$ rpki-client -vvf repo-rpki.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/3130332e3136302e3138352e302f32342d3234203d3e20313339393532.roa File: 3130332e3136302e3138352e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: 4Nq+JxUfKWjr1BESTy40anbaM3Xf+v+a27YAvrUMBQ0= Subject key identifier: 8A:90:95:B4:97:0A:88:4F:55:4F:15:A1:FD:6D:A9:D3:4B:C6:2C:2C Certificate issuer: /CN=6A6C813654E0C29339E6CAF522201F8E702FEAD3 Certificate serial: 29D72023DB0976499E0079757AFC346320533BB3 Authority key identifier: 6A:6C:81:36:54:E0:C2:93:39:E6:CA:F5:22:20:1F:8E:70:2F:EA:D3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A6C813654E0C29339E6CAF522201F8E702FEAD3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/3130332e3136302e3138352e302f32342d3234203d3e20313339393532.roa Signing time: Wed 04 Sep 2024 09:00:00 +0000 ROA not before: Wed 04 Sep 2024 08:55:00 +0000 ROA not after: Wed 03 Sep 2025 09:00:00 +0000 asID: 139952 IP address blocks: 103.160.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/6A6C813654E0C29339E6CAF522201F8E702FEAD3.crl rsync://repo-rpki.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/6A6C813654E0C29339E6CAF522201F8E702FEAD3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A6C813654E0C29339E6CAF522201F8E702FEAD3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:d7:20:23:db:09:76:49:9e:00:79:75:7a:fc:34:63:20:53:3b:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A6C813654E0C29339E6CAF522201F8E702FEAD3 Validity Not Before: Sep 4 08:55:00 2024 GMT Not After : Sep 3 09:00:00 2025 GMT Subject: CN=8A9095B4970A884F554F15A1FD6DA9D34BC62C2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:45:f2:0c:4e:7a:c0:b0:28:1d:4f:c1:86:6e: fb:01:22:e3:e3:2f:98:21:d0:ed:b6:27:9a:a0:44: 54:3a:8c:5e:d9:29:53:f3:8a:7f:6c:a5:ee:83:43: fb:8a:f0:c9:12:e5:62:5e:00:7e:9f:aa:91:18:96: 02:2e:b8:c6:bc:01:7f:d0:c0:cb:d1:a0:8c:11:9c: ef:4d:4c:55:b9:12:63:4b:15:a4:a3:4a:1a:69:94: b4:1d:c3:86:85:78:47:5f:3b:71:0b:9e:24:13:43: c5:76:84:0b:39:77:cc:2e:f0:f0:12:fa:9b:e8:c2: 9e:a6:4f:fe:fb:af:42:8f:25:c1:cb:7a:d7:51:1c: 62:f6:6d:b9:bc:05:c1:53:62:99:a0:5b:0c:2e:67: bf:30:15:61:c0:c7:a5:9a:1f:f7:f8:4d:7f:7c:7f: 1d:6c:36:e0:7b:f1:b3:21:c7:3a:10:51:30:8c:4e: 03:28:ec:d4:5b:0f:24:e5:fd:b5:cb:72:df:a4:35: 24:34:42:aa:b1:54:67:52:82:8f:98:e5:0b:5f:bb: 8e:21:87:f0:3c:82:76:65:4a:cb:c8:ec:6f:98:20: 09:22:f8:f5:ac:6a:5b:b3:73:e2:7b:6e:ab:52:27: 3d:48:37:18:3e:23:80:03:28:a7:44:9b:ee:99:fd: 6e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:90:95:B4:97:0A:88:4F:55:4F:15:A1:FD:6D:A9:D3:4B:C6:2C:2C X509v3 Authority Key Identifier: keyid:6A:6C:81:36:54:E0:C2:93:39:E6:CA:F5:22:20:1F:8E:70:2F:EA:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/6A6C813654E0C29339E6CAF522201F8E702FEAD3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6A6C813654E0C29339E6CAF522201F8E702FEAD3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/3130332e3136302e3138352e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.185.0/24 