$ rpki-client -vvf repo-rpki.idnic.net/repo/60649c47-dfc3-4a20-b5b4-879675e5db92/0/3130332e3138342e3136372e302f32342d3234203d3e20313439363631.roa File: 3130332e3138342e3136372e302f32342d3234203d3e20313439363631.roa (raw, json) Hash identifier: Eo2f5lJXKeAhMsRit+skt9gOQsrkdR5U+FjJRVj7OOE= Subject key identifier: 67:F9:5B:0B:67:CC:51:83:50:4A:D8:29:C0:25:96:49:D6:8F:74:B1 Certificate issuer: /CN=A496844B5B43BD38E2F4FD6EBD252D2832E9AE81 Certificate serial: 40FAE05D4FC9BDEC64482961924B23CE8C226649 Authority key identifier: A4:96:84:4B:5B:43:BD:38:E2:F4:FD:6E:BD:25:2D:28:32:E9:AE:81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A496844B5B43BD38E2F4FD6EBD252D2832E9AE81.cer Subject info access: rsync://repo-rpki.idnic.net/repo/60649c47-dfc3-4a20-b5b4-879675e5db92/0/3130332e3138342e3136372e302f32342d3234203d3e20313439363631.roa Signing time: Sat 23 Mar 2024 06:00:00 +0000 ROA not before: Sat 23 Mar 2024 05:55:00 +0000 ROA not after: Sat 22 Mar 2025 06:00:00 +0000 asID: 149661 IP address blocks: 103.184.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/60649c47-dfc3-4a20-b5b4-879675e5db92/0/A496844B5B43BD38E2F4FD6EBD252D2832E9AE81.crl rsync://repo-rpki.idnic.net/repo/60649c47-dfc3-4a20-b5b4-879675e5db92/0/A496844B5B43BD38E2F4FD6EBD252D2832E9AE81.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A496844B5B43BD38E2F4FD6EBD252D2832E9AE81.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:fa:e0:5d:4f:c9:bd:ec:64:48:29:61:92:4b:23:ce:8c:22:66:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A496844B5B43BD38E2F4FD6EBD252D2832E9AE81 Validity Not Before: Mar 23 05:55:00 2024 GMT Not After : Mar 22 06:00:00 2025 GMT Subject: CN=67F95B0B67CC5183504AD829C0259649D68F74B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:27:84:76:53:75:69:6b:c4:4a:33:a2:2d:64: a5:82:dc:98:79:4b:28:38:73:87:1c:44:2a:f3:a3: 5d:a4:14:62:a7:fe:c8:bd:44:fe:31:7b:fb:3e:0b: 62:07:16:80:1b:eb:7b:44:8d:22:9d:ce:c3:64:01: 99:eb:51:e6:01:61:e4:d0:45:47:1a:30:e6:8c:e0: 86:51:58:55:60:61:20:43:bc:c4:fe:fe:e4:ce:86: 4e:48:57:0a:4e:5e:b8:06:4d:86:7f:72:69:5c:9d: bb:b2:f7:bf:80:b7:cf:ca:9d:21:42:6b:c6:8f:c7: ba:ac:55:38:a2:c0:e6:73:fe:eb:06:4f:d7:c5:b7: b0:04:fd:03:ef:07:7f:4d:a1:bd:25:23:3a:e2:34: 20:e9:34:85:18:2e:e8:6b:26:be:62:3d:cf:59:f2: d1:05:bd:83:87:e1:30:de:b4:3f:95:5c:be:ba:88: ed:c3:f6:45:0a:71:d1:30:1c:84:11:79:c7:b8:8b: ce:d6:99:5b:db:76:13:51:e9:16:92:ab:b8:1b:ca: 17:64:29:50:da:8f:57:ea:e3:55:f2:09:13:d2:72: df:f4:1c:76:8c:03:ee:ce:57:e3:b7:76:44:0c:23: f0:4a:23:14:6d:d9:58:61:b2:03:0d:4b:bb:3c:c1: 82:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:F9:5B:0B:67:CC:51:83:50:4A:D8:29:C0:25:96:49:D6:8F:74:B1 X509v3 Authority Key Identifier: keyid:A4:96:84:4B:5B:43:BD:38:E2:F4:FD:6E:BD:25:2D:28:32:E9:AE:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/60649c47-dfc3-4a20-b5b4-879675e5db92/0/A496844B5B43BD38E2F4FD6EBD252D2832E9AE81.