$ rpki-client -vvf repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/3130332e3136362e392e302f32342d3234203d3e20313431393738.roa File: 3130332e3136362e392e302f32342d3234203d3e20313431393738.roa (raw, json) Hash identifier: zlcqvXi587wSr/o8I+yN+EXScv0fIyPxOx7WTfCRPMY= Subject key identifier: 15:77:3D:F3:E5:F2:CE:CA:6B:EA:1E:AC:70:F0:76:81:A5:B3:BE:BF Certificate issuer: /CN=21E46FEE03A1A4CB944F6CE6828AC30217E63BA1 Certificate serial: 549F3DB9933BF6E129279D289CFE15E32DE602BD Authority key identifier: 21:E4:6F:EE:03:A1:A4:CB:94:4F:6C:E6:82:8A:C3:02:17:E6:3B:A1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/3130332e3136362e392e302f32342d3234203d3e20313431393738.roa Signing time: Tue 27 Aug 2024 12:00:00 +0000 ROA not before: Tue 27 Aug 2024 11:55:00 +0000 ROA not after: Tue 26 Aug 2025 12:00:00 +0000 asID: 141978 IP address blocks: 103.166.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.crl rsync://repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:9f:3d:b9:93:3b:f6:e1:29:27:9d:28:9c:fe:15:e3:2d:e6:02:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21E46FEE03A1A4CB944F6CE6828AC30217E63BA1 Validity Not Before: Aug 27 11:55:00 2024 GMT Not After : Aug 26 12:00:00 2025 GMT Subject: CN=15773DF3E5F2CECA6BEA1EAC70F07681A5B3BEBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:62:3c:c8:5b:4c:63:be:e3:09:c6:c5:d8:40: 54:1d:49:6d:52:e4:66:b1:be:75:ab:e1:b4:b7:5b: f3:ee:48:98:ff:a7:0d:7f:54:1b:38:71:d0:91:57: 8c:0e:5c:0c:0f:6a:d8:c2:33:5f:ba:28:9c:5c:56: 19:de:df:24:55:8a:94:d4:13:ba:f4:20:e3:bc:f2: c3:4f:cd:0f:bc:64:d5:79:f1:8d:2b:13:d0:19:0f: 31:43:1a:1b:c5:60:bd:4c:d0:63:79:74:63:f4:88: f8:b9:87:dc:87:1f:42:50:8e:f1:bb:3b:70:86:82: 67:08:97:19:80:4c:3a:34:ff:78:a0:11:31:f2:cb: f8:64:3f:d2:3d:b2:4b:5e:46:93:d6:e3:49:69:21: 0a:5b:27:30:97:a1:88:b6:f7:ec:8c:f8:22:4d:50: ee:55:54:4c:57:b9:a4:5a:05:92:25:7a:30:9a:83: d8:a6:a5:f7:6f:78:03:a3:1f:49:c6:e8:67:57:0b: 3f:e6:c7:37:4b:6e:bd:8d:c0:36:1b:40:75:0f:4b: 81:25:ca:71:0e:63:ee:02:84:0c:dd:81:9d:36:8a: fd:9d:c2:9f:c0:00:01:ff:7a:1a:0a:f4:db:a0:1c: fb:b0:78:3c:5a:13:03:7a:22:6d:52:39:ba:d7:82: e3:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:77:3D:F3:E5:F2:CE:CA:6B:EA:1E:AC:70:F0:76:81:A5:B3:BE:BF X509v3 Authority Key Identifier: keyid:21:E4:6F:EE:03:A1:A4:CB:94:4F:6C:E6:82:8A:C3:02:17:E6:3B:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21E46FEE03A1A4CB944F6CE6828AC30217E63BA1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/782212c2-3d68-4867-b99c-fc5cf4d0dbf1/0/3130332e3136362e392e302f32342d3234203d3e20313431393738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.9.0/24 Signature Algorithm: