$ rpki-client -vvf repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3130332e3136302e34312e302f32342d3234203d3e20313431353936.roa File: 3130332e3136302e34312e302f32342d3234203d3e20313431353936.roa (raw, json) Hash identifier: j1wqCRKmqLcPoUtWaMe6Pv1ryPRiqTW0gNUooaakkh8= Subject key identifier: FB:F9:D1:E0:5A:85:DB:4C:1B:43:25:E1:EB:F1:48:9B:64:5B:F7:41 Certificate issuer: /CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Certificate serial: 156038A392722AADD5A569F825A634E86D05FDE1 Authority key identifier: 37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3130332e3136302e34312e302f32342d3234203d3e20313431353936.roa Signing time: Wed 01 Nov 2023 06:00:00 +0000 ROA not before: Wed 01 Nov 2023 05:55:00 +0000 ROA not after: Wed 30 Oct 2024 06:00:00 +0000 asID: 141596 IP address blocks: 103.160.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:60:38:a3:92:72:2a:ad:d5:a5:69:f8:25:a6:34:e8:6d:05:fd:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Validity Not Before: Nov 1 05:55:00 2023 GMT Not After : Oct 30 06:00:00 2024 GMT Subject: CN=FBF9D1E05A85DB4C1B4325E1EBF1489B645BF741 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a9:ba:5f:02:5e:45:e6:37:be:65:c1:6e:8e: f9:f6:1a:06:fe:35:45:04:c2:66:d8:35:30:0c:c8: e2:f1:20:39:9b:a3:dc:c5:dd:2b:83:06:ae:0f:45: 5c:99:49:42:c3:76:55:18:96:0a:7b:b1:fe:a9:8a: 6a:56:cd:c6:eb:fe:7d:d7:15:f6:aa:34:cb:7e:68: ac:7f:36:c5:60:4e:62:71:d9:b7:d9:c0:df:cc:a0: 41:df:32:77:8d:4b:ed:34:60:8e:80:1c:21:04:0b: 71:6c:b7:d3:5a:67:d8:4f:1a:c4:37:c3:ba:05:46: 1a:33:7d:9b:e4:c2:6a:86:b7:fa:94:9b:65:20:8e: 3c:f0:81:ce:55:f0:03:67:be:67:f3:9d:9f:30:06: e2:6a:4d:73:e6:cb:f9:2e:c0:c0:88:08:94:0f:d5: 1b:b4:a8:06:75:be:f4:15:3b:30:65:3d:ac:0f:cc: e1:04:9e:37:5b:f5:dc:f6:47:05:2f:8e:36:cd:0b: 1d:fe:07:70:97:23:f9:d2:f4:45:74:5b:52:c1:32: b2:f8:ae:df:8b:b9:e9:22:7b:ce:f7:45:03:bf:2e: 0e:2c:bb:ee:f4:79:ed:4a:0b:c1:5f:6e:9c:d6:6d: 51:0c:e4:58:6e:12:5a:41:f1:d1:69:21:df:5e:5c: 6a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:F9:D1:E0:5A:85:DB:4C:1B:43:25:E1:EB:F1:48:9B:64:5B:F7:41 X509v3 Authority Key Identifier: keyid:37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3130332e3136302e34312e302f32342d3234203d3e20313431353936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.41.0/24 Signature Algorithm: sha256WithRSAEncryption 58:bd:11:0c:61:cd:7e:41:69:3e:09:d0:7a:23:79:45:1e:56: 8c:97:06:20:fb:5b:09:be:fb:ce:e7:d3:50:1a:aa:a2:d5:88: b0:63:15:14:94:8a:a0:d2:9c:2b:7d:25:e1:8e:4d:e7:7a:06: 64:a6:58:1c:bd:f0:86:b5:3d:f1:fd:ee:89:f4:b4:75:43:fd: 79:27:5d:7f:73:d6:33:6d:76:d8:45:8c:5a:a0:76:76:3f:b0: 59:11:fc:20:89:43:41:1d:21:ee:a7:3b:43:86:f2:ce:dd:a7: 65:db:ed:0a:83:36:58:88:fa:60:19:d4:f4:06:57:45:5b:78: ef:1c:7a:9c:7b:cd:d8:c6:54:d3:bd:92:2a:6d:ee:2d:a5:56: 94:dd:b0:c0:8c:49:70:d3:62:89:7c:23:a8:ba:10:71:a5:96: 95:61:3d:9f:fe:64:e6:52:f5:a9:33:d3:ff:75:b1:76:3a:bf: 88:8b:53:b3:a5:e9:82:3d:69:28:5a:6a:b1:85:76:7a:6e:bf: 5d:be:f6:84:4b:93:6b:f8:e2:f4:1d:df:9a:48:8d:11:bf:98: 8f:48:ae:6f:bb:43:25:18:3e:25:df:86:0a:d4:ad:13:59:6d: 73:1c:be:1d:b1:42:16:05:3f:62:40:d3:01:ae:46:fe:84:2c: 2a:6c:a0:1f -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFWA4o5JyKq3VpWn4JaY06G0F/eEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQw N0U4MkQ1OTAeFw0yMzExMDEwNTU1MDBaFw0yNDEwMzAwNjAwMDBaMDMxMTAvBgNV BAMTKEZCRjlEMUUwNUE4NURCNEMxQjQzMjVFMUVCRjE0ODlCNjQ1QkY3NDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHqbpfAl5F5je+ZcFujvn2Ggb+ NUUEwmbYNTAMyOLxIDmbo9zF3SuDBq4PRVyZSULDdlUYlgp7sf6pimpWzcbr/n3X FfaqNMt+aKx/NsVgTmJx2bfZwN/MoEHfMneNS+00YI6AHCEEC3Fst9NaZ9hPGsQ3 w7oFRhozfZvkwmqGt/qUm2Ugjjzwgc5V8ANnvmfznZ8wBuJqTXPmy/kuwMCICJQP 1Ru0qAZ1vvQVOzBlPawPzOEEnjdb9dz2RwUvjjbNCx3+B3CXI/nS9EV0W1LBMrL4 rt+Luekie873RQO/Lg4su+70ee1KC8FfbpzWbVEM5FhuElpB8dFpId9eXGoNAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+/nR4FqF20wbQyXh6/FIm2Rb90EwHwYDVR0j BBgwFoAUNwOsQVTwWx5kLzHe9xojhAfoLVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTA5OWFkZi03ZTEyLTRlODMtOTVjMi1kZDdmNzc0OTQ3ODgvMC8zNzAzQUM0MTU0 RjA1QjFFNjQyRjMxREVGNzFBMjM4NDA3RTgyRDU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQwN0U4 MkQ1OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRhMDk5YWRmLTdlMTItNGU4My05 NWMyLWRkN2Y3NzQ5NDc4OC8wLzMxMzAzMzJlMzEzNjMwMmUzNDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzUzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6ApMA0GCSqG SIb3DQEBCwUAA4IBAQBYvREMYc1+QWk+CdB6I3lFHlaMlwYg+1sJvvvO59NQGqqi 1YiwYxUUlIqg0pwrfSXhjk3negZkplgcvfCGtT3x/e6J9LR1Q/15J11/c9YzbXbY RYxaoHZ2P7BZEfwgiUNBHSHupztDhvLO3adl2+0KgzZYiPpgGdT0BldFW3jvHHqc e83YxlTTvZIqbe4tpVaU3bDAjElw02KJfCOouhBxpZaVYT2f/mTmUvWpM9P/dbF2 Or+Ii1OzpemCPWkoWmqxhXZ6br9dvvaES5Nr+OL0Hd+aSI0Rv5iPSK5vu0MlGD4l 34YK1K0TWW1zHL4dsUIWBT9iQNMBrkb+hCwqbKAf -----END CERTIFICATE-----Generated at Thu Apr 25 22:30:52 2024 by rpki-client on console-fra.rpki-client.org