$ rpki-client -vvf repo-rpki.idnic.net/repo/8f3151db-1330-4e70-9cc4-9b8fcd5ed2d2/0/3130332e3136322e31362e302f32332d3234203d3e20313431363336.roa File: 3130332e3136322e31362e302f32332d3234203d3e20313431363336.roa (raw, json) Hash identifier: 06ISKC2CwbxxyFrx3ByMaV4Lra2B5W5rP3yiIdrne3M= Subject key identifier: 95:4E:D3:B5:6C:51:D3:9B:06:78:E7:A6:7B:7C:DC:76:2D:9C:E3:96 Certificate issuer: /CN=01A283E5CA4698591C4AA0127AA71B68D6B8C690 Certificate serial: 3EF1C814194186ED87BB2DB43E1E77627E11733C Authority key identifier: 01:A2:83:E5:CA:46:98:59:1C:4A:A0:12:7A:A7:1B:68:D6:B8:C6:90 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/01A283E5CA4698591C4AA0127AA71B68D6B8C690.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8f3151db-1330-4e70-9cc4-9b8fcd5ed2d2/0/3130332e3136322e31362e302f32332d3234203d3e20313431363336.roa Signing time: Sat 19 Oct 2024 12:00:56 +0000 ROA not before: Sat 19 Oct 2024 11:55:56 +0000 ROA not after: Sat 18 Oct 2025 12:00:56 +0000 asID: 141636 IP address blocks: 103.162.16.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8f3151db-1330-4e70-9cc4-9b8fcd5ed2d2/0/01A283E5CA4698591C4AA0127AA71B68D6B8C690.crl rsync://repo-rpki.idnic.net/repo/8f3151db-1330-4e70-9cc4-9b8fcd5ed2d2/0/01A283E5CA4698591C4AA0127AA71B68D6B8C690.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/01A283E5CA4698591C4AA0127AA71B68D6B8C690.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:f1:c8:14:19:41:86:ed:87:bb:2d:b4:3e:1e:77:62:7e:11:73:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A283E5CA4698591C4AA0127AA71B68D6B8C690 Validity Not Before: Oct 19 11:55:56 2024 GMT Not After : Oct 18 12:00:56 2025 GMT Subject: CN=954ED3B56C51D39B0678E7A67B7CDC762D9CE396 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a1:e6:6b:cd:a4:61:86:e1:86:ae:6f:57:88: f7:63:ed:ff:65:fc:7f:f0:35:39:2d:d6:63:45:f8: 9d:13:bc:ff:95:9e:86:f9:f0:f7:26:37:8b:05:70: 47:90:7e:87:82:68:bb:6b:a2:27:87:b1:fc:d1:10: a3:f9:29:2b:19:ac:a2:ea:e5:c2:e1:f3:88:cd:a9: 9f:59:02:6a:43:9a:f2:8a:de:54:aa:ce:5f:32:32: 91:f4:37:5c:02:e0:af:c1:5b:52:a0:95:d1:2e:be: a0:20:bc:5d:b1:6d:b1:b0:0e:77:6a:08:70:39:dc: 74:3f:fc:e2:b1:6f:47:7a:6a:d1:65:8b:ac:ae:97: 5e:fc:54:d2:25:d1:2a:a7:30:85:e3:54:a5:4d:b5: 74:88:9e:6a:93:e5:50:8c:95:16:51:6f:de:a5:02: 95:b4:55:96:5a:e2:60:4c:c3:42:71:63:19:a8:85: 6b:cf:a0:4f:29:b9:9f:f0:4a:89:bd:e0:9e:2f:f4: 6b:bb:f0:7d:2a:5a:80:3b:0a:fe:14:48:a7:88:fe: fb:08:73:6e:26:25:94:8d:82:19:ef:ef:22:dd:c8: 57:33:19:e3:ce:a1:06:1f:4f:08:ff:8f:8d:d1:bb: 96:58:33:08:18:76:3a:6b:06:8d:33:e2:49:24:d5: 58:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:4E:D3:B5:6C:51:D3:9B:06:78:E7:A6:7B:7C:DC:76:2D:9C:E3:96 X509v3 Authority Key Identifier: keyid:01:A2:83:E5:CA:46:98:59:1C:4A:A0:12:7A:A7:1B:68:D6:B8:C6:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8f3151db-1330-4e70-9cc4-9b8fcd5ed2d2/0/01A283E5CA4698591C4AA0127AA71B68D6B8C690.