$ rpki-client -vvf repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/3130332e3136302e36392e302f32342d3234203d3e20313431363037.roa File: 3130332e3136302e36392e302f32342d3234203d3e20313431363037.roa (raw, json) Hash identifier: a7mgV41OX87LjUgmR9JI4fbD1k92EJK28gdqBsIBQfU= Subject key identifier: 14:D4:CF:F0:C6:9F:98:AF:31:77:88:D7:E9:86:DC:7F:E7:C0:A4:5F Certificate issuer: /CN=401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD Certificate serial: 388E6860C6046D2209DA73CDEE2BF50742F91F30 Authority key identifier: 40:1A:A5:6A:F5:99:CC:A2:CD:71:A6:84:FF:CF:53:FF:F9:DD:E3:DD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/3130332e3136302e36392e302f32342d3234203d3e20313431363037.roa Signing time: Mon 09 Sep 2024 16:02:24 +0000 ROA not before: Mon 09 Sep 2024 15:57:24 +0000 ROA not after: Mon 08 Sep 2025 16:02:24 +0000 asID: 141607 IP address blocks: 103.160.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.crl rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:8e:68:60:c6:04:6d:22:09:da:73:cd:ee:2b:f5:07:42:f9:1f:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD Validity Not Before: Sep 9 15:57:24 2024 GMT Not After : Sep 8 16:02:24 2025 GMT Subject: CN=14D4CFF0C69F98AF317788D7E986DC7FE7C0A45F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:75:06:21:c5:88:9f:db:e0:99:68:71:d8:5f: 63:56:d9:88:48:bd:bf:25:5c:74:41:e3:36:42:79: d3:b3:6d:d5:51:3e:74:9e:dd:d0:76:cb:06:ca:ec: ed:cf:1b:16:7e:33:7a:fe:5b:57:75:99:d0:64:f0: ce:b0:d0:5e:fb:e5:fe:ff:76:5c:35:a3:89:b8:d2: 6d:6e:70:c4:c4:a2:d1:49:5a:a0:2e:fe:5b:51:84: 37:0f:46:db:f1:83:fb:64:99:45:82:58:4b:91:4d: 80:06:2d:a3:3b:de:b7:05:dc:5e:3b:ea:83:d4:58: d2:e3:fc:6e:b9:cd:05:b3:bc:00:59:18:e6:45:35: 7f:a4:31:c8:1b:67:6d:44:a6:53:88:c1:01:be:f0: c4:0e:fa:64:ac:44:0c:0c:f7:34:08:43:3c:33:c8: 18:b9:51:e4:58:a3:f8:ff:75:59:2c:1d:ec:91:a4: cc:37:75:93:53:19:8b:c4:bd:f3:62:7b:c4:90:b6: a6:c4:0a:6f:33:51:66:b8:7a:6a:17:42:e7:db:39: 80:40:c2:14:c8:7c:c6:8a:88:87:ce:5b:f5:36:db: a3:6d:50:86:f6:0e:7a:88:74:c1:93:f4:8d:b6:a9: f8:b7:31:49:95:2f:60:65:1a:c5:b3:4c:ad:9c:f9: 5b:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:D4:CF:F0:C6:9F:98:AF:31:77:88:D7:E9:86:DC:7F:E7:C0:A4:5F X509v3 Authority Key Identifier: keyid:40:1A:A5:6A:F5:99:CC:A2:CD:71:A6:84:FF:CF:53:FF:F9:DD:E3:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/3130332e3136302e36392e302f32342d3234203d3e20313431363037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.69.0/24 Signature Algorithm: sha256WithRSAEncryption b0:3b:24:ca:72:87:4e:9a:30:8c:eb:58:02:0d:e2:f6:ac:e6: 