$ rpki-client -vvf repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/3130332e3136312e3139302e302f32332d3233203d3e20313333383233.roa File: 3130332e3136312e3139302e302f32332d3233203d3e20313333383233.roa (raw, json) Hash identifier: M7rTu+x3u6qUQ5YcgymxtkFlr+zcSjgyy/tqc60RCYc= Subject key identifier: 97:B4:16:8D:6E:C3:81:A4:30:F6:EF:F9:0F:52:44:1A:A4:AD:76:AD Certificate issuer: /CN=715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1 Certificate serial: 4C4E778B8C09E42C111BD1766CCE58764B09A65A Authority key identifier: 71:5D:C6:DE:A8:0F:E5:D8:9F:DC:68:2C:19:C7:B3:0F:5C:77:E2:C1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/3130332e3136312e3139302e302f32332d3233203d3e20313333383233.roa Signing time: Sat 09 Nov 2024 06:01:56 +0000 ROA not before: Sat 09 Nov 2024 05:56:56 +0000 ROA not after: Sat 08 Nov 2025 06:01:56 +0000 asID: 133823 IP address blocks: 103.161.190.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.crl rsync://repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:4e:77:8b:8c:09:e4:2c:11:1b:d1:76:6c:ce:58:76:4b:09:a6:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1 Validity Not Before: Nov 9 05:56:56 2024 GMT Not After : Nov 8 06:01:56 2025 GMT Subject: CN=97B4168D6EC381A430F6EFF90F52441AA4AD76AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:43:f4:eb:73:e5:81:91:e7:b7:4f:43:a4:37: 25:36:84:c9:16:57:58:da:2f:d1:07:96:f9:fc:25: ac:d5:1d:4e:b4:cb:48:ad:44:bf:94:98:1e:b6:c6: 79:c7:40:71:c8:6b:f5:dd:98:ae:cb:52:36:c6:23: da:fd:c6:77:16:11:b6:fa:da:f2:1b:49:dc:3e:06: 9c:cd:87:ad:87:6b:26:80:44:f5:53:dc:c3:3a:4f: 26:c2:12:ab:86:e0:fd:e4:58:7e:43:2c:a3:20:34: a1:19:d3:52:5f:3d:e4:ce:22:f0:6c:aa:42:58:5d: 21:bf:f0:2c:40:f2:36:18:fb:80:2b:7a:41:23:46: 2a:f0:58:f8:e3:ed:e8:83:72:15:92:cf:0d:5e:35: 64:fa:0b:45:a2:dc:87:a2:3e:a1:50:bd:f2:ab:15: 75:60:d3:0f:82:1b:db:32:93:58:26:e3:2f:8d:4f: 53:c5:cf:fb:f1:87:78:39:0d:62:3d:2a:54:f8:09: ec:df:e3:02:fe:67:8b:d1:ad:05:c7:f6:22:02:be: 82:ae:88:b0:b9:15:4a:3d:46:57:25:55:11:c5:66: 9c:0a:91:ff:92:32:fc:9f:7c:16:93:9a:61:c0:db: 42:d0:67:69:68:90:e0:b7:64:7e:f3:f0:b4:e7:10: 9d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:B4:16:8D:6E:C3:81:A4:30:F6:EF:F9:0F:52:44:1A:A4:AD:76:AD X509v3 Authority Key Identifier: keyid:71:5D:C6:DE:A8:0F:E5:D8:9F:DC:68:2C:19:C7:B3:0F:5C:77:E2:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/715DC6DEA80FE5D89FDC682C19C7B30F5C77E2C1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5591b59b-1ca5-4464-9982-bf6f6d8a1c94/0/3130332e3136312e3139302e302f32332d3233203d3e20313333383233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.190.0/23 Signature Algorithm: sha256WithRSAEncryption 09:8a:1e:50:fd:03:ab:bd:2a:c9:e7:a9:b1:2e:8a:79:e1:00: 1d:f0:e6:04:7e:30:95:0a:3b:1a:79:a4:b4:88:b5:c5:b6:18: f5:28:1a:a2:3f:69:e2:24:ad:ef:4b:e4:61:bb:0d:54:3e:5c: bf:86:a3:35:b6:57:6b:a7:4f:a7:15:72:10:06:a1:58:bb:cb: c5:74:f5:96:9b:5e:2e:b4:96:88:41:6d:1f:20:83:61:b0:ad: c0:06:14:5c:e8:72:47:7c:0b:93:84:8b:08:c2:f2:e3:d4:e0: 2a:89:99:5a:cf:3c:b3:e3:9d:2b:64:fb:b1:c1:fd:d3:6b:ec: 75:57:5e:4a:33:03:f9:56:79:55:83:b6:0e:3a:53:b2:52:f6: 9e:44:97:e3:68:39:d0:49:39:f2:79:d4:45:81:7f:e1:28:df: 74:66:2b:97:2f:fc:05:b6:e3:f3:6c:f7:ad:c9:10:8a:02:db: 3c:eb:39:56:df:39:56:0c:7c:bb:d1:c7:a1:bc:cc:f4:c3:15: 6e:da:e7:08:69:b0:47:15:8b:15:0d:1a:9e:1e:2e:57:71:53: a0:52:96:91:1a:5a:2c:6e:8c:5c:0b:9a:6a:d7:9b:61:c2:d7: bc:de:f3:c8:61:ac:db:ae:26:e8:5c:b8:ef:da:06:d8:a7:24: a2:5a:9c:25 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTE53i4wJ5CwRG9F2bM5YdksJplowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzE1REM2REVBODBGRTVEODlGREM2ODJDMTlDN0IzMEY1 Qzc3RTJDMTAeFw0yNDExMDkwNTU2NTZaFw0yNTExMDgwNjAxNTZaMDMxMTAvBgNV BAMTKDk3QjQxNjhENkVDMzgxQTQzMEY2RUZGOTBGNTI0NDFBQTRBRDc2QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtQ/Trc+WBkee3T0OkNyU2hMkW V1jaL9EHlvn8JazVHU60y0itRL+UmB62xnnHQHHIa/XdmK7LUjbGI9r9xncWEbb6 2vIbSdw+BpzNh62HayaARPVT3MM6TybCEquG4P3kWH5DLKMgNKEZ01JfPeTOIvBs qkJYXSG/8CxA8jYY+4ArekEjRirwWPjj7eiDchWSzw1eNWT6C0Wi3IeiPqFQvfKr FXVg0w+CG9syk1gm4y+NT1PFz/vxh3g5DWI9KlT4Cezf4wL+Z4vRrQXH9iICvoKu iLC5FUo9RlclVRHFZpwKkf+SMvyffBaTmmHA20LQZ2lokOC3ZH7z8LTnEJ23AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUl7QWjW7DgaQw9u/5D1JEGqStdq0wHwYDVR0j BBgwFoAUcV3G3qgP5dif3GgsGcezD1x34sEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 NTkxYjU5Yi0xY2E1LTQ0NjQtOTk4Mi1iZjZmNmQ4YTFjOTQvMC83MTVEQzZERUE4 MEZFNUQ4OUZEQzY4MkMxOUM3QjMwRjVDNzdFMkMxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzE1REM2REVBODBGRTVEODlGREM2ODJDMTlDN0IzMEY1Qzc3 RTJDMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU1OTFiNTliLTFjYTUtNDQ2NC05 OTgyLWJmNmY2ZDhhMWM5NC8wLzMxMzAzMzJlMzEzNjMxMmUzMTM5MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTMzMzMzODMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnob4wDQYJ KoZIhvcNAQELBQADggEBAAmKHlD9A6u9KsnnqbEuinnhAB3w5gR+MJUKOxp5pLSI tcW2GPUoGqI/aeIkre9L5GG7DVQ+XL+GozW2V2unT6cVchAGoVi7y8V09ZabXi60 lohBbR8gg2GwrcAGFFzockd8C5OEiwjC8uPU4CqJmVrPPLPjnStk+7HB/dNr7HVX XkozA/lWeVWDtg46U7JS9p5El+NoOdBJOfJ51EWBf+Eo33RmK5cv/AW24/Ns963J EIoC2zzrOVbfOVYMfLvRx6G8zPTDFW7a5whpsEcVixUNGp4eLldxU6BSlpEaWixu jFwLmmrXm2HC17ze88hhrNuuJuhcuO/aBtinJKJanCU= -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:00 2024 by rpki-client on console-ams.rpki-client.org