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A496844B5B43BD38E2F4FD6EBD252D2832E9AE81.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/60649c47-dfc3-4a20-b5b4-879675e5db92/0/3130332e3138342e3136372e302f32342d3234203d3e20313439363631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.167.0/24 Signature Algorithm: sha256WithRSAEncryption 45:4b:84:9f:05:65:ff:af:f4:0d:e7:af:eb:ff:78:4f:de:4e: 79:59:33:a9:d2:52:a9:82:a6:b7:5d:58:ae:c6:48:1b:54:09: ef:4a:f4:24:9c:04:0d:ec:bc:c4:ea:82:b3:2e:50:52:07:2c: ae:47:9a:b9:94:98:0e:b7:57:7e:07:d7:b7:19:e2:2c:6c:0f: a6:9b:ae:80:5a:c9:99:11:65:3d:83:45:bb:f4:09:9d:7c:00: 57:00:30:b9:76:20:5e:c7:85:3c:5b:84:d1:5c:7a:2c:82:20: 9b:ca:f3:a6:76:15:5e:71:9b:06:09:51:5e:fa:2e:25:fc:c6: 31:4d:d0:9e:de:4c:f6:23:76:59:29:f7:0b:75:e0:e3:65:f9: d3:75:13:ac:40:c8:9f:d2:a6:0e:4f:6c:61:fd:81:ff:53:47: 5d:a5:95:6c:0a:64:fc:e8:36:01:b7:ce:5d:31:a5:01:74:0d: 2e:5d:ca:23:ec:73:18:19:e4:f1:c6:3d:38:23:7c:38:5b:24: a0:72:d4:74:ff:ca:71:60:fd:2c:6d:78:a5:4c:00:f8:fd:c2: f5:8d:29:85:12:66:83:41:b3:78:b7:f1:7b:65:15:7c:7c:21: a8:8d:ec:5f:b1:4e:bb:6c:c3:3a:a5:bf:ac:5b:09:06:b3:9d: 1a:3c:70:38 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUQPrgXU/JvexkSClhkksjzowiZkkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTQ5Njg0NEI1QjQzQkQzOEUyRjRGRDZFQkQyNTJEMjgz MkU5QUU4MTAeFw0yNDAzMjMwNTU1MDBaFw0yNTAzMjIwNjAwMDBaMDMxMTAvBgNV BAMTKDY3Rjk1QjBCNjdDQzUxODM1MDRBRDgyOUMwMjU5NjQ5RDY4Rjc0QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCJ4R2U3Vpa8RKM6ItZKWC3Jh5 Syg4c4ccRCrzo12kFGKn/si9RP4xe/s+C2IHFoAb63tEjSKdzsNkAZnrUeYBYeTQ RUcaMOaM4IZRWFVgYSBDvMT+/uTOhk5IVwpOXrgGTYZ/cmlcnbuy97+At8/KnSFC a8aPx7qsVTiiwOZz/usGT9fFt7AE/QPvB39Nob0lIzriNCDpNIUYLuhrJr5iPc9Z 8tEFvYOH4TDetD+VXL66iO3D9kUKcdEwHIQRece4i87WmVvbdhNR6RaSq7gbyhdk KVDaj1fq41XyCRPSct/0HHaMA+7OV+O3dkQMI/BKIxRt2VhhsgMNS7s8wYLdAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUZ/lbC2fMUYNQStgpwCWWSdaPdLEwHwYDVR0j BBgwFoAUpJaES1tDvTji9P1uvSUtKDLproEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MDY0OWM0Ny1kZmMzLTRhMjAtYjViNC04Nzk2NzVlNWRiOTIvMC9BNDk2ODQ0QjVC NDNCRDM4RTJGNEZENkVCRDI1MkQyODMyRTlBRTgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTQ5Njg0NEI1QjQzQkQzOEUyRjRGRDZFQkQyNTJEMjgzMkU5 QUU4MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwNjQ5YzQ3LWRmYzMtNGEyMC1i NWI0LTg3OTY3NWU1ZGI5Mi8wLzMxMzAzMzJlMzEzODM0MmUzMTM2MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNjM2MzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnuKcwDQYJ KoZIhvcNAQELBQADggEBAEVLhJ8FZf+v9A3nr+v/eE/eTnlZM6nSUqmCprddWK7G SBtUCe9K9CScBA3svMTqgrMuUFIHLK5HmrmUmA63V34H17cZ4ixsD6abroBayZkR ZT2DRbv0CZ18AFcAMLl2IF7HhTxbhNFceiyCIJvK86Z2FV5xmwYJUV76LiX8xjFN 0J7eTPYjdlkp9wt14ONl+dN1E6xAyJ/Spg5PbGH9gf9TR12llWwKZPzoNgG3zl0x pQF0DS5dyiPscxgZ5PHGPTgjfDhbJKBy1HT/ynFg/SxteKVMAPj9wvWNKYUSZoNB s3i38XtlFXx8IaiN7F+xTrtswzqlv6xbCQaznRo8cDg= -----END CERTIFICATE-----Generated at Sun Nov 24 07:10:00 2024 by rpki-client on console-ams.rpki-client.org