$ rpki-client -vvf repo-rpki.idnic.net/repo/6ff8f4ab-1ab8-4894-b758-d9bce3803e4c/0/3130332e3135352e3136392e302f32342d3234203d3e20313431303635.roa File: 3130332e3135352e3136392e302f32342d3234203d3e20313431303635.roa (raw, json) Hash identifier: E8pkHpGEkdEAshqfKtFeAdiIMvtPR4QVDcg2CRkJtgo= Subject key identifier: 3A:C4:BA:14:77:1A:FC:A6:90:FF:29:58:A2:8F:C2:F9:1F:C0:D4:19 Certificate issuer: /CN=DD77382BD9E8634AEF9E93D763B0149D915502F5 Certificate serial: 3B3EE850DB7D9F43972C404261AC53768B9B7F17 Authority key identifier: DD:77:38:2B:D9:E8:63:4A:EF:9E:93:D7:63:B0:14:9D:91:55:02:F5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD77382BD9E8634AEF9E93D763B0149D915502F5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6ff8f4ab-1ab8-4894-b758-d9bce3803e4c/0/3130332e3135352e3136392e302f32342d3234203d3e20313431303635.roa Signing time: Wed 21 Feb 2024 11:01:59 +0000 ROA not before: Wed 21 Feb 2024 10:56:59 +0000 ROA not after: Wed 19 Feb 2025 11:01:59 +0000 asID: 141065 IP address blocks: 103.155.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6ff8f4ab-1ab8-4894-b758-d9bce3803e4c/0/DD77382BD9E8634AEF9E93D763B0149D915502F5.crl rsync://repo-rpki.idnic.net/repo/6ff8f4ab-1ab8-4894-b758-d9bce3803e4c/0/DD77382BD9E8634AEF9E93D763B0149D915502F5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD77382BD9E8634AEF9E93D763B0149D915502F5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 00:58:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:3e:e8:50:db:7d:9f:43:97:2c:40:42:61:ac:53:76:8b:9b:7f:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD77382BD9E8634AEF9E93D763B0149D915502F5 Validity Not Before: Feb 21 10:56:59 2024 GMT Not After : Feb 19 11:01:59 2025 GMT Subject: CN=3AC4BA14771AFCA690FF2958A28FC2F91FC0D419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:33:28:29:aa:96:80:17:3c:7d:0e:02:45:8d: 13:1f:36:94:85:09:93:02:13:46:26:45:f6:34:a5: 12:a7:02:f5:ec:cb:07:e5:e8:07:f4:06:f7:e6:56: 6f:3b:2a:6a:a8:71:7c:6e:f6:7a:92:6f:4d:f3:e1: b1:c2:cc:86:57:9b:be:fc:d7:f0:c4:2f:1e:46:c7: 93:1e:7a:c2:c1:33:f4:5d:15:fd:cd:b3:c5:41:12: 60:29:b8:eb:f5:25:fc:2e:e7:59:ae:b1:56:2a:b5: 22:94:32:03:bf:6d:93:fb:5b:e5:e3:82:d3:ab:a9: 88:53:11:be:c9:39:dd:ea:7a:52:93:7c:9d:06:e4: 5c:28:62:2f:f1:53:3d:c3:d8:b2:70:2c:93:3f:e1: 99:aa:94:85:22:06:70:fa:02:6d:6d:0d:e4:f6:82: 74:9a:1e:1d:84:e9:b6:d8:12:8a:f8:3e:97:89:69: 7b:45:59:dc:70:5f:5c:76:2d:d4:99:04:eb:7a:8e: cf:c1:11:ff:7f:89:90:ca:1e:fb:94:11:13:9a:e7: b5:a4:d9:50:13:5c:88:9b:6e:bf:d5:14:25:2f:7e: 4f:27:8c:ef:f0:8b:0d:71:8c:cf:13:d9:f1:e9:19: c1:f5:2b:bf:59:2e:99:08:53:bb:3f:6e:d7:70:53: 66:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:C4:BA:14:77:1A:FC:A6:90:FF:29:58:A2:8F:C2:F9:1F:C0:D4:19 X509v3 Authority Key Identifier: keyid:DD:77:38:2B:D9:E8:63:4A:EF:9E:93:D7:63:B0:14:9D:91:55:02:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6ff8f4ab-1ab8-4894-b758-d9bce3803e4c/0/DD77382BD9E8634AEF9E93D763B0149D915502F5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD77382BD9E8634AEF9E93D763B0149D915502F5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6ff8f4ab-1ab8-4894-b758-d9bce3803e4c/0/3130332e3135352e3136392e302f32342d3234203d3e20313431303635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.169.0/24 Signature Algorithm: sha256WithRSAEncryption 48:af:ed:3b:68:b5:6e:55:8c:2b:48:ff:46:0e:8e:6d:c7:f1: 83:55:81:14:af:61:4c:e5:79:5f:5d:3c:4c:0d:e0:43:d7:e5: d0:5a:d7:06:35:28:b9:99:8d:f7:30:4c:d4:2b:54:6c:bd:42: fc:c8:d8:70:f4:bd:d9:8e:fa:da:c9:1e:ee:6c:9c:92:22:87: 7e:66:59:67:73:b2:97:d7:5d:e0:a6:5a:73:90:28:8b:b4:d6: 9a:27:53:cc:d9:a1:23:1b:8f:92:94:92:64:07:3a:81:d6:cb: 9a:25:5e:e9:88:06:99:6a:96:ff:2a:af:e3:61:e8:93:7b:62: 0e:0f:49:5a:a7:2b:b5:b0:db:95:2b:ef:f1:9a:96:a2:a0:d3: fa:67:21:25:59:42:e1:12:ea:3a:a2:39:22:fd:28:c4:28:11: 2f:62:b6:61:57:3a:67:f0:55:10:24:fd:6f:ed:9f:c0:71:9a: 4a:20:b1:ed:bd:2d:55:49:28:f4:98:27:00:38:9a:ac:73:ef: 6e:d8:a6:81:a6:3c:cf:9a:de:b2:9a:91:c4:fd:0c:d3:7d:37: 8f:42:ef:f3:0a:15:07:ea:62:e6:15:c5:92:74:0e:b7:f1:3b: 1b:f9:89:08:41:24:1e:64:99:42:2f:1e:9b:3e:20:b8:c8:52: 41:19:03:75 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOz7oUNt9n0OXLEBCYaxTdoubfxcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQ3NzM4MkJEOUU4NjM0QUVGOUU5M0Q3NjNCMDE0OUQ5 MTU1MDJGNTAeFw0yNDAyMjExMDU2NTlaFw0yNTAyMTkxMTAxNTlaMDMxMTAvBgNV BAMTKDNBQzRCQTE0NzcxQUZDQTY5MEZGMjk1OEEyOEZDMkY5MUZDMEQ0MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmMygpqpaAFzx9DgJFjRMfNpSF CZMCE0YmRfY0pRKnAvXsywfl6Af0BvfmVm87KmqocXxu9nqSb03z4bHCzIZXm778 1/DELx5Gx5MeesLBM/RdFf3Ns8VBEmApuOv1Jfwu51musVYqtSKUMgO/bZP7W+Xj gtOrqYhTEb7JOd3qelKTfJ0G5FwoYi/xUz3D2LJwLJM/4ZmqlIUiBnD6Am1tDeT2 gnSaHh2E6bbYEor4PpeJaXtFWdxwX1x2LdSZBOt6js/BEf9/iZDKHvuUEROa57Wk 2VATXIibbr/VFCUvfk8njO/wiw1xjM8T2fHpGcH1K79ZLpkIU7s/btdwU2bJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUOsS6FHca/KaQ/ylYoo/C+R/A1BkwHwYDVR0j BBgwFoAU3Xc4K9noY0rvnpPXY7AUnZFVAvUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZmY4ZjRhYi0xYWI4LTQ4OTQtYjc1OC1kOWJjZTM4MDNlNGMvMC9ERDc3MzgyQkQ5 RTg2MzRBRUY5RTkzRDc2M0IwMTQ5RDkxNTUwMkY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQ3NzM4MkJEOUU4NjM0QUVGOUU5M0Q3NjNCMDE0OUQ5MTU1 MDJGNS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmZjhmNGFiLTFhYjgtNDg5NC1i NzU4LWQ5YmNlMzgwM2U0Yy8wLzMxMzAzMzJlMzEzNTM1MmUzMTM2MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM2MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnm6kwDQYJ KoZIhvcNAQELBQADggEBAEiv7TtotW5VjCtI/0YOjm3H8YNVgRSvYUzleV9dPEwN 4EPX5dBa1wY1KLmZjfcwTNQrVGy9QvzI2HD0vdmO+trJHu5snJIih35mWWdzspfX XeCmWnOQKIu01ponU8zZoSMbj5KUkmQHOoHWy5olXumIBplqlv8qr+Nh6JN7Yg4P SVqnK7Ww25Ur7/GalqKg0/pnISVZQuES6jqiOSL9KMQoES9itmFXOmfwVRAk/W/t n8Bxmkogse29LVVJKPSYJwA4mqxz727YpoGmPM+a3rKakcT9DNN9N49C7/MKFQfq YuYVxZJ0DrfxOxv5iQhBJB5kmUIvHps+ILjIUkEZA3U= -----END CERTIFICATE-----Generated at Thu Nov 21 23:32:59 2024 by rpki-client on console-ams.rpki-client.org