$ rpki-client -vvf repo-rpki.idnic.net/repo/3144d97a-e3fb-4ffc-b7f7-f7b8b6659ac4/1/3130332e3136302e3230312e302f32342d3234203d3e20313431363030.roa File: 3130332e3136302e3230312e302f32342d3234203d3e20313431363030.roa (raw, json) Hash identifier: 4jkdQCcw/oC60Uqzp6OYMYN8DQx59gTLPYhgvW+GgPw= Subject key identifier: B0:21:A0:3B:8F:6A:50:3D:B4:EE:51:41:CB:2E:D6:87:2B:BE:56:67 Certificate issuer: /CN=D5C9299AE00F0035704B10A84310B3C3DAD9BE19 Certificate serial: 2BBC6D1C58FED75452B0EC30C56A57AD0A847403 Authority key identifier: D5:C9:29:9A:E0:0F:00:35:70:4B:10:A8:43:10:B3:C3:DA:D9:BE:19 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D5C9299AE00F0035704B10A84310B3C3DAD9BE19.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3144d97a-e3fb-4ffc-b7f7-f7b8b6659ac4/1/3130332e3136302e3230312e302f32342d3234203d3e20313431363030.roa Signing time: Fri 17 May 2024 06:25:10 +0000 ROA not before: Fri 17 May 2024 06:20:10 +0000 ROA not after: Fri 16 May 2025 06:25:10 +0000 asID: 141600 IP address blocks: 103.160.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3144d97a-e3fb-4ffc-b7f7-f7b8b6659ac4/1/D5C9299AE00F0035704B10A84310B3C3DAD9BE19.crl rsync://repo-rpki.idnic.net/repo/3144d97a-e3fb-4ffc-b7f7-f7b8b6659ac4/1/D5C9299AE00F0035704B10A84310B3C3DAD9BE19.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D5C9299AE00F0035704B10A84310B3C3DAD9BE19.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Jul 2024 11:33:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:bc:6d:1c:58:fe:d7:54:52:b0:ec:30:c5:6a:57:ad:0a:84:74:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D5C9299AE00F0035704B10A84310B3C3DAD9BE19 Validity Not Before: May 17 06:20:10 2024 GMT Not After : May 16 06:25:10 2025 GMT Subject: CN=B021A03B8F6A503DB4EE5141CB2ED6872BBE5667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:cf:27:d6:13:d3:85:ca:e3:55:67:1a:f3:68: a3:97:49:a9:86:b2:98:4c:07:f7:ad:05:6d:4e:34: 61:cf:f0:2d:d4:2b:f6:b6:92:d5:44:da:e3:d5:d9: ea:f5:70:eb:a3:e3:ee:b8:21:2c:3a:f4:62:40:25: c9:9f:3e:22:c8:8e:bb:49:3e:54:7c:b4:2f:8f:23: 41:c2:e9:b3:4b:8b:13:d5:92:16:6b:a0:ab:51:4d: 35:08:9f:60:09:ba:97:74:f6:01:bc:6f:45:ef:f9: 86:8a:1b:47:3e:04:3a:1c:d3:40:dd:54:52:0b:1b: c2:37:0e:98:4c:a3:b9:9f:33:da:92:6c:f1:c7:e6: 92:a9:e1:be:4c:84:42:2d:b8:e6:a8:dd:e3:47:92: b4:a2:40:11:a0:3c:c9:1a:44:3a:97:31:e2:ac:3c: 07:31:7e:cf:23:67:44:91:6b:19:ab:d9:91:44:1e: 01:da:2a:28:d9:54:f3:ab:05:e2:65:9b:b6:75:9e: 0a:58:f6:23:eb:56:2c:f0:1b:ee:33:b4:ce:bd:65: 6b:b7:b1:57:9e:f8:8e:73:4d:ac:f0:79:fb:07:ec: fd:29:51:01:10:c8:ff:46:d3:6b:96:3f:80:5b:ea: fe:72:60:d8:32:84:49:63:c8:03:35:91:dc:98:00: 4d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:21:A0:3B:8F:6A:50:3D:B4:EE:51:41:CB:2E:D6:87:2B:BE:56:67 X509v3 Authority Key Identifier: keyid:D5:C9:29:9A:E0:0F:00:35:70:4B:10:A8:43:10:B3:C3:DA:D9:BE:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3144d97a-e3fb-4ffc-b7f7-f7b8b6659ac4/1/D5C9299AE00F0035704B10A84310B3C3DAD9BE19.