$ rpki-client -vvf repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/3130332e3135382e39362e302f32342d3234203d3e20313431313330.roa File: 3130332e3135382e39362e302f32342d3234203d3e20313431313330.roa (raw, json) Hash identifier: KiHXA3kouLZg5fwlNXjOYNgz9xWPAyNa7B/vVD0aLjQ= Subject key identifier: 38:03:24:94:A7:86:13:61:59:5A:70:2C:62:74:1E:80:2E:F8:14:D8 Certificate issuer: /CN=42CD38BF795E0099BD3E143DD8383778ADEAE850 Certificate serial: 68E7BD8BCB83C13ACCECD776BE19F22918FC2398 Authority key identifier: 42:CD:38:BF:79:5E:00:99:BD:3E:14:3D:D8:38:37:78:AD:EA:E8:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CD38BF795E0099BD3E143DD8383778ADEAE850.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/3130332e3135382e39362e302f32342d3234203d3e20313431313330.roa Signing time: Tue 06 Aug 2024 03:00:01 +0000 ROA not before: Tue 06 Aug 2024 02:55:01 +0000 ROA not after: Tue 05 Aug 2025 03:00:01 +0000 asID: 141130 IP address blocks: 103.158.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/42CD38BF795E0099BD3E143DD8383778ADEAE850.crl rsync://repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/42CD38BF795E0099BD3E143DD8383778ADEAE850.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CD38BF795E0099BD3E143DD8383778ADEAE850.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:e7:bd:8b:cb:83:c1:3a:cc:ec:d7:76:be:19:f2:29:18:fc:23:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42CD38BF795E0099BD3E143DD8383778ADEAE850 Validity Not Before: Aug 6 02:55:01 2024 GMT Not After : Aug 5 03:00:01 2025 GMT Subject: CN=38032494A7861361595A702C62741E802EF814D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1c:26:5c:ac:1f:08:3a:23:d3:90:e1:6b:7e: 83:c8:cc:0e:f1:2a:29:4c:fa:51:40:2c:6f:48:8e: 40:b6:a9:b1:f8:b9:8a:d9:19:13:de:aa:0c:a0:03: 0b:0a:d0:cf:1a:91:9f:2a:c4:85:94:db:01:9c:53: d4:04:6a:40:39:49:db:5a:3e:aa:5e:b5:2d:fa:c0: 74:7b:f9:6c:ad:20:fe:3e:17:87:ce:31:e6:d8:bb: 1b:9c:64:3a:4a:10:7c:74:1b:0f:a2:31:e3:b0:58: 70:34:c3:1a:49:fc:66:94:58:44:50:55:41:f8:15: 39:b4:3b:03:65:d0:2e:7b:98:a1:7b:89:d9:1c:89: b3:48:e9:97:e2:60:ae:eb:fd:49:28:30:eb:3a:9d: ce:0a:a4:9e:24:39:be:dc:e1:1a:d5:be:49:c8:d1: 5e:79:14:ab:b3:b8:ce:f2:45:1c:76:8c:84:c1:8c: ba:13:75:79:ab:40:c6:b8:6c:d1:2a:bd:66:bc:e7: 16:f1:87:51:54:2b:8b:c3:8c:bc:ba:15:78:33:ba: 6c:57:c4:8c:fe:9f:0d:0f:21:48:f1:ca:a2:d4:ed: 44:e8:49:af:00:ff:7a:6d:7b:78:53:1c:29:9e:33: ad:51:c2:75:a4:74:41:ee:a1:d4:37:23:cb:6a:f3: e9:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:03:24:94:A7:86:13:61:59:5A:70:2C:62:74:1E:80:2E:F8:14:D8 X509v3 Authority Key Identifier: keyid:42:CD:38:BF:79:5E:00:99:BD:3E:14:3D:D8:38:37:78:AD:EA:E8:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/42CD38BF795E0099BD3E143DD8383778ADEAE850.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/42CD38BF795E0099BD3E143DD8383778ADEAE850.