$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e31362e3131322e302f32322d3234203d3e20313331373730.roa File: 3130332e31362e3131322e302f32322d3234203d3e20313331373730.roa (raw, json) Hash identifier: IDxLX1RwPApt11L48qc/D9yEHkM0f590BHovmW/Q1oo= Subject key identifier: 3A:02:82:A5:97:72:08:B6:42:92:EB:A2:7F:7F:C5:DA:74:58:1C:10 Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Certificate serial: 57414009FDE265765BF2EA5B4FBA1241777E283B Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e31362e3131322e302f32322d3234203d3e20313331373730.roa Signing time: Wed 06 Nov 2024 03:00:01 +0000 ROA not before: Wed 06 Nov 2024 02:55:01 +0000 ROA not after: Wed 05 Nov 2025 03:00:01 +0000 asID: 131770 IP address blocks: 103.16.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:41:40:09:fd:e2:65:76:5b:f2:ea:5b:4f:ba:12:41:77:7e:28:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Validity Not Before: Nov 6 02:55:01 2024 GMT Not After : Nov 5 03:00:01 2025 GMT Subject: CN=3A0282A5977208B64292EBA27F7FC5DA74581C10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7d:55:e0:56:96:c9:ba:e6:26:ce:69:92:02: d9:1d:9e:c4:be:e9:6b:a3:d3:b5:28:24:8f:15:15: d5:66:f9:4c:8e:a5:54:d4:d5:7d:ed:ff:d3:bb:d3: 5c:84:0c:41:12:dd:da:91:70:78:03:3d:14:a3:11: 53:29:95:af:ae:48:bc:f2:d2:e0:08:9d:4c:82:14: 68:63:19:47:87:de:50:c7:bb:88:b1:f6:4f:79:18: b8:5e:d6:5d:14:64:12:96:f0:b2:4c:ce:18:96:c5: 88:97:bd:73:e3:62:ce:86:5d:6a:86:0d:1e:0a:f4: 55:16:c0:b0:0f:5a:a3:47:5b:80:7e:b3:9a:48:3b: 1e:5c:94:10:cf:3b:60:93:ce:48:59:90:87:63:fb: 1e:99:83:33:3c:7e:e7:9a:f9:cb:43:f7:93:36:4a: 41:b9:4b:d5:c9:fa:c1:0c:03:b3:4c:e3:7a:ef:4b: 07:60:0f:24:6b:ff:db:a3:7c:58:a8:a9:fe:d9:16: 2c:52:ce:cf:08:da:7c:ad:35:10:d5:7e:a7:c1:0c: 50:c5:6e:3f:56:87:53:ec:4a:2c:be:b0:6e:66:96: c4:ad:35:6e:dc:bd:e8:57:92:86:4d:92:49:3a:96: d1:e6:72:8b:d9:40:d4:04:01:9c:60:5f:2c:07:4d: 8b:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:02:82:A5:97:72:08:B6:42:92:EB:A2:7F:7F:C5:DA:74:58:1C:10 X509v3 Authority Key Identifier: keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/3130332e31362e3131322e302f32322d3234203d3e20313331373730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.16.112.0/22 Signature Algorithm: sha256WithRSAEncryption 1f:f4:93:71:1e:aa:ae:97:69:3f:f6:b3:ee:3c:bd:9e:c9:19: c2:19:e9:c5:eb:d5:79:10:29:01:a8:98:0e:ec:40:00:5c:39: d6:b7:17:26:56:e8:d1:e8:f5:d5:2c:55:30:1e:2c:33:80:16: 76:aa:5b:4d:42:9d:fc:5b:5d:c2:32:e9:b7:22:26:2d:42:07: a1:0d:d3:0a:90:6f:88:37:4d:06:65:53:28:72:c7:89:45:bc: c2:b9:92:a1:78:42:f6:30:a2:73:5f:3a:fc:aa:6c:b6:29:4d: 98:8c:06:c9:83:18:aa:37:af:ee:ed:55:13:70:df:b4:2f:57: 78:f2:19:eb:97:cf:20:cb:36:ec:1e:75:3a:94:13:61:3a:a4: cd:2c:59:77:67:d9:97:f1:be:71:5d:5f:7b:da:8b:80:61:3c: a1:47:a2:c1:c0:2f:f0:3c:fa:47:1d:ba:9e:e7:64:4d:18:e8: ce:17:dc:8b:6f:f7:54:65:e0:6f:51:96:51:9d:22:68:de:2e: e9:5c:62:3e:18:a3:49:05:94:31:4d:c8:9a:e9:04:88:f1:c3: c1:9c:1a:16:b2:d8:59:75:7f:2d:90:f1:f2:50:fd:3a:31:5f: 84:c0:25:75:8d:b1:00:d5:38:65:18:49:06:b2:11:b4:50:cd: 21:49:03:e0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUV0FACf3iZXZb8upbT7oSQXd+KDswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2 OERGNkUxNDAeFw0yNDExMDYwMjU1MDFaFw0yNTExMDUwMzAwMDFaMDMxMTAvBgNV BAMTKDNBMDI4MkE1OTc3MjA4QjY0MjkyRUJBMjdGN0ZDNURBNzQ1ODFDMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/fVXgVpbJuuYmzmmSAtkdnsS+ 6Wuj07UoJI8VFdVm+UyOpVTU1X3t/9O701yEDEES3dqRcHgDPRSjEVMpla+uSLzy 0uAInUyCFGhjGUeH3lDHu4ix9k95GLhe1l0UZBKW8LJMzhiWxYiXvXPjYs6GXWqG DR4K9FUWwLAPWqNHW4B+s5pIOx5clBDPO2CTzkhZkIdj+x6ZgzM8fuea+ctD95M2 SkG5S9XJ+sEMA7NM43rvSwdgDyRr/9ujfFioqf7ZFixSzs8I2nytNRDVfqfBDFDF bj9Wh1PsSiy+sG5mlsStNW7cvehXkoZNkkk6ltHmcovZQNQEAZxgXywHTYvHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUOgKCpZdyCLZCkuuif3/F2nRYHBAwHwYDVR0j BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG NkUxNC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i NmMyLTQyYWI4YjQ3NjI0OS8wLzMxMzAzMzJlMzEzNjJlMzEzMTMyMmUzMDJmMzIz MjJkMzIzNDIwM2QzZTIwMzEzMzMxMzczNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZxBwMA0GCSqG SIb3DQEBCwUAA4IBAQAf9JNxHqqul2k/9rPuPL2eyRnCGenF69V5ECkBqJgO7EAA XDnWtxcmVujR6PXVLFUwHiwzgBZ2qltNQp38W13CMum3IiYtQgehDdMKkG+IN00G ZVMocseJRbzCuZKheEL2MKJzXzr8qmy2KU2YjAbJgxiqN6/u7VUTcN+0L1d48hnr l88gyzbsHnU6lBNhOqTNLFl3Z9mX8b5xXV972ouAYTyhR6LBwC/wPPpHHbqe52RN GOjOF9yLb/dUZeBvUZZRnSJo3i7pXGI+GKNJBZQxTcia6QSI8cPBnBoWsthZdX8t kPHyUP06MV+EwCV1jbEA1ThlGEkGshG0UM0hSQPg -----END CERTIFICATE-----Generated at Thu Nov 21 22:33:06 2024 by rpki-client on console-fra.rpki-client.org