$ rpki-client -vvf repo-rpki.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/3130332e3136322e3235322e302f32342d3234203d3e20313431363732.roa File: 3130332e3136322e3235322e302f32342d3234203d3e20313431363732.roa (raw, json) Hash identifier: F/PrgRQWyjl54TnGtCvaw2IbmQgpyQyxqaaKjq7WP0U= Subject key identifier: 11:61:D7:C0:93:9B:A4:1A:11:CB:69:9E:46:33:85:22:9B:CA:40:09 Certificate issuer: /CN=FE47963FB6E13EFC318606E3CA31013421827343 Certificate serial: 509D52077DF6E89E97B57057EAF539B626EE8950 Authority key identifier: FE:47:96:3F:B6:E1:3E:FC:31:86:06:E3:CA:31:01:34:21:82:73:43 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE47963FB6E13EFC318606E3CA31013421827343.cer Subject info access: rsync://repo-rpki.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/3130332e3136322e3235322e302f32342d3234203d3e20313431363732.roa Signing time: Wed 27 Nov 2024 07:00:01 +0000 ROA not before: Wed 27 Nov 2024 06:55:01 +0000 ROA not after: Wed 26 Nov 2025 07:00:01 +0000 asID: 141672 IP address blocks: 103.162.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/FE47963FB6E13EFC318606E3CA31013421827343.crl rsync://repo-rpki.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/FE47963FB6E13EFC318606E3CA31013421827343.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE47963FB6E13EFC318606E3CA31013421827343.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Feb 2025 12:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:9d:52:07:7d:f6:e8:9e:97:b5:70:57:ea:f5:39:b6:26:ee:89:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FE47963FB6E13EFC318606E3CA31013421827343 Validity Not Before: Nov 27 06:55:01 2024 GMT Not After : Nov 26 07:00:01 2025 GMT Subject: CN=1161D7C0939BA41A11CB699E463385229BCA4009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:b8:13:df:53:58:eb:56:e5:48:44:23:a6:28: 6d:d8:80:b4:c5:d2:67:74:f0:37:d1:22:5b:e2:f7: a7:64:59:01:0d:67:5f:60:ce:f0:66:24:ca:b8:96: d7:6a:c3:8a:cb:b0:68:04:68:47:c3:86:6c:dc:fe: 24:24:c8:be:5d:4e:09:ca:63:70:6e:f5:97:34:0b: 17:19:6d:62:9d:21:2c:63:c1:56:5d:58:a3:c9:d5: 1d:c9:98:78:07:69:c7:75:40:40:96:31:c3:b1:04: 19:2d:d0:54:cd:46:57:ec:15:6a:2d:ca:67:bf:c4: de:c3:51:55:37:de:a0:c0:83:b5:5c:09:8a:c8:c8: f8:d1:17:e1:d0:02:d2:89:3b:aa:14:f8:d6:07:02: 2b:41:02:1b:e6:66:f0:fa:db:7a:d7:9e:55:3f:f7: 01:e6:df:cb:df:54:41:57:62:ec:c9:e7:b4:07:bf: b9:28:e9:ab:d9:28:f7:93:7d:4d:c5:ec:22:d8:8d: 89:30:a9:97:3e:4e:00:57:6b:4b:c9:31:11:b6:10: 59:8f:7c:c0:9c:c0:f9:af:af:0b:26:96:b5:6f:37: 73:eb:22:2e:32:80:ae:2d:d8:f8:8b:3a:51:77:e1: 29:ed:54:cd:b5:73:c6:07:99:47:20:47:5a:3f:7c: 50:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:61:D7:C0:93:9B:A4:1A:11:CB:69:9E:46:33:85:22:9B:CA:40:09 X509v3 Authority Key Identifier: keyid:FE:47:96:3F:B6:E1:3E:FC:31:86:06:E3:CA:31:01:34:21:82:73:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/FE47963FB6E13EFC318606E3CA31013421827343.