$ rpki-client -vvf repo-rpki.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/3130332e3136372e3130352e302f32342d3234203d3e203338333230.roa File: 3130332e3136372e3130352e302f32342d3234203d3e203338333230.roa (raw, json) Hash identifier: t5DmPirQU+jLx9aHjmb/pgwv+a8S0p8w/q4YuXRMJQI= Subject key identifier: A7:69:29:22:6D:5D:06:13:36:E7:84:E7:8D:8C:E2:5E:1E:C7:3E:53 Certificate issuer: /CN=7FEF6BF53FA3122A0F09CEF4B408E13792A14545 Certificate serial: 3E1549C7D8B4F2E7DFBB3B1AF2F14099356444D0 Authority key identifier: 7F:EF:6B:F5:3F:A3:12:2A:0F:09:CE:F4:B4:08:E1:37:92:A1:45:45 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7FEF6BF53FA3122A0F09CEF4B408E13792A14545.cer Subject info access: rsync://repo-rpki.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/3130332e3136372e3130352e302f32342d3234203d3e203338333230.roa Signing time: Thu 21 Nov 2024 07:00:02 +0000 ROA not before: Thu 21 Nov 2024 06:55:02 +0000 ROA not after: Thu 20 Nov 2025 07:00:02 +0000 asID: 38320 IP address blocks: 103.167.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/7FEF6BF53FA3122A0F09CEF4B408E13792A14545.crl rsync://repo-rpki.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/7FEF6BF53FA3122A0F09CEF4B408E13792A14545.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7FEF6BF53FA3122A0F09CEF4B408E13792A14545.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:15:49:c7:d8:b4:f2:e7:df:bb:3b:1a:f2:f1:40:99:35:64:44:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7FEF6BF53FA3122A0F09CEF4B408E13792A14545 Validity Not Before: Nov 21 06:55:02 2024 GMT Not After : Nov 20 07:00:02 2025 GMT Subject: CN=A76929226D5D061336E784E78D8CE25E1EC73E53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:da:c5:8e:e0:62:12:5a:69:19:f3:56:a7:f9: e5:e5:c4:38:0f:ea:a6:ff:5d:50:1b:11:61:4c:48: e4:9b:10:7f:d1:89:34:cd:a9:3d:5f:4c:61:aa:cc: cc:4f:92:a8:43:f2:ac:6f:79:1e:40:0d:9c:a1:39: 71:b8:78:6f:d5:08:36:20:7e:94:68:df:f2:c9:7b: 94:e0:3a:ba:5c:ad:2a:67:4e:9c:54:b9:a4:57:ee: fc:e3:86:70:f6:45:22:14:db:17:a3:03:57:fd:68: 9d:62:ef:a2:e2:07:ad:56:e2:02:1a:c5:e5:d6:a2: f2:6b:8a:4a:95:2a:ee:f9:c4:02:7d:06:e4:46:28: 67:b4:b4:54:3f:e4:ef:00:db:d1:9b:0a:9f:d9:42: ec:32:a8:dc:ed:48:e4:7a:dc:c1:4f:97:6f:c5:8c: fb:3a:3a:33:65:2a:07:fb:98:fe:d6:1a:2c:bc:df: 7e:f1:41:20:5a:80:14:f0:31:88:89:96:be:b8:bc: 1f:f8:b9:d5:ac:72:1c:fd:cc:c7:43:b7:b4:02:a0: cb:4a:64:fe:0a:5b:11:53:6c:0a:53:40:18:63:19: 57:a6:5f:08:a5:db:27:7d:d4:05:0a:81:7a:17:8e: 05:50:99:f7:7e:63:56:87:4f:42:35:98:be:46:32: 81:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:69:29:22:6D:5D:06:13:36:E7:84:E7:8D:8C:E2:5E:1E:C7:3E:53 X509v3 Authority Key Identifier: keyid:7F:EF:6B:F5:3F:A3:12:2A:0F:09:CE:F4:B4:08:E1:37:92:A1:45:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/7FEF6BF53FA3122A0F09CEF4B408E13792A14545.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7FEF6BF53FA3122A0F09CEF4B408E13792A14545.