$ rpki-client -vvf repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3130332e3136352e3134382e302f32342d3234203d3e20313431393230.roa File: 3130332e3136352e3134382e302f32342d3234203d3e20313431393230.roa (raw, json) Hash identifier: QCU/U4xg/9v57D9cmgDWzhWRAskhiglG08TQuaD6bic= Subject key identifier: 1A:E7:A0:B0:A0:BD:4C:B1:5B:D1:44:F0:86:B0:52:D1:BB:99:02:EF Certificate issuer: /CN=E4CEC11F244BF0DABEC136F839FD537B2DBBED0F Certificate serial: 2B93D8408F600BA600F37F46C370E61DBC83ACC6 Authority key identifier: E4:CE:C1:1F:24:4B:F0:DA:BE:C1:36:F8:39:FD:53:7B:2D:BB:ED:0F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3130332e3136352e3134382e302f32342d3234203d3e20313431393230.roa Signing time: Tue 16 Apr 2024 09:06:33 +0000 ROA not before: Tue 16 Apr 2024 09:01:33 +0000 ROA not after: Tue 15 Apr 2025 09:06:33 +0000 asID: 141920 IP address blocks: 103.165.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.crl rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:93:d8:40:8f:60:0b:a6:00:f3:7f:46:c3:70:e6:1d:bc:83:ac:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E4CEC11F244BF0DABEC136F839FD537B2DBBED0F Validity Not Before: Apr 16 09:01:33 2024 GMT Not After : Apr 15 09:06:33 2025 GMT Subject: CN=1AE7A0B0A0BD4CB15BD144F086B052D1BB9902EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:14:06:a5:59:2f:75:71:b0:81:e0:ca:38:87: 86:cb:85:13:d2:a3:c9:19:33:f4:c4:b5:28:84:55: 73:50:65:12:74:bb:2c:96:85:f5:a3:39:47:9b:2e: 4e:19:31:6a:cd:98:ac:a3:90:ae:de:06:7d:b7:5a: b4:51:87:27:f1:98:89:e3:fc:83:d5:83:cd:c2:6f: 48:c4:44:4b:19:0e:a8:3a:60:d1:e3:dd:e1:83:1b: 92:d0:47:30:0c:48:86:86:f3:61:c9:5a:47:07:b1: 5c:2f:8f:2a:a5:0b:94:ed:e8:f2:09:98:65:c8:8e: c1:21:5a:96:22:f8:40:81:4f:3e:73:f9:63:e6:46: fa:e1:98:0d:c0:e7:d7:58:ae:29:60:e4:1d:a3:42: f6:b2:60:5d:29:eb:ae:81:58:90:fb:7c:ae:c9:48: ba:e1:5e:c3:48:0b:7c:c8:fb:31:1c:85:b4:a6:71: 33:9a:d4:70:8f:70:3a:5c:74:80:e0:70:3c:2a:0d: c4:dc:60:e4:54:58:2e:57:c9:ff:e2:28:39:fe:31: 49:58:0b:ae:e3:84:43:a8:68:23:21:80:96:d3:5f: 1c:c9:7f:b0:f4:9a:fe:17:63:c4:81:55:81:0d:d6: 2e:ed:04:62:c1:18:a9:5b:2a:42:64:b6:b4:9f:7b: 87:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:E7:A0:B0:A0:BD:4C:B1:5B:D1:44:F0:86:B0:52:D1:BB:99:02:EF X509v3 Authority Key Identifier: keyid:E4:CE:C1:1F:24:4B:F0:DA:BE:C1:36:F8:39:FD:53:7B:2D:BB:ED:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E4CEC11F244BF0DABEC136F839FD537B2DBBED0F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32f3f5d9-cfb8-4123-a2b1-b0b5299f9c6e/0/3130332e3136352e3134382e302f32342d3234203d3e20313431393230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.148.0/24 Signature Algorithm: sha256WithRSAEncryption 78:fd:d7:b5:46:72:d1:41:29:cc:57:57:86:60:f4:eb:6d:f3: b5:67:47:a2:f1:9f:57:5c:33:f7:d1:da:88:28:68:93:97:5d: 99:8a:86:49:94:96:95:71:7e:97:d4:1d:6e:0e:f7:88:62:30: 1d:ea:d7:61:22:6f:ba:78:93:38:1a:19:c1:e5:3b:d2:9f:ce: 6d:16:76:79:46:e5:0f:c6:46:48:20:64:32:20:41:3e:67:80: 91:e5:60:2e:79:e8:d9:75:4d:44:e4:b8:a3:f9:fb:ff:c7:e4: 22:81:78:4e:b0:c9:b3:0c:2f:76:ed:4c:71:32:b3:b3:42:f6: 3f:e2:51:63:f1:02:b9:93:3c:9b:39:bb:3f:45:d3:59:df:6d: 2b:eb:e3:2a:5f:79:ea:d6:27:67:85:62:4b:d1:b2:00:a4:5e: d2:fd:4d:93:81:60:2b:41:b6:02:73:c3:2a:86:af:75:f7:e1: eb:8c:d3:4e:5f:5d:92:a3:4f:43:17:73:c9:93:d4:40:9d:6c: 3a:20:67:54:4e:a9:bf:c5:0a:af:77:c9:3d:8f:c8:ae:8c:fe: 38:94:df:0b:f4:9f:ea:22:74:1a:37:76:00:60:d3:37:a8:66: 6d:7a:76:f2:18:50:32:7f:36:48:a5:b7:24:ca:90:6f:90:b6: 08:83:65:97 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUK5PYQI9gC6YA839Gw3DmHbyDrMYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTRDRUMxMUYyNDRCRjBEQUJFQzEzNkY4MzlGRDUzN0Iy REJCRUQwRjAeFw0yNDA0MTYwOTAxMzNaFw0yNTA0MTUwOTA2MzNaMDMxMTAvBgNV BAMTKDFBRTdBMEIwQTBCRDRDQjE1QkQxNDRGMDg2QjA1MkQxQkI5OTAyRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuFAalWS91cbCB4Mo4h4bLhRPS o8kZM/TEtSiEVXNQZRJ0uyyWhfWjOUebLk4ZMWrNmKyjkK7eBn23WrRRhyfxmInj /IPVg83Cb0jEREsZDqg6YNHj3eGDG5LQRzAMSIaG82HJWkcHsVwvjyqlC5Tt6PIJ mGXIjsEhWpYi+ECBTz5z+WPmRvrhmA3A59dYrilg5B2jQvayYF0p666BWJD7fK7J SLrhXsNIC3zI+zEchbSmcTOa1HCPcDpcdIDgcDwqDcTcYORUWC5Xyf/iKDn+MUlY C67jhEOoaCMhgJbTXxzJf7D0mv4XY8SBVYEN1i7tBGLBGKlbKkJktrSfe4cTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUGuegsKC9TLFb0UTwhrBS0buZAu8wHwYDVR0j BBgwFoAU5M7BHyRL8Nq+wTb4Of1Tey277Q8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MmYzZjVkOS1jZmI4LTQxMjMtYTJiMS1iMGI1Mjk5ZjljNmUvMC9FNENFQzExRjI0 NEJGMERBQkVDMTM2RjgzOUZENTM3QjJEQkJFRDBGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRTRDRUMxMUYyNDRCRjBEQUJFQzEzNkY4MzlGRDUzN0IyREJC RUQwRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMyZjNmNWQ5LWNmYjgtNDEyMy1h MmIxLWIwYjUyOTlmOWM2ZS8wLzMxMzAzMzJlMzEzNjM1MmUzMTM0MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTMyMzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpZQwDQYJ KoZIhvcNAQELBQADggEBAHj917VGctFBKcxXV4Zg9Ott87VnR6Lxn1dcM/fR2ogo aJOXXZmKhkmUlpVxfpfUHW4O94hiMB3q12Eib7p4kzgaGcHlO9Kfzm0WdnlG5Q/G RkggZDIgQT5ngJHlYC556Nl1TUTkuKP5+//H5CKBeE6wybMML3btTHEys7NC9j/i UWPxArmTPJs5uz9F01nfbSvr4ypfeerWJ2eFYkvRsgCkXtL9TZOBYCtBtgJzwyqG r3X34euM005fXZKjT0MXc8mT1ECdbDogZ1ROqb/FCq93yT2PyK6M/jiU3wv0n+oi dBo3dgBg0zeoZm16dvIYUDJ/NkiltyTKkG+QtgiDZZc= -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:05 2024 by rpki-client on console-fra.rpki-client.org