$ rpki-client -vvf repo-rpki.idnic.net/repo/f1b93687-2b20-41c9-bfbb-005f67e96a8c/0/3130332e3136302e35362e302f32332d3234203d3e20313431353830.roa File: 3130332e3136302e35362e302f32332d3234203d3e20313431353830.roa (raw, json) Hash identifier: qOliyAbecAgnwnEl2JxoivYUoLSuHIHif/ES8Zdhg8I= Subject key identifier: 3B:40:15:F9:C4:1F:1C:E2:A2:82:C9:B4:61:07:87:2C:E5:A5:DA:74 Certificate issuer: /CN=B70AD86C83CABAC7AAD7B664F2F6248A4C42BF84 Certificate serial: 05D1C10C65F425CD77A30DC9F467792EBBFDFC06 Authority key identifier: B7:0A:D8:6C:83:CA:BA:C7:AA:D7:B6:64:F2:F6:24:8A:4C:42:BF:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B70AD86C83CABAC7AAD7B664F2F6248A4C42BF84.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f1b93687-2b20-41c9-bfbb-005f67e96a8c/0/3130332e3136302e35362e302f32332d3234203d3e20313431353830.roa Signing time: Fri 06 Sep 2024 04:00:02 +0000 ROA not before: Fri 06 Sep 2024 03:55:02 +0000 ROA not after: Fri 05 Sep 2025 04:00:02 +0000 asID: 141580 IP address blocks: 103.160.56.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f1b93687-2b20-41c9-bfbb-005f67e96a8c/0/B70AD86C83CABAC7AAD7B664F2F6248A4C42BF84.crl rsync://repo-rpki.idnic.net/repo/f1b93687-2b20-41c9-bfbb-005f67e96a8c/0/B70AD86C83CABAC7AAD7B664F2F6248A4C42BF84.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B70AD86C83CABAC7AAD7B664F2F6248A4C42BF84.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 23 Feb 2025 02:42:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:d1:c1:0c:65:f4:25:cd:77:a3:0d:c9:f4:67:79:2e:bb:fd:fc:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B70AD86C83CABAC7AAD7B664F2F6248A4C42BF84 Validity Not Before: Sep 6 03:55:02 2024 GMT Not After : Sep 5 04:00:02 2025 GMT Subject: CN=3B4015F9C41F1CE2A282C9B46107872CE5A5DA74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:97:5b:92:fe:11:d1:8b:87:37:c4:27:c9:00: 14:7b:04:c6:e8:85:92:e7:c2:e8:a7:84:71:7b:47: 52:83:9c:da:b2:c4:17:ed:90:f9:a9:07:c6:fc:e5: 06:63:7e:a9:43:52:66:7f:75:0a:09:64:eb:c7:b5: 35:67:8d:64:d6:2a:4f:5a:88:16:35:a9:f8:82:b4: 8c:14:3e:10:60:ae:97:ee:4d:37:75:53:76:d2:23: af:41:95:d0:48:1e:ec:1e:71:1b:76:c5:f0:de:64: 5c:01:48:57:4b:cb:57:b6:dc:ce:d5:52:43:4d:4f: 5e:52:63:50:5c:a5:4b:a0:f7:13:f6:32:6d:bd:b6: cd:10:39:ad:16:2d:9e:ba:67:21:20:23:2f:a2:90: 25:a5:d4:7a:3b:16:88:64:f6:30:09:a6:24:dd:9a: bf:1c:b5:ee:12:1c:89:20:de:07:30:b1:3b:3f:10: dc:e6:6b:93:75:9a:c2:8c:57:a6:9e:dc:24:18:5f: 96:22:a2:c0:fb:61:db:df:48:8c:49:3c:74:09:af: dd:10:16:0e:b4:21:20:2b:90:aa:89:f4:b4:f3:e8: a8:a9:ec:9b:ed:8e:4d:4b:41:c3:6d:c8:e7:26:4c: 17:b4:e4:db:3e:c4:a8:18:1f:70:11:3b:c8:78:9b: 82:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:40:15:F9:C4:1F:1C:E2:A2:82:C9:B4:61:07:87:2C:E5:A5:DA:74 X509v3 Authority Key Identifier: keyid:B7:0A:D8:6C:83:CA:BA:C7:AA:D7:B6:64:F2:F6:24:8A:4C:42:BF:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f1b93687-2b20-41c9-bfbb-005f67e96a8c/0/B70AD86C83CABAC7AAD7B664F2F6248A4C42BF84.