$ rpki-client -vvf repo-rpki.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/3130332e3136362e3136312e302f32342d3234203d3e20313431393532.roa File: 3130332e3136362e3136312e302f32342d3234203d3e20313431393532.roa (raw, json) Hash identifier: 1bScwiEYMruYbGuhuBeKNuGhMjo27TTsxSv1CKhtYU8= Subject key identifier: 50:68:7E:85:31:97:5C:EA:86:51:C4:BF:D0:E7:9F:AC:DD:32:9D:16 Certificate issuer: /CN=940E05E54E6B685EFBC6114D1E913804318364AB Certificate serial: 17DE6E35F541A76DCE62C68B27B7B10596B1E838 Authority key identifier: 94:0E:05:E5:4E:6B:68:5E:FB:C6:11:4D:1E:91:38:04:31:83:64:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/940E05E54E6B685EFBC6114D1E913804318364AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/3130332e3136362e3136312e302f32342d3234203d3e20313431393532.roa Signing time: Thu 15 Feb 2024 11:00:02 +0000 ROA not before: Thu 15 Feb 2024 10:55:02 +0000 ROA not after: Thu 13 Feb 2025 11:00:02 +0000 asID: 141952 IP address blocks: 103.166.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/940E05E54E6B685EFBC6114D1E913804318364AB.crl rsync://repo-rpki.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/940E05E54E6B685EFBC6114D1E913804318364AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/940E05E54E6B685EFBC6114D1E913804318364AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:de:6e:35:f5:41:a7:6d:ce:62:c6:8b:27:b7:b1:05:96:b1:e8:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=940E05E54E6B685EFBC6114D1E913804318364AB Validity Not Before: Feb 15 10:55:02 2024 GMT Not After : Feb 13 11:00:02 2025 GMT Subject: CN=50687E8531975CEA8651C4BFD0E79FACDD329D16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f2:2c:da:6e:2f:fc:07:37:56:7f:14:74:97: 94:96:2c:94:26:83:7f:e4:11:8a:50:2c:a8:eb:86: 31:f3:e2:f3:f6:e1:61:fd:bc:41:8e:21:e6:bd:a7: e2:75:c0:13:35:f1:11:e9:25:d4:b9:00:35:dc:3f: 27:dd:40:a6:6e:a4:20:1e:57:b9:4f:09:80:21:06: bc:18:45:67:d1:0a:cd:2b:6e:b8:e1:db:50:8b:67: 8d:ff:d1:f3:e9:01:2e:56:1e:21:74:16:4d:11:60: 73:71:ff:5f:5c:41:69:e1:fd:10:dc:1a:fc:f6:09: 07:72:54:88:a6:e0:6a:c3:3c:4e:ac:cc:77:b3:56: 7d:49:e2:64:3e:51:10:e8:26:c6:2a:bc:ec:e3:6d: 0c:da:53:8c:71:77:20:e4:6b:11:e4:16:0a:54:41: 69:2c:68:08:11:89:79:92:92:87:f3:87:24:82:88: 57:ce:e9:10:af:bb:ad:38:33:65:de:29:f6:ab:e5: f8:96:31:e3:4e:ff:5f:ff:b0:aa:12:e8:56:69:05: d2:41:0e:bd:98:b5:86:fd:d3:57:b5:db:67:41:2d: 72:6f:8f:5e:3c:e4:cd:22:2e:9d:2a:7b:5f:4c:f5: 19:3d:23:5f:df:d4:f7:72:b0:c5:0d:72:86:f5:ad: d0:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:68:7E:85:31:97:5C:EA:86:51:C4:BF:D0:E7:9F:AC:DD:32:9D:16 X509v3 Authority Key Identifier: keyid:94:0E:05:E5:4E:6B:68:5E:FB:C6:11:4D:1E:91:38:04:31:83:64:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/940E05E54E6B685EFBC6114D1E913804318364AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/940E05E54E6B685EFBC6114D1E913804318364AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6b2041f1-4ce6-49b4-83a5-315f20e4e2c3/0/3130332e3136362e3136312e302f32342d3234203d3e20313431393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.161.0/24 