$ rpki-client -vvf repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/3130332e3136372e3137312e302f32342d3234203d3e20313431393833.roa File: 3130332e3136372e3137312e302f32342d3234203d3e20313431393833.roa (raw, json) Hash identifier: PE4d1Sx+WsN4vxilmC3MyByH3VGT69g5rGzqbcN4kf4= Subject key identifier: F1:CD:29:58:B2:77:48:8B:F4:1F:F1:04:34:2F:3D:83:A3:B5:C7:6C Certificate issuer: /CN=D85F6D41E807D8825356A681A7518FA27664A965 Certificate serial: 0E6F142C66BD888E988246A56A2854192896270D Authority key identifier: D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/3130332e3136372e3137312e302f32342d3234203d3e20313431393833.roa Signing time: Sat 25 May 2024 21:00:00 +0000 ROA not before: Sat 25 May 2024 20:55:00 +0000 ROA not after: Sat 24 May 2025 21:00:00 +0000 asID: 141983 IP address blocks: 103.167.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:6f:14:2c:66:bd:88:8e:98:82:46:a5:6a:28:54:19:28:96:27:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85F6D41E807D8825356A681A7518FA27664A965 Validity Not Before: May 25 20:55:00 2024 GMT Not After : May 24 21:00:00 2025 GMT Subject: CN=F1CD2958B277488BF41FF104342F3D83A3B5C76C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:22:22:e2:c5:0c:9b:bd:af:f6:aa:39:b3:06: ec:e7:e8:02:cf:58:9b:b2:0d:00:5e:5f:98:e4:75: 10:58:4f:21:52:1a:0c:15:6d:e5:3b:8e:ff:b7:cf: 19:0e:3c:ca:e0:12:ff:b9:0d:8c:e1:ba:14:69:26: 2e:c9:6b:5f:cf:34:3f:07:fc:3a:65:28:96:76:57: 4b:44:05:4f:ed:b8:71:aa:13:a2:11:af:51:a5:48: ff:6f:18:81:42:8b:5f:ad:45:c4:71:ad:f8:17:f9: c2:b0:8e:cc:03:07:b9:fa:46:23:70:bb:4d:8e:ba: b9:1f:61:39:92:7d:32:74:ee:67:48:f9:56:ea:d4: 58:3f:5d:d6:d7:60:2f:cc:89:db:3c:1b:8f:2b:1f: a3:cf:11:d5:c3:d7:7e:38:1c:a5:e6:8d:4d:3c:3a: b5:a8:88:05:7f:0e:09:f8:04:3a:9c:2d:d4:de:fc: 1a:7d:51:61:4d:3d:50:9b:d0:ec:f6:80:e6:23:3f: 01:26:cd:c0:83:72:69:37:8c:0b:37:b5:ec:85:50: 7f:fa:68:e0:09:ae:43:4c:f2:fc:45:bd:93:41:34: 80:db:9a:d1:34:99:89:d5:6e:55:4b:db:76:a1:e0: 0e:8b:32:a7:7f:d8:d9:f3:e8:d8:5c:cf:6a:a1:bd: ff:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:CD:29:58:B2:77:48:8B:F4:1F:F1:04:34:2F:3D:83:A3:B5:C7:6C X509v3 Authority Key Identifier: keyid:D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/3130332e3136372e3137312e302f32342d3234203d3e20313431393833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.171.0/24 Signature Algorithm: sha256WithRSAEncryption d5:76:58:76:5f:f5:ef:94:50:56:95:f3:30:92:34:22:ca:fd: 