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/303ebabb-999f-4f3e-84c1-bf279bfe1787/0/3130332e3136372e3130352e302f32342d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.105.0/24 Signature Algorithm: sha256WithRSAEncryption 72:c8:1e:98:d7:55:45:fc:5f:5b:e4:19:da:34:32:25:0e:48: ab:1e:af:05:35:55:df:b5:6c:f0:f9:0b:41:9f:78:3f:48:6c: 69:b4:01:70:2a:d9:24:bf:a9:d1:83:e6:d3:6e:31:15:4d:4a: 2d:b7:9e:f1:46:72:67:0b:a9:86:5c:ed:80:57:36:b7:66:81: db:b9:7b:dd:41:37:ef:b8:d7:4f:94:d3:49:1f:b2:58:ab:c8: 10:9d:47:9f:76:31:96:f6:be:bb:a1:10:02:64:90:b2:13:13: e9:14:94:c5:2b:ca:b2:51:b9:22:ab:40:db:e1:2f:9a:e7:af: 1a:df:1e:b3:b7:5d:51:5c:80:86:7a:8c:38:e3:e1:a0:ec:fe: 41:11:f2:4e:da:f5:12:6f:92:fb:4d:4d:a4:23:6f:67:18:f2: dd:be:a2:6a:60:02:b5:32:f8:43:d3:70:95:db:a2:7e:2b:60: 58:4b:0e:8e:db:fa:0a:20:92:97:e8:84:88:7a:8c:ec:68:0b: df:e2:7f:b6:4c:56:ed:25:fd:90:c9:ca:40:aa:72:b2:b7:35: b2:97:d9:aa:d7:3d:0a:e7:74:97:e6:99:ed:63:39:98:39:d8: dc:f6:c2:4d:12:8f:78:8a:8a:4a:45:9a:0d:15:2c:e7:ae:c4: 47:6a:bb:52 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPhVJx9i08uffuzsa8vFAmTVkRNAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0ZFRjZCRjUzRkEzMTIyQTBGMDlDRUY0QjQwOEUxMzc5 MkExNDU0NTAeFw0yNDExMjEwNjU1MDJaFw0yNTExMjAwNzAwMDJaMDMxMTAvBgNV BAMTKEE3NjkyOTIyNkQ1RDA2MTMzNkU3ODRFNzhEOENFMjVFMUVDNzNFNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC42sWO4GISWmkZ81an+eXlxDgP 6qb/XVAbEWFMSOSbEH/RiTTNqT1fTGGqzMxPkqhD8qxveR5ADZyhOXG4eG/VCDYg fpRo3/LJe5TgOrpcrSpnTpxUuaRX7vzjhnD2RSIU2xejA1f9aJ1i76LiB61W4gIa xeXWovJrikqVKu75xAJ9BuRGKGe0tFQ/5O8A29GbCp/ZQuwyqNztSOR63MFPl2/F jPs6OjNlKgf7mP7WGiy8337xQSBagBTwMYiJlr64vB/4udWschz9zMdDt7QCoMtK ZP4KWxFTbApTQBhjGVemXwil2yd91AUKgXoXjgVQmfd+Y1aHT0I1mL5GMoEXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUp2kpIm1dBhM254TnjYziXh7HPlMwHwYDVR0j BBgwFoAUf+9r9T+jEioPCc70tAjhN5KhRUUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDNlYmFiYi05OTlmLTRmM2UtODRjMS1iZjI3OWJmZTE3ODcvMC83RkVGNkJGNTNG QTMxMjJBMEYwOUNFRjRCNDA4RTEzNzkyQTE0NTQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0ZFRjZCRjUzRkEzMTIyQTBGMDlDRUY0QjQwOEUxMzc5MkEx NDU0NS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwM2ViYWJiLTk5OWYtNGYzZS04 NGMxLWJmMjc5YmZlMTc4Ny8wLzMxMzAzMzJlMzEzNjM3MmUzMTMwMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMzM4MzMzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6dpMA0GCSqG SIb3DQEBCwUAA4IBAQByyB6Y11VF/F9b5BnaNDIlDkirHq8FNVXftWzw+QtBn3g/ SGxptAFwKtkkv6nRg+bTbjEVTUott57xRnJnC6mGXO2AVza3ZoHbuXvdQTfvuNdP lNNJH7JYq8gQnUefdjGW9r67oRACZJCyExPpFJTFK8qyUbkiq0Db4S+a568a3x6z t11RXICGeow44+Gg7P5BEfJO2vUSb5L7TU2kI29nGPLdvqJqYAK1MvhD03CV26J+ K2BYSw6O2/oKIJKX6ISIeozsaAvf4n+2TFbtJf2QycpAqnKytzWyl9mq1z0K53SX 5pntYzmYOdjc9sJNEo94iopKRZoNFSznrsRHartS -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:20 2024 by rpki-client on console-fra.rpki-client.org