$ rpki-client -vvf repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/3130332e3136362e382e302f32332d3233203d3e20313431393738.roa File: 3130332e3136362e382e302f32332d3233203d3e20313431393738.roa (raw, json) Hash identifier: BVmIMDJVUtj9I7W/AuR4BzIyxzfVxkHrxZNfZSGN+Zs= Subject key identifier: 78:8C:D7:3A:2A:3A:67:F2:BE:3C:91:C8:11:D4:7B:A2:76:55:AD:2D Certificate issuer: /CN=21E46FEE03A1A4CB944F6CE6828AC30217E63BA1 Certificate serial: 15E4050F2C79E9E84E13C8B3FDB477DCD3FBE1A4 Authority key identifier: 21:E4:6F:EE:03:A1:A4:CB:94:4F:6C:E6:82:8A:C3:02:17:E6:3B:A1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/3130332e3136362e382e302f32332d3233203d3e20313431393738.roa Signing time: Tue 27 Aug 2024 12:00:00 +0000 ROA not before: Tue 27 Aug 2024 11:55:00 +0000 ROA not after: Tue 26 Aug 2025 12:00:00 +0000 asID: 141978 IP address blocks: 103.166.8.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.crl rsync://repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:e4:05:0f:2c:79:e9:e8:4e:13:c8:b3:fd:b4:77:dc:d3:fb:e1:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21E46FEE03A1A4CB944F6CE6828AC30217E63BA1 Validity Not Before: Aug 27 11:55:00 2024 GMT Not After : Aug 26 12:00:00 2025 GMT Subject: CN=788CD73A2A3A67F2BE3C91C811D47BA27655AD2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:93:43:c4:2f:4a:1e:7c:cc:40:0a:7a:51:5c: a6:3b:cc:14:67:84:b4:5a:cb:5c:48:6b:48:d7:71: 4d:b5:f6:60:24:3b:82:4d:13:d7:9a:b4:bf:d7:7f: bc:3c:2f:85:c1:e0:47:82:e3:2e:54:ee:01:58:87: aa:49:2c:26:75:b1:41:b2:45:01:a5:94:f2:f1:27: 69:0d:4d:6e:1c:e3:d6:eb:d5:72:35:7e:75:d2:02: c4:ff:7a:78:7a:76:a7:2b:06:80:20:39:ae:05:8a: 04:17:2e:78:41:0a:e8:40:af:96:34:9a:2e:c4:e7: a5:d4:14:82:e0:2e:0c:3d:83:f2:ff:ec:68:12:ff: d7:82:56:36:54:e8:2b:2c:db:fe:48:e7:14:7b:4d: 56:7e:da:bc:39:3c:81:98:d3:47:5f:5b:55:4b:70: 9d:b1:a0:b5:cf:62:73:48:64:7d:ad:a1:2c:37:2a: 0a:76:c1:79:d8:86:52:f8:94:15:5e:99:e7:f8:b1: 21:ac:a2:99:d9:78:98:05:5f:19:e3:6c:41:15:e7: 6b:09:33:d7:50:5d:1b:d3:bb:d0:6b:5b:d8:1d:ed: 3a:b0:6e:a6:12:8d:36:11:da:39:f8:a0:3c:70:37: c4:d8:cb:ef:38:c9:0d:a0:78:6f:63:23:7e:2b:fb: 30:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:8C:D7:3A:2A:3A:67:F2:BE:3C:91:C8:11:D4:7B:A2:76:55:AD:2D X509v3 Authority Key Identifier: keyid:21:E4:6F:EE:03:A1:A4:CB:94:4F:6C:E6:82:8A:C3:02:17:E6:3B:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/3130332e3136362e382e302f32332d3233203d3e20313431393738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.8.0/23 Signature Algorithm: sha256WithRSAEncryption 