$ rpki-client -vvf repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3130332e3136302e34302e302f32332d3233203d3e20313431353936.roa File: 3130332e3136302e34302e302f32332d3233203d3e20313431353936.roa (raw, json) Hash identifier: +Sh30nDK5FN0F+rgaXdcf8t+v+X9RkFfwm8Ti8cbstU= Subject key identifier: 0A:99:4E:2C:8D:CA:71:50:C0:E2:2B:B7:88:0A:C5:BF:F9:BE:6F:77 Certificate issuer: /CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Certificate serial: 3309403C88486D324A0489CB43B10ADEDE032AEF Authority key identifier: 37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3130332e3136302e34302e302f32332d3233203d3e20313431353936.roa Signing time: Wed 02 Oct 2024 20:00:01 +0000 ROA not before: Wed 02 Oct 2024 19:55:01 +0000 ROA not after: Wed 01 Oct 2025 20:00:01 +0000 asID: 141596 IP address blocks: 103.160.40.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:09:40:3c:88:48:6d:32:4a:04:89:cb:43:b1:0a:de:de:03:2a:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Validity Not Before: Oct 2 19:55:01 2024 GMT Not After : Oct 1 20:00:01 2025 GMT Subject: CN=0A994E2C8DCA7150C0E22BB7880AC5BFF9BE6F77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c7:18:1f:ae:24:ba:33:fd:99:0d:b8:aa:a1: 8a:e9:4b:2c:fb:93:05:c8:d6:33:4d:61:b4:0e:e5: 49:d4:a5:d7:62:b2:89:8c:d8:e8:b2:50:86:8e:29: de:7c:f5:c7:b9:a8:0e:d6:f8:ae:f0:74:e3:66:93: 53:b5:ad:9c:34:b8:49:d0:9d:23:d4:72:41:73:0e: 08:6d:2d:44:ea:e7:8c:57:e7:d9:94:03:04:88:d0: 70:8a:2d:e6:27:bf:7c:bc:6d:1b:0d:c2:04:4a:bf: 88:2e:26:dd:bb:0d:a3:46:27:3a:18:4e:8d:9c:c3: 07:90:fb:4d:22:8c:db:9e:6a:a0:f9:e4:92:aa:35: b9:84:08:b3:b7:66:aa:ff:1c:8f:bd:aa:5d:b1:3b: aa:3d:f7:21:4c:72:6a:53:5c:59:af:8a:31:fc:21: 7e:8d:52:07:f7:bc:49:cf:6a:2d:d1:11:7e:2b:c7: b4:92:03:1d:e2:b1:9f:03:5a:a0:b9:a5:e4:c1:e9: 86:ef:55:9a:ea:78:78:1d:71:12:39:c6:19:02:eb: eb:0e:55:f2:3f:d7:6d:96:48:f7:ce:cb:b4:1a:ec: 25:01:86:1c:f1:c5:d2:8d:e5:c2:ec:4b:54:6e:7b: 68:15:18:b3:b0:e7:fa:1a:6e:44:d4:8e:19:b3:c8: 7d:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:99:4E:2C:8D:CA:71:50:C0:E2:2B:B7:88:0A:C5:BF:F9:BE:6F:77 X509v3 Authority Key Identifier: keyid:37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3130332e3136302e34302e302f32332d3233203d3e20313431353936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.40.0/23 Signature Algorithm: sha256WithRSAEncryption 42:07:ef:a8:2b:87:54:1a:31:2a:e6:dd:05:00:54:9b:38:0f: db:01:8d:09:73:5d:ba:be:33:24:03:88:23:62:12:78:ff:04: 7e:8c:38:7d:b3:69:4a:36:38:f7:e7:5e:91:a5:c6:53:56:12: 03:64:a3:b8:3e:9e:6d:72:1f:de:04:da:c6:62:50:88:25:bf: cd:bd:83:5f:76:ad:5d:b0:c7:f1:77:7c:4b:60:32:33:58:c4: 1d:01:68:93:37:52:12:ef:88:a4:bf:43:94:a3:f6:f4:8d:6d: f3:a0:40:b6:28:0c:5f:2c:ef:6d:4c:20:a4:0a:d7:55:2b:5a: e7:0e:c6:16:d5:54:a8:01:27:86:a2:8c:13:f4:13:0f:4e:aa: 06:d3:fb:e8:8a:c1:95:81:ec:3a:f3:9d:05:42:f1:da:bb:76: d1:40:b2:cb:2a:fa:e2:90:a7:48:b0:c5:42:25:f0:48:64:79: 03:ec:c0:a4:79:87:79:76:12:f0:dc:ac:ae:83:02:1d:5f:37: 01:4c:81:d9:d4:06:85:d4:c3:7d:8a:2b:cb:b4:94:0e:8e:59: c8:b3:75:6d:33:84:1a:e9:b9:da:14:71:87:c2:a1:0f:ec:bf: d9:f6:6c:79:6d:57:a0:60:ec:c8:59:39:38:6c:d7:07:40:82: 34:66:2a:8a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMwlAPIhIbTJKBInLQ7EK3t4DKu8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQw N0U4MkQ1OTAeFw0yNDEwMDIxOTU1MDFaFw0yNTEwMDEyMDAwMDFaMDMxMTAvBgNV BAMTKDBBOTk0RTJDOERDQTcxNTBDMEUyMkJCNzg4MEFDNUJGRjlCRTZGNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrxxgfriS6M/2ZDbiqoYrpSyz7 kwXI1jNNYbQO5UnUpddisomM2OiyUIaOKd589ce5qA7W+K7wdONmk1O1rZw0uEnQ nSPUckFzDghtLUTq54xX59mUAwSI0HCKLeYnv3y8bRsNwgRKv4guJt27DaNGJzoY To2cwweQ+00ijNueaqD55JKqNbmECLO3Zqr/HI+9ql2xO6o99yFMcmpTXFmvijH8 IX6NUgf3vEnPai3REX4rx7SSAx3isZ8DWqC5peTB6YbvVZrqeHgdcRI5xhkC6+sO VfI/122WSPfOy7Qa7CUBhhzxxdKN5cLsS1Rue2gVGLOw5/oabkTUjhmzyH0PAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUCplOLI3KcVDA4iu3iArFv/m+b3cwHwYDVR0j BBgwFoAUNwOsQVTwWx5kLzHe9xojhAfoLVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTA5OWFkZi03ZTEyLTRlODMtOTVjMi1kZDdmNzc0OTQ3ODgvMC8zNzAzQUM0MTU0 RjA1QjFFNjQyRjMxREVGNzFBMjM4NDA3RTgyRDU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQwN0U4 MkQ1OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRhMDk5YWRmLTdlMTItNGU4My05 NWMyLWRkN2Y3NzQ5NDc4OC8wLzMxMzAzMzJlMzEzNjMwMmUzNDMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMxMzUzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6AoMA0GCSqG SIb3DQEBCwUAA4IBAQBCB++oK4dUGjEq5t0FAFSbOA/bAY0Jc126vjMkA4gjYhJ4 /wR+jDh9s2lKNjj3516RpcZTVhIDZKO4Pp5tch/eBNrGYlCIJb/NvYNfdq1dsMfx d3xLYDIzWMQdAWiTN1IS74ikv0OUo/b0jW3zoEC2KAxfLO9tTCCkCtdVK1rnDsYW 1VSoASeGoowT9BMPTqoG0/voisGVgew6850FQvHau3bRQLLLKvrikKdIsMVCJfBI ZHkD7MCkeYd5dhLw3KyugwIdXzcBTIHZ1AaF1MN9iivLtJQOjlnIs3VtM4Qa6bna FHGHwqEP7L/Z9mx5bVegYOzIWTk4bNcHQII0ZiqK -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org