$ rpki-client -vvf repo-rpki.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/3130332e3136372e3233372e302f32342d3234203d3e20313432333038.roa File: 3130332e3136372e3233372e302f32342d3234203d3e20313432333038.roa (raw, json) Hash identifier: 0nr9gPQw5gg7weyVjVjmP4Ms0ouXxZyEGyyMhhjUA3E= Subject key identifier: 17:CC:86:3B:7D:8C:FC:96:3F:07:22:C7:EE:40:ED:3A:81:32:E3:13 Certificate issuer: /CN=889933E416F356762F7F72858168C9C8A2E241C7 Certificate serial: 7A044E11ADA9A8DD1232FA9BCF4D88B7DEE06B3B Authority key identifier: 88:99:33:E4:16:F3:56:76:2F:7F:72:85:81:68:C9:C8:A2:E2:41:C7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/889933E416F356762F7F72858168C9C8A2E241C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/3130332e3136372e3233372e302f32342d3234203d3e20313432333038.roa Signing time: Thu 19 Sep 2024 04:00:01 +0000 ROA not before: Thu 19 Sep 2024 03:55:01 +0000 ROA not after: Thu 18 Sep 2025 04:00:01 +0000 asID: 142308 IP address blocks: 103.167.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/889933E416F356762F7F72858168C9C8A2E241C7.crl rsync://repo-rpki.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/889933E416F356762F7F72858168C9C8A2E241C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/889933E416F356762F7F72858168C9C8A2E241C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:04:4e:11:ad:a9:a8:dd:12:32:fa:9b:cf:4d:88:b7:de:e0:6b:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=889933E416F356762F7F72858168C9C8A2E241C7 Validity Not Before: Sep 19 03:55:01 2024 GMT Not After : Sep 18 04:00:01 2025 GMT Subject: CN=17CC863B7D8CFC963F0722C7EE40ED3A8132E313 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:de:c3:2c:84:60:9e:76:8e:38:b6:a1:eb:11: ed:d2:6a:a4:36:f1:01:b8:b7:87:4c:61:b5:0d:74: 1e:d1:e6:f8:00:29:3d:cd:5a:f7:10:7d:2f:0d:81: a9:dc:a1:e4:1f:1b:05:2a:00:17:a6:30:5e:73:0a: 02:00:93:1d:3a:2a:9f:46:04:26:6e:b2:88:0e:46: d6:5b:56:7e:8f:ab:be:2e:1c:5a:99:b3:06:22:76: d3:6d:6b:c6:aa:7a:f7:cc:97:76:4a:b8:ef:58:a0: 1b:a8:98:70:43:60:ed:da:1b:e4:3a:6c:87:ed:b4: 62:12:b2:07:2f:27:a9:5c:3d:33:37:70:55:d6:91: 61:3b:cc:81:c3:2a:94:c7:00:05:4e:aa:6e:fc:dc: ae:78:d1:b6:2f:2a:93:52:b1:d7:76:85:cd:1e:cf: a3:c0:00:fe:3c:72:94:22:ee:11:12:99:bb:10:39: 5c:d8:09:9a:af:a1:87:3d:a7:a4:7f:69:ad:e4:6b: 78:da:72:fa:e2:97:9e:47:32:a7:b5:ed:7b:7f:a4: 66:15:f7:9e:df:51:5a:59:68:3b:1f:30:8e:9d:32: ee:d8:cf:8e:8d:69:d1:ac:8e:f7:e0:0c:d1:33:58: 5b:2e:40:33:1b:d8:b2:8d:7d:12:75:47:44:b1:09: ec:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:CC:86:3B:7D:8C:FC:96:3F:07:22:C7:EE:40:ED:3A:81:32:E3:13 X509v3 Authority Key Identifier: keyid:88:99:33:E4:16:F3:56:76:2F:7F:72:85:81:68:C9:C8:A2:E2:41:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/889933E416F356762F7F72858168C9C8A2E241C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/889933E416F356762F7F72858168C9C8A2E241C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ecfd3f5-85da-48a7-b502-f61a59796c33/0/3130332e3136372e3233372e302f32342d3234203d3e20313432333038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.237.0/24 