$ rpki-client -vvf repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/3130332e3136392e342e302f32332d3234203d3e203137393935.roa File: 3130332e3136392e342e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: e6zTKV5eeeBjTOLPA4Uct8apjvBjBaHZhQqPX177Lcs= Subject key identifier: 2D:86:C6:9F:3B:8C:31:D4:BB:45:D5:D3:F9:09:18:CB:DD:A7:BB:CD Certificate issuer: /CN=AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38 Certificate serial: 2F2AE35203AF4EA881A4002441C6312DE4FCAF61 Authority key identifier: AF:5A:2A:D0:C9:E5:CB:1D:9E:F8:5E:6F:8F:44:03:10:F1:00:CE:38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/3130332e3136392e342e302f32332d3234203d3e203137393935.roa Signing time: Fri 02 Aug 2024 10:03:53 +0000 ROA not before: Fri 02 Aug 2024 09:58:53 +0000 ROA not after: Fri 01 Aug 2025 10:03:53 +0000 asID: 17995 IP address blocks: 103.169.4.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.crl rsync://repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:2a:e3:52:03:af:4e:a8:81:a4:00:24:41:c6:31:2d:e4:fc:af:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38 Validity Not Before: Aug 2 09:58:53 2024 GMT Not After : Aug 1 10:03:53 2025 GMT Subject: CN=2D86C69F3B8C31D4BB45D5D3F90918CBDDA7BBCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a0:f6:96:8d:07:1f:9e:c4:e5:67:db:0e:7a: a9:6d:eb:b2:64:d0:6b:eb:56:49:f9:29:02:eb:35: 78:c3:58:9a:a9:ff:7c:16:5d:31:6d:64:af:bf:91: 62:c2:77:d6:8c:37:8f:00:83:e1:3e:dd:85:69:b6: 18:f7:df:05:3a:73:19:85:c1:95:28:c8:8a:8c:88: 94:06:b5:4f:95:95:dd:f7:22:ef:a1:3a:7c:e5:8d: 2c:3c:81:1f:5d:07:96:67:f1:c3:76:da:25:a1:7b: 6c:70:ae:3b:34:c4:a3:eb:21:20:b6:34:bb:07:8e: eb:64:b3:b8:2e:7b:af:1a:77:60:6b:11:be:fd:6c: fc:65:ef:3a:c8:4e:99:78:02:4c:15:e3:14:7f:d1: 34:3f:64:74:7c:57:9d:3f:89:2a:18:59:cb:e1:8e: fd:12:6b:b9:98:cc:cf:fa:c8:b7:27:ee:09:79:15: 66:d6:8e:5b:22:96:29:88:2c:bb:1b:3d:a0:09:6b: 9e:3d:24:f0:c6:74:40:06:48:b7:55:ff:89:de:32: 1c:19:6d:a3:bd:47:11:72:cf:e1:c9:43:e9:95:75: 82:6d:a3:d5:4c:f0:ac:6f:06:fc:8e:63:82:40:81: db:d7:17:9d:08:74:3c:04:db:83:22:fc:e0:c9:5e: 22:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:86:C6:9F:3B:8C:31:D4:BB:45:D5:D3:F9:09:18:CB:DD:A7:BB:CD X509v3 Authority Key Identifier: keyid:AF:5A:2A:D0:C9:E5:CB:1D:9E:F8:5E:6F:8F:44:03:10:F1:00:CE:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/3130332e3136392e342e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.4.0/23 Signature Algorithm: sha256WithRSAEncryption 67:e5:f9:a4:28:b2:60:30:5e:ea:03:fa:8a:b3:e4:1e:3c:02: f8:ca:d0:2f:25:38:75:41:7e:a5:97:74:45:43:f4:2e:77:2e: d4:ca:a4:13:14:a1:e0:3e:05:54:b5:92:6c:a7:df:12:e7:1a: 06:68:1d:03:da:84:ed:92:c9:58:03:f8:38:01:43:e7:a2:41: 87:18:d8:b2:07:18:5e:15:0b:9a:e2:f0:3e:21:2b:f4:b6:a2: 89:5e:99:ad:a0:21:53:f1:1e:fc:69:d5:f7:a5:ed:ef:6e:29: 65:a3:31:f9:71:37:b3:c2:d2:ef:dd:1f:1e:48:98:11:50:14: e7:02:31:6c:46:78:3d:bd:5a:80:1f:51:6b:d0:7d:26:e1:ae: bf:ee:02:a1:06:9c:40:4b:5c:9c:1c:bc:6c:1d:1d:f4:4c:fc: eb:00:4b:db:34:de:94:0f:0b:55:3b:71:43:65:3b:f2:46:34: 0c:9f:58:26:1f:a2:51:ca:d3:82:ad:3a:85:d0:e6:9c:48:de: fe:12:3e:1c:f7:be:8f:ab:b9:45:84:4a:a3:91:90:5d:2e:c8: eb:5d:5e:63:a9:5e:b1:76:db:97:2e:eb:4f:4f:86:1e:3b:83: 41:e8:69:4c:2b:42:26:2d:0d:41:ca:b3:9b:bf:e2:17:25:58: 80:94:da:11 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIULyrjUgOvTqiBpAAkQcYxLeT8r2EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1QTJBRDBDOUU1Q0IxRDlFRjg1RTZGOEY0NDAzMTBG MTAwQ0UzODAeFw0yNDA4MDIwOTU4NTNaFw0yNTA4MDExMDAzNTNaMDMxMTAvBgNV BAMTKDJEODZDNjlGM0I4QzMxRDRCQjQ1RDVEM0Y5MDkxOENCRERBN0JCQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0oPaWjQcfnsTlZ9sOeqlt67Jk 0GvrVkn5KQLrNXjDWJqp/3wWXTFtZK+/kWLCd9aMN48Ag+E+3YVpthj33wU6cxmF wZUoyIqMiJQGtU+Vld33Iu+hOnzljSw8gR9dB5Zn8cN22iWhe2xwrjs0xKPrISC2 NLsHjutks7gue68ad2BrEb79bPxl7zrITpl4AkwV4xR/0TQ/ZHR8V50/iSoYWcvh jv0Sa7mYzM/6yLcn7gl5FWbWjlsilimILLsbPaAJa549JPDGdEAGSLdV/4neMhwZ baO9RxFyz+HJQ+mVdYJto9VM8KxvBvyOY4JAgdvXF50IdDwE24Mi/ODJXiLdAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQULYbGnzuMMdS7RdXT+QkYy92nu80wHwYDVR0j BBgwFoAUr1oq0Mnlyx2e+F5vj0QDEPEAzjgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDFlNGFjOS1jMDZiLTQzNDMtODUyNi0zYTFmMWIxYjVkODIvMC9BRjVBMkFEMEM5 RTVDQjFEOUVGODVFNkY4RjQ0MDMxMEYxMDBDRTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1QTJBRDBDOUU1Q0IxRDlFRjg1RTZGOEY0NDAzMTBGMTAw Q0UzOC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA0MWU0YWM5LWMwNmItNDM0My04 NTI2LTNhMWYxYjFiNWQ4Mi8wLzMxMzAzMzJlMzEzNjM5MmUzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzczOTM5MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnqQQwDQYJKoZIhvcN AQELBQADggEBAGfl+aQosmAwXuoD+oqz5B48AvjK0C8lOHVBfqWXdEVD9C53LtTK pBMUoeA+BVS1kmyn3xLnGgZoHQPahO2SyVgD+DgBQ+eiQYcY2LIHGF4VC5ri8D4h K/S2oolema2gIVPxHvxp1fel7e9uKWWjMflxN7PC0u/dHx5ImBFQFOcCMWxGeD29 WoAfUWvQfSbhrr/uAqEGnEBLXJwcvGwdHfRM/OsAS9s03pQPC1U7cUNlO/JGNAyf WCYfolHK04KtOoXQ5pxI3v4SPhz3vo+ruUWESqORkF0uyOtdXmOpXrF225cu609P hh47g0HoaUwrQiYtDUHKs5u/4hclWICU2hE= -----END CERTIFICATE-----Generated at Thu Nov 21 09:17:19 2024 by rpki-client on console-fra.rpki-client.org