$ rpki-client -vvf repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/3130332e3136372e3137302e302f32342d3234203d3e20313431393833.roa File: 3130332e3136372e3137302e302f32342d3234203d3e20313431393833.roa (raw, json) Hash identifier: mZ6vyY+OcErKST+t+GHENxpGibSosO9+n5lwjCocgRo= Subject key identifier: E1:22:20:F7:B6:4C:51:F2:E5:15:9A:29:E1:B4:45:3F:74:36:7F:0C Certificate issuer: /CN=D85F6D41E807D8825356A681A7518FA27664A965 Certificate serial: 23F0A311888596F06988E8BE436CF9E8EAC5B1F1 Authority key identifier: D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/3130332e3136372e3137302e302f32342d3234203d3e20313431393833.roa Signing time: Sat 25 May 2024 21:00:00 +0000 ROA not before: Sat 25 May 2024 20:55:00 +0000 ROA not after: Sat 24 May 2025 21:00:00 +0000 asID: 141983 IP address blocks: 103.167.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:f0:a3:11:88:85:96:f0:69:88:e8:be:43:6c:f9:e8:ea:c5:b1:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85F6D41E807D8825356A681A7518FA27664A965 Validity Not Before: May 25 20:55:00 2024 GMT Not After : May 24 21:00:00 2025 GMT Subject: CN=E12220F7B64C51F2E5159A29E1B4453F74367F0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:55:58:8f:48:97:8c:0b:a0:69:eb:b9:88:29: 52:d5:99:32:35:d5:c8:08:a7:84:08:b4:86:87:53: 21:f6:14:4a:65:7b:76:82:69:5b:cd:13:c8:91:37: 38:f4:71:75:e5:20:71:fc:cc:62:03:a3:07:54:b2: c6:fb:e1:f5:00:1c:f3:65:9e:d6:03:50:95:74:cc: c4:47:65:43:1d:83:52:d2:6b:bb:08:b9:c5:2c:c2: bf:ff:89:0e:67:14:5c:8c:29:aa:03:9e:da:6f:36: 1d:43:fc:75:8a:83:ba:48:2b:c0:62:79:1b:49:49: 3e:9b:e2:eb:61:8a:f0:43:11:f7:0a:de:ed:ff:02: e4:a8:68:a0:1a:6a:9a:4c:d3:d2:d5:e8:20:99:d2: 13:2a:13:3f:87:51:3d:95:7c:cc:50:75:97:14:45: 64:25:73:66:17:e9:1d:e8:9a:69:8d:bd:92:56:6c: 6e:d4:ec:6f:36:d0:b9:83:da:8b:45:0f:c6:a2:03: 77:0e:61:8d:cb:d1:27:a3:d6:7e:30:61:dc:9a:7e: 10:0d:f1:6c:30:b2:62:4f:d4:13:16:16:2a:92:04: 19:fb:df:f1:0e:9e:eb:e2:43:17:d5:b5:7c:63:04: 5e:9b:b5:85:44:5d:65:6f:f1:5f:5c:d3:36:67:5e: 31:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:22:20:F7:B6:4C:51:F2:E5:15:9A:29:E1:B4:45:3F:74:36:7F:0C X509v3 Authority Key Identifier: keyid:D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/3130332e3136372e3137302e302f32342d3234203d3e20313431393833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.170.