$ rpki-client -vvf repo-rpki.idnic.net/repo/2d234d50-67e1-419c-85ba-64ba8c111225/0/3130332e3136332e38302e302f32332d3233203d3e20313431363734.roa File: 3130332e3136332e38302e302f32332d3233203d3e20313431363734.roa (raw, json) Hash identifier: LX1akCK1RumCTw48vx3vGALGY+ae+t+bkrwj6Dc+RMk= Subject key identifier: 1F:FB:B9:FE:0F:1B:FC:93:A5:B2:43:B7:2D:2F:A5:50:76:49:7A:BB Certificate issuer: /CN=81C94BE998ECBDD2EF897BFE8E8E51B874C0A652 Certificate serial: 08E26E669281840B529126D333185DA5ED936440 Authority key identifier: 81:C9:4B:E9:98:EC:BD:D2:EF:89:7B:FE:8E:8E:51:B8:74:C0:A6:52 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C94BE998ECBDD2EF897BFE8E8E51B874C0A652.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d234d50-67e1-419c-85ba-64ba8c111225/0/3130332e3136332e38302e302f32332d3233203d3e20313431363734.roa Signing time: Sun 01 Sep 2024 03:00:01 +0000 ROA not before: Sun 01 Sep 2024 02:55:01 +0000 ROA not after: Sun 31 Aug 2025 03:00:01 +0000 asID: 141674 IP address blocks: 103.163.80.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d234d50-67e1-419c-85ba-64ba8c111225/0/81C94BE998ECBDD2EF897BFE8E8E51B874C0A652.crl rsync://repo-rpki.idnic.net/repo/2d234d50-67e1-419c-85ba-64ba8c111225/0/81C94BE998ECBDD2EF897BFE8E8E51B874C0A652.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C94BE998ECBDD2EF897BFE8E8E51B874C0A652.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:e2:6e:66:92:81:84:0b:52:91:26:d3:33:18:5d:a5:ed:93:64:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81C94BE998ECBDD2EF897BFE8E8E51B874C0A652 Validity Not Before: Sep 1 02:55:01 2024 GMT Not After : Aug 31 03:00:01 2025 GMT Subject: CN=1FFBB9FE0F1BFC93A5B243B72D2FA55076497ABB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:7e:73:c5:c1:5e:2a:02:eb:90:95:39:a2:79: 1f:b1:93:8f:69:65:dc:55:ce:ca:0a:ea:96:7a:93: df:3a:10:2b:e4:0d:bf:f9:80:b0:24:2e:bc:99:39: eb:e3:1a:8f:6f:ce:e4:28:b7:8a:b4:cd:f0:7e:63: 0c:64:36:45:ff:bd:6d:8d:80:0f:c3:0b:14:17:15: 32:3f:5e:d6:08:a2:95:ae:ab:d7:f3:be:fc:b3:b6: e1:2e:41:7e:48:67:a9:53:47:57:6b:3a:d4:83:9a: ac:e4:76:db:c3:c3:56:49:d6:ff:4a:7b:c5:ee:61: 5e:02:6f:72:c7:7d:7d:8d:7a:8e:7e:fb:be:de:97: 06:03:50:98:46:6a:c1:a2:06:bc:2f:14:f5:05:b6: 63:94:2e:18:db:71:0f:ac:c5:d6:67:1e:4f:6b:4c: 3b:b1:15:e7:94:ee:ab:73:ea:f0:d9:75:d4:bd:8d: d6:50:a5:a2:c1:0b:58:25:9a:4d:20:48:3f:6e:09: 67:d3:06:5c:7c:dc:48:bc:52:72:cd:8f:63:03:c6: db:6f:16:68:aa:a3:a4:a2:11:9a:7c:a0:4b:b1:b0: af:f9:7d:0b:60:60:c9:e7:48:67:01:87:58:c3:0b: b2:28:37:66:53:85:34:14:e3:3b:f2:c6:a9:6d:17: 7d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:FB:B9:FE:0F:1B:FC:93:A5:B2:43:B7:2D:2F:A5:50:76:49:7A:BB X509v3 Authority Key Identifier: keyid:81:C9:4B:E9:98:EC:BD:D2:EF:89:7B:FE:8E:8E:51:B8:74:C0:A6:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d234d50-67e1-419c-85ba-64ba8c111225/0/81C94BE998ECBDD2EF897BFE8E8E51B874C0A652.