$ rpki-client -vvf repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/3130332e3136312e3230322e302f32332d3234203d3e203338333230.roa File: 3130332e3136312e3230322e302f32332d3234203d3e203338333230.roa (raw, json) Hash identifier: EW+Pr1fwXxfLFpLk5lKFG1FBMg+YzIOxk9FROjClcJE= Subject key identifier: C3:65:C7:C5:77:DF:13:9B:E0:00:33:F2:BE:86:7D:40:BA:57:7D:02 Certificate issuer: /CN=D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0 Certificate serial: 2EE89DE8C593E153359EE066B8883B65B4E6E9CA Authority key identifier: D0:FF:6F:09:3D:0D:EA:FB:5C:B4:2A:93:43:3F:A2:39:C9:03:EA:C0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/3130332e3136312e3230322e302f32332d3234203d3e203338333230.roa Signing time: Thu 16 May 2024 04:02:07 +0000 ROA not before: Thu 16 May 2024 03:57:07 +0000 ROA not after: Thu 15 May 2025 04:02:07 +0000 asID: 38320 IP address blocks: 103.161.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.crl rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:10:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:e8:9d:e8:c5:93:e1:53:35:9e:e0:66:b8:88:3b:65:b4:e6:e9:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0 Validity Not Before: May 16 03:57:07 2024 GMT Not After : May 15 04:02:07 2025 GMT Subject: CN=C365C7C577DF139BE00033F2BE867D40BA577D02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:40:8b:ab:71:3f:d8:2c:fa:6b:78:92:4a:b8: db:d9:30:6b:3e:f9:77:e1:99:82:c1:ba:69:f8:53: ff:7e:0e:fd:9f:aa:52:af:e4:66:9b:30:4a:8b:d2: b4:c6:d6:81:9e:78:ee:e2:29:55:6f:63:8b:21:2f: 84:7c:bd:6d:a3:5a:5b:d7:63:e1:6c:0a:95:fc:38: 59:1e:fa:cd:dc:05:c3:6b:d7:fb:76:26:0a:7d:b4: 99:cc:81:58:7c:07:8c:7e:33:35:4d:e4:ac:85:46: 62:fd:ec:ca:05:b1:dd:39:d1:59:20:11:ea:ec:c8: 9a:30:8a:8d:5c:eb:3c:2c:12:8f:19:14:d3:01:c2: 28:5e:f0:00:ca:d1:18:8c:99:89:50:a1:57:ed:69: 56:d2:20:52:9f:b4:86:34:d2:48:af:79:c7:1d:ab: 8c:7c:b8:24:ed:7a:3c:92:4c:d0:97:93:6d:d8:70: 31:f7:6b:e7:10:bd:af:be:a0:8a:7c:26:44:22:62: 7c:0d:d2:a9:f6:c5:f4:90:b3:01:23:13:22:ad:ac: 63:72:7e:b2:5c:40:22:04:45:c3:01:01:65:93:e2: c6:a2:57:4d:f7:08:5a:c3:f0:eb:5a:74:52:f2:8f: 47:04:dc:51:af:d0:b5:ae:d3:f1:b0:d9:69:83:dd: b6:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:65:C7:C5:77:DF:13:9B:E0:00:33:F2:BE:86:7D:40:BA:57:7D:02 X509v3 Authority Key Identifier: keyid:D0:FF:6F:09:3D:0D:EA:FB:5C:B4:2A:93:43:3F:A2:39:C9:03:EA:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/3130332e3136312e3230322e302f32332d3234203d3e203338333230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.202.