$ rpki-client -vvf repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa File: 3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa (raw, json) Hash identifier: FuC0X759h2GO+MLLKWRrbDk5a3CiG3LjZLk/US775mk= Subject key identifier: 04:B3:A8:F7:70:FF:07:18:DE:9B:80:31:CA:FC:40:6F:4C:FA:86:49 Certificate issuer: /CN=AE4002B7E92AF59C76E7F8BE4B349193F05481B1 Certificate serial: 268BD5FFB211E64BDF4A4407AFBBC67D0174F45E Authority key identifier: AE:40:02:B7:E9:2A:F5:9C:76:E7:F8:BE:4B:34:91:93:F0:54:81:B1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa Signing time: Fri 14 Jun 2024 14:01:00 +0000 ROA not before: Fri 14 Jun 2024 13:56:00 +0000 ROA not after: Fri 13 Jun 2025 14:01:00 +0000 asID: 141591 IP address blocks: 103.159.62.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:8b:d5:ff:b2:11:e6:4b:df:4a:44:07:af:bb:c6:7d:01:74:f4:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE4002B7E92AF59C76E7F8BE4B349193F05481B1 Validity Not Before: Jun 14 13:56:00 2024 GMT Not After : Jun 13 14:01:00 2025 GMT Subject: CN=04B3A8F770FF0718DE9B8031CAFC406F4CFA8649 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:49:9d:96:a6:f3:56:5e:4d:89:47:38:56:92: 80:42:e3:98:3d:ed:c6:2a:d6:df:b5:fb:e8:22:8b: 9f:32:d1:88:28:6e:51:4b:90:7a:68:ef:53:17:9a: e4:90:f0:11:79:2d:f9:75:ee:67:90:1a:c2:1c:6b: 51:ef:e0:b4:03:55:57:1b:9f:5f:e9:2d:6e:4e:00: 6d:ff:da:25:42:e9:0c:50:3d:0b:3f:fe:05:47:7b: 00:bd:b0:2a:97:41:44:0d:a7:0d:8b:4a:5e:be:ed: 4c:6e:e6:7f:8b:8b:94:42:2f:b9:66:43:0a:8b:ec: 8b:4c:31:d3:61:42:ca:56:88:2d:89:2a:f2:6c:32: 24:dd:8e:7a:52:09:e0:12:ba:0c:de:4e:d9:a2:d6: b2:cb:ff:56:68:2e:b2:dc:42:b3:3f:cb:ce:8b:0a: 03:c8:87:9c:63:7c:04:28:04:e0:ac:3f:1a:8c:47: 10:f4:df:97:97:4d:a0:44:cb:4e:00:f8:c2:5a:c7: 94:1b:dd:c2:4e:e9:36:f6:66:48:97:e9:a4:db:8b: 8b:81:a5:15:b9:45:05:f7:10:bb:81:c2:3e:ab:d0: 67:7a:63:1c:6e:8b:d8:70:28:57:9b:fc:64:46:24: 15:40:89:ff:8d:51:8b:d5:1a:e9:6f:cd:89:8e:49: a1:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:B3:A8:F7:70:FF:07:18:DE:9B:80:31:CA:FC:40:6F:4C:FA:86:49 X509v3 Authority Key Identifier: keyid:AE:40:02:B7:E9:2A:F5:9C:76:E7:F8:BE:4B:34:91:93:F0:54:81:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.62.0/23 Signature Algorithm: sha256WithRSAEncryption a3:13:37:0a:e6:14:30:f5:30:8e:e9:62:ca:e2:ad:d2:79:d4: df:dc:7d:09:34:b4:d3:6b:34:51:a8:3c:2e:5c:56:ca:db:d7: 1a:5c:b3:9e:70:b0:c9:2a:25:97:23:7e:bf:cf:bc:24:eb:59: 