$ rpki-client -vvf repo-rpki.idnic.net/repo/1251d6cf-c7b1-4687-9203-d161cc40b6a2/0/3130332e3135342e3137302e302f32332d3234203d3e20313333383331.roa File: 3130332e3135342e3137302e302f32332d3234203d3e20313333383331.roa (raw, json) Hash identifier: 2NTDN0N3a2fcLi0JauUpmbSOFigLmvDTHZI9ZqrrAbY= Subject key identifier: C1:CD:B0:9B:B7:2A:74:20:1D:0A:B1:A0:12:CF:49:4E:E1:58:7E:C3 Certificate issuer: /CN=F9C4820743DB001E8F69D44C19320E1BF09F8F88 Certificate serial: 27EDB9CE38E039AABD71EA11D2726D64B65F6009 Authority key identifier: F9:C4:82:07:43:DB:00:1E:8F:69:D4:4C:19:32:0E:1B:F0:9F:8F:88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F9C4820743DB001E8F69D44C19320E1BF09F8F88.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1251d6cf-c7b1-4687-9203-d161cc40b6a2/0/3130332e3135342e3137302e302f32332d3234203d3e20313333383331.roa Signing time: Tue 03 Sep 2024 01:28:04 +0000 ROA not before: Tue 03 Sep 2024 01:23:04 +0000 ROA not after: Tue 02 Sep 2025 01:28:04 +0000 asID: 133831 IP address blocks: 103.154.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1251d6cf-c7b1-4687-9203-d161cc40b6a2/0/F9C4820743DB001E8F69D44C19320E1BF09F8F88.crl rsync://repo-rpki.idnic.net/repo/1251d6cf-c7b1-4687-9203-d161cc40b6a2/0/F9C4820743DB001E8F69D44C19320E1BF09F8F88.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F9C4820743DB001E8F69D44C19320E1BF09F8F88.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:ed:b9:ce:38:e0:39:aa:bd:71:ea:11:d2:72:6d:64:b6:5f:60:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F9C4820743DB001E8F69D44C19320E1BF09F8F88 Validity Not Before: Sep 3 01:23:04 2024 GMT Not After : Sep 2 01:28:04 2025 GMT Subject: CN=C1CDB09BB72A74201D0AB1A012CF494EE1587EC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5c:d0:bf:2d:88:8c:fe:89:5e:20:dd:25:7f: 52:d4:66:17:45:91:78:52:7d:5b:7b:c8:a6:e4:98: 59:f5:32:c1:4d:e3:98:76:d4:03:29:8e:0c:4a:73: 37:65:13:69:1a:6a:8d:f3:cc:9d:c9:e6:1c:d6:5e: cd:bf:33:07:f4:80:4a:90:b3:33:80:55:49:6f:d9: 9c:a0:ab:5b:4f:ac:a1:35:16:9a:58:50:a6:d2:ae: ba:a4:15:9b:da:69:90:fb:b6:b9:ff:97:e2:2e:c2: 8a:67:c9:16:5a:68:33:b8:da:d9:a3:39:2f:ee:3e: 91:ad:07:9b:07:c0:47:64:a6:21:57:ec:f0:44:98: 04:bc:b0:49:bf:bd:f9:4e:70:6b:32:c2:37:c9:d7: 23:25:b2:b8:21:1d:f1:98:2d:62:ab:fc:c0:ab:c4: b2:96:95:08:fd:2d:c5:e8:a8:28:e7:5b:27:63:5c: b7:20:a8:9d:3d:a5:c3:9b:5b:9b:7e:65:ac:fa:26: 7c:7f:fc:42:10:6b:e7:9f:b9:f5:9f:b4:18:95:cc: 63:44:36:7a:6d:a3:ad:71:a0:66:8e:fe:86:14:c1: f0:28:c6:8b:c2:7f:f6:43:b5:3d:36:11:b7:7e:5a: 67:05:7a:9b:6e:15:8b:e7:14:da:b4:7e:9d:e5:d1: eb:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:CD:B0:9B:B7:2A:74:20:1D:0A:B1:A0:12:CF:49:4E:E1:58:7E:C3 X509v3 Authority Key Identifier: keyid:F9:C4:82:07:43:DB:00:1E:8F:69:D4:4C:19:32:0E:1B:F0:9F:8F:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1251d6cf-c7b1-4687-9203-d161cc40b6a2/0/F9C4820743DB001E8F69D44C19320E1BF09F8F88.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F9C4820743DB001E8F69D44C19320E1BF09F8F88.