$ rpki-client -vvf repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36382e302f32342d3234203d3e20313439343039.roa File: 3130332e3136342e36382e302f32342d3234203d3e20313439343039.roa (raw, json) Hash identifier: cUkI2R3JO2gQ9nm4tDMmxUk21C75l0D2xIC/jejXp/0= Subject key identifier: 48:42:BE:E1:BD:0B:22:1C:EF:70:8A:2B:86:66:82:43:44:A2:CC:65 Certificate issuer: /CN=157A25D171E1AD2FAB695F49BDC2555755B6ED7D Certificate serial: 6A82CA3F4D915207AC78E62A78C361D05B4D2FA7 Authority key identifier: 15:7A:25:D1:71:E1:AD:2F:AB:69:5F:49:BD:C2:55:57:55:B6:ED:7D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36382e302f32342d3234203d3e20313439343039.roa Signing time: Sun 27 Oct 2024 15:00:53 +0000 ROA not before: Sun 27 Oct 2024 14:55:53 +0000 ROA not after: Sun 26 Oct 2025 15:00:53 +0000 asID: 149409 IP address blocks: 103.164.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.crl rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:82:ca:3f:4d:91:52:07:ac:78:e6:2a:78:c3:61:d0:5b:4d:2f:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=157A25D171E1AD2FAB695F49BDC2555755B6ED7D Validity Not Before: Oct 27 14:55:53 2024 GMT Not After : Oct 26 15:00:53 2025 GMT Subject: CN=4842BEE1BD0B221CEF708A2B8666824344A2CC65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ec:93:7d:e5:5d:7d:5f:48:e0:02:f5:ee:54: 8e:10:e6:fa:db:1a:db:f1:7d:0b:18:24:4d:ab:96: 52:1e:d8:d8:10:d9:c7:4c:22:2b:bd:96:15:fc:f4: f4:b9:b3:03:9b:b4:0e:b7:39:ea:41:b9:24:e6:78: 51:ac:cb:99:cd:44:d8:5e:52:79:cf:fc:55:fc:87: 44:35:6e:6f:4f:8b:18:d5:57:d5:28:c2:7b:36:0b: ed:72:1e:58:84:4c:d2:d1:dc:a4:e6:63:ea:15:6a: 51:6b:a9:8d:8a:0b:ca:d2:ab:22:27:f2:51:4f:f3: b3:de:b3:4f:65:ec:ea:9b:0b:5e:d0:73:76:2d:7b: d7:bf:e8:ba:59:92:ac:79:87:61:06:f1:f5:95:98: d9:6f:e9:6c:1d:90:53:7f:12:b3:cb:b6:8d:26:b6: 67:c4:4d:64:e0:bd:2a:53:98:b2:bc:a8:ce:d8:ff: b4:d3:3f:75:fe:c8:72:a6:92:8b:c4:1e:85:e8:85: d5:84:bf:21:e0:b4:35:6e:44:56:c2:8c:5e:bb:5b: e4:3a:7a:ca:2e:54:84:34:28:d1:40:91:b7:62:56: 2d:46:d8:b0:2a:2d:94:c5:d8:69:a6:e1:72:da:07: 98:ec:80:13:e7:e7:ed:c1:fb:f7:14:53:74:e4:d3: ed:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:42:BE:E1:BD:0B:22:1C:EF:70:8A:2B:86:66:82:43:44:A2:CC:65 X509v3 Authority Key Identifier: keyid:15:7A:25:D1:71:E1:AD:2F:AB:69:5F:49:BD:C2:55:57:55:B6:ED:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157A25D171E1AD2FAB695F49BDC2555755B6ED7D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3db6b3bc-fa65-49f3-af61-0d5dc39334a1/0/3130332e3136342e36382e302f32342d3234203d3e20313439343039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.68.0/24 Signature Algorithm: sha256WithRSAEncryption