$ rpki-client -vvf repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139362e302f32332d3233203d3e20313430343730.roa File: 3130332e3135392e3139362e302f32332d3233203d3e20313430343730.roa (raw, json) Hash identifier: rl8wH4GDT9EDg7ItMS1Jtz4yfXCXhkyR1v7BBmr0UHk= Subject key identifier: 96:76:BC:98:CF:93:AD:3B:D2:B8:6F:B1:40:1C:AD:96:9E:92:6B:83 Certificate issuer: /CN=F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D Certificate serial: 4C48F63DED53986A7C19E1DCED893F5565DC6267 Authority key identifier: F7:A5:C0:89:7A:1A:B3:1B:FD:31:BE:0A:F2:1D:82:5C:5A:A6:97:2D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139362e302f32332d3233203d3e20313430343730.roa Signing time: Thu 14 Mar 2024 10:00:01 +0000 ROA not before: Thu 14 Mar 2024 09:55:01 +0000 ROA not after: Thu 13 Mar 2025 10:00:01 +0000 asID: 140470 IP address blocks: 103.159.196.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.crl rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:48:f6:3d:ed:53:98:6a:7c:19:e1:dc:ed:89:3f:55:65:dc:62:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D Validity Not Before: Mar 14 09:55:01 2024 GMT Not After : Mar 13 10:00:01 2025 GMT Subject: CN=9676BC98CF93AD3BD2B86FB1401CAD969E926B83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:19:23:61:f2:9e:de:ab:2e:aa:c1:f0:00:1c: 8f:22:de:5c:eb:0a:a1:f3:ff:ec:53:cc:da:c2:7a: 04:cb:6b:81:d1:75:aa:57:57:a1:a3:ea:16:72:44: 5a:e3:22:6f:cd:74:8e:db:ca:a2:a7:37:2b:e2:ba: 6f:f3:ef:97:27:da:f2:d6:34:62:44:0f:18:96:86: 69:d7:ff:78:19:0b:79:a9:18:05:28:ff:cb:f9:b7: 45:e3:5b:46:76:a6:64:22:6b:ad:34:e3:80:22:8b: 93:3a:69:41:48:54:49:e6:14:7a:bf:9d:64:a2:09: 68:36:de:91:dc:8a:70:29:0e:0e:25:78:33:77:4d: 48:3f:90:34:c9:22:c4:49:46:3a:29:95:5f:a5:35: e9:c6:26:36:62:07:ba:7f:0f:cd:79:47:f4:3c:f8: cd:be:66:8e:36:06:f8:48:29:3c:f3:51:f4:e0:a8: c6:3e:7a:7a:3d:43:25:36:63:0c:af:d7:b3:c4:9a: 49:d0:79:d2:12:28:01:c3:ed:f0:9d:62:71:b3:aa: 0a:4e:fd:c3:86:e9:7c:79:e4:ae:e7:7e:19:d6:0c: 54:d7:65:87:1b:8e:78:d9:1a:57:af:1e:92:b1:51: c4:1f:b8:7d:b2:f0:b3:46:25:69:33:45:f0:ff:35: ff:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:76:BC:98:CF:93:AD:3B:D2:B8:6F:B1:40:1C:AD:96:9E:92:6B:83 X509v3 Authority Key Identifier: keyid:F7:A5:C0:89:7A:1A:B3:1B:FD:31:BE:0A:F2:1D:82:5C:5A:A6:97:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/3130332e3135392e3139362e302f32332d3233203d3e20313430343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.196.0/23 Signature Algorithm: sha256WithRSAEncryption 80:ed:96:36:79:16:af:c0:e4:5b:c0:3e:26:b1:21:30:7d:03: d9:eb:5b:9b:7a:c4:79:20:0d:f2:a3:1c:9e:e0:23:c4:53:ee: ec:64:28:13:9a:48:1d:8c:f0:a5:d7:97:26:05:7e:2d:1b:5d: 8c:aa:cf:ef:58:16:34:79:fc:a6:f2:4c:fd:d0:6b:b2:dc:4b: d0:46:fc:8d:97:f2:f0:14:c0:9b:ef:7b:b2:65:6c:e4:2e:92: e7:7e:c0:27:cc:37:94:37:d1:9c:1c:a3:4e:44:6e:ef:bd:29: b7:2b:02:eb:6a:2b:c5:b0:1f:4b:eb:9f:28:94:10:97:89:1e: c5:58:72:67:09:a0:aa:65:a2:b2:fa:dd:8e:4e:a9:8b:e8:6b: 05:d9:9f:a9:a7:4a:76:48:71:97:9f:d1:6c:dc:6b:c4:e3:d7: 10:4f:46:17:82:c3:d1:ec:4f:7d:e0:cb:a4:73:1c:b1:63:8e: 3e:62:11:ac:34:dd:2c:4f:27:5e:6d:07:91:66:38:75:d8:2b: df:6e:9f:a3:7a:6a:ae:e2:2b:95:cf:b8:25:18:cd:b3:86:13: 06:38:e4:5f:e0:1b:e5:70:ce:d9:58:29:78:2c:29:8c:20:a6: f2:f2:ba:94:3b:73:7e:70:ca:70:83:35:7f:e5:6b:81:59:c1: 17:b7:48:ba -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTEj2Pe1TmGp8GeHc7Yk/VWXcYmcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjdBNUMwODk3QTFBQjMxQkZEMzFCRTBBRjIxRDgyNUM1 QUE2OTcyRDAeFw0yNDAzMTQwOTU1MDFaFw0yNTAzMTMxMDAwMDFaMDMxMTAvBgNV BAMTKDk2NzZCQzk4Q0Y5M0FEM0JEMkI4NkZCMTQwMUNBRDk2OUU5MjZCODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAGSNh8p7eqy6qwfAAHI8i3lzr CqHz/+xTzNrCegTLa4HRdapXV6Gj6hZyRFrjIm/NdI7byqKnNyvium/z75cn2vLW NGJEDxiWhmnX/3gZC3mpGAUo/8v5t0XjW0Z2pmQia60044Aii5M6aUFIVEnmFHq/ nWSiCWg23pHcinApDg4leDN3TUg/kDTJIsRJRjoplV+lNenGJjZiB7p/D815R/Q8 +M2+Zo42BvhIKTzzUfTgqMY+eno9QyU2Ywyv17PEmknQedISKAHD7fCdYnGzqgpO /cOG6Xx55K7nfhnWDFTXZYcbjnjZGlevHpKxUcQfuH2y8LNGJWkzRfD/Nf+TAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUlna8mM+TrTvSuG+xQBytlp6Sa4MwHwYDVR0j BBgwFoAU96XAiXoasxv9Mb4K8h2CXFqmly0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Y2RkNTc3NC0zMGRkLTRhMDAtYjFhOS05YjEyODI2OTMwYzIvMC9GN0E1QzA4OTdB MUFCMzFCRkQzMUJFMEFGMjFEODI1QzVBQTY5NzJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjdBNUMwODk3QTFBQjMxQkZEMzFCRTBBRjIxRDgyNUM1QUE2 OTcyRC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjZGQ1Nzc0LTMwZGQtNGEwMC1i MWE5LTliMTI4MjY5MzBjMi8wLzMxMzAzMzJlMzEzNTM5MmUzMTM5MzYyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzAzNDM3MzAucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnn8QwDQYJ KoZIhvcNAQELBQADggEBAIDtljZ5Fq/A5FvAPiaxITB9A9nrW5t6xHkgDfKjHJ7g I8RT7uxkKBOaSB2M8KXXlyYFfi0bXYyqz+9YFjR5/KbyTP3Qa7LcS9BG/I2X8vAU wJvve7JlbOQukud+wCfMN5Q30Zwco05Ebu+9KbcrAutqK8WwH0vrnyiUEJeJHsVY cmcJoKplorL63Y5OqYvoawXZn6mnSnZIcZef0Wzca8Tj1xBPRheCw9HsT33gy6Rz HLFjjj5iEaw03SxPJ15tB5FmOHXYK99un6N6aq7iK5XPuCUYzbOGEwY45F/gG+Vw ztlYKXgsKYwgpvLyupQ7c35wynCDNX/la4FZwRe3SLo= -----END CERTIFICATE-----Generated at Fri Nov 22 17:49:50 2024 by rpki-client on console-fra.rpki-client.org