$ rpki-client -vvf repo-rpki.idnic.net/repo/401c4d61-dcef-4a20-bd4c-a282a37aa69e/0/3130332e3136342e3135302e302f32332d3233203d3e20313431393039.roa File: 3130332e3136342e3135302e302f32332d3233203d3e20313431393039.roa (raw, json) Hash identifier: sGDel48okAqvaV/rcb1x3ACW4s1s006aJg3vUEaDkGw= Subject key identifier: 77:C3:6F:95:F5:09:F0:2B:92:0B:0C:8F:14:52:07:EB:C1:E0:6D:D4 Certificate issuer: /CN=26C01247693F68CFDA1F8CB6B88F7A3700D30001 Certificate serial: 2614390E0C7E3FC7637895C0C8526C53C92C1C75 Authority key identifier: 26:C0:12:47:69:3F:68:CF:DA:1F:8C:B6:B8:8F:7A:37:00:D3:00:01 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26C01247693F68CFDA1F8CB6B88F7A3700D30001.cer Subject info access: rsync://repo-rpki.idnic.net/repo/401c4d61-dcef-4a20-bd4c-a282a37aa69e/0/3130332e3136342e3135302e302f32332d3233203d3e20313431393039.roa Signing time: Fri 08 Nov 2024 11:00:02 +0000 ROA not before: Fri 08 Nov 2024 10:55:02 +0000 ROA not after: Fri 07 Nov 2025 11:00:02 +0000 asID: 141909 IP address blocks: 103.164.150.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/401c4d61-dcef-4a20-bd4c-a282a37aa69e/0/26C01247693F68CFDA1F8CB6B88F7A3700D30001.crl rsync://repo-rpki.idnic.net/repo/401c4d61-dcef-4a20-bd4c-a282a37aa69e/0/26C01247693F68CFDA1F8CB6B88F7A3700D30001.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26C01247693F68CFDA1F8CB6B88F7A3700D30001.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:14:39:0e:0c:7e:3f:c7:63:78:95:c0:c8:52:6c:53:c9:2c:1c:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=26C01247693F68CFDA1F8CB6B88F7A3700D30001 Validity Not Before: Nov 8 10:55:02 2024 GMT Not After : Nov 7 11:00:02 2025 GMT Subject: CN=77C36F95F509F02B920B0C8F145207EBC1E06DD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:24:66:0a:6c:09:20:29:20:ef:e5:28:15:eb: 6d:21:2e:2a:be:ce:dd:86:c5:89:25:33:9a:d5:6c: 0c:c5:f8:c2:5e:66:5e:26:14:95:6c:38:ec:5f:e5: 27:4e:94:64:7c:07:1d:c4:23:66:13:7f:61:6f:c7: 5f:28:1e:f6:68:dc:ec:bb:97:b9:de:5e:99:c4:12: 7a:ad:38:c6:eb:54:07:2e:64:0e:f7:d1:92:cd:d4: 76:95:fc:3d:2f:60:58:8d:58:09:fa:b0:59:6d:db: dc:41:93:48:e1:20:b5:3a:a5:1a:b2:ca:f3:3d:a4: 21:fe:c2:00:2d:37:6e:96:52:81:ae:75:80:08:98: ff:84:10:f9:cd:c8:10:2b:6e:ef:c7:71:59:45:a3: 95:de:4b:ad:b6:24:45:6b:be:9a:af:f7:98:78:3c: 2d:ad:11:7e:a2:53:8e:3b:38:c2:cb:c0:8f:be:9d: 24:37:2f:07:cb:9d:b7:ad:2e:b0:a7:a8:98:9c:16: 64:1e:ca:a5:2f:17:6c:d2:80:1f:16:72:41:ff:24: b3:6f:f0:5a:e8:c5:82:f3:00:15:6b:b1:06:14:80: b5:f8:db:78:d9:6c:b4:e2:3f:b7:63:5b:58:7e:0f: 19:8e:3e:05:77:83:1b:49:5f:3d:1e:6d:74:82:fe: 11:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:C3:6F:95:F5:09:F0:2B:92:0B:0C:8F:14:52:07:EB:C1:E0:6D:D4 X509v3 Authority Key Identifier: keyid:26:C0:12:47:69:3F:68:CF:DA:1F:8C:B6:B8:8F:7A:37:00:D3:00:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/401c4d61-dcef-4a20-bd4c-a282a37aa69e/0/26C01247693F68CFDA1F8CB6B88F7A3700D30001.