$ rpki-client -vvf repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3130332e3136302e34312e302f32342d3234203d3e20313431353936.roa File: 3130332e3136302e34312e302f32342d3234203d3e20313431353936.roa (raw, json) Hash identifier: b4KiMwiJASyBICznuxWYSVpBPiU9qpEIZ1f+n3s+3IM= Subject key identifier: DC:BC:82:33:C5:ED:F9:E4:03:52:5C:ED:E7:CF:EF:8A:B5:AA:7C:84 Certificate issuer: /CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Certificate serial: 1B56BB0F64D4EBA052DFA62491497C71BC14EE62 Authority key identifier: 37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3130332e3136302e34312e302f32342d3234203d3e20313431353936.roa Signing time: Wed 02 Oct 2024 06:00:01 +0000 ROA not before: Wed 02 Oct 2024 05:55:01 +0000 ROA not after: Wed 01 Oct 2025 06:00:01 +0000 asID: 141596 IP address blocks: 103.160.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:56:bb:0f:64:d4:eb:a0:52:df:a6:24:91:49:7c:71:bc:14:ee:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Validity Not Before: Oct 2 05:55:01 2024 GMT Not After : Oct 1 06:00:01 2025 GMT Subject: CN=DCBC8233C5EDF9E403525CEDE7CFEF8AB5AA7C84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e9:b2:ea:5e:6d:84:b2:3e:0b:d3:30:c7:b0: 37:6b:39:30:a5:9b:5a:b8:3d:16:fd:92:95:f7:d8: d4:b2:f9:0b:2a:57:0a:48:28:c6:97:c2:aa:e6:f8: 6e:98:94:c3:29:b5:22:b9:ef:a4:1e:90:2b:0c:64: 99:c8:9f:dd:ec:c2:0e:fa:fe:15:bb:2e:45:9c:09: d0:d8:3e:18:80:ca:92:e5:fa:c6:cb:82:17:50:f5: 1a:36:d1:89:4c:cc:8f:40:ae:2d:b4:d5:03:8d:06: 0e:44:3c:8b:9d:bc:d0:84:fb:fb:4c:7b:98:80:63: a1:91:14:33:45:5c:06:67:d2:16:28:df:f0:33:a9: 5c:bd:04:f7:3a:6c:18:41:bc:32:54:11:71:e1:fd: d0:30:05:49:82:b1:8a:59:aa:bc:fc:2a:7d:53:d5: 20:36:ed:39:44:a1:bd:95:e8:9b:9a:28:96:ec:0f: 4b:7d:49:8f:b3:35:de:85:b8:50:73:95:37:16:7d: 63:43:da:25:99:a8:36:20:c9:f6:7d:26:fc:9c:ac: 49:b4:55:88:b1:54:a3:f2:c9:51:d5:fa:35:91:39: 61:5b:23:67:76:8b:c5:85:94:76:72:b5:82:50:62: 64:dd:f0:0b:b7:74:f8:60:1f:5b:20:9e:24:c5:d0: f0:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:BC:82:33:C5:ED:F9:E4:03:52:5C:ED:E7:CF:EF:8A:B5:AA:7C:84 X509v3 Authority Key Identifier: keyid:37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3130332e3136302e34312e302f32342d3234203d3e20313431353936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.41.0/24 Signature Algorithm: sha256WithRSAEncryption b4:9c:83:15:6b:19:bd:4a:a6:27:86:08:79:c1:c3:42:68:43: