$ rpki-client -vvf repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0/3130332e3137342e3138312e302f32342d3234203d3e20313437313037.roa File: 3130332e3137342e3138312e302f32342d3234203d3e20313437313037.roa (raw, json) Hash identifier: 27vppbMlwwwFcDlsbA8pyh2HjZV3e/4dVfkzUX4OWkw= Subject key identifier: 6A:CB:F5:23:04:99:F6:97:97:38:F2:0B:4B:C1:2E:8B:A1:DD:C8:17 Certificate issuer: /CN=166B4918E7A1A1641E7C79C537833379E393522E Certificate serial: 3251D8AD4D39333BBC48E48ABCEA160847DC2879 Authority key identifier: 16:6B:49:18:E7:A1:A1:64:1E:7C:79:C5:37:83:33:79:E3:93:52:2E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/166B4918E7A1A1641E7C79C537833379E393522E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0/3130332e3137342e3138312e302f32342d3234203d3e20313437313037.roa Signing time: Wed 04 Sep 2024 10:02:23 +0000 ROA not before: Wed 04 Sep 2024 09:57:23 +0000 ROA not after: Wed 03 Sep 2025 10:02:23 +0000 asID: 147107 IP address blocks: 103.174.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0/166B4918E7A1A1641E7C79C537833379E393522E.crl rsync://repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0/166B4918E7A1A1641E7C79C537833379E393522E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/166B4918E7A1A1641E7C79C537833379E393522E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 19:29:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:51:d8:ad:4d:39:33:3b:bc:48:e4:8a:bc:ea:16:08:47:dc:28:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=166B4918E7A1A1641E7C79C537833379E393522E Validity Not Before: Sep 4 09:57:23 2024 GMT Not After : Sep 3 10:02:23 2025 GMT Subject: CN=6ACBF5230499F6979738F20B4BC12E8BA1DDC817 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:81:4d:66:03:cd:b1:45:07:4a:2a:b4:1a:7d: dd:9d:1d:9a:c0:85:13:0e:eb:e6:9b:5b:ab:a5:96: 4d:d1:ac:30:7f:c3:66:c7:69:32:8c:f3:d3:65:50: 9f:4b:2c:4b:e0:b2:a4:d4:8c:4b:b6:1e:c2:55:28: 13:ad:58:e8:92:eb:6e:81:6c:f8:ad:ac:06:4c:9c: 72:5b:e8:8a:e1:72:3d:d3:ec:ac:8f:47:01:8c:fb: a3:06:6f:c7:33:33:cc:f0:59:26:43:60:78:52:e5: 5d:22:0c:79:c3:ec:c1:d4:af:58:13:a0:d3:c9:9a: 31:2d:62:72:68:3d:64:7b:5a:d7:7c:3a:87:2c:33: 73:36:29:b4:7e:39:d0:f4:87:1d:2c:bc:5a:bc:b6: 2f:0b:78:68:89:f2:5d:c4:d7:d3:f9:59:54:a3:00: a8:0a:b4:29:9c:32:67:3b:50:d2:40:cf:db:20:70: ae:9d:af:2d:cd:85:f9:50:c5:d5:ae:10:a3:49:e6: ff:37:d4:ef:dd:67:c4:13:7f:bd:e6:b8:dd:57:cf: 50:b1:0e:76:1c:20:b0:9e:f4:df:d1:c3:40:87:15: f0:ee:b6:b3:59:de:60:e7:7f:7c:9a:e8:12:d9:b2: 0d:af:e4:68:87:ce:e2:da:cb:c3:fd:c3:d7:ee:68: 98:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:CB:F5:23:04:99:F6:97:97:38:F2:0B:4B:C1:2E:8B:A1:DD:C8:17 X509v3 Authority Key Identifier: keyid:16:6B:49:18:E7:A1:A1:64:1E:7C:79:C5:37:83:33:79:E3:93:52:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0/166B4918E7A1A1641E7C79C537833379E393522E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/166B4918E7A1A1641E7C79C537833379E393522E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0/3130332e3137342e3138312e302f32342d3234203d3e20313437313037.