Signature Algorithm: sha256WithRSAEncryption 76:0a:ca:8e:4b:3a:6c:2c:dd:62:9f:b8:08:6c:ef:9e:22:47: 4f:16:ab:41:17:36:36:37:38:50:2d:0c:6b:81:4e:0d:3f:12: 6a:6f:f3:5d:9d:03:15:95:51:b0:0c:de:8d:8f:90:38:d8:fc: a5:f7:08:28:d0:a7:e3:66:04:80:1e:b5:d3:63:49:e7:24:d6: 25:36:2f:00:4f:13:28:47:ed:7d:70:bb:64:94:ac:1d:b7:87: 9d:12:54:ed:ad:4f:3d:60:2d:3a:3c:f2:d8:c3:0c:55:a5:18: 4c:b1:a5:72:b9:ee:52:3a:79:b9:b3:0a:00:80:e8:2e:4b:99: 58:54:ed:df:b2:80:40:a3:1f:27:a2:cb:8f:fb:9c:9f:5f:2c: 5c:08:bb:b1:d9:bb:a5:1e:a3:42:4e:a6:d6:dd:50:b7:19:d6: 8e:ad:cf:62:d9:8c:cb:f2:27:cc:5b:26:08:ae:5f:40:af:a3: 62:c0:87:65:2b:ad:cc:3e:4a:d7:bc:29:3b:6f:68:9f:56:85: 14:af:d7:ca:fb:0d:b7:29:49:f4:9f:9f:1c:3a:38:43:b8:7c: a4:b3:76:7c:29:9c:04:d2:95:ea:5e:7c:56:89:8f:91:95:46: ad:36:28:2f:c1:ab:82:7a:74:f7:f7:5f:fc:a7:1f:b1:a0:be: 39:ae:fe:1b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKdcgI9sJdkmeAHl1evw0YyBTO7MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkE2QzgxMzY1NEUwQzI5MzM5RTZDQUY1MjIyMDFGOEU3 MDJGRUFEMzAeFw0yNDA5MDQwODU1MDBaFw0yNTA5MDMwOTAwMDBaMDMxMTAvBgNV BAMTKDhBOTA5NUI0OTcwQTg4NEY1NTRGMTVBMUZENkRBOUQzNEJDNjJDMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkRfIMTnrAsCgdT8GGbvsBIuPj L5gh0O22J5qgRFQ6jF7ZKVPzin9spe6DQ/uK8MkS5WJeAH6fqpEYlgIuuMa8AX/Q wMvRoIwRnO9NTFW5EmNLFaSjShpplLQdw4aFeEdfO3ELniQTQ8V2hAs5d8wu8PAS +pvowp6mT/77r0KPJcHLetdRHGL2bbm8BcFTYpmgWwwuZ78wFWHAx6WaH/f4TX98 fx1sNuB78bMhxzoQUTCMTgMo7NRbDyTl/bXLct+kNSQ0QqqxVGdSgo+Y5Qtfu44h h/A8gnZlSsvI7G+YIAki+PWsaluzc+J7bqtSJz1INxg+I4ADKKdEm+6Z/W7VAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUipCVtJcKiE9VTxWh/W2p00vGLCwwHwYDVR0j BBgwFoAUamyBNlTgwpM55sr1IiAfjnAv6tMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjgyYmNhMy1lODU4LTRkNTItYjFhMy0yZjRiYWU0N2M5ZjIvMC82QTZDODEzNjU0 RTBDMjkzMzlFNkNBRjUyMjIwMUY4RTcwMkZFQUQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNkE2QzgxMzY1NEUwQzI5MzM5RTZDQUY1MjIyMDFGOEU3MDJG RUFEMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2ODJiY2EzLWU4NTgtNGQ1Mi1i MWEzLTJmNGJhZTQ3YzlmMi8wLzMxMzAzMzJlMzEzNjMwMmUzMTM4MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoLkwDQYJ KoZIhvcNAQELBQADggEBAHYKyo5LOmws3WKfuAhs754iR08Wq0EXNjY3OFAtDGuB Tg0/Empv812dAxWVUbAM3o2PkDjY/KX3CCjQp+NmBIAetdNjSeck1iU2LwBPEyhH 7X1wu2SUrB23h50SVO2tTz1gLTo88tjDDFWlGEyxpXK57lI6ebmzCgCA6C5LmVhU 7d+ygECjHyeiy4/7nJ9fLFwIu7HZu6Ueo0JOptbdULcZ1o6tz2LZjMvyJ8xbJgiu X0Cvo2LAh2Urrcw+Ste8KTtvaJ9WhRSv18r7DbcpSfSfnxw6OEO4fKSzdnwpnATS lepefFaJj5GVRq02KC/Bq4J6dPf3X/ynH7Ggvjmu/hs= -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:43 2024 by rpki-client on console-ams.rpki-client.org