5e:6a:8b:9f:0b:4e:94:d3:42:8b:9a:b7:f2:1a:23:75:b2:1c: 56:b4:46:f1:8e:74:48:55:43:c8:f5:6a:68:bf:d6:ed:46:13: 60:2c:a2:d6:3a:84:6d:7e:5c:07:30:4c:c9:59:c9:23:f0:bf: ab:79:ec:c9:cf:a0:d5:3b:9e:54:7a:04:12:f8:7d:25:84:a9: 56:38:c7:14:28:9a:67:e6:2c:ad:f4:ef:35:e7:6c:91:6e:f9: a7:ba:59:8c:c1:4c:6c:79:9b:bc:1f:4d:4f:8e:5e:2f:dd:f1: 46:82:67:8b:6b:c0:25:12:06:bd:66:70:bb:3f:44:58:c1:16: cd:08:c9:4d:f3:8c:a1:9d:88:6d:45:c5:b2:a8:11:cb:aa:a7: ff:9c:7e:af:0c:8a:5e:26:81:c1:96:4a:5c:bb:64:67:d9:6b: d8:ac:b7:5b:a9:64:9f:cd:6b:f6:e6:a6:08:2c:c6:30:9d:17: 2f:b1:29:96:4d:36:de:57:8c:1e:85:59:8c:58:33:e5:3a:8f: 03:ba:34:61 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJovV/7IR5kvfSkQHr7vGfQF09F4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkxOTNG MDU0ODFCMTAeFw0yNDA2MTQxMzU2MDBaFw0yNTA2MTMxNDAxMDBaMDMxMTAvBgNV BAMTKDA0QjNBOEY3NzBGRjA3MThERTlCODAzMUNBRkM0MDZGNENGQTg2NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0SZ2WpvNWXk2JRzhWkoBC45g9 7cYq1t+1++gii58y0YgoblFLkHpo71MXmuSQ8BF5Lfl17meQGsIca1Hv4LQDVVcb n1/pLW5OAG3/2iVC6QxQPQs//gVHewC9sCqXQUQNpw2LSl6+7Uxu5n+Li5RCL7lm QwqL7ItMMdNhQspWiC2JKvJsMiTdjnpSCeASugzeTtmi1rLL/1ZoLrLcQrM/y86L CgPIh5xjfAQoBOCsPxqMRxD035eXTaBEy04A+MJax5Qb3cJO6Tb2ZkiX6aTbi4uB pRW5RQX3ELuBwj6r0Gd6Yxxui9hwKFeb/GRGJBVAif+NUYvVGulvzYmOSaHTAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUBLOo93D/Bxjem4AxyvxAb0z6hkkwHwYDVR0j BBgwFoAUrkACt+kq9Zx25/i+SzSRk/BUgbEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGMxNzFmNC1iZDExLTQ4ZWQtODdmMC0yN2VhMTIwOTA2NGYvMC9BRTQwMDJCN0U5 MkFGNTlDNzZFN0Y4QkU0QjM0OTE5M0YwNTQ4MUIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkxOTNGMDU0 ODFCMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwYzE3MWY0LWJkMTEtNDhlZC04 N2YwLTI3ZWExMjA5MDY0Zi8wLzMxMzAzMzJlMzEzNTM5MmUzNjMyMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMxMzUzOTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ58+MA0GCSqG SIb3DQEBCwUAA4IBAQCjEzcK5hQw9TCO6WLK4q3SedTf3H0JNLTTazRRqDwuXFbK 29caXLOecLDJKiWXI36/z7wk61leaoufC06U00KLmrfyGiN1shxWtEbxjnRIVUPI 9Wpov9btRhNgLKLWOoRtflwHMEzJWckj8L+reezJz6DVO55UegQS+H0lhKlWOMcU KJpn5iyt9O8152yRbvmnulmMwUxseZu8H01Pjl4v3fFGgmeLa8AlEga9ZnC7P0RY wRbNCMlN84yhnYhtRcWyqBHLqqf/nH6vDIpeJoHBlkpcu2Rn2WvYrLdbqWSfzWv2 5qYILMYwnRcvsSmWTTbeV4wehVmMWDPlOo8DujRh -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:03 2024 by rpki-client on console-fra.rpki-client.org