sha256WithRSAEncryption 58:02:ad:a1:19:62:ad:91:05:7b:ff:0e:1d:d8:1f:67:03:d7: 68:93:fe:d0:60:21:aa:7a:22:7f:eb:f2:96:fb:7e:08:c4:6c: 43:4b:64:94:37:63:cf:92:19:20:92:e2:20:79:5c:00:73:42: b9:86:87:f6:fa:dd:c2:50:ab:3b:42:1a:8e:ea:d0:97:15:4c: b8:29:9a:91:31:35:31:a3:fc:f7:83:f4:14:f0:46:30:7c:f3: 53:bc:4d:10:3b:66:f8:03:9f:29:c7:9e:60:eb:ce:5f:69:43: eb:b8:a9:2f:46:79:d7:2c:30:90:1a:cb:95:c7:b9:27:ec:50: 31:93:fc:c8:bd:b8:6b:65:f4:8a:06:44:7c:ac:ad:bf:24:cb: de:07:aa:3a:3b:75:5e:e1:ba:66:6c:99:71:b9:7a:ed:88:8e: ef:6d:c1:c3:0f:a9:6a:1a:fb:d6:4a:ca:e4:16:d6:26:94:d3: 8f:a4:e3:66:bc:ab:57:9d:ec:cc:d4:a2:37:69:4f:05:36:59: 40:2e:f3:f6:c9:cf:32:02:03:63:3f:93:88:38:2a:d3:f6:80: ac:2a:97:e1:fe:5c:f4:0f:e3:dd:39:bc:06:28:d5:79:b0:d0: cc:18:68:9d:5d:2a:6e:c7:14:b4:10:5f:15:6a:ad:ab:59:d8: f5:00:07:09 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUVJ89uZM79uEpJ50onP4V4y3mAr0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFFNDZGRUUwM0ExQTRDQjk0NEY2Q0U2ODI4QUMzMDIx N0U2M0JBMTAeFw0yNDA4MjcxMTU1MDBaFw0yNTA4MjYxMjAwMDBaMDMxMTAvBgNV BAMTKDE1NzczREYzRTVGMkNFQ0E2QkVBMUVBQzcwRjA3NjgxQTVCM0JFQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCYjzIW0xjvuMJxsXYQFQdSW1S 5GaxvnWr4bS3W/PuSJj/pw1/VBs4cdCRV4wOXAwPatjCM1+6KJxcVhne3yRVipTU E7r0IOO88sNPzQ+8ZNV58Y0rE9AZDzFDGhvFYL1M0GN5dGP0iPi5h9yHH0JQjvG7 O3CGgmcIlxmATDo0/3igETHyy/hkP9I9skteRpPW40lpIQpbJzCXoYi29+yM+CJN UO5VVExXuaRaBZIlejCag9impfdveAOjH0nG6GdXCz/mxzdLbr2NwDYbQHUPS4El ynEOY+4ChAzdgZ02iv2dwp/AAAH/ehoK9NugHPuweDxaEwN6Im1SObrXguMPAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUFXc98+Xyzspr6h6scPB2gaWzvr8wHwYDVR0j BBgwFoAUIeRv7gOhpMuUT2zmgorDAhfmO6EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ODIyMTJjMi0zZDY4LTQ4NjctYjk5Yy1mYzVjZjRkMGRiZjEvMC8yMUU0NkZFRTAz QTFBNENCOTQ0RjZDRTY4MjhBQzMwMjE3RTYzQkExLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFFNDZGRUUwM0ExQTRDQjk0NEY2Q0U2ODI4QUMzMDIxN0U2 M0JBMS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc4MjIxMmMyLTNkNjgtNDg2Ny1i OTljLWZjNWNmNGQwZGJmMS8wLzMxMzAzMzJlMzEzNjM2MmUzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzMTM5MzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGemCTANBgkqhkiG 9w0BAQsFAAOCAQEAWAKtoRlirZEFe/8OHdgfZwPXaJP+0GAhqnoif+vylvt+CMRs Q0tklDdjz5IZIJLiIHlcAHNCuYaH9vrdwlCrO0IajurQlxVMuCmakTE1MaP894P0 FPBGMHzzU7xNEDtm+AOfKceeYOvOX2lD67ipL0Z51ywwkBrLlce5J+xQMZP8yL24 a2X0igZEfKytvyTL3geqOjt1XuG6ZmyZcbl67YiO723Bww+pahr71krK5BbWJpTT j6TjZryrV53szNSiN2lPBTZZQC7z9snPMgIDYz+TiDgq0/aArCqX4f5c9A/j3Tm8 BijVebDQzBhonV0qbscUtBBfFWqtq1nY9QAHCQ== -----END CERTIFICATE-----Generated at Thu Nov 21 13:17:02 2024 by rpki-client on console-fra.rpki-client.org