$ rpki-client -vvf repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/3130332e3136362e3233342e302f32342d3234203d3e20313430343037.roa File: 3130332e3136362e3233342e302f32342d3234203d3e20313430343037.roa (raw, json) Hash identifier: GBJ6BnkBkbIpnc1fiEv77Ha5kpMfw1Caa5ostqvrFBQ= Subject key identifier: F3:0F:29:61:CD:DC:EB:4D:1A:50:11:65:9A:DA:0D:94:38:8F:06:96 Certificate issuer: /CN=DF19949CE17DC116E7B7C2248C933405B7A1AEF2 Certificate serial: 5983293AC5C644BD3A84CAD64E9E284C9785226E Authority key identifier: DF:19:94:9C:E1:7D:C1:16:E7:B7:C2:24:8C:93:34:05:B7:A1:AE:F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/3130332e3136362e3233342e302f32342d3234203d3e20313430343037.roa Signing time: Thu 01 Feb 2024 06:00:30 +0000 ROA not before: Thu 01 Feb 2024 05:55:30 +0000 ROA not after: Thu 30 Jan 2025 06:00:30 +0000 asID: 140407 IP address blocks: 103.166.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.crl rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:83:29:3a:c5:c6:44:bd:3a:84:ca:d6:4e:9e:28:4c:97:85:22:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF19949CE17DC116E7B7C2248C933405B7A1AEF2 Validity Not Before: Feb 1 05:55:30 2024 GMT Not After : Jan 30 06:00:30 2025 GMT Subject: CN=F30F2961CDDCEB4D1A5011659ADA0D94388F0696 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c6:31:ce:56:40:1e:f2:f8:00:23:28:89:ce: 65:26:da:cb:da:de:46:66:e4:d4:bf:38:c7:4a:f7: 1c:6e:66:06:9f:a0:28:53:66:45:54:3a:32:bc:e9: 40:af:fa:6e:16:24:b5:9b:d1:3b:b7:bd:72:6c:bf: 97:9b:89:b6:c9:49:cb:06:5d:fd:f5:ca:93:b6:e4: 8b:dd:74:0f:de:09:a9:60:55:f2:52:b1:e4:ca:b0: 3d:d0:1b:d0:1d:95:88:d6:42:63:ee:d4:30:1e:41: 17:f7:b0:55:b3:3a:f9:4c:f2:29:d5:4d:3a:97:4f: 09:5e:6c:2e:da:25:6f:c3:b2:40:08:01:d6:6c:25: fb:bb:fd:e3:67:7c:35:bd:4e:5b:9c:27:6e:b8:41: 77:d1:9e:49:fb:19:ea:37:11:7b:92:b9:34:e5:8d: f4:21:49:5f:b6:a7:3c:d3:54:75:66:f5:be:ad:be: 21:b8:7b:71:43:13:68:af:a9:e7:7c:f5:b9:4e:9e: b6:4e:aa:4e:34:9f:e6:97:08:b0:13:8a:08:4b:94: c9:6a:51:d8:c1:50:ae:fc:03:ff:5e:05:75:16:6a: 05:79:a5:2e:15:b6:a7:46:0a:e9:97:e9:87:49:d7: 42:5a:9f:af:aa:88:1d:38:8a:51:0f:e4:6a:0c:d4: 18:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:0F:29:61:CD:DC:EB:4D:1A:50:11:65:9A:DA:0D:94:38:8F:06:96 X509v3 Authority Key Identifier: keyid:DF:19:94:9C:E1:7D:C1:16:E7:B7:C2:24:8C:93:34:05:B7:A1:AE:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/3130332e3136362e3233342e302f32342d3234203d3e20313430343037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.234.