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:41:37:46:29:ba:1b:d7:4c:00:15:1e:48:8d:72:d0:11:d4: 0b:8b:6e:d1:fc:fe:64:f5:de:84:22:b2:5e:63:6c:d0:e2:48: 50:80:a4:6e:ae:38:1b:66:0e:15:95:a9:49:59:ab:85:28:5d: a6:b1:06:32:c3:b4:0c:2d:1e:53:c9:e2:78:8a:6b:76:99:da: 6f:fb:49:1f:0a:1c:92:75:bc:49:c4:0c:3c:cc:ed:89:0a:46: 5e:96:b9:29:03:ac:76:6e:54:6f:95:0a:94:15:78:33:83:b1: 79:d2:28:74:e8:1c:21:1f:13:ca:d8:0a:5c:b7:28:35:0c:31: 4c:cf:43:87:66:3d:f0:2b:0c:85:32:07:f0:65:70:83:e6:c4: 2a:a8:fc:12:18:2c:c1:bc:db:89:e2:03:23:2b:22:e4:41:b6: 59:8c:c0:6e:55:bf:5b:1c:81:17:f9:b1:2c:6e:41:65:de:18: 43:4d:ad:5a:cf:87:e5:d5:cf:e2:fe:f3:e9:d2:d7:d7:da:fe: cf:0a:ff:87:0d:bb:cd:26:d8:93:f5:ff:8e:0b:df:8e:e7:fd: fb:ba:06:38:eb:14:bd:db:c2:b8:cc:a4:c5:31:e5:70:04:9a: 68:7b:2e:18:a8:b2:4c:7a:3b:8e:e7:52:9c:95:0e:0d:18:d1: 50:7c:35:58 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIULuid6MWT4VM1nuBmuIg7ZbTm6cowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBGRjZGMDkzRDBERUFGQjVDQjQyQTkzNDMzRkEyMzlD OTAzRUFDMDAeFw0yNDA1MTYwMzU3MDdaFw0yNTA1MTUwNDAyMDdaMDMxMTAvBgNV BAMTKEMzNjVDN0M1NzdERjEzOUJFMDAwMzNGMkJFODY3RDQwQkE1NzdEMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuQIurcT/YLPpreJJKuNvZMGs+ +XfhmYLBumn4U/9+Dv2fqlKv5GabMEqL0rTG1oGeeO7iKVVvY4shL4R8vW2jWlvX Y+FsCpX8OFke+s3cBcNr1/t2Jgp9tJnMgVh8B4x+MzVN5KyFRmL97MoFsd050Vkg EersyJowio1c6zwsEo8ZFNMBwihe8ADK0RiMmYlQoVftaVbSIFKftIY00kiveccd q4x8uCTtejySTNCXk23YcDH3a+cQva++oIp8JkQiYnwN0qn2xfSQswEjEyKtrGNy frJcQCIERcMBAWWT4saiV033CFrD8OtadFLyj0cE3FGv0LWu0/Gw2WmD3bYfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUw2XHxXffE5vgADPyvoZ9QLpXfQIwHwYDVR0j BBgwFoAU0P9vCT0N6vtctCqTQz+iOckD6sAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 N2Y5ZjU2Mi03MjkyLTQ0ZjEtOGUyYy00NDBhMDUzMWMzOTYvMC9EMEZGNkYwOTNE MERFQUZCNUNCNDJBOTM0MzNGQTIzOUM5MDNFQUMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBGRjZGMDkzRDBERUFGQjVDQjQyQTkzNDMzRkEyMzlDOTAz RUFDMC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY3ZjlmNTYyLTcyOTItNDRmMS04 ZTJjLTQ0MGEwNTMxYzM5Ni8wLzMxMzAzMzJlMzEzNjMxMmUzMjMwMzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMzM4MzMzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6HKMA0GCSqG SIb3DQEBCwUAA4IBAQBbQTdGKbob10wAFR5IjXLQEdQLi27R/P5k9d6EIrJeY2zQ 4khQgKRurjgbZg4VlalJWauFKF2msQYyw7QMLR5TyeJ4imt2mdpv+0kfChySdbxJ xAw8zO2JCkZelrkpA6x2blRvlQqUFXgzg7F50ih06BwhHxPK2Apctyg1DDFMz0OH Zj3wKwyFMgfwZXCD5sQqqPwSGCzBvNuJ4gMjKyLkQbZZjMBuVb9bHIEX+bEsbkFl 3hhDTa1az4fl1c/i/vPp0tfX2v7PCv+HDbvNJtiT9f+OC9+O5/37ugY46xS928K4 zKTFMeVwBJpoey4YqLJMejuO51KclQ4NGNFQfDVY -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:43 2024 by rpki-client on console-fra.rpki-client.org