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51292911-da7d-4636-b153-02a4b66205b5/0/3130332e3135382e39362e302f32342d3234203d3e20313431313330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.96.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:95:80:f2:38:2c:1a:d2:54:04:2a:12:cd:d4:31:7c:01:d3: a1:2f:98:38:46:e7:49:c6:f4:9e:8c:db:71:46:3b:df:5e:93: d3:02:db:be:92:bc:5d:db:a5:49:5c:37:79:29:a6:e2:73:b4: 73:19:7e:46:54:68:08:57:4b:71:2c:6f:47:0f:05:ac:a2:bf: 4c:97:65:dc:a7:63:88:44:84:5c:24:15:67:be:b2:07:e5:46: 6e:5f:8f:a2:77:60:73:eb:5e:f3:61:b5:c6:a5:26:ff:63:16: e0:b5:54:ab:f9:6a:06:76:02:8e:14:14:2a:6a:45:d7:00:c4: 5d:3d:ad:f9:fd:87:07:52:f1:3b:49:cf:98:16:95:51:41:c9: 45:91:c7:98:e5:2d:aa:50:27:92:a8:67:77:84:4c:de:d2:b9: 08:9a:af:76:21:70:d6:45:25:9f:83:e1:f4:08:09:45:80:be: 61:25:7c:33:e1:8a:59:dc:46:8f:18:c2:f2:3c:8f:ad:27:2f: 18:ef:20:c9:df:bc:89:8c:ba:cd:a8:a9:4b:ef:78:d2:22:5c: 0e:4c:3d:e4:97:b3:b1:5a:9b:cb:69:53:f7:f8:16:26:47:29: 62:9d:56:cf:af:1e:d9:ae:05:4d:a5:e9:b3:56:9e:89:03:0d: bb:97:9f:f0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaOe9i8uDwTrM7Nd2vhnyKRj8I5gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJDRDM4QkY3OTVFMDA5OUJEM0UxNDNERDgzODM3NzhB REVBRTg1MDAeFw0yNDA4MDYwMjU1MDFaFw0yNTA4MDUwMzAwMDFaMDMxMTAvBgNV BAMTKDM4MDMyNDk0QTc4NjEzNjE1OTVBNzAyQzYyNzQxRTgwMkVGODE0RDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4HCZcrB8IOiPTkOFrfoPIzA7x KilM+lFALG9IjkC2qbH4uYrZGRPeqgygAwsK0M8akZ8qxIWU2wGcU9QEakA5Sdta PqpetS36wHR7+WytIP4+F4fOMebYuxucZDpKEHx0Gw+iMeOwWHA0wxpJ/GaUWERQ VUH4FTm0OwNl0C57mKF7idkcibNI6ZfiYK7r/UkoMOs6nc4KpJ4kOb7c4RrVvknI 0V55FKuzuM7yRRx2jITBjLoTdXmrQMa4bNEqvWa85xbxh1FUK4vDjLy6FXgzumxX xIz+nw0PIUjxyqLU7UToSa8A/3pte3hTHCmeM61RwnWkdEHuodQ3I8tq8+mlAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOAMklKeGE2FZWnAsYnQegC74FNgwHwYDVR0j BBgwFoAUQs04v3leAJm9PhQ92Dg3eK3q6FAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MTI5MjkxMS1kYTdkLTQ2MzYtYjE1My0wMmE0YjY2MjA1YjUvMC80MkNEMzhCRjc5 NUUwMDk5QkQzRTE0M0REODM4Mzc3OEFERUFFODUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDJDRDM4QkY3OTVFMDA5OUJEM0UxNDNERDgzODM3NzhBREVB RTg1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxMjkyOTExLWRhN2QtNDYzNi1i MTUzLTAyYTRiNjYyMDViNS8wLzMxMzAzMzJlMzEzNTM4MmUzOTM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzEzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ55gMA0GCSqG SIb3DQEBCwUAA4IBAQA8lYDyOCwa0lQEKhLN1DF8AdOhL5g4RudJxvSejNtxRjvf XpPTAtu+krxd26VJXDd5Kabic7RzGX5GVGgIV0txLG9HDwWsor9Ml2Xcp2OIRIRc JBVnvrIH5UZuX4+id2Bz617zYbXGpSb/YxbgtVSr+WoGdgKOFBQqakXXAMRdPa35 /YcHUvE7Sc+YFpVRQclFkceY5S2qUCeSqGd3hEze0rkImq92IXDWRSWfg+H0CAlF gL5hJXwz4YpZ3EaPGMLyPI+tJy8Y7yDJ37yJjLrNqKlL73jSIlwOTD3kl7OxWpvL aVP3+BYmRylinVbPrx7ZrgVNpemzVp6JAw27l5/w -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org