$ rpki-client -vvf repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/3130332e3130312e39362e302f32332d3233203d3e20313530393430.roa File: 3130332e3130312e39362e302f32332d3233203d3e20313530393430.roa (raw, json) Hash identifier: ED/6+BwM8sod94k9wXfselYq/3g3ss3r+glcWXmOBlI= Subject key identifier: D8:83:45:3A:13:1C:4B:E6:71:C0:35:C1:4D:BE:95:E0:72:E2:1C:95 Certificate issuer: /CN=8D7AD1F796C88BCD49E1BEC42851AFA58BD78588 Certificate serial: 4EBAF1B605C538CB8D72E5F69D99A4DA2D7876F2 Authority key identifier: 8D:7A:D1:F7:96:C8:8B:CD:49:E1:BE:C4:28:51:AF:A5:8B:D7:85:88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/3130332e3130312e39362e302f32332d3233203d3e20313530393430.roa Signing time: Sun 03 Mar 2024 04:01:54 +0000 ROA not before: Sun 03 Mar 2024 03:56:54 +0000 ROA not after: Sun 02 Mar 2025 04:01:54 +0000 asID: 150940 IP address blocks: 103.101.96.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.crl rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:ba:f1:b6:05:c5:38:cb:8d:72:e5:f6:9d:99:a4:da:2d:78:76:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D7AD1F796C88BCD49E1BEC42851AFA58BD78588 Validity Not Before: Mar 3 03:56:54 2024 GMT Not After : Mar 2 04:01:54 2025 GMT Subject: CN=D883453A131C4BE671C035C14DBE95E072E21C95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3b:32:d4:a4:54:5b:e6:0f:4e:dd:fa:e5:a4: d9:f3:f2:d8:cf:80:d8:34:da:cb:c6:e2:ca:27:a6: fe:12:fe:05:03:55:ac:45:f3:94:8c:7d:80:da:23: 72:a2:e3:8c:97:90:44:84:4d:dc:56:45:1b:38:68: 24:da:f3:23:29:ce:46:74:cc:62:ee:b7:70:87:cc: d1:86:32:5e:64:f8:3c:27:35:60:01:bb:b1:8c:68: ce:98:f6:05:f4:4e:22:f6:3a:76:60:59:8e:c7:6c: 38:a7:9b:93:44:34:00:29:4a:b7:ed:3c:2d:0a:4b: c5:e0:68:d2:be:7a:82:98:b3:5c:8e:84:00:9e:74: 60:bf:11:92:01:4e:2f:bc:e4:20:5b:f6:e0:cf:5a: e1:34:11:b2:d9:ed:08:df:76:f1:7c:18:c1:bf:73: fa:b5:a1:5e:a3:6a:d2:a2:b9:29:2f:e7:2e:2e:bd: 64:97:c1:4c:c0:bf:f0:58:bb:66:ed:dd:70:5e:41: 39:c7:5e:37:fd:aa:21:d9:3d:ad:5b:65:cf:0f:20: 27:cc:ed:ac:50:56:a3:72:ff:32:4b:94:fe:38:1c: 66:6a:1e:74:15:5d:d0:c8:10:07:04:17:c2:f9:98: bb:96:14:e9:16:a8:15:42:e4:6e:97:1f:1e:8a:df: 8a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:83:45:3A:13:1C:4B:E6:71:C0:35:C1:4D:BE:95:E0:72:E2:1C:95 X509v3 Authority Key Identifier: keyid:8D:7A:D1:F7:96:C8:8B:CD:49:E1:BE:C4:28:51:AF:A5:8B:D7:85:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/3130332e3130312e39362e302f32332d3233203d3e20313530393430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.96.0/23 Signature Algorithm: sha256WithRSAEncryption 28:63:c9:a7:7d:af:70:26:6e:9c:c3:c7:4e:6a:b1:d7:b7:f4: