$ rpki-client -vvf repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/3130332e3136372e3137302e302f32332d3233203d3e20313431393833.roa File: 3130332e3136372e3137302e302f32332d3233203d3e20313431393833.roa (raw, json) Hash identifier: jdquvIdRpu3jRDtlUtAlf7M9qmyq8LXS+xBVkBGfDag= Subject key identifier: E2:1D:60:5B:74:93:AD:E3:FE:01:B1:1B:0A:A7:CD:3B:B0:12:E3:20 Certificate issuer: /CN=D85F6D41E807D8825356A681A7518FA27664A965 Certificate serial: 3B44E7DFA8893FA2F7EF279A3156D94B20BF7E4E Authority key identifier: D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/3130332e3136372e3137302e302f32332d3233203d3e20313431393833.roa Signing time: Sat 25 May 2024 21:00:00 +0000 ROA not before: Sat 25 May 2024 20:55:00 +0000 ROA not after: Sat 24 May 2025 21:00:00 +0000 asID: 141983 IP address blocks: 103.167.170.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:44:e7:df:a8:89:3f:a2:f7:ef:27:9a:31:56:d9:4b:20:bf:7e:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85F6D41E807D8825356A681A7518FA27664A965 Validity Not Before: May 25 20:55:00 2024 GMT Not After : May 24 21:00:00 2025 GMT Subject: CN=E21D605B7493ADE3FE01B11B0AA7CD3BB012E320 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:80:9f:1d:29:bd:ae:0b:d9:fe:64:ee:44:89: a7:06:4a:44:ff:df:61:04:f8:2e:86:de:bb:50:ea: e6:6b:85:52:dd:18:df:54:0c:92:de:c1:35:e7:20: 97:d8:4d:bc:83:94:1f:a5:db:b0:70:c9:bb:e8:cc: fb:65:55:95:f1:46:cd:57:f5:7c:db:4e:0d:54:7b: e7:d8:5b:98:d7:60:b9:8a:bc:ca:9c:2f:d8:20:9c: 3c:4e:45:56:85:71:f6:15:3e:95:bb:46:8b:0a:00: d3:78:70:32:d8:a4:83:cc:a7:f3:e0:e8:c6:fe:47: 76:50:35:bd:22:3b:4e:1c:6d:d9:e2:25:7d:67:ae: d9:ff:39:19:e7:25:53:a8:7c:d5:ea:a4:1f:ec:55: 12:ac:e5:2a:e9:5b:94:ae:78:90:6f:71:71:0e:cd: 0f:be:df:39:24:8e:f2:22:2c:19:10:ed:5e:c1:12: 9d:8a:96:ae:fd:83:2d:ce:6f:4e:bd:7d:7d:2b:a1: 38:07:c6:bb:c1:77:b1:f2:fc:90:ca:d7:0f:f4:05: 49:b2:4b:f0:29:74:bd:0d:a1:b4:44:1d:a1:c2:3b: b4:75:dc:b2:95:ad:f5:ba:27:69:4c:e1:e3:c0:d5: 5d:2d:f8:6b:41:15:a8:0a:f8:88:63:da:33:aa:cf: 27:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:1D:60:5B:74:93:AD:E3:FE:01:B1:1B:0A:A7:CD:3B:B0:12:E3:20 X509v3 Authority Key Identifier: keyid:D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/3130332e3136372e3137302e302f32332d3233203d3e20313431393833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.170.0/23 Signature Algorithm: sha256WithRSAEncryption 76:15:f5:8e:52:11:a1:07:cd:a6:d1:c2:cc:29:21:b3:3c:49: c8:f8:e2:c4:5c:df:19:a8:8c:1c:72:7a:dd:2c:a0:80:3b:89: c2:4c:f4:b5:ba:3f:88:d7:07:07:f0:35:bf:cc:43:7d:b0:c3: 13:c4:28:84:7f:9f:73:79:17:28:bc:b1:8a:04:fb:58:28:b3: 8d:5f:82:33:ad:5c:f1:7a:3c:e2:f7:a9:67:fc:0c:09:84:0c: e6:c1:7a:81:e3:01:9a:14:23:e9:c0:79:6a:fc:5e:f5:e2:45: 5b:b6:74:97:2f:cb:2d:f5:09:80:be:7b:e1:85:9f:2a:8a:06: f6:d3:54:03:17:90:c7:fe:ad:bd:cc:f2:ae:4d:3b:e3:b6:99: 72:7a:da:d9:09:21:91:b4:70:c0:ab:7e:fb:ec:bc:4e:8d:05: ce:71:8f:4c:be:ec:8c:35:5a:bb:96:a5:16:1d:8e:e1:86:35: 5f:9f:0b:f2:3d:32:cd:ab:aa:5d:c1:12:5e:34:13:46:84:91: 49:a6:57:c5:bc:fc:85:67:10:f7:2f:ba:32:13:47:3b:e7:1d: 4d:c8:b5:2c:e3:1e:6d:dd:50:9a:ad:41:e5:18:7c:08:0b:ac: 5f:34:5f:0e:dc:7d:98:68:bc:fc:4b:1e:08:e3:63:27:c8:33: e4:d4:1e:63 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUO0Tn36iJP6L37yeaMVbZSyC/fk4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3 NjY0QTk2NTAeFw0yNDA1MjUyMDU1MDBaFw0yNTA1MjQyMTAwMDBaMDMxMTAvBgNV BAMTKEUyMUQ2MDVCNzQ5M0FERTNGRTAxQjExQjBBQTdDRDNCQjAxMkUzMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+gJ8dKb2uC9n+ZO5EiacGSkT/ 32EE+C6G3rtQ6uZrhVLdGN9UDJLewTXnIJfYTbyDlB+l27BwybvozPtlVZXxRs1X 9XzbTg1Ue+fYW5jXYLmKvMqcL9ggnDxORVaFcfYVPpW7RosKANN4cDLYpIPMp/Pg 6Mb+R3ZQNb0iO04cbdniJX1nrtn/ORnnJVOofNXqpB/sVRKs5SrpW5SueJBvcXEO zQ++3zkkjvIiLBkQ7V7BEp2Klq79gy3Ob069fX0roTgHxrvBd7Hy/JDK1w/0BUmy S/ApdL0NobREHaHCO7R13LKVrfW6J2lM4ePA1V0t+GtBFagK+Ihj2jOqzyePAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU4h1gW3STreP+AbEbCqfNO7AS4yAwHwYDVR0j BBgwFoAU2F9tQegH2IJTVqaBp1GPonZkqWUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmJlZGYzYS1kN2QxLTQ5YTYtOTNlZC1iMjc3ZjFmN2E2ZWIvMC9EODVGNkQ0MUU4 MDdEODgyNTM1NkE2ODFBNzUxOEZBMjc2NjRBOTY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3NjY0 QTk2NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2YmVkZjNhLWQ3ZDEtNDlhNi05 M2VkLWIyNzdmMWY3YTZlYi8wLzMxMzAzMzJlMzEzNjM3MmUzMTM3MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzOTM4MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnp6owDQYJ KoZIhvcNAQELBQADggEBAHYV9Y5SEaEHzabRwswpIbM8Scj44sRc3xmojBxyet0s oIA7icJM9LW6P4jXBwfwNb/MQ32wwxPEKIR/n3N5Fyi8sYoE+1gos41fgjOtXPF6 POL3qWf8DAmEDObBeoHjAZoUI+nAeWr8XvXiRVu2dJcvyy31CYC+e+GFnyqKBvbT VAMXkMf+rb3M8q5NO+O2mXJ62tkJIZG0cMCrfvvsvE6NBc5xj0y+7Iw1WruWpRYd juGGNV+fC/I9Ms2rql3BEl40E0aEkUmmV8W8/IVnEPcvujITRzvnHU3ItSzjHm3d UJqtQeUYfAgLrF80Xw7cfZhovPxLHgjjYyfIM+TUHmM= -----END CERTIFICATE-----Generated at Sun Nov 24 20:07:39 2024 by rpki-client on console-ams.rpki-client.org