$ rpki-client -vvf repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/3130332e3136302e31322e302f32332d3234203d3e20313331313131.roa File: 3130332e3136302e31322e302f32332d3234203d3e20313331313131.roa (raw, json) Hash identifier: xmfvEBw1P8sSqglSjh5fK7KpklmguFj/KUnvIPf2TYo= Subject key identifier: 44:6D:D9:2A:CD:F4:43:31:65:51:83:F0:86:75:55:03:48:DD:69:02 Certificate issuer: /CN=2CB21EF336B6AB4640E4619601E0F6488CB8FD52 Certificate serial: 42947E1B14294F200B255A0A9ECA41FF700A6F5B Authority key identifier: 2C:B2:1E:F3:36:B6:AB:46:40:E4:61:96:01:E0:F6:48:8C:B8:FD:52 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/3130332e3136302e31322e302f32332d3234203d3e20313331313131.roa Signing time: Wed 19 Jun 2024 06:00:01 +0000 ROA not before: Wed 19 Jun 2024 05:55:01 +0000 ROA not after: Wed 18 Jun 2025 06:00:01 +0000 asID: 131111 IP address blocks: 103.160.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.crl rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:94:7e:1b:14:29:4f:20:0b:25:5a:0a:9e:ca:41:ff:70:0a:6f:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB21EF336B6AB4640E4619601E0F6488CB8FD52 Validity Not Before: Jun 19 05:55:01 2024 GMT Not After : Jun 18 06:00:01 2025 GMT Subject: CN=446DD92ACDF44331655183F08675550348DD6902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:42:3c:e1:f4:0e:4a:3d:2f:38:ba:d3:77:30: fb:d2:0a:c2:43:12:c2:0f:5f:82:c6:86:e2:8e:0a: c5:07:28:37:dc:be:a7:3a:73:c1:5e:9a:9b:e2:2c: 86:6f:71:0e:d9:68:69:99:fb:9a:98:c1:85:c6:d7: d6:a6:56:ab:bc:71:96:48:ad:a6:ab:12:a9:4f:a5: c3:67:bc:3d:be:42:44:ee:09:96:1b:25:0e:38:91: 24:31:5a:71:0b:2e:96:69:eb:a0:fd:c7:e0:04:77: 8d:b3:54:1b:2a:c1:fe:30:77:80:3a:1c:e8:fe:89: a0:12:bf:14:ed:46:c6:9f:b5:07:12:3e:aa:bd:3d: d0:9f:7d:44:f6:2c:fd:ca:c0:c9:cb:b5:76:f1:4e: 45:a3:ba:17:00:03:15:9a:12:26:13:0b:d3:c1:1e: 06:5f:f8:c9:af:b5:39:6a:67:2f:8f:85:9b:c3:b2: 21:20:13:8f:bc:40:35:ce:e6:32:87:d9:f4:df:25: c3:a2:0f:81:bf:83:92:51:4a:01:07:35:e8:f8:0a: 30:3e:8b:fc:9e:f8:01:ed:c7:7b:de:c6:d6:3f:96: 20:98:42:86:2c:9a:da:7f:0d:eb:a5:0d:fd:f3:fe: be:1b:da:4b:64:e2:0b:08:ac:68:aa:34:36:ed:c4: b8:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:6D:D9:2A:CD:F4:43:31:65:51:83:F0:86:75:55:03:48:DD:69:02 X509v3 Authority Key Identifier: keyid:2C:B2:1E:F3:36:B6:AB:46:40:E4:61:96:01:E0:F6:48:8C:B8:FD:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/3130332e3136302e31322e302f32332d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.12.0/23 Signature Algorithm: sha256WithRSAEncryption 70:f9:3a:3c:de:0a:8f:ce:4b:b3:22:19:2e:18:89:91:5a:f4: b2:3e:00:08:1d:6f:9e:49:16:46:10:d2:83:75:77:28:64:be: 04:50:a7:df:30:cb:58:df:c6:eb:37:2b:5d:4a:97:52:44:16: 97:3f:95:93:97:f9:c0:43:5a:21:21:d3:ad:ec:56:62:aa:a8: e8:a7:a7:0b:71:8a:e8:ef:23:ed:06:ed:45:75:ab:e2:0d:69: fd:27:1a:4e:2a:57:40:ab:af:b1:40:91:37:33:1a:54:92:07: 9f:bc:ca:8d:be:ef:46:7e:60:29:70:fe:4e:25:76:9d:04:cb: d8:26:ec:58:5c:46:fe:81:da:ab:fa:70:56:4a:4b:b9:9c:b5: 76:00:fa:8c:32:c7:a3:b9:2d:bc:63:0b:b9:8a:14:17:0a:db: 3f:04:14:e4:f0:c2:96:f7:28:3a:06:18:d6:55:ca:6c:d9:cb: 1a:d5:62:6a:49:7c:18:12:4b:8d:4e:ca:5a:40:52:24:64:6f: 94:4e:39:b6:29:6e:9b:ac:bf:2e:15:79:cc:da:78:39:f1:72: 79:02:8e:e2:f0:b6:ab:5e:ba:8d:c9:2c:f0:e2:6f:ef:ee:9e: 21:d4:46:62:3b:dc:f9:8c:c6:01:b0:6f:5e:c2:f9:44:ae:d3: 48:a1:22:9a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQpR+GxQpTyALJVoKnspB/3AKb1swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMjFFRjMzNkI2QUI0NjQwRTQ2MTk2MDFFMEY2NDg4 Q0I4RkQ1MjAeFw0yNDA2MTkwNTU1MDFaFw0yNTA2MTgwNjAwMDFaMDMxMTAvBgNV BAMTKDQ0NkREOTJBQ0RGNDQzMzE2NTUxODNGMDg2NzU1NTAzNDhERDY5MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAQjzh9A5KPS84utN3MPvSCsJD EsIPX4LGhuKOCsUHKDfcvqc6c8FempviLIZvcQ7ZaGmZ+5qYwYXG19amVqu8cZZI raarEqlPpcNnvD2+QkTuCZYbJQ44kSQxWnELLpZp66D9x+AEd42zVBsqwf4wd4A6 HOj+iaASvxTtRsaftQcSPqq9PdCffUT2LP3KwMnLtXbxTkWjuhcAAxWaEiYTC9PB HgZf+MmvtTlqZy+PhZvDsiEgE4+8QDXO5jKH2fTfJcOiD4G/g5JRSgEHNej4CjA+ i/ye+AHtx3vextY/liCYQoYsmtp/DeulDf3z/r4b2ktk4gsIrGiqNDbtxLjDAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQURG3ZKs30QzFlUYPwhnVVA0jdaQIwHwYDVR0j BBgwFoAULLIe8za2q0ZA5GGWAeD2SIy4/VIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NGM2Zjc3MC02ODZhLTQ1ZWYtOGRmYi0wYzNhODdkM2Q4ZGEvMC8yQ0IyMUVGMzM2 QjZBQjQ2NDBFNDYxOTYwMUUwRjY0ODhDQjhGRDUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNCMjFFRjMzNkI2QUI0NjQwRTQ2MTk2MDFFMEY2NDg4Q0I4 RkQ1Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I0YzZmNzcwLTY4NmEtNDVlZi04 ZGZiLTBjM2E4N2QzZDhkYS8wLzMxMzAzMzJlMzEzNjMwMmUzMTMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzMxMzEzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6AMMA0GCSqG SIb3DQEBCwUAA4IBAQBw+To83gqPzkuzIhkuGImRWvSyPgAIHW+eSRZGENKDdXco ZL4EUKffMMtY38brNytdSpdSRBaXP5WTl/nAQ1ohIdOt7FZiqqjop6cLcYro7yPt Bu1FdaviDWn9JxpOKldAq6+xQJE3MxpUkgefvMqNvu9GfmApcP5OJXadBMvYJuxY XEb+gdqr+nBWSku5nLV2APqMMsejuS28Ywu5ihQXCts/BBTk8MKW9yg6BhjWVcps 2csa1WJqSXwYEkuNTspaQFIkZG+UTjm2KW6brL8uFXnM2ng58XJ5Ao7i8LarXrqN ySzw4m/v7p4h1EZiO9z5jMYBsG9ewvlErtNIoSKa -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:58 2024 by rpki-client on console-ams.rpki-client.org