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1251d6cf-c7b1-4687-9203-d161cc40b6a2/0/3130332e3135342e3137302e302f32332d3234203d3e20313333383331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.170.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:51:19:b4:b5:a1:0c:c1:2a:1e:91:54:aa:00:22:51:e1:36: 6b:f2:65:70:80:e7:93:8c:84:5a:9d:ca:2c:e6:41:17:4b:7f: 1f:63:05:b5:dc:c5:4a:78:a7:67:cf:36:db:04:39:48:63:23: e2:7e:97:40:16:7a:0a:94:53:d2:17:c0:c8:5b:fa:f1:af:2c: 8d:15:4b:dc:b3:ec:e3:1b:58:81:90:43:49:fe:b7:f7:21:0f: af:14:e4:64:3c:b2:ee:13:9a:e3:88:ae:60:ff:1b:1c:f1:2f: f3:42:f4:83:71:1c:e6:7a:9c:85:6f:f2:83:d0:5f:0f:b4:40: d3:d4:1a:3c:5e:1e:07:70:3a:48:63:8d:df:c0:33:2b:40:f6: f9:78:c0:db:0d:30:c5:72:fb:49:d8:48:ec:69:e7:28:27:03: 49:5b:94:7a:7a:7b:7e:d2:a2:2a:9c:ae:4f:ca:a0:cb:e4:d6: 6b:d6:a4:30:ab:fe:90:88:41:1b:4c:60:8d:74:9a:07:8a:f5: 77:f8:60:1a:05:e8:f1:09:8a:06:dc:09:10:25:48:96:68:f9: de:17:8b:04:95:da:9f:1c:e7:3d:cb:0a:7b:d6:b4:74:ff:ee: b7:3d:b2:54:4b:b4:53:45:79:96:94:4e:ff:0d:68:99:b9:d9: e2:c2:29:68 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJ+25zjjgOaq9ceoR0nJtZLZfYAkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjlDNDgyMDc0M0RCMDAxRThGNjlENDRDMTkzMjBFMUJG MDlGOEY4ODAeFw0yNDA5MDMwMTIzMDRaFw0yNTA5MDIwMTI4MDRaMDMxMTAvBgNV BAMTKEMxQ0RCMDlCQjcyQTc0MjAxRDBBQjFBMDEyQ0Y0OTRFRTE1ODdFQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnXNC/LYiM/oleIN0lf1LUZhdF kXhSfVt7yKbkmFn1MsFN45h21AMpjgxKczdlE2kaao3zzJ3J5hzWXs2/Mwf0gEqQ szOAVUlv2Zygq1tPrKE1FppYUKbSrrqkFZvaaZD7trn/l+IuwopnyRZaaDO42tmj OS/uPpGtB5sHwEdkpiFX7PBEmAS8sEm/vflOcGsywjfJ1yMlsrghHfGYLWKr/MCr xLKWlQj9LcXoqCjnWydjXLcgqJ09pcObW5t+Zaz6Jnx//EIQa+efufWftBiVzGNE Nnpto61xoGaO/oYUwfAoxovCf/ZDtT02Ebd+WmcFeptuFYvnFNq0fp3l0etPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUwc2wm7cqdCAdCrGgEs9JTuFYfsMwHwYDVR0j BBgwFoAU+cSCB0PbAB6PadRMGTIOG/Cfj4gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MjUxZDZjZi1jN2IxLTQ2ODctOTIwMy1kMTYxY2M0MGI2YTIvMC9GOUM0ODIwNzQz REIwMDFFOEY2OUQ0NEMxOTMyMEUxQkYwOUY4Rjg4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjlDNDgyMDc0M0RCMDAxRThGNjlENDRDMTkzMjBFMUJGMDlG OEY4OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEyNTFkNmNmLWM3YjEtNDY4Ny05 MjAzLWQxNjFjYzQwYjZhMi8wLzMxMzAzMzJlMzEzNTM0MmUzMTM3MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzMzODMzMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnmqowDQYJ KoZIhvcNAQELBQADggEBAE1RGbS1oQzBKh6RVKoAIlHhNmvyZXCA55OMhFqdyizm QRdLfx9jBbXcxUp4p2fPNtsEOUhjI+J+l0AWegqUU9IXwMhb+vGvLI0VS9yz7OMb WIGQQ0n+t/chD68U5GQ8su4TmuOIrmD/GxzxL/NC9INxHOZ6nIVv8oPQXw+0QNPU GjxeHgdwOkhjjd/AMytA9vl4wNsNMMVy+0nYSOxp5ygnA0lblHp6e37Soiqcrk/K oMvk1mvWpDCr/pCIQRtMYI10mgeK9Xf4YBoF6PEJigbcCRAlSJZo+d4XiwSV2p8c 5z3LCnvWtHT/7rc9slRLtFNFeZaUTv8NaJm52eLCKWg= -----END CERTIFICATE-----Generated at Sun Nov 24 15:29:09 2024 by rpki-client on console-ams.rpki-client.org