$ rpki-client -vvf repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/3130332e3136362e382e302f32342d3234203d3e20313431393738.roa File: 3130332e3136362e382e302f32342d3234203d3e20313431393738.roa (raw, json) Hash identifier: NBBnufRmfAThhqRXGPzYNoxmY2YbRxjo1w9qKSYkkeE= Subject key identifier: E2:56:35:D3:01:8A:19:36:5B:F1:41:CC:8D:AF:54:3F:27:5D:06:34 Certificate issuer: /CN=21E46FEE03A1A4CB944F6CE6828AC30217E63BA1 Certificate serial: 4D22B56612732FF252AA038C6BC686E8212FCA25 Authority key identifier: 21:E4:6F:EE:03:A1:A4:CB:94:4F:6C:E6:82:8A:C3:02:17:E6:3B:A1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/3130332e3136362e382e302f32342d3234203d3e20313431393738.roa Signing time: Tue 27 Aug 2024 11:00:00 +0000 ROA not before: Tue 27 Aug 2024 10:55:00 +0000 ROA not after: Tue 26 Aug 2025 11:00:00 +0000 asID: 141978 IP address blocks: 103.166.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.crl rsync://repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:22:b5:66:12:73:2f:f2:52:aa:03:8c:6b:c6:86:e8:21:2f:ca:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21E46FEE03A1A4CB944F6CE6828AC30217E63BA1 Validity Not Before: Aug 27 10:55:00 2024 GMT Not After : Aug 26 11:00:00 2025 GMT Subject: CN=E25635D3018A19365BF141CC8DAF543F275D0634 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a8:42:85:18:fd:23:55:d0:dd:63:64:fb:45: ac:ce:b0:29:7b:53:ac:47:6e:3e:af:c5:ee:13:40: 96:f1:74:36:74:9a:34:5a:50:81:61:d1:15:18:c6: 45:0c:5b:a7:ba:d7:1d:19:49:d7:5c:e9:28:3c:a9: ac:39:48:5d:19:d0:f3:4e:4b:63:87:3c:13:4e:7d: 85:1b:15:51:86:ab:30:e5:62:bf:9a:09:48:87:9f: 19:83:ea:10:c7:d1:84:82:97:15:74:0b:ac:c5:f7: e2:da:fc:18:89:b3:9f:40:8e:ab:29:6d:ce:5d:65: 73:7b:8e:e8:e9:ef:da:e7:4f:c3:90:68:87:41:7e: 8c:eb:b3:43:02:22:f9:ff:6a:63:83:dd:29:49:7d: 71:f3:93:46:15:d4:c2:e5:ed:78:d5:87:61:91:77: a2:9f:bf:e4:e8:12:fe:06:9c:a8:61:5c:81:44:05: 3d:1d:20:c5:3b:06:c2:c0:14:f3:ad:e9:18:a1:08: 83:15:f7:6e:bf:06:5f:82:e5:f1:38:a2:54:60:c7: b5:2b:d9:8b:be:42:50:fb:b9:4e:0a:03:e3:00:bf: ca:fe:45:b7:2a:54:93:15:6c:5e:1d:82:55:80:14: 7c:ca:50:7c:10:28:88:70:04:4b:f1:b4:be:50:b5: 89:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:56:35:D3:01:8A:19:36:5B:F1:41:CC:8D:AF:54:3F:27:5D:06:34 X509v3 Authority Key Identifier: keyid:21:E4:6F:EE:03:A1:A4:CB:94:4F:6C:E6:82:8A:C3:02:17:E6:3B:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/3130332e3136362e382e302f32342d3234203d3e20313431393738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.8.0/24 Signature Algorithm: sha256WithRSAEncryption 