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D5C9299AE00F0035704B10A84310B3C3DAD9BE19.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3144d97a-e3fb-4ffc-b7f7-f7b8b6659ac4/1/3130332e3136302e3230312e302f32342d3234203d3e20313431363030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.201.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:b0:b5:1f:84:fc:c5:cd:3a:42:cc:1f:4a:5d:d0:55:b3:d9: 7a:97:42:f8:9f:60:9d:b7:10:ed:22:e1:3b:ec:32:7a:fc:e7: 53:a0:61:a6:ff:6c:35:56:7e:f1:8c:d6:38:43:c2:53:24:f0: 2d:e1:df:a4:86:6a:d3:b0:7c:d6:e0:a2:6f:de:a3:1c:ea:2a: 60:11:d6:f5:3c:d8:fb:53:e2:a5:fa:87:0a:ab:4f:01:ee:d3: c0:66:6c:d5:cc:5d:9a:6c:9b:0e:00:e3:c0:4d:85:c9:7f:ed: 70:c3:0e:1c:1b:9d:61:16:4c:0d:a3:e6:d6:8f:07:85:6b:6b: ba:c5:c1:d7:95:41:5e:93:f0:7f:55:f5:a8:35:a7:c4:08:e1: 2b:90:f5:18:a8:3a:43:bb:f2:f7:df:31:04:34:b4:1d:24:e7: 85:f0:8d:32:98:7a:83:79:d0:13:d1:4b:b7:80:05:8f:4f:05: b0:2d:9d:8c:23:e9:63:c9:95:ea:7e:f8:74:8d:eb:5a:be:14: ec:0b:ea:59:9c:c3:71:f8:6c:ab:d3:5d:4f:8c:79:2b:d6:77: 24:26:22:ba:9c:46:f8:82:40:94:b4:5f:48:b4:18:fb:2a:c2: 55:8c:08:67:a3:e5:07:30:b6:b9:c4:ff:bc:19:59:0a:68:6f: e7:c7:20:91 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUK7xtHFj+11RSsOwwxWpXrQqEdAMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDVDOTI5OUFFMDBGMDAzNTcwNEIxMEE4NDMxMEIzQzNE QUQ5QkUxOTAeFw0yNDA1MTcwNjIwMTBaFw0yNTA1MTYwNjI1MTBaMDMxMTAvBgNV BAMTKEIwMjFBMDNCOEY2QTUwM0RCNEVFNTE0MUNCMkVENjg3MkJCRTU2NjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpzyfWE9OFyuNVZxrzaKOXSamG sphMB/etBW1ONGHP8C3UK/a2ktVE2uPV2er1cOuj4+64ISw69GJAJcmfPiLIjrtJ PlR8tC+PI0HC6bNLixPVkhZroKtRTTUIn2AJupd09gG8b0Xv+YaKG0c+BDoc00Dd VFILG8I3DphMo7mfM9qSbPHH5pKp4b5MhEItuOao3eNHkrSiQBGgPMkaRDqXMeKs PAcxfs8jZ0SRaxmr2ZFEHgHaKijZVPOrBeJlm7Z1ngpY9iPrVizwG+4ztM69ZWu3 sVee+I5zTazwefsH7P0pUQEQyP9G02uWP4Bb6v5yYNgyhEljyAM1kdyYAE2hAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUsCGgO49qUD207lFByy7Whyu+VmcwHwYDVR0j BBgwFoAU1ckpmuAPADVwSxCoQxCzw9rZvhkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MTQ0ZDk3YS1lM2ZiLTRmZmMtYjdmNy1mN2I4YjY2NTlhYzQvMS9ENUM5Mjk5QUUw MEYwMDM1NzA0QjEwQTg0MzEwQjNDM0RBRDlCRTE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDVDOTI5OUFFMDBGMDAzNTcwNEIxMEE4NDMxMEIzQzNEQUQ5 QkUxOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxNDRkOTdhLWUzZmItNGZmYy1i N2Y3LWY3YjhiNjY1OWFjNC8xLzMxMzAzMzJlMzEzNjMwMmUzMjMwMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjMwMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoMkwDQYJ KoZIhvcNAQELBQADggEBAAqwtR+E/MXNOkLMH0pd0FWz2XqXQvifYJ23EO0i4Tvs Mnr851OgYab/bDVWfvGM1jhDwlMk8C3h36SGatOwfNbgom/eoxzqKmAR1vU82PtT 4qX6hwqrTwHu08BmbNXMXZpsmw4A48BNhcl/7XDDDhwbnWEWTA2j5taPB4Vra7rF wdeVQV6T8H9V9ag1p8QI4SuQ9RioOkO78vffMQQ0tB0k54XwjTKYeoN50BPRS7eA BY9PBbAtnYwj6WPJlep++HSN61q+FOwL6lmcw3H4bKvTXU+MeSvWdyQmIrqcRviC QJS0X0i0GPsqwlWMCGej5QcwtrnE/7wZWQpob+fHIJE= -----END CERTIFICATE-----Generated at Fri Jun 28 03:12:23 2024 by rpki-client on console-fra.rpki-client.org