$ rpki-client -vvf repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e302e302f32332d3233203d3e20313431363334.roa File: 3130332e3136322e302e302f32332d3233203d3e20313431363334.roa (raw, json) Hash identifier: 3OXjddu9GYm+pnGIRRvw8uTtgTnaQOQocX2ZWf81HfA= Subject key identifier: 34:BB:A4:9A:1D:F0:00:4A:63:9D:F9:A3:F8:E8:47:D6:6E:79:C3:86 Certificate issuer: /CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Certificate serial: 7C10387300B39B2A1812D45C0B176D567F0D16F1 Authority key identifier: 20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e302e302f32332d3233203d3e20313431363334.roa Signing time: Wed 02 Oct 2024 07:00:01 +0000 ROA not before: Wed 02 Oct 2024 06:55:01 +0000 ROA not after: Wed 01 Oct 2025 07:00:01 +0000 asID: 141634 IP address blocks: 103.162.0.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:10:38:73:00:b3:9b:2a:18:12:d4:5c:0b:17:6d:56:7f:0d:16:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Validity Not Before: Oct 2 06:55:01 2024 GMT Not After : Oct 1 07:00:01 2025 GMT Subject: CN=34BBA49A1DF0004A639DF9A3F8E847D66E79C386 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:fe:05:10:55:f0:2e:90:15:ee:6d:3a:c0:00: 35:b5:2c:04:05:67:ef:6a:27:8d:30:ca:48:09:b6: 00:78:a1:18:9c:97:1e:f1:1f:78:f0:a7:4b:cb:3f: 28:72:ef:0c:19:28:f6:a4:d2:1b:2e:18:ae:f6:25: 64:4c:91:36:fb:a9:56:53:d8:63:b5:de:34:f7:85: 6d:18:a5:6c:67:8c:be:8d:4c:fa:b0:a1:eb:a2:71: da:a8:ca:6e:df:42:be:59:f3:3a:35:05:0d:45:02: e5:a4:13:e7:ab:92:a9:5a:6e:16:bf:90:1f:6e:ef: 91:14:21:d7:83:97:5b:22:6c:a1:a8:94:27:7a:2d: 2c:17:a3:86:50:54:f9:8f:d0:29:31:87:f8:ce:fa: e2:03:bb:58:0f:c5:14:d4:84:3f:d3:ba:83:4d:2e: ea:d6:63:72:bb:02:41:00:7a:a7:87:f2:2b:e4:7f: cb:9b:6a:c0:2d:5e:13:d8:1e:6c:da:a2:b7:97:da: fb:16:20:52:ab:17:7b:a8:19:ac:25:f3:fa:88:4f: 03:70:6c:bd:4d:30:60:35:71:86:9c:03:ac:5a:93: 82:14:f6:4e:c4:b1:81:16:99:5c:e9:ba:0a:3e:41: e4:fa:b2:f9:5d:7d:64:35:7e:ac:c7:db:7a:2e:45: 92:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:BB:A4:9A:1D:F0:00:4A:63:9D:F9:A3:F8:E8:47:D6:6E:79:C3:86 X509v3 Authority Key Identifier: keyid:20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e302e302f32332d3233203d3e20313431363334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.0.0/23 Signature Algorithm: sha256WithRSAEncryption 23:9c:85:08:25:73:c7:c3:8f:58:ff:1d:25:98:b5:55:f2:e1: 1c:9e:08:3e:50:6e:26:1c:6f:0e:84:ec:8a:57:e6:21:f4:19: 