$ rpki-client -vvf repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/3130332e3136312e3136332e302f32342d3234203d3e20313431363136.roa File: 3130332e3136312e3136332e302f32342d3234203d3e20313431363136.roa (raw, json) Hash identifier: 2JYXyoNq1pkuogdA8+oQCms48/z2V739yLlFPPhdVCs= Subject key identifier: 9A:A6:F2:A0:41:B4:5E:5F:95:BA:F5:2D:66:5C:7D:03:9A:4A:F4:08 Certificate issuer: /CN=BAC180E3FF326678277BE269EEBEC1DE3827226F Certificate serial: 01F17E638364CFDE1CEA96B9A726F6484BDE1386 Authority key identifier: BA:C1:80:E3:FF:32:66:78:27:7B:E2:69:EE:BE:C1:DE:38:27:22:6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC180E3FF326678277BE269EEBEC1DE3827226F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/3130332e3136312e3136332e302f32342d3234203d3e20313431363136.roa Signing time: Tue 08 Oct 2024 07:00:01 +0000 ROA not before: Tue 08 Oct 2024 06:55:01 +0000 ROA not after: Tue 07 Oct 2025 07:00:01 +0000 asID: 141616 IP address blocks: 103.161.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/BAC180E3FF326678277BE269EEBEC1DE3827226F.crl rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/BAC180E3FF326678277BE269EEBEC1DE3827226F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC180E3FF326678277BE269EEBEC1DE3827226F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 21:22:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:f1:7e:63:83:64:cf:de:1c:ea:96:b9:a7:26:f6:48:4b:de:13:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAC180E3FF326678277BE269EEBEC1DE3827226F Validity Not Before: Oct 8 06:55:01 2024 GMT Not After : Oct 7 07:00:01 2025 GMT Subject: CN=9AA6F2A041B45E5F95BAF52D665C7D039A4AF408 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:6d:d1:9a:22:e1:4c:49:a6:61:fe:f1:71:ea: a3:fc:58:d8:e7:95:3e:77:a5:cf:62:4d:36:5c:3a: 73:c9:bb:2b:78:27:ed:16:3f:d8:f6:6c:36:31:6b: 13:ed:5a:b0:e9:c4:68:50:32:6e:7e:40:05:fc:4b: 95:e1:c8:02:5e:a2:ac:4b:d7:20:aa:0e:f9:d8:8c: 69:73:8c:01:63:b4:9a:03:72:e4:1a:4d:fe:74:b9: 35:19:f7:2c:50:1f:57:d8:3e:5f:75:99:80:9b:aa: bb:5b:e4:50:0d:b7:67:70:44:28:91:49:c3:ef:9f: 6f:d3:b6:cf:d2:8d:30:5c:ca:01:b8:e3:ac:26:2f: 00:7f:ae:79:49:ff:5a:1f:b7:6f:1b:d1:f8:3d:75: bb:95:49:10:78:fd:db:65:b2:ea:97:d3:47:2e:18: f1:bc:5b:76:58:ec:30:0f:a9:51:40:3a:db:08:29: d4:26:00:5f:0e:d0:88:6f:09:c5:6c:49:5d:c3:c4: f8:45:e8:bf:f5:39:d4:c6:6d:c0:0e:fe:75:82:b1: 0e:09:23:07:ca:3f:6f:8a:ea:95:29:f8:04:0f:84: 8f:14:f9:be:2e:dd:bb:c3:c3:d7:fb:39:a1:a8:eb: 56:00:2b:70:1f:c3:49:a6:7b:dd:17:5e:bd:ad:5e: fc:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:A6:F2:A0:41:B4:5E:5F:95:BA:F5:2D:66:5C:7D:03:9A:4A:F4:08 X509v3 Authority Key Identifier: keyid:BA:C1:80:E3:FF:32:66:78:27:7B:E2:69:EE:BE:C1:DE:38:27:22:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/BAC180E3FF326678277BE269EEBEC1DE3827226F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC180E3FF326678277BE269EEBEC1DE3827226F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/3130332e3136312e3136332e302f32342d3234203d3e20313431363136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.163.0/24 Signature Algorithm: sha256WithRSAEncryption 00:bf:05:f4:24:e0:d3:3b:13:ff:41:bb:c2:8e:fa:31:a1:2e: c0:06:3a:39:30:d0:00:4d:ce:c8:8d:19:37:0c:17:d2:77:f9: ae:dc:38:87:fe:f3:f3:00:45:ef:e4:fb:cd:9e:6b:5f:72:e7: b6:cc:27:8d:94:d3:bd:4b:b7:ce:e7:3d:40:1e:75:af:d8:05: 59:e9:99:23:77:ae:55:c9:ac:d9:2e:5f:38:c5:1f:3d:11:11: b9:f7:36:77:b1:fd:ed:6e:b8:2a:bc:97:01:a1:56:1c:ce:35: c1:d2:4c:6a:f6:02:9d:ad:88:44:1d:24:bd:68:f3:4c:0e:b4: 50:e1:ed:cc:62:0c:83:62:f7:3f:b6:72:d8:e6:f8:36:2d:0b: 55:3e:72:90:27:fa:03:89:ec:11:8d:8c:87:e5:25:0e:8d:79: a0:5c:18:72:07:19:31:92:a1:6c:4f:36:d1:bc:06:f5:64:17: 5d:02:81:d3:66:29:d8:70:98:21:1b:da:39:70:39:c0:5a:a5: dc:18:52:56:ca:43:8e:05:f5:b2:64:7d:48:39:ae:59:94:a9: 5d:a3:f3:a7:10:a5:f5:e8:49:7b:04:f3:91:47:3f:2b:f5:d4: 2d:11:e3:9b:75:70:10:61:e3:37:6b:ff:64:eb:d7:2e:b2:e2: f3:74:e8:b4 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAfF+Y4Nkz94c6pa5pyb2SEveE4YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFDMTgwRTNGRjMyNjY3ODI3N0JFMjY5RUVCRUMxREUz ODI3MjI2RjAeFw0yNDEwMDgwNjU1MDFaFw0yNTEwMDcwNzAwMDFaMDMxMTAvBgNV BAMTKDlBQTZGMkEwNDFCNDVFNUY5NUJBRjUyRDY2NUM3RDAzOUE0QUY0MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrbdGaIuFMSaZh/vFx6qP8WNjn lT53pc9iTTZcOnPJuyt4J+0WP9j2bDYxaxPtWrDpxGhQMm5+QAX8S5XhyAJeoqxL 1yCqDvnYjGlzjAFjtJoDcuQaTf50uTUZ9yxQH1fYPl91mYCbqrtb5FANt2dwRCiR ScPvn2/Tts/SjTBcygG446wmLwB/rnlJ/1oft28b0fg9dbuVSRB4/dtlsuqX00cu GPG8W3ZY7DAPqVFAOtsIKdQmAF8O0IhvCcVsSV3DxPhF6L/1OdTGbcAO/nWCsQ4J IwfKP2+K6pUp+AQPhI8U+b4u3bvDw9f7OaGo61YAK3Afw0mme90XXr2tXvyjAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUmqbyoEG0Xl+VuvUtZlx9A5pK9AgwHwYDVR0j BBgwFoAUusGA4/8yZngne+Jp7r7B3jgnIm8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDA5NGQzZS0wODljLTRjNjgtODBhMi01NmI1Y2JmYzEwM2QvMC9CQUMxODBFM0ZG MzI2Njc4Mjc3QkUyNjlFRUJFQzFERTM4MjcyMjZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkFDMTgwRTNGRjMyNjY3ODI3N0JFMjY5RUVCRUMxREUzODI3 MjI2Ri5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMDk0ZDNlLTA4OWMtNGM2OC04 MGEyLTU2YjVjYmZjMTAzZC8wLzMxMzAzMzJlMzEzNjMxMmUzMTM2MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjMxMzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoaMwDQYJ KoZIhvcNAQELBQADggEBAAC/BfQk4NM7E/9Bu8KO+jGhLsAGOjkw0ABNzsiNGTcM F9J3+a7cOIf+8/MARe/k+82ea19y57bMJ42U071Lt87nPUAeda/YBVnpmSN3rlXJ rNkuXzjFHz0REbn3Nnex/e1uuCq8lwGhVhzONcHSTGr2Ap2tiEQdJL1o80wOtFDh 7cxiDINi9z+2ctjm+DYtC1U+cpAn+gOJ7BGNjIflJQ6NeaBcGHIHGTGSoWxPNtG8 BvVkF10CgdNmKdhwmCEb2jlwOcBapdwYUlbKQ44F9bJkfUg5rlmUqV2j86cQpfXo SXsE85FHPyv11C0R45t1cBBh4zdr/2Tr1y6y4vN06LQ= -----END CERTIFICATE-----Generated at Fri Feb 21 11:10:31 2025 by rpki-client