c0:2b:48:3d:a1:6a:2a:64:3f:d3:44:21:6b:26:fb:9e:d0:0f: 9f:ee:fb:20:af:26:6e:26:80:66:32:b9:2c:5d:76:8c:27:e7: 14:8a:c9:20:13:8c:38:d8:b7:e2:d2:39:1c:0b:dc:17:70:69: c3:19:4d:44:8a:71:59:23:9c:d0:b6:6a:dc:c3:80:22:91:34: db:fa:0d:7a:ba:bb:1f:31:c5:16:dc:23:5c:de:74:33:19:6c: 40:c1:15:70:ea:8c:6d:6b:5c:2d:31:6f:f5:2a:75:eb:28:05: b0:7b:02:57:66:c2:e4:b6:e0:d0:6e:b4:7a:e7:bd:69:21:ab: f5:e8:db:01:c7:0f:77:d0:4f:a9:d1:7e:10:bf:1c:cd:10:c8: 38:9a:3b:d8:1d:7d:87:4b:be:63:88:f5:9f:d4:ba:20:63:7c: 97:d4:f9:e8:b8:21:9f:7f:d0:53:51:97:bd:83:19:19:0b:75: 11:7c:66:d7:b5:a5:b1:af:98:10:16:0d:47:dc:80:7f:98:06: 18:9a:2b:99:be:1d:37:ce:b6:e6:90:2d:96:a6:b8:4a:65:b7: 69:8b:fa:79:47:4c:14:4f:41:98:0b:38:1a:fe:6d:d7:80:74: d9:b1:65:f0:d0:d7:7b:c0:05:88:0c:63:ce:76:07:58:9f:ab: 40:b5:bd:a5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUaoLKP02RUgeseOYqeMNh0FtNL6cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU3QTI1RDE3MUUxQUQyRkFCNjk1RjQ5QkRDMjU1NTc1 NUI2RUQ3RDAeFw0yNDEwMjcxNDU1NTNaFw0yNTEwMjYxNTAwNTNaMDMxMTAvBgNV BAMTKDQ4NDJCRUUxQkQwQjIyMUNFRjcwOEEyQjg2NjY4MjQzNDRBMkNDNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB7JN95V19X0jgAvXuVI4Q5vrb GtvxfQsYJE2rllIe2NgQ2cdMIiu9lhX89PS5swObtA63OepBuSTmeFGsy5nNRNhe UnnP/FX8h0Q1bm9PixjVV9Uowns2C+1yHliETNLR3KTmY+oValFrqY2KC8rSqyIn 8lFP87Pes09l7OqbC17Qc3Yte9e/6LpZkqx5h2EG8fWVmNlv6WwdkFN/ErPLto0m tmfETWTgvSpTmLK8qM7Y/7TTP3X+yHKmkovEHoXohdWEvyHgtDVuRFbCjF67W+Q6 esouVIQ0KNFAkbdiVi1G2LAqLZTF2Gmm4XLaB5jsgBPn5+3B+/cUU3Tk0+2/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSEK+4b0LIhzvcIorhmaCQ0SizGUwHwYDVR0j BBgwFoAUFXol0XHhrS+raV9JvcJVV1W27X0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZGI2YjNiYy1mYTY1LTQ5ZjMtYWY2MS0wZDVkYzM5MzM0YTEvMC8xNTdBMjVEMTcx RTFBRDJGQUI2OTVGNDlCREMyNTU1NzU1QjZFRDdELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU3QTI1RDE3MUUxQUQyRkFCNjk1RjQ5QkRDMjU1NTc1NUI2 RUQ3RC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkYjZiM2JjLWZhNjUtNDlmMy1h ZjYxLTBkNWRjMzkzMzRhMS8wLzMxMzAzMzJlMzEzNjM0MmUzNjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzQzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6REMA0GCSqG SIb3DQEBCwUAA4IBAQDAK0g9oWoqZD/TRCFrJvue0A+f7vsgryZuJoBmMrksXXaM J+cUiskgE4w42Lfi0jkcC9wXcGnDGU1EinFZI5zQtmrcw4AikTTb+g16ursfMcUW 3CNc3nQzGWxAwRVw6oxta1wtMW/1KnXrKAWwewJXZsLktuDQbrR6571pIav16NsB xw930E+p0X4QvxzNEMg4mjvYHX2HS75jiPWf1LogY3yX1PnouCGff9BTUZe9gxkZ C3URfGbXtaWxr5gQFg1H3IB/mAYYmiuZvh03zrbmkC2WprhKZbdpi/p5R0wUT0GY Czga/m3XgHTZsWXw0Nd7wAWIDGPOdgdYn6tAtb2l -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:05 2024 by rpki-client on console-fra.rpki-client.org