$ rpki-client -vvf repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/3130332e3136312e3131302e302f32342d3234203d3e20313431363135.roa File: 3130332e3136312e3131302e302f32342d3234203d3e20313431363135.roa (raw, json) Hash identifier: I1rDYvqqFg4aRnuf/vWK5XXOGVBK8suZyd8orlilX60= Subject key identifier: 8A:85:73:83:71:F6:18:65:5E:F6:42:2B:35:B6:0B:E0:4A:3B:86:9B Certificate issuer: /CN=68D5782FBADB914CFD74AE28DA59784A5AAEAAF8 Certificate serial: 264C360CD63AA2BF26D75700ADC9B5E5086986C3 Authority key identifier: 68:D5:78:2F:BA:DB:91:4C:FD:74:AE:28:DA:59:78:4A:5A:AE:AA:F8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/3130332e3136312e3131302e302f32342d3234203d3e20313431363135.roa Signing time: Wed 16 Oct 2024 09:02:07 +0000 ROA not before: Wed 16 Oct 2024 08:57:07 +0000 ROA not after: Wed 15 Oct 2025 09:02:07 +0000 asID: 141615 IP address blocks: 103.161.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:4c:36:0c:d6:3a:a2:bf:26:d7:57:00:ad:c9:b5:e5:08:69:86:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68D5782FBADB914CFD74AE28DA59784A5AAEAAF8 Validity Not Before: Oct 16 08:57:07 2024 GMT Not After : Oct 15 09:02:07 2025 GMT Subject: CN=8A85738371F618655EF6422B35B60BE04A3B869B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:28:e8:50:9e:fb:ac:e5:b4:d3:fc:11:20:50: 9a:5a:d9:10:25:9c:89:83:f2:cb:f8:7d:9e:ec:33: 67:5a:31:9f:17:1c:1a:a3:33:c5:fb:36:54:97:6c: de:cc:e9:66:af:c2:85:40:54:5d:e0:e1:db:82:3d: a5:0f:26:11:f8:6d:9a:91:a8:9b:cc:7b:dd:a2:5f: 95:12:33:48:a6:ca:68:36:ad:85:f9:c5:17:b7:09: 81:49:90:c3:bd:fd:c6:4c:f2:7c:41:f0:db:46:8d: 58:8c:f4:08:50:e5:40:3a:7e:b9:3d:a1:d6:32:b6: 2f:0f:1f:2d:89:38:28:1e:5a:c4:c2:c0:df:c6:62: 4a:1f:cf:00:97:a3:6f:2b:b9:02:a4:02:ef:07:8a: 08:76:a2:c8:68:a1:5c:5d:e5:39:c8:d2:26:5b:88: c4:67:6c:65:49:8e:59:38:2f:4f:40:44:1b:94:d3: 33:2b:e5:1d:a0:a6:ac:fc:c9:9a:9a:70:99:8f:4e: b5:d8:6e:54:11:98:40:ab:27:40:8f:09:b0:7d:42: 2d:e0:e7:4c:54:cd:ee:5f:43:f7:b6:16:cf:39:6b: 16:ef:95:bf:35:d0:ef:8f:67:12:74:57:1a:cd:2c: 45:96:dc:63:09:a4:75:94:ff:b2:06:e9:bd:52:8b: cb:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:85:73:83:71:F6:18:65:5E:F6:42:2B:35:B6:0B:E0:4A:3B:86:9B X509v3 Authority Key Identifier: keyid:68:D5:78:2F:BA:DB:91:4C:FD:74:AE:28:DA:59:78:4A:5A:AE:AA:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/3130332e3136312e3131302e302f32342d3234203d3e20313431363135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.110.