71:3d:6a:b5:6c:42:db:18:58:ab:c9:12:1d:ef:4b:7b:1b:3a: 95:98:2a:ec:59:cf:ad:14:85:d3:7c:20:d0:af:7e:77:82:06: 70:e6:31:7f:66:ac:48:2f:0d:b2:4e:42:1c:1a:4f:2b:fe:75: 59:e0:8a:8a:d0:33:c7:fa:eb:37:61:94:fb:0f:63:9c:79:12: 36:36:e5:a8:26:71:63:34:5b:60:88:5c:72:14:89:a7:a8:84: ff:22:44:50:2e:04:c3:27:d5:3b:f6:2a:eb:47:dc:d8:ce:d0: c3:bb:c7:95:c1:54:3a:68:17:ed:83:d9:2f:6e:72:72:c9:db: 0c:e2:4a:23:27:73:33:a9:5f:94:75:1e:84:aa:60:04:ae:6f: 20:c3:db:08:14:73:cd:b2:8c:ab:66:a1:36:a8:b2:1d:4b:55: d7:01:c5:12:12:38:c6:84:8f:16:92:87:1e:91:67:9d:85:64: 4b:6e:37:0a:1f:f1:48:30:0b:39:0a:7b:5d:0d:76:27:3a:d8: 01:ac:58:51:44:51:bb:f2:c4:ab:b3:69:1e:27:23:81:f0:ad: c1:77:89:30:de:91:29:05:39:c5:60:a6:39:2c:cd:03:55:7c: 6a:54:f3:b7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUOI5oYMYEbSIJ2nPN7iv1B0L5HzAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDAxQUE1NkFGNTk5Q0NBMkNENzFBNjg0RkZDRjUzRkZG OURERTNERDAeFw0yNDA5MDkxNTU3MjRaFw0yNTA5MDgxNjAyMjRaMDMxMTAvBgNV BAMTKDE0RDRDRkYwQzY5Rjk4QUYzMTc3ODhEN0U5ODZEQzdGRTdDMEE0NUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNdQYhxYif2+CZaHHYX2NW2YhI vb8lXHRB4zZCedOzbdVRPnSe3dB2ywbK7O3PGxZ+M3r+W1d1mdBk8M6w0F775f7/ dlw1o4m40m1ucMTEotFJWqAu/ltRhDcPRtvxg/tkmUWCWEuRTYAGLaM73rcF3F47 6oPUWNLj/G65zQWzvABZGOZFNX+kMcgbZ21EplOIwQG+8MQO+mSsRAwM9zQIQzwz yBi5UeRYo/j/dVksHeyRpMw3dZNTGYvEvfNie8SQtqbECm8zUWa4emoXQufbOYBA whTIfMaKiIfOW/U226NtUIb2DnqIdMGT9I22qfi3MUmVL2BlGsWzTK2c+VtfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUFNTP8MafmK8xd4jX6Ybcf+fApF8wHwYDVR0j BBgwFoAUQBqlavWZzKLNcaaE/89T//nd490wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YWM3OWZiZS00NzkwLTQ2YmUtYjliMi0wMzU5YjFhMThlMzMvMC80MDFBQTU2QUY1 OTlDQ0EyQ0Q3MUE2ODRGRkNGNTNGRkY5RERFM0RELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDAxQUE1NkFGNTk5Q0NBMkNENzFBNjg0RkZDRjUzRkZGOURE RTNERC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhYzc5ZmJlLTQ3OTAtNDZiZS1i OWIyLTAzNTliMWExOGUzMy8wLzMxMzAzMzJlMzEzNjMwMmUzNjM5MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzMDM3LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6BFMA0GCSqG SIb3DQEBCwUAA4IBAQCwOyTKcodOmjCM61gCDeL2rOZxPWq1bELbGFiryRId70t7 GzqVmCrsWc+tFIXTfCDQr353ggZw5jF/ZqxILw2yTkIcGk8r/nVZ4IqK0DPH+us3 YZT7D2OceRI2NuWoJnFjNFtgiFxyFImnqIT/IkRQLgTDJ9U79irrR9zYztDDu8eV wVQ6aBftg9kvbnJyydsM4kojJ3MzqV+UdR6EqmAErm8gw9sIFHPNsoyrZqE2qLId S1XXAcUSEjjGhI8WkocekWedhWRLbjcKH/FIMAs5CntdDXYnOtgBrFhRRFG78sSr s2keJyOB8K3Bd4kw3pEpBTnFYKY5LM0DVXxqVPO3 -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:21 2024 by rpki-client on console-fra.rpki-client.org