$ rpki-client -vvf repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e302e302f32342d3234203d3e20313431363334.roa File: 3130332e3136322e302e302f32342d3234203d3e20313431363334.roa (raw, json) Hash identifier: UmfhnL8RZYJSndBdwe7iI677EbidAY8O+tflsfoU+/Y= Subject key identifier: D5:EA:62:AA:64:DC:69:E8:3C:09:F3:18:2E:D0:FB:F6:0D:21:68:B7 Certificate issuer: /CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Certificate serial: 3E1D5D80553DF8E99D5EFF70B4C93B01B44E9E39 Authority key identifier: 20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e302e302f32342d3234203d3e20313431363334.roa Signing time: Sun 10 Nov 2024 09:00:01 +0000 ROA not before: Sun 10 Nov 2024 08:55:01 +0000 ROA not after: Sun 09 Nov 2025 09:00:01 +0000 asID: 141634 IP address blocks: 103.162.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:1d:5d:80:55:3d:f8:e9:9d:5e:ff:70:b4:c9:3b:01:b4:4e:9e:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Validity Not Before: Nov 10 08:55:01 2024 GMT Not After : Nov 9 09:00:01 2025 GMT Subject: CN=D5EA62AA64DC69E83C09F3182ED0FBF60D2168B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:98:14:88:02:7e:c9:2b:01:70:84:6b:f8:ba: ba:1d:21:be:f2:0f:9a:4d:7b:1f:e8:cd:21:6b:42: 49:94:0f:81:e9:c3:1b:16:46:a6:97:99:50:d8:3e: 9d:9c:dc:73:ef:35:f7:2b:a2:46:e2:0c:7a:d5:c5: 9e:11:b1:bc:99:0f:bf:b4:fd:50:9c:5b:e1:8b:5e: 7e:c1:e0:5a:19:01:35:a8:8e:38:cf:29:3a:38:23: 00:79:34:59:87:c7:9f:3a:7c:3d:1f:ad:b6:ee:de: c4:fe:fc:4a:1e:fb:b3:17:db:dd:1c:20:26:8d:75: 28:e0:7c:08:5d:86:ff:68:96:26:eb:52:2b:73:c7: 72:dc:fb:86:6f:99:f5:65:bb:1a:d7:68:b3:f5:e1: 17:83:d4:e1:1d:a6:2f:58:43:34:e9:e9:ac:88:f3: 65:59:00:34:f5:01:29:55:47:d8:ca:64:3d:32:a0: c3:c0:a8:98:9c:27:37:7b:b0:4a:17:a8:36:3d:7c: f0:8d:21:36:2e:8d:b1:5a:ee:4d:44:77:96:c3:af: aa:57:85:72:c9:42:83:e9:14:fc:23:26:ca:1c:6a: f3:d7:ee:e5:54:5a:de:0a:78:c0:57:35:4d:94:fa: 1e:31:03:49:6d:ba:24:6e:f7:42:ac:9a:2b:42:8f: 90:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:EA:62:AA:64:DC:69:E8:3C:09:F3:18:2E:D0:FB:F6:0D:21:68:B7 X509v3 Authority Key Identifier: keyid:20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e302e302f32342d3234203d3e20313431363334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.0.0/24 Signature Algorithm: sha256WithRSAEncryption b8:ef:e1:b8:95:93:b7:1b:d7:4f:f0:7f:d3:70:f6:03:a0:48: 3e:da:bc:31:d3:bd:ab:1a:84:32:e5:97:4b:c2:e0:d5:38:9e: d5:a3:6c:09:67:cd:b4:84:e6:02:ff:2e:f1:0e:36:a7:30:5f: 90:33:c3:1f:f6:d5:ec:75:b1:8a:84:97:99:15:52:59:b9:32: fc:05:6e:b4:00:33:4c:f5:7e:64:80:71:5c:fb:f7:24:d0:cd: 08:ec:5c:75:4c:13:dd:d4:85:d0:ca:c0:a9:2f:bf:cc:b4:ef: 05:c3:89:57:79:fb:be:fd:97:05:1c:27:9f:f9:fa:4b:cd:c1: b3:4b:3c:30:ae:42:e1:69:38:c4:09:36:25:91:36:b2:73:fe: da:ac:36:8b:4c:71:a1:39:05:1a:33:e5:4d:28:fc:15:46:84: 2e:d7:b4:d8:33:7b:10:a9:70:06:75:e4:2d:6a:bc:40:93:a3: 97:03:2f:1a:4b:3a:a9:2c:69:82:31:ae:b6:d7:64:55:9b:df: d1:fd:fa:e4:81:1d:ba:d6:eb:3a:b9:78:12:dd:3a:93:67:e8: 5e:4b:6f:bb:2c:34:ff:65:4b:51:03:d0:1c:f3:6a:7c:9a:af: c2:f5:ed:71:02:be:c5:16:10:9e:e3:4b:f7:5d:da:2f:15:7c: f1:44:87:02 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPh1dgFU9+OmdXv9wtMk7AbROnjkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0Qy ODlBQkZGOTAeFw0yNDExMTAwODU1MDFaFw0yNTExMDkwOTAwMDFaMDMxMTAvBgNV BAMTKEQ1RUE2MkFBNjREQzY5RTgzQzA5RjMxODJFRDBGQkY2MEQyMTY4QjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgmBSIAn7JKwFwhGv4urodIb7y D5pNex/ozSFrQkmUD4HpwxsWRqaXmVDYPp2c3HPvNfcrokbiDHrVxZ4RsbyZD7+0 /VCcW+GLXn7B4FoZATWojjjPKTo4IwB5NFmHx586fD0frbbu3sT+/Eoe+7MX290c ICaNdSjgfAhdhv9olibrUitzx3Lc+4ZvmfVluxrXaLP14ReD1OEdpi9YQzTp6ayI 82VZADT1ASlVR9jKZD0yoMPAqJicJzd7sEoXqDY9fPCNITYujbFa7k1Ed5bDr6pX hXLJQoPpFPwjJsocavPX7uVUWt4KeMBXNU2U+h4xA0ltuiRu90KsmitCj5BnAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU1epiqmTcaeg8CfMYLtD79g0haLcwHwYDVR0j BBgwFoAUILFclfozUUAtYOlorR2ezSiav/kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTQxOTNjNC00YWJkLTRlMmMtYTFkMC0xYjVjZTMyZTQyMGIvMC8yMEIxNUM5NUZB MzM1MTQwMkQ2MEU5NjhBRDFEOUVDRDI4OUFCRkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0QyODlB QkZGOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxNDE5M2M0LTRhYmQtNGUyYy1h MWQwLTFiNWNlMzJlNDIwYi8wLzMxMzAzMzJlMzEzNjMyMmUzMDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM2MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeiADANBgkqhkiG 9w0BAQsFAAOCAQEAuO/huJWTtxvXT/B/03D2A6BIPtq8MdO9qxqEMuWXS8Lg1Tie 1aNsCWfNtITmAv8u8Q42pzBfkDPDH/bV7HWxioSXmRVSWbky/AVutAAzTPV+ZIBx XPv3JNDNCOxcdUwT3dSF0MrAqS+/zLTvBcOJV3n7vv2XBRwnn/n6S83Bs0s8MK5C 4Wk4xAk2JZE2snP+2qw2i0xxoTkFGjPlTSj8FUaELte02DN7EKlwBnXkLWq8QJOj lwMvGks6qSxpgjGuttdkVZvf0f365IEdutbrOrl4Et06k2foXktvuyw0/2VLUQPQ HPNqfJqvwvXtcQK+xRYQnuNL913aLxV88USHAg== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org