Signature Algorithm: sha256WithRSAEncryption 04:ff:c9:1f:ce:3b:c8:c8:27:cd:37:0d:2b:15:12:49:23:82: 75:84:40:2c:fa:a9:b5:f2:72:ac:a9:f1:fa:f3:ca:73:41:12: e9:82:cb:91:f1:5d:78:91:2c:b9:e5:55:f0:c6:60:40:79:03: 47:1a:11:ad:b3:cf:e8:db:1d:43:32:db:9c:3f:ba:68:6c:a8: 99:7e:e2:7c:1c:75:55:ee:6d:5e:cb:28:9a:cb:0b:02:96:53: 72:7c:d4:15:c3:be:92:3c:a0:f3:d8:6b:8a:6c:b7:d1:a8:de: 39:3d:fb:10:e6:dc:6b:10:7b:e9:26:d2:31:61:2c:ff:5f:58: 5b:f5:a8:59:a0:e9:82:14:be:c3:14:aa:8f:9f:8c:67:f2:b7: e5:06:76:77:9e:9e:b4:60:eb:14:8e:6b:7a:63:5d:8e:9d:c5: 53:20:79:eb:22:7f:34:79:44:10:35:f4:73:a7:6d:ac:f3:7c: 68:46:20:a5:b1:9c:59:25:10:25:5c:52:f4:95:7e:1a:0a:f3: 30:de:25:77:e2:0d:f1:29:4a:4a:2d:4d:de:2b:19:03:ec:52: f9:b5:05:fc:2f:25:0f:19:ef:f6:a6:93:42:98:93:6a:42:3a: 25:28:cd:a4:87:66:e7:b3:a9:06:56:d2:68:47:57:cc:81:71: f4:1e:e1:17 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUegROEa2pqN0SMvqbz02It97gazswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODg5OTMzRTQxNkYzNTY3NjJGN0Y3Mjg1ODE2OEM5QzhB MkUyNDFDNzAeFw0yNDA5MTkwMzU1MDFaFw0yNTA5MTgwNDAwMDFaMDMxMTAvBgNV BAMTKDE3Q0M4NjNCN0Q4Q0ZDOTYzRjA3MjJDN0VFNDBFRDNBODEzMkUzMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU3sMshGCedo44tqHrEe3SaqQ2 8QG4t4dMYbUNdB7R5vgAKT3NWvcQfS8NgancoeQfGwUqABemMF5zCgIAkx06Kp9G BCZusogORtZbVn6Pq74uHFqZswYidtNta8aqevfMl3ZKuO9YoBuomHBDYO3aG+Q6 bIfttGISsgcvJ6lcPTM3cFXWkWE7zIHDKpTHAAVOqm783K540bYvKpNSsdd2hc0e z6PAAP48cpQi7hESmbsQOVzYCZqvoYc9p6R/aa3ka3jacvril55HMqe17Xt/pGYV 957fUVpZaDsfMI6dMu7Yz46NadGsjvfgDNEzWFsuQDMb2LKNfRJ1R0SxCeyFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUF8yGO32M/JY/ByLH7kDtOoEy4xMwHwYDVR0j BBgwFoAUiJkz5BbzVnYvf3KFgWjJyKLiQccwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZWNmZDNmNS04NWRhLTQ4YTctYjUwMi1mNjFhNTk3OTZjMzMvMC84ODk5MzNFNDE2 RjM1Njc2MkY3RjcyODU4MTY4QzlDOEEyRTI0MUM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODg5OTMzRTQxNkYzNTY3NjJGN0Y3Mjg1ODE2OEM5QzhBMkUy NDFDNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlY2ZkM2Y1LTg1ZGEtNDhhNy1i NTAyLWY2MWE1OTc5NmMzMy8wLzMxMzAzMzJlMzEzNjM3MmUzMjMzMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzMwMzgucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnp+0wDQYJ KoZIhvcNAQELBQADggEBAAT/yR/OO8jIJ803DSsVEkkjgnWEQCz6qbXycqyp8frz ynNBEumCy5HxXXiRLLnlVfDGYEB5A0caEa2zz+jbHUMy25w/umhsqJl+4nwcdVXu bV7LKJrLCwKWU3J81BXDvpI8oPPYa4pst9Go3jk9+xDm3GsQe+km0jFhLP9fWFv1 qFmg6YIUvsMUqo+fjGfyt+UGdneenrRg6xSOa3pjXY6dxVMgeesifzR5RBA19HOn bazzfGhGIKWxnFklECVcUvSVfhoK8zDeJXfiDfEpSkotTd4rGQPsUvm1BfwvJQ8Z 7/amk0KYk2pCOiUozaSHZuezqQZW0mhHV8yBcfQe4Rc= -----END CERTIFICATE-----Generated at Mon Nov 25 15:49:31 2024 by rpki-client on console-ams.rpki-client.org