$ rpki-client -vvf repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e312e302f32342d3234203d3e20313431363334.roa File: 3130332e3136322e312e302f32342d3234203d3e20313431363334.roa (raw, json) Hash identifier: WZEcRoBw5pAR5VSb916+kaVDUlS4wq/ib5rS3X/sotw= Subject key identifier: BD:C1:AB:4D:C0:D7:A4:4A:F6:B3:08:1C:DE:45:A5:46:85:1A:5E:4F Certificate issuer: /CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Certificate serial: 60B8348DDC7E7EFEBAAAFEDEA2D21D01BDF77D81 Authority key identifier: 20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e312e302f32342d3234203d3e20313431363334.roa Signing time: Sun 10 Nov 2024 09:00:01 +0000 ROA not before: Sun 10 Nov 2024 08:55:01 +0000 ROA not after: Sun 09 Nov 2025 09:00:01 +0000 asID: 141634 IP address blocks: 103.162.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:b8:34:8d:dc:7e:7e:fe:ba:aa:fe:de:a2:d2:1d:01:bd:f7:7d:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Validity Not Before: Nov 10 08:55:01 2024 GMT Not After : Nov 9 09:00:01 2025 GMT Subject: CN=BDC1AB4DC0D7A44AF6B3081CDE45A546851A5E4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:72:93:65:09:9b:5d:a2:4f:3f:04:83:3e:37: 72:86:6b:6c:08:de:55:20:14:20:71:4e:9a:1a:33: 6a:98:08:0a:79:b9:0e:8b:0b:f3:1e:98:f1:57:e4: e4:82:43:13:0c:bb:89:91:2b:b9:6e:dd:94:eb:27: 98:1e:7b:63:38:0b:af:f4:e6:ed:08:3e:d7:99:82: ce:24:63:9e:75:44:9d:62:a4:b3:ee:f8:8e:59:68: 35:e2:c1:c8:0d:5c:6f:f1:d4:e4:e7:82:36:2f:a3: 75:8d:b4:b7:5c:36:a6:22:f9:cc:d5:72:45:fc:25: 4c:e1:0e:e4:54:89:30:7b:b5:80:3a:f4:2e:ff:82: ae:38:fc:a1:6a:10:bf:4a:5f:a8:ae:41:0d:f8:d8: 12:9e:48:76:27:ae:b1:b2:82:f0:c7:b0:b6:48:fe: 84:e4:e1:8b:51:dc:0d:f4:71:7f:8c:a6:06:53:39: be:59:46:27:5f:19:df:16:0a:d9:84:af:af:1a:ca: 57:12:1a:0b:db:07:01:30:12:1e:82:1c:6e:d5:5e: 59:83:bc:8d:84:09:8b:d6:41:36:82:55:0f:f4:e9: be:c6:1b:df:e0:68:29:46:bc:a8:0c:da:f1:c6:09: 43:4e:46:6d:28:d8:0d:4d:c6:97:90:fa:9f:c5:93: cf:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:C1:AB:4D:C0:D7:A4:4A:F6:B3:08:1C:DE:45:A5:46:85:1A:5E:4F X509v3 Authority Key Identifier: keyid:20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/3130332e3136322e312e302f32342d3234203d3e20313431363334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.1.0/24 Signature Algorithm: sha256WithRSAEncryption 81:21:b3:99:62:25:4f:35:b0:e9:77:a4:00:96:2b:ee:70:b5: ac:eb:3b:68:f1:88:1a:02:10:13:0e:69:cb:f9:44:4a:a9:35: 