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:a3:93:58:1b:3e:62:9b:4d:8e:0d:ca:3f:f6:e3:fe:4b:b7: f0:5b:7c:9a:9f:c0:1b:21:eb:8c:7c:ac:4b:b6:45:47:95:12: 41:4e:35:83:a5:0e:c6:c4:ad:32:e7:60:9b:d7:1d:02:18:e4: 48:28:d9:f6:f3:67:f5:8e:3c:e5:2d:af:48:8c:8d:02:ab:76: 34:b5:ca:5f:40:b8:26:cf:df:bc:0e:65:6f:47:93:e8:c9:1e: 39:ca:cb:ff:56:a7:39:2f:3e:aa:e4:e8:53:fc:4f:eb:27:83: 2a:d7:a7:7c:0b:9a:b9:8a:e7:f4:ef:7f:81:ff:09:68:c9:32: b7:5b:b2:f8:c6:b5:05:88:27:2a:79:97:68:86:28:3b:59:ff: 8c:9e:75:3e:da:e4:89:61:47:2e:1f:69:63:f7:08:ef:fc:2b: 65:76:71:3b:32:f8:51:f5:be:47:ff:ef:71:8b:21:a2:d3:e5: 92:67:63:94:93:49:e1:17:bd:22:cc:0a:57:b3:b0:91:14:c9: 5c:10:f1:d5:42:75:9c:44:1f:2b:2d:e2:10:73:a3:ac:8f:b6: 38:67:93:2f:db:71:25:63:d3:47:6d:e9:11:96:49:c2:9d:a0: 25:92:9b:fb:54:75:a7:96:2d:97:1f:32:91:1e:0a:7c:51:5e: fc:d5:43:f2 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWYMpOsXGRL06hMrWTp4oTJeFIm4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYxOTk0OUNFMTdEQzExNkU3QjdDMjI0OEM5MzM0MDVC N0ExQUVGMjAeFw0yNDAyMDEwNTU1MzBaFw0yNTAxMzAwNjAwMzBaMDMxMTAvBgNV BAMTKEYzMEYyOTYxQ0REQ0VCNEQxQTUwMTE2NTlBREEwRDk0Mzg4RjA2OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDExjHOVkAe8vgAIyiJzmUm2sva 3kZm5NS/OMdK9xxuZgafoChTZkVUOjK86UCv+m4WJLWb0Tu3vXJsv5ebibbJScsG Xf31ypO25IvddA/eCalgVfJSseTKsD3QG9AdlYjWQmPu1DAeQRf3sFWzOvlM8inV TTqXTwlebC7aJW/DskAIAdZsJfu7/eNnfDW9TlucJ264QXfRnkn7Geo3EXuSuTTl jfQhSV+2pzzTVHVm9b6tviG4e3FDE2ivqed89blOnrZOqk40n+aXCLATighLlMlq UdjBUK78A/9eBXUWagV5pS4VtqdGCumX6YdJ10Jan6+qiB04ilEP5GoM1BixAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU8w8pYc3c600aUBFlmtoNlDiPBpYwHwYDVR0j BBgwFoAU3xmUnOF9wRbnt8IkjJM0BbehrvIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWVmNzg2Yi02MjI2LTQ0YWYtODUyZC0xZmIwNDVjNGRlYjMvMC9ERjE5OTQ5Q0Ux N0RDMTE2RTdCN0MyMjQ4QzkzMzQwNUI3QTFBRUYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREYxOTk0OUNFMTdEQzExNkU3QjdDMjI0OEM5MzM0MDVCN0Ex QUVGMi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhZWY3ODZiLTYyMjYtNDRhZi04 NTJkLTFmYjA0NWM0ZGViMy8wLzMxMzAzMzJlMzEzNjM2MmUzMjMzMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzAzNDMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpuowDQYJ KoZIhvcNAQELBQADggEBAI+jk1gbPmKbTY4Nyj/24/5Lt/BbfJqfwBsh64x8rEu2 RUeVEkFONYOlDsbErTLnYJvXHQIY5Ego2fbzZ/WOPOUtr0iMjQKrdjS1yl9AuCbP 37wOZW9Hk+jJHjnKy/9WpzkvPqrk6FP8T+sngyrXp3wLmrmK5/Tvf4H/CWjJMrdb svjGtQWIJyp5l2iGKDtZ/4yedT7a5IlhRy4faWP3CO/8K2V2cTsy+FH1vkf/73GL IaLT5ZJnY5STSeEXvSLMClezsJEUyVwQ8dVCdZxEHyst4hBzo6yPtjhnky/bcSVj 00dt6RGWScKdoCWSm/tUdaeWLZcfMpEeCnxRXvzVQ/I= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org