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26C01247693F68CFDA1F8CB6B88F7A3700D30001.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/401c4d61-dcef-4a20-bd4c-a282a37aa69e/0/3130332e3136342e3135302e302f32332d3233203d3e20313431393039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.150.0/23 Signature Algorithm: sha256WithRSAEncryption 97:ea:d6:02:c3:96:fb:32:10:e8:1e:02:9b:49:f7:a4:62:00: ae:88:b1:50:ce:32:b6:3e:e8:e0:49:71:67:a3:5d:49:d0:35: cb:19:dd:17:19:e4:23:a8:8a:b7:26:07:15:c2:4e:f4:70:49: 7a:56:c6:71:56:ec:07:94:8c:db:8a:09:8c:bb:e1:f7:9f:58: e4:95:9d:be:e5:de:a7:4a:54:aa:8a:7c:33:71:c8:de:f1:7b: 95:ee:57:08:d6:2f:a9:46:98:78:25:17:fe:9e:d6:e4:49:9d: a0:21:94:50:69:e9:79:d9:1d:c9:04:ce:f1:59:5e:a6:56:a1: e4:f6:9d:0d:54:9e:ce:39:a6:f2:fd:02:b0:36:a4:f1:4f:28: 2c:b8:63:e4:f4:db:22:7f:9f:40:a0:21:fa:b8:90:bb:9a:0a: bd:68:8b:54:91:99:40:3c:c2:05:15:ff:21:f7:67:38:20:2b: ef:b0:ed:03:dd:84:39:c9:c7:e4:5c:0a:03:06:a5:cf:70:1e: 1d:73:8b:7d:06:c8:a8:2b:62:8d:a4:a2:64:37:c8:78:39:f3: da:51:36:59:eb:98:da:51:d4:89:ed:24:41:b5:9c:97:74:59: 2f:9b:3f:ec:b6:6a:05:0f:74:09:9d:c1:54:e0:e7:c9:f6:c7: 64:2c:34:77 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJhQ5Dgx+P8djeJXAyFJsU8ksHHUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjZDMDEyNDc2OTNGNjhDRkRBMUY4Q0I2Qjg4RjdBMzcw MEQzMDAwMTAeFw0yNDExMDgxMDU1MDJaFw0yNTExMDcxMTAwMDJaMDMxMTAvBgNV BAMTKDc3QzM2Rjk1RjUwOUYwMkI5MjBCMEM4RjE0NTIwN0VCQzFFMDZERDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8JGYKbAkgKSDv5SgV620hLiq+ zt2GxYklM5rVbAzF+MJeZl4mFJVsOOxf5SdOlGR8Bx3EI2YTf2Fvx18oHvZo3Oy7 l7neXpnEEnqtOMbrVAcuZA730ZLN1HaV/D0vYFiNWAn6sFlt29xBk0jhILU6pRqy yvM9pCH+wgAtN26WUoGudYAImP+EEPnNyBArbu/HcVlFo5XeS622JEVrvpqv95h4 PC2tEX6iU447OMLLwI++nSQ3LwfLnbetLrCnqJicFmQeyqUvF2zSgB8WckH/JLNv 8FroxYLzABVrsQYUgLX423jZbLTiP7djW1h+DxmOPgV3gxtJXz0ebXSC/hFDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUd8NvlfUJ8CuSCwyPFFIH68HgbdQwHwYDVR0j BBgwFoAUJsASR2k/aM/aH4y2uI96NwDTAAEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MDFjNGQ2MS1kY2VmLTRhMjAtYmQ0Yy1hMjgyYTM3YWE2OWUvMC8yNkMwMTI0NzY5 M0Y2OENGREExRjhDQjZCODhGN0EzNzAwRDMwMDAxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjZDMDEyNDc2OTNGNjhDRkRBMUY4Q0I2Qjg4RjdBMzcwMEQz MDAwMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQwMWM0ZDYxLWRjZWYtNGEyMC1i ZDRjLWEyODJhMzdhYTY5ZS8wLzMxMzAzMzJlMzEzNjM0MmUzMTM1MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzOTMwMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnpJYwDQYJ KoZIhvcNAQELBQADggEBAJfq1gLDlvsyEOgeAptJ96RiAK6IsVDOMrY+6OBJcWej XUnQNcsZ3RcZ5COoircmBxXCTvRwSXpWxnFW7AeUjNuKCYy74fefWOSVnb7l3qdK VKqKfDNxyN7xe5XuVwjWL6lGmHglF/6e1uRJnaAhlFBp6XnZHckEzvFZXqZWoeT2 nQ1Uns45pvL9ArA2pPFPKCy4Y+T02yJ/n0CgIfq4kLuaCr1oi1SRmUA8wgUV/yH3 ZzggK++w7QPdhDnJx+RcCgMGpc9wHh1zi30GyKgrYo2komQ3yHg589pRNlnrmNpR 1IntJEG1nJd0WS+bP+y2agUPdAmdwVTg58n2x2QsNHc= -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:00 2024 by rpki-client on console-ams.rpki-client.org