$ rpki-client -vvf repo-rpki.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/3130332e3136362e3136302e302f32342d3234203d3e20313431393532.roa File: 3130332e3136362e3136302e302f32342d3234203d3e20313431393532.roa (raw, json) Hash identifier: d5pvXD+7cjiuxDWYiLi0rlR5R/wWfZxNebbBmEp0LgM= Subject key identifier: 1D:05:74:D1:C2:7D:A5:A9:FB:64:E1:FB:5A:88:31:55:C6:19:02:89 Certificate issuer: /CN=940E05E54E6B685EFBC6114D1E913804318364AB Certificate serial: 0DF71E66C8A4E2E303C69D8799B10764DD25250E Authority key identifier: 94:0E:05:E5:4E:6B:68:5E:FB:C6:11:4D:1E:91:38:04:31:83:64:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/940E05E54E6B685EFBC6114D1E913804318364AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/3130332e3136362e3136302e302f32342d3234203d3e20313431393532.roa Signing time: Thu 15 Feb 2024 11:00:02 +0000 ROA not before: Thu 15 Feb 2024 10:55:02 +0000 ROA not after: Thu 13 Feb 2025 11:00:02 +0000 asID: 141952 IP address blocks: 103.166.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/940E05E54E6B685EFBC6114D1E913804318364AB.crl rsync://repo-rpki.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/940E05E54E6B685EFBC6114D1E913804318364AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/940E05E54E6B685EFBC6114D1E913804318364AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:f7:1e:66:c8:a4:e2:e3:03:c6:9d:87:99:b1:07:64:dd:25:25:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=940E05E54E6B685EFBC6114D1E913804318364AB Validity Not Before: Feb 15 10:55:02 2024 GMT Not After : Feb 13 11:00:02 2025 GMT Subject: CN=1D0574D1C27DA5A9FB64E1FB5A883155C6190289 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:8f:7a:f1:df:89:1c:5f:2b:f6:13:be:6e:47: 5c:b8:cc:cc:e8:fd:a4:0a:32:8d:36:3f:dc:6e:b1: d1:fe:94:3e:1d:a7:9e:3d:d3:9a:e2:91:22:40:56: 22:45:45:bf:a6:19:34:37:1b:14:c4:c9:c5:4c:80: b9:cf:76:7f:62:2e:73:6e:55:6a:b9:5d:55:93:85: 05:af:84:21:4c:cd:4d:80:1a:ec:8e:3b:ff:80:9c: 75:01:96:d0:df:f5:56:ed:b6:2b:65:17:8e:3a:40: 68:0f:82:fc:62:be:6b:4a:1a:79:f4:5a:a2:d2:f3: 6e:c3:ce:c0:4e:a5:29:9b:80:00:5d:a4:52:49:6e: bd:b8:01:8c:5f:cd:20:7e:a0:97:f7:d2:e0:c6:df: 69:c5:bc:92:8a:41:96:e6:f2:26:1e:ca:f9:cf:b1: 6e:dc:87:25:c8:b0:ca:8c:b7:5a:99:00:7f:a7:57: b3:d6:33:2d:43:ac:e3:74:b4:7f:0b:38:24:7b:b9: dc:a5:d1:13:a8:e7:6e:c3:2c:64:86:76:d4:52:47: 18:d5:4e:ce:3f:ab:29:6e:bc:cf:09:95:62:08:5a: 92:e3:26:e7:c6:8a:a3:c0:49:63:8c:4d:fb:8e:4d: 5b:b2:9a:e9:0b:e6:22:f8:c9:d3:82:6f:d3:96:e1: fd:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:05:74:D1:C2:7D:A5:A9:FB:64:E1:FB:5A:88:31:55:C6:19:02:89 X509v3 Authority Key Identifier: keyid:94:0E:05:E5:4E:6B:68:5E:FB:C6:11:4D:1E:91:38:04:31:83:64:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/940E05E54E6B685EFBC6114D1E913804318364AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/940E05E54E6B685EFBC6114D1E913804318364AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/3130332e3136362e3136302e302f32342d3234203d3e20313431393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.160.0/24 Signature Algorithm: sha256WithRSAEncryption d4:35:a9:f4:4b:e1:be:21:43:1b:0a:8a:17:be:e4:df:ce:cb: af:52:30:0f:31:df:e6:46:2d:eb:75:fa:ab:be:76:96:09:6a: b7:5b:2b:95:bd:ea:01:c8:62:50:f6:9c:39:71:b0:1b:f1:1d: 71:0e:1a:e7:11:95:cc:d3:a0:e1:b7:39:d3:28:ad:e4:59:9e: 79:fe:82:73:72:2e:e1:8b:05:08:66:67:f0:8e:23:8d:af:9a: c1:52:d3:ca:36:53:e0:60:37:bd:6d:77:82:47:d7:27:16:ba: fc:65:37:fb:26:ba:fb:02:14:10:5c:b6:33:8d:f0:63:42:6b: 78:f4:29:59:10:83:3e:78:d3:e7:ad:e3:30:7d:2b:ea:0d:7b: e6:b5:26:3c:df:2c:49:a3:c6:45:5e:fe:29:50:eb:a3:e1:a8: 75:67:f3:1b:a4:73:d0:20:0d:d5:fe:01:7a:70:5e:7a:22:13: c8:bc:26:ee:c6:5a:15:e4:a5:22:a4:6e:0d:24:21:7c:af:34: f2:59:fa:b4:09:01:7c:79:a4:7a:67:7c:3b:5d:a9:e0:6b:e6: d2:98:c7:3b:06:6d:00:80:b4:30:ee:de:b7:83:2c:64:f8:99: 9c:71:f0:5c:e9:75:1d:3d:eb:4c:a5:37:7c:1b:d7:5a:9b:32: cf:01:83:73 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUDfceZsik4uMDxp2HmbEHZN0lJQ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQwRTA1RTU0RTZCNjg1RUZCQzYxMTREMUU5MTM4MDQz MTgzNjRBQjAeFw0yNDAyMTUxMDU1MDJaFw0yNTAyMTMxMTAwMDJaMDMxMTAvBgNV BAMTKDFEMDU3NEQxQzI3REE1QTlGQjY0RTFGQjVBODgzMTU1QzYxOTAyODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLj3rx34kcXyv2E75uR1y4zMzo /aQKMo02P9xusdH+lD4dp54905rikSJAViJFRb+mGTQ3GxTEycVMgLnPdn9iLnNu VWq5XVWThQWvhCFMzU2AGuyOO/+AnHUBltDf9VbttitlF446QGgPgvxivmtKGnn0 WqLS827DzsBOpSmbgABdpFJJbr24AYxfzSB+oJf30uDG32nFvJKKQZbm8iYeyvnP sW7chyXIsMqMt1qZAH+nV7PWMy1DrON0tH8LOCR7udyl0ROo527DLGSGdtRSRxjV Ts4/qyluvM8JlWIIWpLjJufGiqPASWOMTfuOTVuymukL5iL4ydOCb9OW4f1HAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUHQV00cJ9pan7ZOH7WogxVcYZAokwHwYDVR0j BBgwFoAUlA4F5U5raF77xhFNHpE4BDGDZKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YjIwNDFmMS00Y2U2LTQ5YjQtODNhNS0zMTVmMjBlNGUyYzMvMC85NDBFMDVFNTRF NkI2ODVFRkJDNjExNEQxRTkxMzgwNDMxODM2NEFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTQwRTA1RTU0RTZCNjg1RUZCQzYxMTREMUU5MTM4MDQzMTgz NjRBQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZiMjA0MWYxLTRjZTYtNDliNC04 M2E1LTMxNWYyMGU0ZTJjMy8wLzMxMzAzMzJlMzEzNjM2MmUzMTM2MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpqAwDQYJ KoZIhvcNAQELBQADggEBANQ1qfRL4b4hQxsKihe+5N/Oy69SMA8x3+ZGLet1+qu+ dpYJardbK5W96gHIYlD2nDlxsBvxHXEOGucRlczToOG3OdMoreRZnnn+gnNyLuGL BQhmZ/COI42vmsFS08o2U+BgN71td4JH1ycWuvxlN/smuvsCFBBctjON8GNCa3j0 KVkQgz540+et4zB9K+oNe+a1JjzfLEmjxkVe/ilQ66PhqHVn8xukc9AgDdX+AXpw XnoiE8i8Ju7GWhXkpSKkbg0kIXyvNPJZ+rQJAXx5pHpnfDtdqeBr5tKYxzsGbQCA tDDu3reDLGT4mZxx8FzpdR0960ylN3wb11qbMs8Bg3M= -----END CERTIFICATE-----Generated at Thu Nov 21 00:19:20 2024 by rpki-client on console-fra.rpki-client.org