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE47963FB6E13EFC318606E3CA31013421827343.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/68466889-c1ef-4410-ad9c-306c09e1be06/0/3130332e3136322e3235322e302f32342d3234203d3e20313431363732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.252.0/24 Signature Algorithm: sha256WithRSAEncryption 58:e2:b7:71:8b:c8:28:4e:16:55:9a:5d:63:26:89:a0:3e:bd: 2e:ed:c8:7e:f6:68:c9:89:de:0f:49:a5:ce:3b:2c:95:f7:4d: e3:c0:b2:6b:05:31:63:de:26:dc:fa:f0:f4:82:df:b2:34:77: 30:ff:e9:4d:45:55:cf:54:b4:f1:c8:4e:ad:a8:a5:17:17:41: ce:9f:38:12:38:d2:13:5f:1e:41:94:91:f7:d6:b4:18:e8:27: cc:69:8b:7e:2e:53:37:14:83:e0:ac:00:05:ec:aa:8a:7a:56: 4c:0a:c9:0b:fc:14:27:41:8b:e1:fb:51:c4:82:be:41:38:f0: 9c:88:34:12:57:0d:0e:7a:85:6a:e5:ec:47:2d:4d:48:8d:60: 88:c0:34:8e:d9:93:9c:c4:1d:04:16:c6:76:56:0f:2a:09:5e: a8:e5:bc:95:53:16:14:e7:5d:2b:90:25:3c:a8:77:18:c3:f4: 12:45:4c:48:9e:e6:b4:0b:e8:ef:d1:a9:50:9b:0d:f2:98:31: 29:a3:e6:f4:94:12:b0:14:5b:80:73:62:cf:c8:fb:61:b1:3d: 5e:01:7c:df:87:06:dd:0a:aa:22:4a:f3:5a:6f:87:d5:02:e3: 8a:51:8a:ab:09:82:9b:e0:d0:da:05:97:50:24:8d:c9:07:46: 60:ac:86:92 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUJ1SB3326J6XtXBX6vU5tibuiVAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkU0Nzk2M0ZCNkUxM0VGQzMxODYwNkUzQ0EzMTAxMzQy MTgyNzM0MzAeFw0yNDExMjcwNjU1MDFaFw0yNTExMjYwNzAwMDFaMDMxMTAvBgNV BAMTKDExNjFEN0MwOTM5QkE0MUExMUNCNjk5RTQ2MzM4NTIyOUJDQTQwMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeuBPfU1jrVuVIRCOmKG3YgLTF 0md08DfRIlvi96dkWQENZ19gzvBmJMq4ltdqw4rLsGgEaEfDhmzc/iQkyL5dTgnK Y3Bu9Zc0CxcZbWKdISxjwVZdWKPJ1R3JmHgHacd1QECWMcOxBBkt0FTNRlfsFWot yme/xN7DUVU33qDAg7VcCYrIyPjRF+HQAtKJO6oU+NYHAitBAhvmZvD623rXnlU/ 9wHm38vfVEFXYuzJ57QHv7ko6avZKPeTfU3F7CLYjYkwqZc+TgBXa0vJMRG2EFmP fMCcwPmvrwsmlrVvN3PrIi4ygK4t2PiLOlF34SntVM21c8YHmUcgR1o/fFBnAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUEWHXwJObpBoRy2meRjOFIpvKQAkwHwYDVR0j BBgwFoAU/keWP7bhPvwxhgbjyjEBNCGCc0MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ODQ2Njg4OS1jMWVmLTQ0MTAtYWQ5Yy0zMDZjMDllMWJlMDYvMC9GRTQ3OTYzRkI2 RTEzRUZDMzE4NjA2RTNDQTMxMDEzNDIxODI3MzQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkU0Nzk2M0ZCNkUxM0VGQzMxODYwNkUzQ0EzMTAxMzQyMTgy NzM0My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY4NDY2ODg5LWMxZWYtNDQxMC1h ZDljLTMwNmMwOWUxYmUwNi8wLzMxMzAzMzJlMzEzNjMyMmUzMjM1MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnovwwDQYJ KoZIhvcNAQELBQADggEBAFjit3GLyChOFlWaXWMmiaA+vS7tyH72aMmJ3g9Jpc47 LJX3TePAsmsFMWPeJtz68PSC37I0dzD/6U1FVc9UtPHITq2opRcXQc6fOBI40hNf HkGUkffWtBjoJ8xpi34uUzcUg+CsAAXsqop6VkwKyQv8FCdBi+H7UcSCvkE48JyI NBJXDQ56hWrl7EctTUiNYIjANI7Zk5zEHQQWxnZWDyoJXqjlvJVTFhTnXSuQJTyo dxjD9BJFTEie5rQL6O/RqVCbDfKYMSmj5vSUErAUW4BzYs/I+2GxPV4BfN+HBt0K qiJK81pvh9UC44pRiqsJgpvg0NoFl1AkjckHRmCshpI= -----END CERTIFICATE-----Generated at Fri Feb 21 11:00:02 2025 by rpki-client