Signature Algorithm: sha256WithRSAEncryption d7:d6:db:df:45:ed:d8:43:87:09:e1:97:8b:f4:75:bc:f0:b3: 2d:e9:37:e4:34:1a:c6:59:ad:e2:da:6b:1e:ae:40:14:64:b1: d2:9c:0e:e8:7e:48:f0:52:ce:56:a6:2a:78:25:98:af:1d:7d: 27:70:5b:2f:75:43:13:e5:a2:4f:ef:dc:b5:60:da:1a:eb:39: 69:a6:ab:0e:44:f7:1d:42:a8:e7:c7:fb:83:f6:06:d0:92:70: de:3e:d9:f5:d8:ac:6c:b9:39:cf:d4:72:71:43:74:e2:c7:89: 7a:3e:71:05:bf:17:78:35:b2:bd:98:5e:09:35:3f:c2:cd:6b: 42:a6:4d:0b:b3:9e:e6:71:df:3c:a2:9a:49:d2:4e:b6:77:88: f9:d7:57:dc:2e:e4:92:84:a2:b9:e3:3b:02:71:3f:e2:d8:4b: 3d:93:33:16:17:c1:4f:c9:d8:4b:3d:50:27:04:c8:94:f6:4d: 2c:f5:18:3f:00:af:a5:9f:06:46:b0:46:ae:64:ee:a2:58:aa: eb:a9:4a:28:9a:45:01:bb:fd:82:1c:7e:e7:85:b4:9e:62:40: 14:a8:4b:59:3b:51:59:3a:8f:5f:61:51:06:78:81:dd:54:9b: 35:4a:69:2f:c5:52:86:76:7d:48:e6:70:49:b0:dd:6f:0f:cd: e4:cc:f0:0b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUF95uNfVBp23OYsaLJ7exBZax6DgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQwRTA1RTU0RTZCNjg1RUZCQzYxMTREMUU5MTM4MDQz MTgzNjRBQjAeFw0yNDAyMTUxMDU1MDJaFw0yNTAyMTMxMTAwMDJaMDMxMTAvBgNV BAMTKDUwNjg3RTg1MzE5NzVDRUE4NjUxQzRCRkQwRTc5RkFDREQzMjlEMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx8izabi/8BzdWfxR0l5SWLJQm g3/kEYpQLKjrhjHz4vP24WH9vEGOIea9p+J1wBM18RHpJdS5ADXcPyfdQKZupCAe V7lPCYAhBrwYRWfRCs0rbrjh21CLZ43/0fPpAS5WHiF0Fk0RYHNx/19cQWnh/RDc Gvz2CQdyVIim4GrDPE6szHezVn1J4mQ+URDoJsYqvOzjbQzaU4xxdyDkaxHkFgpU QWksaAgRiXmSkofzhySCiFfO6RCvu604M2XeKfar5fiWMeNO/1//sKoS6FZpBdJB Dr2YtYb901e122dBLXJvj1485M0iLp0qe19M9Rk9I1/f1PdysMUNcob1rdBJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUUGh+hTGXXOqGUcS/0OefrN0ynRYwHwYDVR0j BBgwFoAUlA4F5U5raF77xhFNHpE4BDGDZKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YjIwNDFmMS00Y2U2LTQ5YjQtODNhNS0zMTVmMjBlNGUyYzMvMC85NDBFMDVFNTRF NkI2ODVFRkJDNjExNEQxRTkxMzgwNDMxODM2NEFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTQwRTA1RTU0RTZCNjg1RUZCQzYxMTREMUU5MTM4MDQzMTgz NjRBQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZiMjA0MWYxLTRjZTYtNDliNC04 M2E1LTMxNWYyMGU0ZTJjMy8wLzMxMzAzMzJlMzEzNjM2MmUzMTM2MzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM1MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpqEwDQYJ KoZIhvcNAQELBQADggEBANfW299F7dhDhwnhl4v0dbzwsy3pN+Q0GsZZreLaax6u QBRksdKcDuh+SPBSzlamKnglmK8dfSdwWy91QxPlok/v3LVg2hrrOWmmqw5E9x1C qOfH+4P2BtCScN4+2fXYrGy5Oc/UcnFDdOLHiXo+cQW/F3g1sr2YXgk1P8LNa0Km TQuznuZx3zyimknSTrZ3iPnXV9wu5JKEornjOwJxP+LYSz2TMxYXwU/J2Es9UCcE yJT2TSz1GD8Ar6WfBkawRq5k7qJYquupSiiaRQG7/YIcfueFtJ5iQBSoS1k7UVk6 j19hUQZ4gd1UmzVKaS/FUoZ2fUjmcEmw3W8PzeTM8As= -----END CERTIFICATE-----Generated at Thu Nov 21 00:19:20 2024 by rpki-client on console-fra.rpki-client.org