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.181.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:00:c8:3c:03:a4:b0:59:65:21:8b:37:f8:0a:6e:96:cc:77: 01:14:18:ca:5a:f7:19:b8:30:91:02:e0:aa:fd:2b:3f:c2:6e: 59:f2:39:8e:53:95:76:11:ae:b6:7b:cc:ee:df:8e:a2:f1:28: 7f:6b:06:67:81:2b:69:22:52:2f:47:61:ef:1f:25:98:e2:35: d9:ac:83:77:65:af:e9:00:8f:43:06:88:30:33:33:b9:b8:fc: b8:de:7f:31:91:3d:cf:c1:ab:51:5a:73:b7:91:f0:0c:c5:02: 04:86:44:6c:25:ca:d4:66:5b:58:88:b1:9f:e7:8b:ea:47:4e: 5e:96:0c:38:a6:63:b9:40:97:d7:d3:8a:e4:d1:2b:33:16:41: 0a:e8:d4:0b:9a:3f:a2:57:0c:94:00:da:c2:f2:5b:1e:7e:42: 17:0f:11:e0:d0:6d:fd:fc:f7:13:ad:26:5f:d5:4a:95:66:a0: 6c:08:38:2f:ea:0f:6f:fc:a9:9c:be:45:c4:08:25:4c:96:87: 68:82:7b:74:fa:66:7e:dd:ff:30:af:74:2c:5f:c7:7d:db:4e: 73:35:50:1c:7f:5a:bc:fa:1f:9e:21:03:b5:24:28:11:34:c9: af:56:c3:bd:0a:c1:c3:3b:11:e1:29:21:23:50:b2:f0:52:d8: d7:4e:18:0b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMlHYrU05Mzu8SOSKvOoWCEfcKHkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY2QjQ5MThFN0ExQTE2NDFFN0M3OUM1Mzc4MzMzNzlF MzkzNTIyRTAeFw0yNDA5MDQwOTU3MjNaFw0yNTA5MDMxMDAyMjNaMDMxMTAvBgNV BAMTKDZBQ0JGNTIzMDQ5OUY2OTc5NzM4RjIwQjRCQzEyRThCQTFEREM4MTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwgU1mA82xRQdKKrQafd2dHZrA hRMO6+abW6ullk3RrDB/w2bHaTKM89NlUJ9LLEvgsqTUjEu2HsJVKBOtWOiS626B bPitrAZMnHJb6Irhcj3T7KyPRwGM+6MGb8czM8zwWSZDYHhS5V0iDHnD7MHUr1gT oNPJmjEtYnJoPWR7Wtd8OocsM3M2KbR+OdD0hx0svFq8ti8LeGiJ8l3E19P5WVSj AKgKtCmcMmc7UNJAz9sgcK6dry3NhflQxdWuEKNJ5v831O/dZ8QTf73muN1Xz1Cx DnYcILCe9N/Rw0CHFfDutrNZ3mDnf3ya6BLZsg2v5GiHzuLay8P9w9fuaJh/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUasv1IwSZ9peXOPILS8Eui6HdyBcwHwYDVR0j BBgwFoAUFmtJGOehoWQefHnFN4MzeeOTUi4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzI4NTI5MS1jZTkyLTQxNDQtOWMxOC05ZThjMTkxZGRlYzYvMC8xNjZCNDkxOEU3 QTFBMTY0MUU3Qzc5QzUzNzgzMzM3OUUzOTM1MjJFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY2QjQ5MThFN0ExQTE2NDFFN0M3OUM1Mzc4MzMzNzlFMzkz NTIyRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMjg1MjkxLWNlOTItNDE0NC05 YzE4LTllOGMxOTFkZGVjNi8wLzMxMzAzMzJlMzEzNzM0MmUzMTM4MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzczMTMwMzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnrrUwDQYJ KoZIhvcNAQELBQADggEBAI0AyDwDpLBZZSGLN/gKbpbMdwEUGMpa9xm4MJEC4Kr9 Kz/CblnyOY5TlXYRrrZ7zO7fjqLxKH9rBmeBK2kiUi9HYe8fJZjiNdmsg3dlr+kA j0MGiDAzM7m4/LjefzGRPc/Bq1Fac7eR8AzFAgSGRGwlytRmW1iIsZ/ni+pHTl6W DDimY7lAl9fTiuTRKzMWQQro1AuaP6JXDJQA2sLyWx5+QhcPEeDQbf389xOtJl/V SpVmoGwIOC/qD2/8qZy+RcQIJUyWh2iCe3T6Zn7d/zCvdCxfx33bTnM1UBx/Wrz6 H54hA7UkKBE0ya9Ww70KwcM7EeEpISNQsvBS2NdOGAs= -----END CERTIFICATE-----Generated at Mon Nov 25 17:55:28 2024 by rpki-client on console-fra.rpki-client.org