$ rpki-client -vvf repo-rpki.idnic.net/repo/dd743c7c-07e6-4611-b403-d8c5f0124a78/0/3130332e3136302e31382e302f32332d3234203d3e20313431363234.roa File: 3130332e3136302e31382e302f32332d3234203d3e20313431363234.roa (raw, json) Hash identifier: FeHZStTLp1V0RpkS1Ny+v0XK2lFV92Xri2X6sumjkIg= Subject key identifier: 36:5A:D5:84:B4:2A:ED:4D:33:B7:B5:EC:32:C7:B3:21:1B:05:A9:66 Certificate issuer: /CN=CC8AB1F3D177B771E1F70EDDE67F26E5854C0708 Certificate serial: 7CDA5DD0DC18491142AB1E23E0F3862DC885CB8A Authority key identifier: CC:8A:B1:F3:D1:77:B7:71:E1:F7:0E:DD:E6:7F:26:E5:85:4C:07:08 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC8AB1F3D177B771E1F70EDDE67F26E5854C0708.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dd743c7c-07e6-4611-b403-d8c5f0124a78/0/3130332e3136302e31382e302f32332d3234203d3e20313431363234.roa Signing time: Thu 04 Apr 2024 07:00:00 +0000 ROA not before: Thu 04 Apr 2024 06:55:00 +0000 ROA not after: Thu 03 Apr 2025 07:00:00 +0000 asID: 141624 IP address blocks: 103.160.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dd743c7c-07e6-4611-b403-d8c5f0124a78/0/CC8AB1F3D177B771E1F70EDDE67F26E5854C0708.crl rsync://repo-rpki.idnic.net/repo/dd743c7c-07e6-4611-b403-d8c5f0124a78/0/CC8AB1F3D177B771E1F70EDDE67F26E5854C0708.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC8AB1F3D177B771E1F70EDDE67F26E5854C0708.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:da:5d:d0:dc:18:49:11:42:ab:1e:23:e0:f3:86:2d:c8:85:cb:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC8AB1F3D177B771E1F70EDDE67F26E5854C0708 Validity Not Before: Apr 4 06:55:00 2024 GMT Not After : Apr 3 07:00:00 2025 GMT Subject: CN=365AD584B42AED4D33B7B5EC32C7B3211B05A966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:9c:c7:c9:8b:60:de:5e:d8:54:eb:c2:84:73: 30:4c:ac:00:2d:94:b5:af:52:e0:47:ef:58:39:14: 58:3d:01:7b:dd:07:b8:ff:fe:1c:99:c1:86:df:45: da:e6:03:4c:39:d1:03:8f:8c:e8:68:d2:94:96:b9: 41:e6:d2:fc:aa:44:a8:01:00:7e:a7:89:df:76:ed: 30:b8:db:dc:74:25:13:3c:5b:6c:81:78:b0:d5:ea: 6b:d9:1c:df:6e:7f:ae:d5:0b:74:29:0f:53:dc:c5: 43:59:8f:43:4c:b5:c3:f3:68:73:4b:a7:84:17:9b: 9b:8c:be:b4:95:3b:be:93:b4:da:43:d5:bf:15:76: 8c:15:ca:45:06:54:e6:e6:8b:fe:6e:bb:62:29:e8: 4c:6b:6b:aa:ba:57:52:b6:a2:1f:43:94:07:34:98: 5f:f1:1b:e4:4d:e7:fb:6c:ef:01:16:9f:92:13:a6: 16:e2:72:98:04:0e:31:3b:11:00:5c:53:57:ef:db: 53:a5:ea:70:8c:c9:6b:e5:27:8c:09:cd:65:eb:f0: 18:cf:f4:e4:07:45:14:ef:c0:ff:6e:eb:95:d7:fb: cd:98:1f:78:40:2a:63:2b:80:13:0b:be:37:2d:f9: a5:8c:0c:c0:c4:41:7b:5b:a2:e6:c8:33:50:17:d5: f1:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:5A:D5:84:B4:2A:ED:4D:33:B7:B5:EC:32:C7:B3:21:1B:05:A9:66 X509v3 Authority Key Identifier: keyid:CC:8A:B1:F3:D1:77:B7:71:E1:F7:0E:DD:E6:7F:26:E5:85:4C:07:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dd743c7c-07e6-4611-b403-d8c5f0124a78/0/CC8AB1F3D177B771E1F70EDDE67F26E5854C0708.