$ rpki-client -vvf repo-rpki.idnic.net/repo/1bdff819-2bad-483d-9fa8-b6ebc484031a/0/3130332e3136342e31322e302f32332d3234203d3e20313431383938.roa File: 3130332e3136342e31322e302f32332d3234203d3e20313431383938.roa (raw, json) Hash identifier: 2DnAzq4eNmybDo6MKnn8o1XNX0aZDPzrJzf4nXdg4cY= Subject key identifier: 5B:FF:63:AD:D6:E9:4B:62:1B:2E:C5:90:18:A6:CD:15:BA:0C:B2:C0 Certificate issuer: /CN=917A9D24BF1EAD6FA4A1F8FD81D53137EF52E784 Certificate serial: 06BBF968165764E2601CE5319390037E0F30E3E1 Authority key identifier: 91:7A:9D:24:BF:1E:AD:6F:A4:A1:F8:FD:81:D5:31:37:EF:52:E7:84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/917A9D24BF1EAD6FA4A1F8FD81D53137EF52E784.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1bdff819-2bad-483d-9fa8-b6ebc484031a/0/3130332e3136342e31322e302f32332d3234203d3e20313431383938.roa Signing time: Wed 03 Jan 2024 07:00:00 +0000 ROA not before: Wed 03 Jan 2024 06:55:00 +0000 ROA not after: Wed 01 Jan 2025 07:00:00 +0000 asID: 141898 IP address blocks: 103.164.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1bdff819-2bad-483d-9fa8-b6ebc484031a/0/917A9D24BF1EAD6FA4A1F8FD81D53137EF52E784.crl rsync://repo-rpki.idnic.net/repo/1bdff819-2bad-483d-9fa8-b6ebc484031a/0/917A9D24BF1EAD6FA4A1F8FD81D53137EF52E784.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/917A9D24BF1EAD6FA4A1F8FD81D53137EF52E784.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 17:04:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:bb:f9:68:16:57:64:e2:60:1c:e5:31:93:90:03:7e:0f:30:e3:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=917A9D24BF1EAD6FA4A1F8FD81D53137EF52E784 Validity Not Before: Jan 3 06:55:00 2024 GMT Not After : Jan 1 07:00:00 2025 GMT Subject: CN=5BFF63ADD6E94B621B2EC59018A6CD15BA0CB2C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:00:48:f3:8d:f2:fb:03:4c:67:81:eb:9a:1d: 2e:48:48:ff:95:aa:31:b9:71:b8:33:6c:b7:f9:5e: fd:74:d9:df:be:2a:3b:89:99:08:76:51:49:83:d7: 20:bf:00:a5:86:86:83:a2:a2:d2:30:61:11:9f:79: 8f:e1:fa:d3:b0:17:21:00:ee:37:0c:08:ce:c9:04: 81:99:8c:be:2d:a5:6b:ed:bd:8a:79:5a:6a:4d:b9: 53:69:07:85:0a:a0:a0:4c:2c:4b:11:28:2e:20:73: e9:6f:00:20:47:4d:ea:e8:ba:c7:84:8c:bb:e3:df: b6:9d:d3:c3:00:f0:cf:41:e7:49:b5:9c:cd:03:78: e3:81:69:d9:4d:5c:04:4c:4b:3b:99:06:6f:04:a1: 4e:c9:16:33:0b:77:c5:db:c6:9b:88:15:6d:00:05: be:aa:65:9b:18:8a:17:71:84:9e:d7:dd:21:20:1e: a1:02:ce:ad:5d:5f:f2:47:b0:ed:95:bf:c7:cb:bf: 7e:3d:76:1b:08:0d:c4:68:92:1e:79:3f:ca:d2:e2: 2a:e6:8f:bc:12:9d:23:8d:ca:c8:72:8e:f9:fd:f1: 0b:43:9e:34:fb:42:f2:5c:2c:11:15:29:cd:89:bf: 06:93:01:a4:b3:e7:ca:fb:c4:c6:f6:f0:3b:aa:f2: 28:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:FF:63:AD:D6:E9:4B:62:1B:2E:C5:90:18:A6:CD:15:BA:0C:B2:C0 X509v3 Authority Key Identifier: keyid:91:7A:9D:24:BF:1E:AD:6F:A4:A1:F8:FD:81:D5:31:37:EF:52:E7:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1bdff819-2bad-483d-9fa8-b6ebc484031a/0/917A9D24BF1EAD6FA4A1F8FD81D53137EF52E784.