9b:3f:18:5c:73:3e:ce:cc:73:f9:57:c2:7f:bf:67:80:2c:77: c0:8c:0a:fa:95:b9:96:ba:83:06:da:fb:db:2c:70:c0:0f:ce: 4d:6a:06:5f:64:93:b8:d5:e8:b4:36:97:4c:57:90:74:d7:84: 12:4f:f9:49:49:a8:a9:23:65:70:33:6c:50:3a:4a:22:8a:d9: 7c:71:99:aa:c6:1f:0a:26:bc:5f:bb:e2:11:e4:b5:32:70:ab: c0:19:c3:fd:f3:a9:be:91:1e:8b:6f:8c:27:b8:ed:14:70:b5: e2:1e:81:80:a9:3a:07:e0:16:2d:b7:e1:5b:cc:cf:d1:f5:9b: 0a:84:89:b0:ad:27:9d:4c:ef:53:b2:f9:bf:3a:22:0c:1e:21: 06:e0:a3:a5:e6:c5:74:bc:8e:27:9d:e5:b4:35:66:b8:20:e3: 67:65:4c:f2:08:5e:99:59:ea:0f:9c:a5:a1:0d:ac:48:f7:42: da:73:6c:8b:2d:32:51:48:ef:a4:d6:6b:e7:68:45:8b:9a:c9: 67:76:2d:f4:4e:5c:c3:ca:6d:bb:b8:56:69:61:42:4a:74:a7: de:67:cd:c2 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUfBA4cwCzmyoYEtRcCxdtVn8NFvEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0Qy ODlBQkZGOTAeFw0yNDEwMDIwNjU1MDFaFw0yNTEwMDEwNzAwMDFaMDMxMTAvBgNV BAMTKDM0QkJBNDlBMURGMDAwNEE2MzlERjlBM0Y4RTg0N0Q2NkU3OUMzODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0/gUQVfAukBXubTrAADW1LAQF Z+9qJ40wykgJtgB4oRiclx7xH3jwp0vLPyhy7wwZKPak0hsuGK72JWRMkTb7qVZT 2GO13jT3hW0YpWxnjL6NTPqwoeuicdqoym7fQr5Z8zo1BQ1FAuWkE+erkqlabha/ kB9u75EUIdeDl1sibKGolCd6LSwXo4ZQVPmP0Ckxh/jO+uIDu1gPxRTUhD/TuoNN LurWY3K7AkEAeqeH8ivkf8ubasAtXhPYHmzaoreX2vsWIFKrF3uoGawl8/qITwNw bL1NMGA1cYacA6xak4IU9k7EsYEWmVzpugo+QeT6svldfWQ1fqzH23ouRZIRAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUNLukmh3wAEpjnfmj+OhH1m55w4YwHwYDVR0j BBgwFoAUILFclfozUUAtYOlorR2ezSiav/kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTQxOTNjNC00YWJkLTRlMmMtYTFkMC0xYjVjZTMyZTQyMGIvMC8yMEIxNUM5NUZB MzM1MTQwMkQ2MEU5NjhBRDFEOUVDRDI4OUFCRkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0QyODlB QkZGOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxNDE5M2M0LTRhYmQtNGUyYy1h MWQwLTFiNWNlMzJlNDIwYi8wLzMxMzAzMzJlMzEzNjMyMmUzMDJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzQzMTM2MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWeiADANBgkqhkiG 9w0BAQsFAAOCAQEAI5yFCCVzx8OPWP8dJZi1VfLhHJ4IPlBuJhxvDoTsilfmIfQZ mz8YXHM+zsxz+VfCf79ngCx3wIwK+pW5lrqDBtr72yxwwA/OTWoGX2STuNXotDaX TFeQdNeEEk/5SUmoqSNlcDNsUDpKIorZfHGZqsYfCia8X7viEeS1MnCrwBnD/fOp vpEei2+MJ7jtFHC14h6BgKk6B+AWLbfhW8zP0fWbCoSJsK0nnUzvU7L5vzoiDB4h BuCjpebFdLyOJ53ltDVmuCDjZ2VM8ghemVnqD5yloQ2sSPdC2nNsiy0yUUjvpNZr 52hFi5rJZ3Yt9E5cw8ptu7hWaWFCSnSn3mfNwg== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org