72:0e:34:1f:2e:84:93:cd:ab:9a:df:15:6a:9c:c1:97:c3:ba: 53:92:af:b0:7a:df:76:9a:30:1a:12:64:96:05:2c:81:6a:d5: 7b:6f:ec:ad:3c:e6:47:72:b4:23:c4:83:ef:77:83:af:4a:fb: eb:b0:4b:62:3f:f7:b8:80:1d:6c:76:10:71:45:e1:fb:7c:75: 4f:5b:a9:9f:a4:b8:d4:c7:da:31:44:a1:a2:03:fe:48:e3:39: 23:d8:7c:32:58:89:52:28:a9:e5:38:8e:55:e5:4d:19:72:51: b5:18:3f:59:a9:98:8a:e1:a3:5d:10:1b:3f:9d:29:67:e6:e0: 3a:bc:0d:ec:7f:76:0d:76:4b:45:5b:ba:45:80:b1:bf:11:8b: 0b:38:b1:54:b0:fc:c2:f2:70:f6:4c:90:c0:bc:1a:3a:f3:97: 6c:9c:08:84:db:40:27:e5:96:3d:47:85:78:14:7e:4a:ca:6a: 6e:7d:a2:1b:8a:a0:51:ec:2d:59:25:77:0b:25:a1:7c:a9:c5: 4d:4c:9a:f3:0b:e3:c1:7e:db:ca:38:ec:63:b6:cd:98:32:db: e9:07:71:e2:da:3f:00:d2:93:ca:94:fb:23:3e:21:b6:68:d8: 50:2f:a9:03:a7:bd:ea:5e:f4:ab:09:40:83:46:2c:4c:b9:3b: 5b:99:38:44 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFeQFDyx56ehOE8iz/bR33NP74aQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFFNDZGRUUwM0ExQTRDQjk0NEY2Q0U2ODI4QUMzMDIx N0U2M0JBMTAeFw0yNDA4MjcxMTU1MDBaFw0yNTA4MjYxMjAwMDBaMDMxMTAvBgNV BAMTKDc4OENENzNBMkEzQTY3RjJCRTNDOTFDODExRDQ3QkEyNzY1NUFEMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKk0PEL0oefMxACnpRXKY7zBRn hLRay1xIa0jXcU219mAkO4JNE9eatL/Xf7w8L4XB4EeC4y5U7gFYh6pJLCZ1sUGy RQGllPLxJ2kNTW4c49br1XI1fnXSAsT/enh6dqcrBoAgOa4FigQXLnhBCuhAr5Y0 mi7E56XUFILgLgw9g/L/7GgS/9eCVjZU6Css2/5I5xR7TVZ+2rw5PIGY00dfW1VL cJ2xoLXPYnNIZH2toSw3Kgp2wXnYhlL4lBVemef4sSGsopnZeJgFXxnjbEEV52sJ M9dQXRvTu9BrW9gd7TqwbqYSjTYR2jn4oDxwN8TYy+84yQ2geG9jI34r+zANAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUeIzXOio6Z/K+PJHIEdR7onZVrS0wHwYDVR0j BBgwFoAUIeRv7gOhpMuUT2zmgorDAhfmO6EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ODIyMTJjMi0zZDY4LTQ4NjctYjk5Yy1mYzVjZjRkMGRiZjEvMC8yMUU0NkZFRTAz QTFBNENCOTQ0RjZDRTY4MjhBQzMwMjE3RTYzQkExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFFNDZGRUUwM0ExQTRDQjk0NEY2Q0U2ODI4QUMzMDIxN0U2 M0JBMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc4MjIxMmMyLTNkNjgtNDg2Ny1i OTljLWZjNWNmNGQwZGJmMS8wLzMxMzAzMzJlMzEzNjM2MmUzODJlMzAyZjMyMzMy ZDMyMzMyMDNkM2UyMDMxMzQzMTM5MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWemCDANBgkqhkiG 9w0BAQsFAAOCAQEAcg40Hy6Ek82rmt8VapzBl8O6U5KvsHrfdpowGhJklgUsgWrV e2/srTzmR3K0I8SD73eDr0r767BLYj/3uIAdbHYQcUXh+3x1T1upn6S41MfaMUSh ogP+SOM5I9h8MliJUiip5TiOVeVNGXJRtRg/WamYiuGjXRAbP50pZ+bgOrwN7H92 DXZLRVu6RYCxvxGLCzixVLD8wvJw9kyQwLwaOvOXbJwIhNtAJ+WWPUeFeBR+Sspq bn2iG4qgUewtWSV3CyWhfKnFTUya8wvjwX7byjjsY7bNmDLb6Qdx4to/ANKTypT7 Iz4htmjYUC+pA6e96l70qwlAg0YsTLk7W5k4RA== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org