$ rpki-client -vvf repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3130332e3136302e34302e302f32342d3234203d3e20313431353936.roa File: 3130332e3136302e34302e302f32342d3234203d3e20313431353936.roa (raw, json) Hash identifier: 2wmGpgdLLad+yQRBpECeWO5okHIOK5XLuX+ZtyFeGtw= Subject key identifier: 85:7D:AB:38:CD:7D:04:24:E0:BA:60:C3:10:F4:EB:94:2B:58:9B:31 Certificate issuer: /CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Certificate serial: 15CFB32ED7462D81C27E479975E66D301B4AD0FF Authority key identifier: 37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3130332e3136302e34302e302f32342d3234203d3e20313431353936.roa Signing time: Wed 02 Oct 2024 06:00:01 +0000 ROA not before: Wed 02 Oct 2024 05:55:01 +0000 ROA not after: Wed 01 Oct 2025 06:00:01 +0000 asID: 141596 IP address blocks: 103.160.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:cf:b3:2e:d7:46:2d:81:c2:7e:47:99:75:e6:6d:30:1b:4a:d0:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Validity Not Before: Oct 2 05:55:01 2024 GMT Not After : Oct 1 06:00:01 2025 GMT Subject: CN=857DAB38CD7D0424E0BA60C310F4EB942B589B31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:51:84:1b:41:f0:be:26:a7:ab:49:67:5d:84: d0:b5:0c:12:ee:73:e8:3d:2c:d6:54:59:ee:31:e0: 3a:4c:ae:ac:b9:a7:ab:02:c6:cc:8c:73:dc:af:46: fa:56:5e:7e:10:43:ba:c8:b8:c1:f1:0f:3f:65:76: b7:b5:e3:0f:d7:30:99:f9:2f:c7:4d:24:5c:e5:2f: 31:27:f7:04:04:1a:ac:48:6a:6e:f0:b0:00:00:02: cd:19:d4:8a:17:26:fa:bd:41:3f:4c:c8:28:94:49: 9f:6b:58:f5:ba:ce:c1:1c:bd:8e:de:6c:9c:d3:1b: f0:d9:c4:35:2c:f8:24:81:72:88:39:41:fb:01:b7: 54:2d:50:6f:59:3f:64:48:0d:3f:b8:92:06:0b:fd: 04:6e:dc:67:84:45:7a:81:f7:3c:d1:6c:8f:b7:cc: 17:2c:ab:0b:7f:35:68:53:06:34:e8:ef:77:0e:79: 70:ee:54:0e:cc:60:1c:ab:6d:15:d4:6f:24:75:0a: c2:e8:ec:1a:a4:ec:e9:7f:23:cd:0b:bf:83:a1:57: e2:c4:41:8d:cf:1e:6e:dc:92:83:d6:2d:7c:2e:75: 66:ea:d2:9b:62:c2:53:23:e1:bf:70:c9:a6:fa:98: 7a:29:30:e9:15:c2:e3:02:b3:74:79:1a:2d:e7:4a: 78:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:7D:AB:38:CD:7D:04:24:E0:BA:60:C3:10:F4:EB:94:2B:58:9B:31 X509v3 Authority Key Identifier: keyid:37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3130332e3136302e34302e302f32342d3234203d3e20313431353936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.40.