fa:64:fd:d1:f3:ef:d2:37:bf:53:bc:63:82:fa:03:2f:cd:e2: 15:79:52:92:78:6b:ab:1a:04:30:63:d6:4c:02:0b:fc:3d:18: e2:38:14:e5:b2:13:d3:d7:d8:92:ef:5f:86:69:da:00:28:6a: 61:79:11:1f:be:e0:8c:82:c7:64:06:28:64:d3:cb:a4:06:bc: af:c4:12:66:ae:c2:e0:05:51:50:30:95:79:f6:e0:c5:55:93: 83:db:91:b0:c1:d6:4a:90:88:10:10:49:a9:21:f4:9f:0d:c9: f7:82:9a:39:68:b8:b7:69:0c:a9:df:1c:54:f6:cc:29:02:11: 17:ff:86:e1:05:59:07:a7:d6:ed:5a:b2:fe:66:ca:43:36:0a: 9c:82:1f:33:70:e3:d9:7f:c0:99:bb:0c:8d:4c:75:1a:8f:7c: 45:84:1d:67:99:01:ce:d5:c5:b4:ac:e3:37:ba:c6:f0:e5:65: ab:eb:52:bd:21:77:76:73:2f:ef:3c:84:8c:7b:fa:48:c0:69: c7:d4:ac:66:65:87:8c:dc:33:56:ea:50:9b:f3:f6:c1:91:36: 5d:72:d4:d1:33:27:3d:37:7e:06:53:25:4d:d9:0f:7e:31:39: 7f:a0:20:2d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTrrxtgXFOMuNcuX2nZmk2i14dvIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQ3QUQxRjc5NkM4OEJDRDQ5RTFCRUM0Mjg1MUFGQTU4 QkQ3ODU4ODAeFw0yNDAzMDMwMzU2NTRaFw0yNTAzMDIwNDAxNTRaMDMxMTAvBgNV BAMTKEQ4ODM0NTNBMTMxQzRCRTY3MUMwMzVDMTREQkU5NUUwNzJFMjFDOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/OzLUpFRb5g9O3frlpNnz8tjP gNg02svG4sonpv4S/gUDVaxF85SMfYDaI3Ki44yXkESETdxWRRs4aCTa8yMpzkZ0 zGLut3CHzNGGMl5k+DwnNWABu7GMaM6Y9gX0TiL2OnZgWY7HbDinm5NENAApSrft PC0KS8XgaNK+eoKYs1yOhACedGC/EZIBTi+85CBb9uDPWuE0EbLZ7QjfdvF8GMG/ c/q1oV6jatKiuSkv5y4uvWSXwUzAv/BYu2bt3XBeQTnHXjf9qiHZPa1bZc8PICfM 7axQVqNy/zJLlP44HGZqHnQVXdDIEAcEF8L5mLuWFOkWqBVC5G6XHx6K34rxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU2INFOhMcS+ZxwDXBTb6V4HLiHJUwHwYDVR0j BBgwFoAUjXrR95bIi81J4b7EKFGvpYvXhYgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MTU3YzlhYy01MmRiLTRkYmEtYWM3Ny04NDVlMmRkZDg4NzkvMC84RDdBRDFGNzk2 Qzg4QkNENDlFMUJFQzQyODUxQUZBNThCRDc4NTg4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEQ3QUQxRjc5NkM4OEJDRDQ5RTFCRUM0Mjg1MUFGQTU4QkQ3 ODU4OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQxNTdjOWFjLTUyZGItNGRiYS1h Yzc3LTg0NWUyZGRkODg3OS8wLzMxMzAzMzJlMzEzMDMxMmUzOTM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNTMwMzkzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2VgMA0GCSqG SIb3DQEBCwUAA4IBAQAoY8mnfa9wJm6cw8dOarHXt/T6ZP3R8+/SN79TvGOC+gMv zeIVeVKSeGurGgQwY9ZMAgv8PRjiOBTlshPT19iS71+GadoAKGpheREfvuCMgsdk Bihk08ukBryvxBJmrsLgBVFQMJV59uDFVZOD25GwwdZKkIgQEEmpIfSfDcn3gpo5 aLi3aQyp3xxU9swpAhEX/4bhBVkHp9btWrL+ZspDNgqcgh8zcOPZf8CZuwyNTHUa j3xFhB1nmQHO1cW0rOM3usbw5WWr61K9IXd2cy/vPISMe/pIwGnH1KxmZYeM3DNW 6lCb8/bBkTZdctTRMyc9N34GUyVN2Q9+MTl/oCAt -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:43 2024 by rpki-client on console-fra.rpki-client.org