29:17:43:d5:98:ee:6d:ef:a2:9b:f4:3d:e6:f6:fc:6d:de:de: 2f:3e:45:4d:f3:d8:7c:a7:0b:3c:ce:42:8a:46:d0:37:df:44: bd:fc:23:67:88:52:ae:fe:3b:d0:bf:d0:48:bf:75:33:e0:f5: af:e1:54:14:12:82:16:1b:7c:19:b1:f0:f3:7c:ef:15:6f:4f: c9:72:1a:ee:ba:cc:36:b7:30:cc:57:6b:4f:8b:7b:d6:66:42: ea:c5:5c:35:fe:18:ff:27:cc:60:18:4d:92:65:2b:2d:43:b3: 44:1a:9f:08:c6:a4:1c:28:f8:e7:55:f9:3b:94:33:1c:98:e4: 11:b8:35:86:e4:62:b4:84:7d:6f:c0:0d:63:bb:ff:9c:27:2b: 69:00:eb:5c:9d:b1:1e:91:4a:ad:b5:6d:ff:7b:16:a8:d8:ef: 61:67:54:c9:26:08:f1:28:16:05:60:aa:c3:a6:79:b2:29:9c: ca:9c:7a:1a:67:98:44:ac:4e:b1:5b:fa:68:dd:9e:ae:d1:68: 11:cf:b0:7e:b9:ff:2c:01:e2:16:71:11:58:e5:9a:8b:2c:15: a6:61:66:48 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUYLg0jdx+fv66qv7eotIdAb33fYEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0Qy ODlBQkZGOTAeFw0yNDExMTAwODU1MDFaFw0yNTExMDkwOTAwMDFaMDMxMTAvBgNV BAMTKEJEQzFBQjREQzBEN0E0NEFGNkIzMDgxQ0RFNDVBNTQ2ODUxQTVFNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmcpNlCZtdok8/BIM+N3KGa2wI 3lUgFCBxTpoaM2qYCAp5uQ6LC/MemPFX5OSCQxMMu4mRK7lu3ZTrJ5gee2M4C6/0 5u0IPteZgs4kY551RJ1ipLPu+I5ZaDXiwcgNXG/x1OTngjYvo3WNtLdcNqYi+czV ckX8JUzhDuRUiTB7tYA69C7/gq44/KFqEL9KX6iuQQ342BKeSHYnrrGygvDHsLZI /oTk4YtR3A30cX+MpgZTOb5ZRidfGd8WCtmEr68aylcSGgvbBwEwEh6CHG7VXlmD vI2ECYvWQTaCVQ/06b7GG9/gaClGvKgM2vHGCUNORm0o2A1NxpeQ+p/Fk88lAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvcGrTcDXpEr2swgc3kWlRoUaXk8wHwYDVR0j BBgwFoAUILFclfozUUAtYOlorR2ezSiav/kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTQxOTNjNC00YWJkLTRlMmMtYTFkMC0xYjVjZTMyZTQyMGIvMC8yMEIxNUM5NUZB MzM1MTQwMkQ2MEU5NjhBRDFEOUVDRDI4OUFCRkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0QyODlB QkZGOS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxNDE5M2M0LTRhYmQtNGUyYy1h MWQwLTFiNWNlMzJlNDIwYi8wLzMxMzAzMzJlMzEzNjMyMmUzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM2MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeiATANBgkqhkiG 9w0BAQsFAAOCAQEAgSGzmWIlTzWw6XekAJYr7nC1rOs7aPGIGgIQEw5py/lESqk1 KRdD1Zjube+im/Q95vb8bd7eLz5FTfPYfKcLPM5CikbQN99EvfwjZ4hSrv470L/Q SL91M+D1r+FUFBKCFht8GbHw83zvFW9PyXIa7rrMNrcwzFdrT4t71mZC6sVcNf4Y /yfMYBhNkmUrLUOzRBqfCMakHCj451X5O5QzHJjkEbg1huRitIR9b8ANY7v/nCcr aQDrXJ2xHpFKrbVt/3sWqNjvYWdUySYI8SgWBWCqw6Z5simcypx6GmeYRKxOsVv6 aN2ertFoEc+wfrn/LAHiFnERWOWaiywVpmFmSA== -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org