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:7f:d5:c4:47:14:d5:c0:9f:f3:6e:8f:e4:c6:5d:cb:fa:c3: 17:c7:0b:40:5c:a9:07:d8:19:e4:bb:a4:87:37:c4:91:f6:b8: 00:b4:ec:b7:fa:e8:ca:35:cb:89:f9:a6:72:48:19:ef:db:0f: f6:7f:36:15:25:d9:1e:9e:cc:0e:82:cc:24:8a:f9:eb:b6:a8: 35:07:8f:27:9b:95:96:e1:aa:12:fb:38:cf:26:13:40:20:22: 58:e5:46:ae:ab:f9:03:36:1e:17:10:b9:1c:2b:96:45:4b:b6: 4e:cd:a6:03:ed:08:fa:ca:9d:70:40:64:1e:2a:91:d0:7d:bf: 26:38:3a:9d:4d:aa:e9:b7:46:8d:d7:ab:1f:89:4a:00:0a:99: a2:56:c0:54:2e:f3:8a:d6:73:36:d4:44:60:c3:d0:63:01:f7: 70:e5:fa:7d:6e:9a:9e:3c:04:5b:02:55:04:d8:44:0c:21:a7: ee:90:0c:d5:cf:9f:8d:60:7e:d1:cf:2b:c2:c4:10:49:07:a8: bf:b4:5b:76:78:14:8d:2c:88:f5:ff:19:69:31:73:77:c2:9b: d3:c7:a3:00:ca:5a:bf:52:cc:45:9e:96:a9:af:0d:9c:e9:8f: 69:eb:f1:b6:f8:8e:69:ec:80:69:ff:b1:9b:9a:d9:c5:3d:6e: fc:bd:bf:5c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJkw2DNY6or8m11cArcm15QhphsMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4NEE1 QUFFQUFGODAeFw0yNDEwMTYwODU3MDdaFw0yNTEwMTUwOTAyMDdaMDMxMTAvBgNV BAMTKDhBODU3MzgzNzFGNjE4NjU1RUY2NDIyQjM1QjYwQkUwNEEzQjg2OUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPKOhQnvus5bTT/BEgUJpa2RAl nImD8sv4fZ7sM2daMZ8XHBqjM8X7NlSXbN7M6WavwoVAVF3g4duCPaUPJhH4bZqR qJvMe92iX5USM0imymg2rYX5xRe3CYFJkMO9/cZM8nxB8NtGjViM9AhQ5UA6frk9 odYyti8PHy2JOCgeWsTCwN/GYkofzwCXo28ruQKkAu8High2oshooVxd5TnI0iZb iMRnbGVJjlk4L09ARBuU0zMr5R2gpqz8yZqacJmPTrXYblQRmECrJ0CPCbB9Qi3g 50xUze5fQ/e2Fs85axbvlb810O+PZxJ0VxrNLEWW3GMJpHWU/7IG6b1Si8ubAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUioVzg3H2GGVe9kIrNbYL4Eo7hpswHwYDVR0j BBgwFoAUaNV4L7rbkUz9dK4o2ll4SlquqvgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZjQwOGU0NC0zZTljLTQ1ZTUtYmNhNC01ZGZiZDRiMjcxMzAvMC82OEQ1NzgyRkJB REI5MTRDRkQ3NEFFMjhEQTU5Nzg0QTVBQUVBQUY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4NEE1QUFF QUFGOC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNmNDA4ZTQ0LTNlOWMtNDVlNS1i Y2E0LTVkZmJkNGIyNzEzMC8wLzMxMzAzMzJlMzEzNjMxMmUzMTMxMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjMxMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoW4wDQYJ KoZIhvcNAQELBQADggEBAJt/1cRHFNXAn/Nuj+TGXcv6wxfHC0BcqQfYGeS7pIc3 xJH2uAC07Lf66Mo1y4n5pnJIGe/bD/Z/NhUl2R6ezA6CzCSK+eu2qDUHjyeblZbh qhL7OM8mE0AgIljlRq6r+QM2HhcQuRwrlkVLtk7NpgPtCPrKnXBAZB4qkdB9vyY4 Op1Nqum3Ro3Xqx+JSgAKmaJWwFQu84rWczbURGDD0GMB93Dl+n1ump48BFsCVQTY RAwhp+6QDNXPn41gftHPK8LEEEkHqL+0W3Z4FI0siPX/GWkxc3fCm9PHowDKWr9S zEWelqmvDZzpj2nr8bb4jmnsgGn/sZua2cU9bvy9v1w= -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:05 2024 by rpki-client on console-fra.rpki-client.org