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CC8AB1F3D177B771E1F70EDDE67F26E5854C0708.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dd743c7c-07e6-4611-b403-d8c5f0124a78/0/3130332e3136302e31382e302f32332d3234203d3e20313431363234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.18.0/23 Signature Algorithm: sha256WithRSAEncryption 78:61:68:42:a8:ab:4d:f0:93:07:a9:db:a2:b7:b4:98:87:14: 0d:95:5b:81:6a:02:d7:1a:cd:38:b9:ca:79:19:d3:19:f6:2b: 1b:4d:72:1e:42:5c:39:c9:2f:45:3b:0b:7c:b3:32:fa:6f:28: 31:11:8c:6b:55:0e:f8:b9:2d:e9:4f:ab:5d:32:84:15:52:5a: fe:42:85:2c:f5:6b:2b:f9:fd:8f:50:fb:c5:45:02:96:c7:f1: ef:7a:cd:cb:54:3c:bf:8b:38:7c:ba:dd:07:a1:3e:64:52:1d: a2:8f:0e:fd:af:81:3e:c4:71:05:04:d8:31:44:f4:de:b4:c5: 47:d4:ed:8f:f5:bf:7c:5e:1f:40:16:c5:9a:4d:d6:a0:e5:e8: 7d:cb:d5:07:82:b7:8f:f1:44:2a:4f:53:1d:d6:f2:18:73:94: 49:4a:bd:97:3f:17:3f:fc:a7:ac:f3:f5:f0:a5:c6:17:8d:5b: 1f:d8:07:32:10:fa:6f:b3:22:19:7c:e9:35:26:e4:27:6d:f9: f4:79:47:f4:e5:40:39:77:59:82:e5:15:a5:7b:f0:e1:94:fa: 96:94:9e:1b:79:40:76:a2:74:6d:c0:15:b7:bd:a2:8a:cb:4d: 94:4f:6b:c7:6e:bf:5e:ec:b8:3b:ab:34:06:34:33:0b:66:0a: fa:1b:de:3a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUfNpd0NwYSRFCqx4j4POGLciFy4owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0M4QUIxRjNEMTc3Qjc3MUUxRjcwRURERTY3RjI2RTU4 NTRDMDcwODAeFw0yNDA0MDQwNjU1MDBaFw0yNTA0MDMwNzAwMDBaMDMxMTAvBgNV BAMTKDM2NUFENTg0QjQyQUVENEQzM0I3QjVFQzMyQzdCMzIxMUIwNUE5NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4nMfJi2DeXthU68KEczBMrAAt lLWvUuBH71g5FFg9AXvdB7j//hyZwYbfRdrmA0w50QOPjOho0pSWuUHm0vyqRKgB AH6nid927TC429x0JRM8W2yBeLDV6mvZHN9uf67VC3QpD1PcxUNZj0NMtcPzaHNL p4QXm5uMvrSVO76TtNpD1b8VdowVykUGVObmi/5uu2Ip6Exra6q6V1K2oh9DlAc0 mF/xG+RN5/ts7wEWn5ITphbicpgEDjE7EQBcU1fv21Ol6nCMyWvlJ4wJzWXr8BjP 9OQHRRTvwP9u65XX+82YH3hAKmMrgBMLvjct+aWMDMDEQXtboubIM1AX1fFvAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNlrVhLQq7U0zt7XsMsezIRsFqWYwHwYDVR0j BBgwFoAUzIqx89F3t3Hh9w7d5n8m5YVMBwgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZDc0M2M3Yy0wN2U2LTQ2MTEtYjQwMy1kOGM1ZjAxMjRhNzgvMC9DQzhBQjFGM0Qx NzdCNzcxRTFGNzBFRERFNjdGMjZFNTg1NEMwNzA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0M4QUIxRjNEMTc3Qjc3MUUxRjcwRURERTY3RjI2RTU4NTRD MDcwOC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RkNzQzYzdjLTA3ZTYtNDYxMS1i NDAzLWQ4YzVmMDEyNGE3OC8wLzMxMzAzMzJlMzEzNjMwMmUzMTM4MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzYzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6ASMA0GCSqG SIb3DQEBCwUAA4IBAQB4YWhCqKtN8JMHqduit7SYhxQNlVuBagLXGs04ucp5GdMZ 9isbTXIeQlw5yS9FOwt8szL6bygxEYxrVQ74uS3pT6tdMoQVUlr+QoUs9Wsr+f2P UPvFRQKWx/Hves3LVDy/izh8ut0HoT5kUh2ijw79r4E+xHEFBNgxRPTetMVH1O2P 9b98Xh9AFsWaTdag5eh9y9UHgreP8UQqT1Md1vIYc5RJSr2XPxc//Kes8/XwpcYX jVsf2AcyEPpvsyIZfOk1JuQnbfn0eUf05UA5d1mC5RWle/DhlPqWlJ4beUB2onRt wBW3vaKKy02UT2vHbr9e7Lg7qzQGNDMLZgr6G946 -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:21 2024 by rpki-client on console-fra.rpki-client.org