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/81C94BE998ECBDD2EF897BFE8E8E51B874C0A652.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d234d50-67e1-419c-85ba-64ba8c111225/0/3130332e3136332e38302e302f32332d3233203d3e20313431363734.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.80.0/23 Signature Algorithm: sha256WithRSAEncryption 52:42:01:fd:0b:8d:a3:87:30:18:1b:49:c8:0f:b5:ef:53:87: e6:59:21:39:a3:98:64:f9:a8:02:b7:31:de:ab:e5:26:b8:bc: 26:cb:e3:1a:20:6e:2f:85:5c:3d:27:0d:c9:2a:3f:3f:4c:35: 41:a2:e1:fc:e3:2f:1a:00:46:f2:c4:89:d7:2a:f3:a4:6e:a5: ee:5a:65:fd:52:71:a0:a1:a2:4d:d9:fe:28:85:00:1f:c8:ee: c2:09:54:bd:98:71:c2:3d:04:85:90:d2:36:5c:51:ca:59:ed: 00:5f:1a:ab:e2:b5:5f:33:af:29:0f:3a:6e:c3:10:31:2f:25: b7:3c:4b:8c:59:a0:10:c3:c9:b0:0b:69:00:d3:35:59:4d:aa: b6:c7:dd:87:32:43:93:cf:ae:b6:63:74:39:b4:83:6c:75:7b: 74:d6:fc:73:af:f9:6a:ef:3e:c8:a4:7d:28:52:71:14:38:4d: 07:09:05:44:65:45:b0:70:98:b4:b3:fd:6c:41:e3:60:03:9d: ad:5e:ae:ae:d3:af:bf:52:aa:dd:9f:13:09:61:5c:d1:f3:73: 0a:2f:41:79:28:8a:c7:2a:7b:bb:d5:7a:85:89:84:26:37:f8: 4b:55:35:91:c5:4d:be:52:4b:ea:ba:70:87:fc:e2:e2:e8:9e: d7:f8:ba:d5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCOJuZpKBhAtSkSbTMxhdpe2TZEAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODFDOTRCRTk5OEVDQkREMkVGODk3QkZFOEU4RTUxQjg3 NEMwQTY1MjAeFw0yNDA5MDEwMjU1MDFaFw0yNTA4MzEwMzAwMDFaMDMxMTAvBgNV BAMTKDFGRkJCOUZFMEYxQkZDOTNBNUIyNDNCNzJEMkZBNTUwNzY0OTdBQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzfnPFwV4qAuuQlTmieR+xk49p ZdxVzsoK6pZ6k986ECvkDb/5gLAkLryZOevjGo9vzuQot4q0zfB+YwxkNkX/vW2N gA/DCxQXFTI/XtYIopWuq9fzvvyztuEuQX5IZ6lTR1drOtSDmqzkdtvDw1ZJ1v9K e8XuYV4Cb3LHfX2Neo5++77elwYDUJhGasGiBrwvFPUFtmOULhjbcQ+sxdZnHk9r TDuxFeeU7qtz6vDZddS9jdZQpaLBC1glmk0gSD9uCWfTBlx83Ei8UnLNj2MDxttv Fmiqo6SiEZp8oEuxsK/5fQtgYMnnSGcBh1jDC7IoN2ZThTQU4zvyxqltF32LAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUH/u5/g8b/JOlskO3LS+lUHZJerswHwYDVR0j BBgwFoAUgclL6ZjsvdLviXv+jo5RuHTAplIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDIzNGQ1MC02N2UxLTQxOWMtODViYS02NGJhOGMxMTEyMjUvMC84MUM5NEJFOTk4 RUNCREQyRUY4OTdCRkU4RThFNTFCODc0QzBBNjUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODFDOTRCRTk5OEVDQkREMkVGODk3QkZFOEU4RTUxQjg3NEMw QTY1Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkMjM0ZDUwLTY3ZTEtNDE5Yy04 NWJhLTY0YmE4YzExMTIyNS8wLzMxMzAzMzJlMzEzNjMzMmUzODMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMxMzYzNzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6NQMA0GCSqG SIb3DQEBCwUAA4IBAQBSQgH9C42jhzAYG0nID7XvU4fmWSE5o5hk+agCtzHeq+Um uLwmy+MaIG4vhVw9Jw3JKj8/TDVBouH84y8aAEbyxInXKvOkbqXuWmX9UnGgoaJN 2f4ohQAfyO7CCVS9mHHCPQSFkNI2XFHKWe0AXxqr4rVfM68pDzpuwxAxLyW3PEuM WaAQw8mwC2kA0zVZTaq2x92HMkOTz662Y3Q5tINsdXt01vxzr/lq7z7IpH0oUnEU OE0HCQVEZUWwcJi0s/1sQeNgA52tXq6u06+/UqrdnxMJYVzR83MKL0F5KIrHKnu7 1XqFiYQmN/hLVTWRxU2+UkvqunCH/OLi6J7X+LrV -----END CERTIFICATE-----Generated at Thu Nov 21 11:07:50 2024 by rpki-client on console-ams.rpki-client.org