$ rpki-client -vvf repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0/3130332e3137342e3138302e302f32342d3234203d3e20313437313037.roa File: 3130332e3137342e3138302e302f32342d3234203d3e20313437313037.roa (raw, json) Hash identifier: xBUiCSESbzZk+8P8P8MAm4AC1FO9HF7oq0n8YHSjTdc= Subject key identifier: A6:62:03:6B:A8:50:0D:94:84:D1:1D:AD:6F:39:4F:E4:94:24:70:5E Certificate issuer: /CN=166B4918E7A1A1641E7C79C537833379E393522E Certificate serial: 02B781E4D42F737DCF8313E30F10B63B9507EB52 Authority key identifier: 16:6B:49:18:E7:A1:A1:64:1E:7C:79:C5:37:83:33:79:E3:93:52:2E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/166B4918E7A1A1641E7C79C537833379E393522E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0/3130332e3137342e3138302e302f32342d3234203d3e20313437313037.roa Signing time: Wed 04 Sep 2024 10:02:22 +0000 ROA not before: Wed 04 Sep 2024 09:57:22 +0000 ROA not after: Wed 03 Sep 2025 10:02:22 +0000 asID: 147107 IP address blocks: 103.174.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0/166B4918E7A1A1641E7C79C537833379E393522E.crl rsync://repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0/166B4918E7A1A1641E7C79C537833379E393522E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/166B4918E7A1A1641E7C79C537833379E393522E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 19:29:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:b7:81:e4:d4:2f:73:7d:cf:83:13:e3:0f:10:b6:3b:95:07:eb:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=166B4918E7A1A1641E7C79C537833379E393522E Validity Not Before: Sep 4 09:57:22 2024 GMT Not After : Sep 3 10:02:22 2025 GMT Subject: CN=A662036BA8500D9484D11DAD6F394FE49424705E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b9:2a:af:d0:90:6d:7a:ee:d3:06:f7:0b:f5: c0:7f:00:2b:7e:cb:1c:e8:e1:d3:d5:05:be:a4:7d: f5:60:c3:c4:46:c5:4b:b3:58:cb:fc:e5:d7:64:3e: c8:42:90:41:63:fd:36:55:f0:1a:40:fc:e8:32:5c: da:cb:b2:38:12:17:35:29:f7:34:0e:64:91:ea:6c: 85:fe:a8:f2:39:53:91:02:84:61:15:14:1c:f9:ab: 49:8f:2a:34:da:9e:58:32:e7:35:d7:1e:c4:44:09: 74:a7:c4:a9:16:97:4f:94:00:5a:47:89:ec:3c:61: 8d:12:63:98:4c:8b:ad:46:9c:40:2b:27:a6:46:7f: 16:dd:59:be:c8:23:b8:37:17:48:81:5e:6a:d8:00: 47:d8:bb:27:18:c0:06:9e:ea:4a:d4:d5:69:58:a0: 79:a4:e7:8e:3e:2f:fd:26:f6:7b:4a:44:b4:4e:ca: 18:73:be:60:0e:94:87:e9:c4:8f:b5:d3:96:30:77: ce:43:a3:58:57:e5:5d:3e:c9:dd:19:73:73:b5:37: d8:50:0b:db:b0:98:03:6b:64:ab:33:92:c7:dd:3d: 98:41:8e:55:20:8e:23:b9:19:60:56:88:19:20:dc: a2:91:2d:53:b6:bc:6e:4a:01:b2:80:59:5c:47:3b: 49:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:62:03:6B:A8:50:0D:94:84:D1:1D:AD:6F:39:4F:E4:94:24:70:5E X509v3 Authority Key Identifier: keyid:16:6B:49:18:E7:A1:A1:64:1E:7C:79:C5:37:83:33:79:E3:93:52:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0/166B4918E7A1A1641E7C79C537833379E393522E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/166B4918E7A1A1641E7C79C537833379E393522E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0/3130332e3137342e3138302e302f32342d3234203d3e20313437313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.180.