$ rpki-client -vvf repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/3130332e3130312e39362e302f32342d3234203d3e20313530393430.roa File: 3130332e3130312e39362e302f32342d3234203d3e20313530393430.roa (raw, json) Hash identifier: fXUgq36ejSe6Mt9Z8iAmIYvwwQjs0rTb2Jv+srY4OWA= Subject key identifier: FA:30:A1:D5:41:6F:E4:14:9A:1F:F6:00:08:4D:7B:55:D4:36:51:9D Certificate issuer: /CN=8D7AD1F796C88BCD49E1BEC42851AFA58BD78588 Certificate serial: 47D22AF06A667E6A8524B89308C02CE371C9472E Authority key identifier: 8D:7A:D1:F7:96:C8:8B:CD:49:E1:BE:C4:28:51:AF:A5:8B:D7:85:88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/3130332e3130312e39362e302f32342d3234203d3e20313530393430.roa Signing time: Sun 03 Mar 2024 04:01:54 +0000 ROA not before: Sun 03 Mar 2024 03:56:54 +0000 ROA not after: Sun 02 Mar 2025 04:01:54 +0000 asID: 150940 IP address blocks: 103.101.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.crl rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:d2:2a:f0:6a:66:7e:6a:85:24:b8:93:08:c0:2c:e3:71:c9:47:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D7AD1F796C88BCD49E1BEC42851AFA58BD78588 Validity Not Before: Mar 3 03:56:54 2024 GMT Not After : Mar 2 04:01:54 2025 GMT Subject: CN=FA30A1D5416FE4149A1FF600084D7B55D436519D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b3:a5:c8:5b:16:37:10:6d:f8:77:af:f9:ee: 96:a2:a1:ae:ba:63:63:43:a6:2f:21:9a:a0:aa:41: a7:26:e0:df:64:8a:c2:d7:18:4a:25:c7:c1:36:ed: b6:68:b3:48:55:9c:18:7d:9e:0e:21:f5:3d:f8:98: 67:64:4c:1e:c0:88:c6:07:cf:e7:fe:d7:3c:ea:bc: 5f:97:a9:69:32:73:ce:ab:7c:7a:ca:f6:ba:da:c4: 24:fb:04:b0:6c:dc:67:57:69:61:d7:6a:60:11:3c: 4c:1c:51:79:bd:53:a4:76:14:24:68:77:76:bd:2a: c8:3b:9a:c2:f3:42:c8:52:34:e3:dd:a0:6f:6b:9d: d9:da:49:e6:c4:da:40:cc:be:35:51:53:3f:6f:33: 1b:aa:fe:c4:ca:a5:e9:3d:56:4d:60:38:da:c5:3d: 12:18:f8:03:dd:a6:d4:a9:93:fa:60:49:b7:81:f7: 75:62:03:3f:e8:78:cc:3d:d2:7f:f0:00:11:13:d3: 4e:8d:e9:e1:e1:b2:cf:58:79:81:a4:87:93:86:3a: d3:cb:d4:8e:53:8a:b9:c9:f3:cb:3d:5a:a8:68:9c: 4a:67:0b:4b:4b:42:8b:bd:da:fa:96:c4:5a:de:7e: 13:fa:ba:fe:66:e4:5a:ca:11:02:5d:1a:1a:f0:33: 45:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:30:A1:D5:41:6F:E4:14:9A:1F:F6:00:08:4D:7B:55:D4:36:51:9D X509v3 Authority Key Identifier: keyid:8D:7A:D1:F7:96:C8:8B:CD:49:E1:BE:C4:28:51:AF:A5:8B:D7:85:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/3130332e3130312e39362e302f32342d3234203d3e20313530393430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.96.0/24 Signature Algorithm: sha256WithRSAEncryption