f7:64:92:2a: ac:75:f2:39:11:63:73:6f:67:3a:8f:d9:56:b0:5a:15:e6:95: b0:61:81:5c:e0:47:14:23:1f:14:43:fc:72:c4:1a:ca:d2:28: c6:f8:77:c8:b2:c5:38:61:5b:0e:a0:ed:05:02:a2:a3:ae:1f: de:1d:ac:51:b2:50:6e:d8:39:af:16:7d:89:9d:27:43:56:1a: 43:90:72:46:8d:ac:00:65:0c:ea:05:a5:f2:35:55:f8:f7:a4: b3:0d:a3:54:e4:0e:88:92:95:48:0f:8f:78:7e:12:2b:4c:b2: 45:94:d0:f6:60:c0:a6:dc:4d:c9:f1:f8:6d:df:f2:cf:a9:ba: c0:34:a3:c2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMBMyyxHeYH+jjlZRbqO+j240DLkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUxNjRDMjBFQUY3RkFCNTgzRkIxMkM4MTcyNzE1MDg5 NUZDRUM3MDAeFw0yNDExMDUxMDU1MDBaFw0yNTExMDQxMTAwMDBaMDMxMTAvBgNV BAMTKDkyOTNGRkIxNTA2REUxODBEREEyMjY0RTNDQTdBNDhBMjA4MERFMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzAw7Uli61gFwvxM664gRCoW52 lMZWWsgqJtdpdmu+28ExRa62gZ8A+uM+4EetpZZZFtWc+zKbkT45xFMb2qcd2YWD vXgLxDwPg7JhiGcByGxlfKNmnvXPGN3xxbZ1XPFDYE65xAJyZ52LLgpNRoyWV+1e u1wQP/PwNmGZZHlREOjuKL/rllElK9tYlfR1JpR5kKYheMjac6HXstA+R9Fvumgy ESd0F3Fef2e2xX8UmTkeQbNUfc/yUSNwYppmvR55ybVnzuAI36l4a8cWh6qpvbum tGQSsZWZZA61JsfbAYJrgwgnVDyCwUgP4aUiOV0cPa2zyuolqCOB9cvguSF7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUkpP/sVBt4YDdoiZOPKekiiCA3iYwHwYDVR0j BBgwFoAURRZMIOr3+rWD+xLIFycVCJX87HAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MWFlMTJmYS05OGZkLTRlNTEtOTgwZS1hZDVmNWI5MGQ3YTYvMC80NTE2NEMyMEVB RjdGQUI1ODNGQjEyQzgxNzI3MTUwODk1RkNFQzcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDUxNjRDMjBFQUY3RkFCNTgzRkIxMkM4MTcyNzE1MDg5NUZD RUM3MC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxYWUxMmZhLTk4ZmQtNGU1MS05 ODBlLWFkNWY1YjkwZDdhNi8wLzMxMzAzMzJlMzEzMDM4MmUzMTM1MzYyZTMwMmYz MjMyMmQzMjM0MjAzZDNlMjAzMTM0MzAzNDM1MzQucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnbJwwDQYJ KoZIhvcNAQELBQADggEBAHtS/p7Ecz+iLcMwlzk9r6tC9SZ/s1jp/2sBdYWR/p6I ge/TgCYzuOsUOOAUw2+gNZh0bO19kMZbk7bmkY+VnGtaNLgw/yKxACO/mXPYCQEk g/pi/TGsjPkU06bOWb1fP73St1/vKqnZOZTwCwSfbwB8O+LFluJlizvU92SSKqx1 8jkRY3NvZzqP2VawWhXmlbBhgVzgRxQjHxRD/HLEGsrSKMb4d8iyxThhWw6g7QUC oqOuH94drFGyUG7YOa8WfYmdJ0NWGkOQckaNrABlDOoFpfI1Vfj3pLMNo1TkDoiS lUgPj3h+EitMskWU0PZgwKbcTcnx+G3f8s+pusA0o8I= -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:38 2024 by rpki-client on console-ams.rpki-client.org