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:bc:38:c0:61:46:de:b5:ca:97:11:44:ad:e7:57:c1:94:70: a9:6a:eb:b2:97:01:59:b8:fc:9e:ab:88:2a:1c:64:29:99:9a: 2b:62:ba:61:f0:44:d9:3f:d5:bd:b0:e4:a8:38:98:e3:49:38: dc:c0:5d:58:ed:41:15:74:5a:20:8a:a4:e7:24:b9:85:74:8e: 1c:b1:75:53:02:9a:ee:cb:db:dc:01:6e:a0:be:b0:c6:ff:3e: 32:f4:da:85:d2:22:8c:0c:91:63:46:86:64:97:15:b2:1f:1d: 3d:6a:a8:f3:85:d1:c7:6d:ff:a3:94:4e:18:97:fb:7e:4e:ee: f2:2a:46:2d:6d:22:65:0c:94:0d:de:e6:24:cd:91:9d:92:e5: 89:27:8d:46:e5:b4:ae:a8:ad:fb:3b:97:4e:57:3e:4f:1d:b4: c5:49:13:14:4e:a8:2e:5a:76:f1:9f:f8:81:93:62:06:41:7a: 72:45:c4:64:6c:d7:51:02:8d:70:d8:ba:a7:4c:44:78:56:cc: 19:ef:d2:ac:fa:9c:50:89:39:73:91:cb:d9:ad:98:42:9f:49: ec:f7:e2:a5:71:bb:62:ad:21:80:f1:45:36:ed:90:3d:87:41: 6d:16:c0:b4:c7:b6:36:89:a3:14:72:6e:97:4a:d8:4a:d3:7c: 4f:ed:fd:5a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAreB5NQvc33PgxPjDxC2O5UH61IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY2QjQ5MThFN0ExQTE2NDFFN0M3OUM1Mzc4MzMzNzlF MzkzNTIyRTAeFw0yNDA5MDQwOTU3MjJaFw0yNTA5MDMxMDAyMjJaMDMxMTAvBgNV BAMTKEE2NjIwMzZCQTg1MDBEOTQ4NEQxMURBRDZGMzk0RkU0OTQyNDcwNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAuSqv0JBteu7TBvcL9cB/ACt+ yxzo4dPVBb6kffVgw8RGxUuzWMv85ddkPshCkEFj/TZV8BpA/OgyXNrLsjgSFzUp 9zQOZJHqbIX+qPI5U5EChGEVFBz5q0mPKjTanlgy5zXXHsRECXSnxKkWl0+UAFpH iew8YY0SY5hMi61GnEArJ6ZGfxbdWb7II7g3F0iBXmrYAEfYuycYwAae6krU1WlY oHmk544+L/0m9ntKRLROyhhzvmAOlIfpxI+105Ywd85Do1hX5V0+yd0Zc3O1N9hQ C9uwmANrZKszksfdPZhBjlUgjiO5GWBWiBkg3KKRLVO2vG5KAbKAWVxHO0n3AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUpmIDa6hQDZSE0R2tbzlP5JQkcF4wHwYDVR0j BBgwFoAUFmtJGOehoWQefHnFN4MzeeOTUi4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzI4NTI5MS1jZTkyLTQxNDQtOWMxOC05ZThjMTkxZGRlYzYvMC8xNjZCNDkxOEU3 QTFBMTY0MUU3Qzc5QzUzNzgzMzM3OUUzOTM1MjJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY2QjQ5MThFN0ExQTE2NDFFN0M3OUM1Mzc4MzMzNzlFMzkz NTIyRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMjg1MjkxLWNlOTItNDE0NC05 YzE4LTllOGMxOTFkZGVjNi8wLzMxMzAzMzJlMzEzNzM0MmUzMTM4MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMTMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrrQwDQYJ KoZIhvcNAQELBQADggEBACu8OMBhRt61ypcRRK3nV8GUcKlq67KXAVm4/J6riCoc ZCmZmitiumHwRNk/1b2w5Kg4mONJONzAXVjtQRV0WiCKpOckuYV0jhyxdVMCmu7L 29wBbqC+sMb/PjL02oXSIowMkWNGhmSXFbIfHT1qqPOF0cdt/6OUThiX+35O7vIq Ri1tImUMlA3e5iTNkZ2S5YknjUbltK6orfs7l05XPk8dtMVJExROqC5advGf+IGT YgZBenJFxGRs11ECjXDYuqdMRHhWzBnv0qz6nFCJOXORy9mtmEKfSez34qVxu2Kt IYDxRTbtkD2HQW0WwLTHtjaJoxRybpdK2ErTfE/t/Vo= -----END CERTIFICATE-----Generated at Mon Nov 25 15:49:31 2024 by rpki-client on console-ams.rpki-client.org