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:5b:f4:70:2a:f8:c4:f4:f4:47:bf:7f:e6:0f:0c:2c:9b:ce: 44:a7:35:3e:cd:ea:9e:37:96:35:9d:d2:fb:13:37:76:ff:ff: d7:e3:c5:48:03:a5:8d:e2:0c:33:ce:67:49:7d:39:b5:70:ae: 81:c6:6b:7b:20:64:cf:d6:e5:bb:0d:79:04:18:8f:e5:80:a8: 8f:75:21:fd:56:6e:0c:26:dd:85:00:7a:e2:95:13:4d:f0:f2: cf:f2:e4:cf:5b:cf:13:26:ba:d3:6f:fd:ce:f1:39:1f:8f:fa: c6:cf:f3:6b:07:9f:12:e7:57:63:c1:5d:83:c0:d7:14:f5:50: f0:c5:68:f0:fa:07:ff:6c:60:b9:66:2c:90:42:6d:2e:1f:e0: 47:84:c0:02:4e:1d:92:ae:aa:d9:f3:1e:13:ea:43:3b:93:cb: fd:ad:02:21:a5:94:a4:17:d5:1c:89:00:07:42:43:55:4d:19: f5:a1:fa:24:9f:4f:64:71:6a:f2:5b:a3:4a:73:df:e1:a0:0e: 6d:1e:26:28:22:de:01:34:a2:59:69:a3:97:ae:52:a2:79:a4: 1b:33:a2:12:a7:42:8b:19:b1:cb:7f:2f:ca:23:29:c5:13:34: 5d:8d:02:aa:20:e8:ca:6b:8f:88:91:9a:c3:29:15:2d:74:27: ad:e3:f1:49 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUI/CjEYiFlvBpiOi+Q2z56OrFsfEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3 NjY0QTk2NTAeFw0yNDA1MjUyMDU1MDBaFw0yNTA1MjQyMTAwMDBaMDMxMTAvBgNV BAMTKEUxMjIyMEY3QjY0QzUxRjJFNTE1OUEyOUUxQjQ0NTNGNzQzNjdGMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsVViPSJeMC6Bp67mIKVLVmTI1 1cgIp4QItIaHUyH2FEple3aCaVvNE8iRNzj0cXXlIHH8zGIDowdUssb74fUAHPNl ntYDUJV0zMRHZUMdg1LSa7sIucUswr//iQ5nFFyMKaoDntpvNh1D/HWKg7pIK8Bi eRtJST6b4uthivBDEfcK3u3/AuSoaKAaappM09LV6CCZ0hMqEz+HUT2VfMxQdZcU RWQlc2YX6R3ommmNvZJWbG7U7G820LmD2otFD8aiA3cOYY3L0Sej1n4wYdyafhAN 8WwwsmJP1BMWFiqSBBn73/EOnuviQxfVtXxjBF6btYVEXWVv8V9c0zZnXjEpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU4SIg97ZMUfLlFZop4bRFP3Q2fwwwHwYDVR0j BBgwFoAU2F9tQegH2IJTVqaBp1GPonZkqWUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmJlZGYzYS1kN2QxLTQ5YTYtOTNlZC1iMjc3ZjFmN2E2ZWIvMC9EODVGNkQ0MUU4 MDdEODgyNTM1NkE2ODFBNzUxOEZBMjc2NjRBOTY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3NjY0 QTk2NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2YmVkZjNhLWQ3ZDEtNDlhNi05 M2VkLWIyNzdmMWY3YTZlYi8wLzMxMzAzMzJlMzEzNjM3MmUzMTM3MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM4MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnp6owDQYJ KoZIhvcNAQELBQADggEBABpb9HAq+MT09Ee/f+YPDCybzkSnNT7N6p43ljWd0vsT N3b//9fjxUgDpY3iDDPOZ0l9ObVwroHGa3sgZM/W5bsNeQQYj+WAqI91If1Wbgwm 3YUAeuKVE03w8s/y5M9bzxMmutNv/c7xOR+P+sbP82sHnxLnV2PBXYPA1xT1UPDF aPD6B/9sYLlmLJBCbS4f4EeEwAJOHZKuqtnzHhPqQzuTy/2tAiGllKQX1RyJAAdC Q1VNGfWh+iSfT2RxavJbo0pz3+GgDm0eJigi3gE0ollpo5euUqJ5pBszohKnQosZ sct/L8ojKcUTNF2NAqog6Mprj4iRmsMpFS10J63j8Uk= -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:16 2024 by rpki-client on console-fra.rpki-client.org