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/01A283E5CA4698591C4AA0127AA71B68D6B8C690.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8f3151db-1330-4e70-9cc4-9b8fcd5ed2d2/0/3130332e3136322e31362e302f32332d3234203d3e20313431363336.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.16.0/23 Signature Algorithm: sha256WithRSAEncryption a1:33:73:63:e8:32:e5:fb:73:7e:91:5d:5d:ce:43:10:93:a4: fe:87:4f:d7:73:c3:f8:db:f9:8c:cd:0b:e4:6f:17:18:ab:91: f2:7e:f8:dc:49:4e:e5:cb:19:5b:5a:1f:ad:fa:48:22:37:ec: 5c:e8:d9:a3:26:d3:ec:22:4b:f4:d5:ae:92:6e:c8:77:cd:d5: 1b:bc:f0:98:f5:ee:3f:71:03:d7:1b:fe:bc:ed:20:ac:93:84: 28:d0:d1:fc:6a:75:25:31:af:ad:09:b7:fa:d3:94:5a:7e:e4: ca:32:a2:98:b3:75:b1:45:bb:b2:04:79:7f:5c:b0:e4:6d:72: 1c:6e:c0:a1:4c:4e:ff:bb:be:d8:8b:a0:7c:2a:80:97:df:0c: e5:8b:06:d3:ea:a2:0c:27:b4:56:9c:e7:25:0e:65:91:2a:7c: 38:fe:a4:87:d1:78:b4:19:3b:8a:ae:f1:7d:e2:6c:e0:c3:3b: c6:50:78:f3:a5:d8:ad:41:cf:4c:7c:63:3d:e1:07:42:3f:04: 5a:03:1d:07:6d:d0:0e:38:f5:02:cf:0f:db:bc:6d:a7:66:b3: f5:e7:37:db:80:e2:a9:2b:5d:f1:e4:7a:ac:f6:2c:5a:d6:5a: b1:b6:ad:e1:e5:de:ea:90:d9:50:04:5a:22:95:f0:ca:ae:71: b1:07:0c:f6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPvHIFBlBhu2Huy20Ph53Yn4RczwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDFBMjgzRTVDQTQ2OTg1OTFDNEFBMDEyN0FBNzFCNjhE NkI4QzY5MDAeFw0yNDEwMTkxMTU1NTZaFw0yNTEwMTgxMjAwNTZaMDMxMTAvBgNV BAMTKDk1NEVEM0I1NkM1MUQzOUIwNjc4RTdBNjdCN0NEQzc2MkQ5Q0UzOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuoeZrzaRhhuGGrm9XiPdj7f9l /H/wNTkt1mNF+J0TvP+Vnob58PcmN4sFcEeQfoeCaLtroieHsfzREKP5KSsZrKLq 5cLh84jNqZ9ZAmpDmvKK3lSqzl8yMpH0N1wC4K/BW1KgldEuvqAgvF2xbbGwDndq CHA53HQ//OKxb0d6atFli6yul178VNIl0SqnMIXjVKVNtXSInmqT5VCMlRZRb96l ApW0VZZa4mBMw0JxYxmohWvPoE8puZ/wSom94J4v9Gu78H0qWoA7Cv4USKeI/vsI c24mJZSNghnv7yLdyFczGePOoQYfTwj/j43Ru5ZYMwgYdjprBo0z4kkk1VjbAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlU7TtWxR05sGeOeme3zcdi2c45YwHwYDVR0j BBgwFoAUAaKD5cpGmFkcSqASeqcbaNa4xpAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZjMxNTFkYi0xMzMwLTRlNzAtOWNjNC05YjhmY2Q1ZWQyZDIvMC8wMUEyODNFNUNB NDY5ODU5MUM0QUEwMTI3QUE3MUI2OEQ2QjhDNjkwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDFBMjgzRTVDQTQ2OTg1OTFDNEFBMDEyN0FBNzFCNjhENkI4 QzY5MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhmMzE1MWRiLTEzMzAtNGU3MC05 Y2M0LTliOGZjZDVlZDJkMi8wLzMxMzAzMzJlMzEzNjMyMmUzMTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzMzM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6IQMA0GCSqG SIb3DQEBCwUAA4IBAQChM3Nj6DLl+3N+kV1dzkMQk6T+h0/Xc8P42/mMzQvkbxcY q5HyfvjcSU7lyxlbWh+t+kgiN+xc6NmjJtPsIkv01a6Sbsh3zdUbvPCY9e4/cQPX G/687SCsk4Qo0NH8anUlMa+tCbf605RafuTKMqKYs3WxRbuyBHl/XLDkbXIcbsCh TE7/u77Yi6B8KoCX3wzliwbT6qIMJ7RWnOclDmWRKnw4/qSH0Xi0GTuKrvF94mzg wzvGUHjzpditQc9MfGM94QdCPwRaAx0HbdAOOPUCzw/bvG2nZrP15zfbgOKpK13x 5Hqs9ixa1lqxtq3h5d7qkNlQBFoilfDKrnGxBwz2 -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org