bb:87:0e:53:55:14:5b:04:d6:7b:d0:f1:26:66:15:cd:8d:68: 14:c4:fb:49:08:01:2c:32:ae:92:b9:24:16:20:0a:6e:a5:07: c5:b5:10:2a:5c:85:2a:f7:15:4f:17:c4:da:25:66:7a:18:ed: d3:10:0d:b5:33:e1:f1:ac:26:5c:b2:24:db:70:7f:be:5c:50: 23:ab:03:f5:06:52:24:25:98:e0:a7:0f:8c:0a:f5:dd:c4:9c: f4:50:bf:e2:7c:8a:23:a0:ba:b6:5e:b2:a9:7d:c8:9e:3f:bd: dc:58:71:c8:77:07:73:4c:6f:81:c3:ad:59:fe:99:f2:5c:85: a0:24:76:3d:b2:63:e8:e6:32:e0:96:30:4d:99:62:d3:3a:07: 7b:97:f9:f9:fd:8f:3f:57:a9:eb:bb:6f:f7:ef:53:03:38:42: a9:dd:1c:b9:02:23:01:fd:49:fd:ab:52:0b:4b:cd:c7:05:74: fc:38:93:34:1d:3c:9c:64:cb:5f:08:1d:19:37:6f:07:9c:1e: 4e:3e:9c:e1:e0:7b:ea:a6:90:e7:b9:dc:31:fc:c5:f5:9a:6a: 89:5a:b2:c2:50:76:84:58:23:3b:f2:75:e1:60:a5:e8:42:b7: 7a:79:1b:e7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUG1a7D2TU66BS36YkkUl8cbwU7mIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQw N0U4MkQ1OTAeFw0yNDEwMDIwNTU1MDFaFw0yNTEwMDEwNjAwMDFaMDMxMTAvBgNV BAMTKERDQkM4MjMzQzVFREY5RTQwMzUyNUNFREU3Q0ZFRjhBQjVBQTdDODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs6bLqXm2Esj4L0zDHsDdrOTCl m1q4PRb9kpX32NSy+QsqVwpIKMaXwqrm+G6YlMMptSK576QekCsMZJnIn93swg76 /hW7LkWcCdDYPhiAypLl+sbLghdQ9Ro20YlMzI9Ari201QONBg5EPIudvNCE+/tM e5iAY6GRFDNFXAZn0hYo3/AzqVy9BPc6bBhBvDJUEXHh/dAwBUmCsYpZqrz8Kn1T 1SA27TlEob2V6JuaKJbsD0t9SY+zNd6FuFBzlTcWfWND2iWZqDYgyfZ9JvycrEm0 VYixVKPyyVHV+jWROWFbI2d2i8WFlHZytYJQYmTd8Au3dPhgH1sgniTF0PD/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3LyCM8Xt+eQDUlzt58/virWqfIQwHwYDVR0j BBgwFoAUNwOsQVTwWx5kLzHe9xojhAfoLVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTA5OWFkZi03ZTEyLTRlODMtOTVjMi1kZDdmNzc0OTQ3ODgvMC8zNzAzQUM0MTU0 RjA1QjFFNjQyRjMxREVGNzFBMjM4NDA3RTgyRDU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQwN0U4 MkQ1OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRhMDk5YWRmLTdlMTItNGU4My05 NWMyLWRkN2Y3NzQ5NDc4OC8wLzMxMzAzMzJlMzEzNjMwMmUzNDMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzUzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6ApMA0GCSqG SIb3DQEBCwUAA4IBAQC0nIMVaxm9SqYnhgh5wcNCaEO7hw5TVRRbBNZ70PEmZhXN jWgUxPtJCAEsMq6SuSQWIApupQfFtRAqXIUq9xVPF8TaJWZ6GO3TEA21M+HxrCZc siTbcH++XFAjqwP1BlIkJZjgpw+MCvXdxJz0UL/ifIojoLq2XrKpfcieP73cWHHI dwdzTG+Bw61Z/pnyXIWgJHY9smPo5jLgljBNmWLTOgd7l/n5/Y8/V6nru2/371MD OEKp3Ry5AiMB/Un9q1ILS83HBXT8OJM0HTycZMtfCB0ZN28HnB5OPpzh4HvqppDn udwx/MX1mmqJWrLCUHaEWCM78nXhYKXoQrd6eRvn -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org