b9:dc:24:cc:5d:01:d2:6d:d7:5d:e7:29:8d:1f:88:a4:55:88: da:eb:18:71:1a:f8:e2:48:34:90:0b:c1:8b:e6:e4:1e:bf:09: ca:7f:09:c9:82:6a:36:d1:82:d7:88:b2:e0:2b:fa:ce:dd:b8: 4d:07:88:9f:fc:21:ec:9c:54:25:fd:07:d8:68:2f:2b:0e:25: 8e:54:72:61:e4:56:4e:aa:d5:a8:bc:fd:9f:0b:fd:d2:2a:f4: 9d:b1:e9:48:72:13:d2:f4:38:25:64:5b:8e:ad:b6:ac:1b:15: 82:f7:6e:54:ad:af:87:5f:4c:bb:fc:56:a1:f0:bc:2a:69:e4: 41:42:95:5e:10:55:8c:1b:d2:42:8f:6c:9c:a9:03:6b:06:2f: 0b:6f:8a:c8:38:85:4a:21:78:42:36:c5:f9:f0:e6:9c:8c:5c: 85:b2:0b:ce:f4:0d:f8:d5:aa:1d:06:2b:0f:bb:5d:be:05:56: 92:1d:5d:55:ab:6b:c4:96:7a:47:69:80:61:88:ba:4f:2b:6b: 30:b4:40:e9:c2:3f:98:e2:24:7d:8a:fc:02:f3:df:77:48:d8: 85:38:22:86:2f:99:59:56:b4:5f:c4:ac:ed:de:b0:b0:bc:1c: c0:ed:6e:fe:04:ea:49:01:d9:d9:5e:13:56:40:33:aa:34:60: 21:fe:84:bd -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUR9Iq8GpmfmqFJLiTCMAs43HJRy4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQ3QUQxRjc5NkM4OEJDRDQ5RTFCRUM0Mjg1MUFGQTU4 QkQ3ODU4ODAeFw0yNDAzMDMwMzU2NTRaFw0yNTAzMDIwNDAxNTRaMDMxMTAvBgNV BAMTKEZBMzBBMUQ1NDE2RkU0MTQ5QTFGRjYwMDA4NEQ3QjU1RDQzNjUxOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhs6XIWxY3EG34d6/57paioa66 Y2NDpi8hmqCqQacm4N9kisLXGEolx8E27bZos0hVnBh9ng4h9T34mGdkTB7AiMYH z+f+1zzqvF+XqWkyc86rfHrK9rraxCT7BLBs3GdXaWHXamARPEwcUXm9U6R2FCRo d3a9Ksg7msLzQshSNOPdoG9rndnaSebE2kDMvjVRUz9vMxuq/sTKpek9Vk1gONrF PRIY+APdptSpk/pgSbeB93ViAz/oeMw90n/wABET006N6eHhss9YeYGkh5OGOtPL 1I5TirnJ88s9WqhonEpnC0tLQou92vqWxFrefhP6uv5m5FrKEQJdGhrwM0X/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU+jCh1UFv5BSaH/YACE17VdQ2UZ0wHwYDVR0j BBgwFoAUjXrR95bIi81J4b7EKFGvpYvXhYgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MTU3YzlhYy01MmRiLTRkYmEtYWM3Ny04NDVlMmRkZDg4NzkvMC84RDdBRDFGNzk2 Qzg4QkNENDlFMUJFQzQyODUxQUZBNThCRDc4NTg4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEQ3QUQxRjc5NkM4OEJDRDQ5RTFCRUM0Mjg1MUFGQTU4QkQ3 ODU4OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQxNTdjOWFjLTUyZGItNGRiYS1h Yzc3LTg0NWUyZGRkODg3OS8wLzMxMzAzMzJlMzEzMDMxMmUzOTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2VgMA0GCSqG SIb3DQEBCwUAA4IBAQC53CTMXQHSbddd5ymNH4ikVYja6xhxGvjiSDSQC8GL5uQe vwnKfwnJgmo20YLXiLLgK/rO3bhNB4if/CHsnFQl/QfYaC8rDiWOVHJh5FZOqtWo vP2fC/3SKvSdselIchPS9DglZFuOrbasGxWC925Ura+HX0y7/Fah8LwqaeRBQpVe EFWMG9JCj2ycqQNrBi8Lb4rIOIVKIXhCNsX58OacjFyFsgvO9A341aodBisPu12+ BVaSHV1Vq2vElnpHaYBhiLpPK2swtEDpwj+Y4iR9ivwC8993SNiFOCKGL5lZVrRf xKzt3rCwvBzA7W7+BOpJAdnZXhNWQDOqNGAh/oS9 -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:43 2024 by rpki-client on console-fra.rpki-client.org