7a:41:b4:ee:0e:c9:ab:f6:1d:3f:67:fa:d6:83:a0:b3:a7:b4: 18:7c:19:3a:db:b6:f4:d0:22:f9:87:34:ea:be:16:15:4d:ca: bb:df:4a:7d:f9:cf:9a:c3:e2:e2:a5:97:ce:fa:07:95:54:d5: ea:93:cb:4e:b1:df:40:6f:48:75:73:c0:b3:64:29:2c:23:ea: 73:d7:23:57:46:c6:a5:52:26:3d:0d:6a:ef:a0:7c:a3:87:fb: ed:d6:62:1d:7e:47:d4:88:1a:72:75:dc:fd:c7:b5:c7:29:45: 4d:26:89:df:c9:d2:41:e8:b8:28:5a:05:c0:a7:80:f1:ab:33: 7d:7f:1c:71:2a:8a:16:ca:83:e7:12:92:56:0f:99:97:4b:a8: 38:0b:62:55:ab:f5:3d:3c:10:c1:1f:56:31:70:bd:7a:5d:bf: e2:62:61:3c:c6:12:14:b7:ee:c0:9c:e0:ad:6a:7c:7e:9d:6f: cd:44:a0:c1:eb:25:64:89:e2:34:88:af:3f:cd:d3:79:6b:78: c8:a1:0b:2c:00:70:53:1d:2e:83:ea:d2:17:f5:90:72:b1:6d: cb:43:66:2e:79:36:be:e3:f9:3c:62:fe:c8:33:df:4a:62:bb: 9d:f4:b2:9b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDm8ULGa9iI6YgkalaihUGSiWJw0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3 NjY0QTk2NTAeFw0yNDA1MjUyMDU1MDBaFw0yNTA1MjQyMTAwMDBaMDMxMTAvBgNV BAMTKEYxQ0QyOTU4QjI3NzQ4OEJGNDFGRjEwNDM0MkYzRDgzQTNCNUM3NkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWIiLixQybva/2qjmzBuzn6ALP WJuyDQBeX5jkdRBYTyFSGgwVbeU7jv+3zxkOPMrgEv+5DYzhuhRpJi7Ja1/PND8H /DplKJZ2V0tEBU/tuHGqE6IRr1GlSP9vGIFCi1+tRcRxrfgX+cKwjswDB7n6RiNw u02OurkfYTmSfTJ07mdI+Vbq1Fg/XdbXYC/Mids8G48rH6PPEdXD1344HKXmjU08 OrWoiAV/Dgn4BDqcLdTe/Bp9UWFNPVCb0Oz2gOYjPwEmzcCDcmk3jAs3teyFUH/6 aOAJrkNM8vxFvZNBNIDbmtE0mYnVblVL23ah4A6LMqd/2Nnz6Nhcz2qhvf8xAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU8c0pWLJ3SIv0H/EENC89g6O1x2wwHwYDVR0j BBgwFoAU2F9tQegH2IJTVqaBp1GPonZkqWUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmJlZGYzYS1kN2QxLTQ5YTYtOTNlZC1iMjc3ZjFmN2E2ZWIvMC9EODVGNkQ0MUU4 MDdEODgyNTM1NkE2ODFBNzUxOEZBMjc2NjRBOTY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3NjY0 QTk2NS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2YmVkZjNhLWQ3ZDEtNDlhNi05 M2VkLWIyNzdmMWY3YTZlYi8wLzMxMzAzMzJlMzEzNjM3MmUzMTM3MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM4MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnp6swDQYJ KoZIhvcNAQELBQADggEBANV2WHZf9e+UUFaV8zCSNCLK/XpBtO4Oyav2HT9n+taD oLOntBh8GTrbtvTQIvmHNOq+FhVNyrvfSn35z5rD4uKll876B5VU1eqTy06x30Bv SHVzwLNkKSwj6nPXI1dGxqVSJj0Nau+gfKOH++3WYh1+R9SIGnJ13P3HtccpRU0m id/J0kHouChaBcCngPGrM31/HHEqihbKg+cSklYPmZdLqDgLYlWr9T08EMEfVjFw vXpdv+JiYTzGEhS37sCc4K1qfH6db81EoMHrJWSJ4jSIrz/N03lreMihCywAcFMd LoPq0hf1kHKxbctDZi55Nr7j+Txi/sgz30piu530sps= -----END CERTIFICATE-----Generated at Sat Jun 1 18:06:22 2024 by rpki-client on console-ams.rpki-client.org