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:84:51:51:b8:d9:7a:03:47:b9:9c:4f:e0:af:b2:da:62:61: 15:24:6c:c2:e9:a7:49:66:27:ab:48:d3:44:62:be:b1:5e:49: ef:98:79:9d:ed:71:e5:69:95:a8:a2:3b:b9:48:fe:57:9c:79: cb:fd:9f:65:e0:6e:c0:be:1a:20:ff:9a:1b:25:9a:f4:a6:e8: 58:f6:99:4c:42:7b:fb:1b:fc:0f:71:bc:a1:e3:7f:3c:e5:73: 85:5a:be:09:19:9a:1c:4b:3f:08:c5:c8:ec:16:d6:be:7c:3e: a8:a1:ad:b9:45:21:b4:d1:c8:36:3a:06:25:27:63:38:83:85: dd:92:d2:9f:94:dc:8d:f7:de:5f:5a:aa:dd:42:5b:f0:d1:23: 54:59:f4:5d:12:42:79:ce:ec:7c:ca:82:69:42:43:75:19:b7: 60:71:c4:fb:d2:a1:ff:a9:cc:63:14:dc:87:68:b9:e2:be:d4: 80:72:2b:0d:1f:35:c8:4b:0c:0f:59:a2:cf:54:e3:f3:1a:11: 91:13:94:2f:c8:d3:d1:37:84:82:fa:c4:99:dc:b0:b4:19:2e: 4c:08:d7:19:1e:5d:5c:a4:74:5f:fb:87:d7:e0:ab:b0:b4:15: bd:fe:a4:28:ce:76:21:12:4b:1c:6f:26:4a:ec:d2:84:c5:40: 61:16:e4:8b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUFc+zLtdGLYHCfkeZdeZtMBtK0P8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQw N0U4MkQ1OTAeFw0yNDEwMDIwNTU1MDFaFw0yNTEwMDEwNjAwMDFaMDMxMTAvBgNV BAMTKDg1N0RBQjM4Q0Q3RDA0MjRFMEJBNjBDMzEwRjRFQjk0MkI1ODlCMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6UYQbQfC+JqerSWddhNC1DBLu c+g9LNZUWe4x4DpMrqy5p6sCxsyMc9yvRvpWXn4QQ7rIuMHxDz9ldre14w/XMJn5 L8dNJFzlLzEn9wQEGqxIam7wsAAAAs0Z1IoXJvq9QT9MyCiUSZ9rWPW6zsEcvY7e bJzTG/DZxDUs+CSBcog5QfsBt1QtUG9ZP2RIDT+4kgYL/QRu3GeERXqB9zzRbI+3 zBcsqwt/NWhTBjTo73cOeXDuVA7MYByrbRXUbyR1CsLo7Bqk7Ol/I80Lv4OhV+LE QY3PHm7ckoPWLXwudWbq0ptiwlMj4b9wyab6mHopMOkVwuMCs3R5Gi3nSnj/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUhX2rOM19BCTgumDDEPTrlCtYmzEwHwYDVR0j BBgwFoAUNwOsQVTwWx5kLzHe9xojhAfoLVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTA5OWFkZi03ZTEyLTRlODMtOTVjMi1kZDdmNzc0OTQ3ODgvMC8zNzAzQUM0MTU0 RjA1QjFFNjQyRjMxREVGNzFBMjM4NDA3RTgyRDU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQwN0U4 MkQ1OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRhMDk5YWRmLTdlMTItNGU4My05 NWMyLWRkN2Y3NzQ5NDc4OC8wLzMxMzAzMzJlMzEzNjMwMmUzNDMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzUzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6AoMA0GCSqG SIb3DQEBCwUAA4IBAQBMhFFRuNl6A0e5nE/gr7LaYmEVJGzC6adJZierSNNEYr6x XknvmHmd7XHlaZWooju5SP5XnHnL/Z9l4G7Avhog/5obJZr0puhY9plMQnv7G/wP cbyh43885XOFWr4JGZocSz8IxcjsFta+fD6ooa25RSG00cg2OgYlJ2M4g4XdktKf lNyN995fWqrdQlvw0SNUWfRdEkJ5zux8yoJpQkN1GbdgccT70qH/qcxjFNyHaLni vtSAcisNHzXISwwPWaLPVOPzGhGRE5QvyNPRN4SC+sSZ3LC0GS5MCNcZHl1cpHRf +4fX4KuwtBW9/qQoznYhEkscbyZK7NKExUBhFuSL -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:41 2024 by rpki-client on console-ams.rpki-client.org