99:73:bd:56:f7:3e:ec:76:9a:be:42:0f:2b:38:6e:99:69:00: 1f:31:7f:d8:57:0f:49:76:76:f6:0b:97:fe:e2:13:16:4a:ec: 9a:10:19:cf:a3:3f:73:5a:48:59:f5:b1:05:60:a6:eb:72:78: db:20:fb:a6:b6:97:06:1a:22:e4:c4:f1:ad:9d:f0:1f:8a:49: 03:b2:23:dc:7a:4b:73:a4:1c:5e:08:82:ce:da:d0:6c:e2:59: 6e:31:5f:78:6d:34:6a:dd:a9:2c:91:d0:a9:24:59:3e:c5:c1: 5f:d0:bc:36:59:41:ec:91:2c:c0:51:bf:5e:24:4f:4e:db:ee: 6e:da:97:9a:74:aa:b7:7d:53:a6:50:00:27:73:d2:4c:c9:81: d5:11:c2:58:72:0e:41:36:f6:35:da:5a:df:dd:fe:ff:2f:32: 2b:8a:23:a4:1e:ba:39:24:c5:88:11:b0:fc:b5:87:72:bf:e3: 8d:0b:20:41:a3:ce:ba:f0:62:f0:50:61:3b:1b:35:40:8e:5b: 57:70:03:8b:e7:95:d1:f3:4a:64:8f:66:ab:01:f3:bb:53:9c: 62:7c:76:fb:9f:61:a5:3c:cb:94:cb:9c:79:6a:e8:fb:11:91: 07:c0:e4:22:48:a0:89:06:61:89:ac:a0:52:dc:b5:47:91:21: 3f:6e:7f:60 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUTSK1ZhJzL/JSqgOMa8aG6CEvyiUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFFNDZGRUUwM0ExQTRDQjk0NEY2Q0U2ODI4QUMzMDIx N0U2M0JBMTAeFw0yNDA4MjcxMDU1MDBaFw0yNTA4MjYxMTAwMDBaMDMxMTAvBgNV BAMTKEUyNTYzNUQzMDE4QTE5MzY1QkYxNDFDQzhEQUY1NDNGMjc1RDA2MzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJqEKFGP0jVdDdY2T7RazOsCl7 U6xHbj6vxe4TQJbxdDZ0mjRaUIFh0RUYxkUMW6e61x0ZSddc6Sg8qaw5SF0Z0PNO S2OHPBNOfYUbFVGGqzDlYr+aCUiHnxmD6hDH0YSClxV0C6zF9+La/BiJs59Ajqsp bc5dZXN7jujp79rnT8OQaIdBfozrs0MCIvn/amOD3SlJfXHzk0YV1MLl7XjVh2GR d6Kfv+ToEv4GnKhhXIFEBT0dIMU7BsLAFPOt6RihCIMV926/Bl+C5fE4olRgx7Ur 2Yu+QlD7uU4KA+MAv8r+RbcqVJMVbF4dglWAFHzKUHwQKIhwBEvxtL5QtYlNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU4lY10wGKGTZb8UHMja9UPyddBjQwHwYDVR0j BBgwFoAUIeRv7gOhpMuUT2zmgorDAhfmO6EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ODIyMTJjMi0zZDY4LTQ4NjctYjk5Yy1mYzVjZjRkMGRiZjEvMC8yMUU0NkZFRTAz QTFBNENCOTQ0RjZDRTY4MjhBQzMwMjE3RTYzQkExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFFNDZGRUUwM0ExQTRDQjk0NEY2Q0U2ODI4QUMzMDIxN0U2 M0JBMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc4MjIxMmMyLTNkNjgtNDg2Ny1i OTljLWZjNWNmNGQwZGJmMS8wLzMxMzAzMzJlMzEzNjM2MmUzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM5MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGemCDANBgkqhkiG 9w0BAQsFAAOCAQEAmXO9Vvc+7HaavkIPKzhumWkAHzF/2FcPSXZ29guX/uITFkrs mhAZz6M/c1pIWfWxBWCm63J42yD7praXBhoi5MTxrZ3wH4pJA7Ij3HpLc6QcXgiC ztrQbOJZbjFfeG00at2pLJHQqSRZPsXBX9C8NllB7JEswFG/XiRPTtvubtqXmnSq t31TplAAJ3PSTMmB1RHCWHIOQTb2Ndpa393+/y8yK4ojpB66OSTFiBGw/LWHcr/j jQsgQaPOuvBi8FBhOxs1QI5bV3ADi+eV0fNKZI9mqwHzu1OcYnx2+59hpTzLlMuc eWro+xGRB8DkIkigiQZhiaygUty1R5EhP25/YA== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org