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/917A9D24BF1EAD6FA4A1F8FD81D53137EF52E784.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1bdff819-2bad-483d-9fa8-b6ebc484031a/0/3130332e3136342e31322e302f32332d3234203d3e20313431383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.12.0/23 Signature Algorithm: sha256WithRSAEncryption 6b:d1:dc:83:3b:37:a7:85:80:ed:a7:f8:83:b6:8e:aa:4e:26: 7d:57:9b:6a:c1:e4:d7:ab:27:a0:f4:6d:d0:13:ab:13:6f:6b: 54:c2:5d:0d:fb:54:c5:62:84:6b:2c:c4:38:34:fb:af:a8:86: e2:c6:8a:72:b1:a3:21:f0:6c:ea:14:13:a6:50:8e:b8:75:33: 6f:55:15:5a:96:62:83:2f:35:a3:bc:21:9f:96:c8:23:ac:c1: 79:f7:09:21:c5:ca:87:40:47:cd:46:17:fd:ae:ac:14:7d:b9: 6c:6e:87:3f:d0:4f:79:8e:95:8f:cb:ab:33:3d:86:9c:2c:61: 06:6c:ff:b9:f5:94:20:0d:db:0c:e1:e1:14:fc:af:88:72:ba: 8e:60:7b:cf:3f:7b:90:f3:e8:39:25:93:6c:18:15:ae:50:e2: 58:1f:f0:74:25:b2:cd:64:8b:01:28:15:d7:7d:bc:1f:f7:15: bf:3b:5b:a9:60:69:6d:b8:73:e7:1b:7c:3d:4f:0c:fd:1c:1c: 24:11:f1:ab:b8:7f:d7:6c:18:45:04:fd:14:86:e4:a4:c9:e5: bd:86:7e:fa:08:b8:b3:d0:0f:64:cf:e2:b5:8b:2c:ce:de:66: 22:c2:84:2e:11:24:d2:25:97:61:cf:68:f4:6c:46:7d:28:9e: ee:66:a1:bf -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUBrv5aBZXZOJgHOUxk5ADfg8w4+EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTE3QTlEMjRCRjFFQUQ2RkE0QTFGOEZEODFENTMxMzdF RjUyRTc4NDAeFw0yNDAxMDMwNjU1MDBaFw0yNTAxMDEwNzAwMDBaMDMxMTAvBgNV BAMTKDVCRkY2M0FERDZFOTRCNjIxQjJFQzU5MDE4QTZDRDE1QkEwQ0IyQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSAEjzjfL7A0xngeuaHS5ISP+V qjG5cbgzbLf5Xv102d++KjuJmQh2UUmD1yC/AKWGhoOiotIwYRGfeY/h+tOwFyEA 7jcMCM7JBIGZjL4tpWvtvYp5WmpNuVNpB4UKoKBMLEsRKC4gc+lvACBHTerouseE jLvj37ad08MA8M9B50m1nM0DeOOBadlNXARMSzuZBm8EoU7JFjMLd8XbxpuIFW0A Bb6qZZsYihdxhJ7X3SEgHqECzq1dX/JHsO2Vv8fLv349dhsIDcRokh55P8rS4irm j7wSnSONyshyjvn98QtDnjT7QvJcLBEVKc2JvwaTAaSz58r7xMb28Duq8igFAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUW/9jrdbpS2IbLsWQGKbNFboMssAwHwYDVR0j BBgwFoAUkXqdJL8erW+kofj9gdUxN+9S54QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YmRmZjgxOS0yYmFkLTQ4M2QtOWZhOC1iNmViYzQ4NDAzMWEvMC85MTdBOUQyNEJG MUVBRDZGQTRBMUY4RkQ4MUQ1MzEzN0VGNTJFNzg0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTE3QTlEMjRCRjFFQUQ2RkE0QTFGOEZEODFENTMxMzdFRjUy RTc4NC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiZGZmODE5LTJiYWQtNDgzZC05 ZmE4LWI2ZWJjNDg0MDMxYS8wLzMxMzAzMzJlMzEzNjM0MmUzMTMyMmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDMxMzgzOTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6QMMA0GCSqG SIb3DQEBCwUAA4IBAQBr0dyDOzenhYDtp/iDto6qTiZ9V5tqweTXqyeg9G3QE6sT b2tUwl0N+1TFYoRrLMQ4NPuvqIbixopysaMh8GzqFBOmUI64dTNvVRValmKDLzWj vCGflsgjrMF59wkhxcqHQEfNRhf9rqwUfblsboc/0E95jpWPy6szPYacLGEGbP+5 9ZQgDdsM4eEU/K+IcrqOYHvPP3uQ8+g5JZNsGBWuUOJYH/B0JbLNZIsBKBXXfbwf 9xW/O1upYGltuHPnG3w9Twz9HBwkEfGruH/XbBhFBP0UhuSkyeW9hn76CLiz0A9k z+K1iyzO3mYiwoQuESTSJZdhz2j0bEZ9KJ7uZqG/ -----END CERTIFICATE-----Generated at Thu May 2 14:31:24 2024 by rpki-client on console-fra.rpki-client.org