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B70AD86C83CABAC7AAD7B664F2F6248A4C42BF84.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f1b93687-2b20-41c9-bfbb-005f67e96a8c/0/3130332e3136302e35362e302f32332d3234203d3e20313431353830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.56.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:b8:32:7e:26:f7:20:a9:12:1c:fc:75:9e:16:81:36:1e:79: 31:a2:f6:1f:54:7b:97:c3:83:a8:14:ec:7b:cd:48:d4:98:c6: 20:c5:db:a7:e1:b6:0f:c7:19:7a:27:e7:cf:50:72:05:32:4c: c3:6d:b4:cb:9d:a9:1b:8d:25:0e:cc:ea:5e:ba:7a:cf:83:87: 14:90:5b:6f:8f:59:30:20:bc:cf:e2:34:90:86:62:ad:8e:d1: 57:4f:62:3e:e1:b9:2b:ce:90:d2:e5:e7:71:59:60:79:44:14: fd:cf:65:92:cf:6c:a2:8e:40:d9:e2:0b:fa:55:90:b7:fb:37: 88:eb:f9:b7:36:c8:03:e4:63:7f:2e:fa:56:20:17:93:2c:20: 3c:01:2a:12:f1:2d:3a:c9:25:37:92:a4:a7:88:39:62:37:98: 0c:85:34:5c:3c:76:cb:85:9e:88:c2:a7:d1:ca:07:c9:cb:08: b0:d9:85:db:a1:70:c2:bd:c7:76:d3:fb:1c:91:a2:1a:d3:64: 23:fc:c3:13:02:95:da:da:ce:06:1c:ae:9f:e8:92:c0:16:3d: 39:c9:e0:8c:b6:17:b7:a5:0c:25:88:a5:39:bd:62:75:5d:eb: bc:2f:8e:7c:f5:7b:3f:99:68:d9:c1:ff:f4:16:ce:36:70:22: bf:ba:31:ae -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBdHBDGX0Jc13ow3J9Gd5Lrv9/AYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjcwQUQ4NkM4M0NBQkFDN0FBRDdCNjY0RjJGNjI0OEE0 QzQyQkY4NDAeFw0yNDA5MDYwMzU1MDJaFw0yNTA5MDUwNDAwMDJaMDMxMTAvBgNV BAMTKDNCNDAxNUY5QzQxRjFDRTJBMjgyQzlCNDYxMDc4NzJDRTVBNURBNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEl1uS/hHRi4c3xCfJABR7BMbo hZLnwuinhHF7R1KDnNqyxBftkPmpB8b85QZjfqlDUmZ/dQoJZOvHtTVnjWTWKk9a iBY1qfiCtIwUPhBgrpfuTTd1U3bSI69BldBIHuwecRt2xfDeZFwBSFdLy1e23M7V UkNNT15SY1BcpUug9xP2Mm29ts0QOa0WLZ66ZyEgIy+ikCWl1Ho7Fohk9jAJpiTd mr8cte4SHIkg3gcwsTs/ENzma5N1msKMV6ae3CQYX5YiosD7YdvfSIxJPHQJr90Q Fg60ISArkKqJ9LTz6Kip7Jvtjk1LQcNtyOcmTBe05Ns+xKgYH3ARO8h4m4J1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUO0AV+cQfHOKigsm0YQeHLOWl2nQwHwYDVR0j BBgwFoAUtwrYbIPKuseq17Zk8vYkikxCv4QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MWI5MzY4Ny0yYjIwLTQxYzktYmZiYi0wMDVmNjdlOTZhOGMvMC9CNzBBRDg2Qzgz Q0FCQUM3QUFEN0I2NjRGMkY2MjQ4QTRDNDJCRjg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjcwQUQ4NkM4M0NBQkFDN0FBRDdCNjY0RjJGNjI0OEE0QzQy QkY4NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxYjkzNjg3LTJiMjAtNDFjOS1i ZmJiLTAwNWY2N2U5NmE4Yy8wLzMxMzAzMzJlMzEzNjMwMmUzNTM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzUzODMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6A4MA0GCSqG SIb3DQEBCwUAA4IBAQA9uDJ+JvcgqRIc/HWeFoE2HnkxovYfVHuXw4OoFOx7zUjU mMYgxdun4bYPxxl6J+fPUHIFMkzDbbTLnakbjSUOzOpeunrPg4cUkFtvj1kwILzP 4jSQhmKtjtFXT2I+4bkrzpDS5edxWWB5RBT9z2WSz2yijkDZ4gv6VZC3+zeI6/m3 NsgD5GN/LvpWIBeTLCA8ASoS8S06ySU3kqSniDliN5gMhTRcPHbLhZ6IwqfRygfJ ywiw2YXboXDCvcd20/sckaIa02Qj/MMTApXa2s4GHK6f6JLAFj05yeCMthe3pQwl iKU5vWJ1Xeu8L4589Xs/mWjZwf/0Fs42cCK/ujGu -----END CERTIFICATE-----Generated at Fri Feb 21 11:10:02 2025 by rpki-client