$ rpki-client -vvf repo-rpki.idnic.net/repo/7e5c73cc-985e-4e92-ba69-cd8bffe4a53d/0/3130332e3136312e3133312e302f32342d3234203d3e20313431363133.roa File: 3130332e3136312e3133312e302f32342d3234203d3e20313431363133.roa (raw, json) Hash identifier: 9S2bBkVa7JaVFLPwQ98ylFeNZgtFM4ufg/Gq3uHldxs= Subject key identifier: 25:0D:BD:D2:70:CC:64:51:5F:24:55:A8:67:7F:B6:8F:66:ED:1E:17 Certificate issuer: /CN=F256ED0C68D48E70DDBE3473644FDBA420E82FBC Certificate serial: 3B679DCDA93D5C1850F10C9503C3014C9D1334A7 Authority key identifier: F2:56:ED:0C:68:D4:8E:70:DD:BE:34:73:64:4F:DB:A4:20:E8:2F:BC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F256ED0C68D48E70DDBE3473644FDBA420E82FBC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e5c73cc-985e-4e92-ba69-cd8bffe4a53d/0/3130332e3136312e3133312e302f32342d3234203d3e20313431363133.roa Signing time: Tue 26 Dec 2023 11:00:00 +0000 ROA not before: Tue 26 Dec 2023 10:55:00 +0000 ROA not after: Tue 24 Dec 2024 11:00:00 +0000 asID: 141613 IP address blocks: 103.161.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e5c73cc-985e-4e92-ba69-cd8bffe4a53d/0/F256ED0C68D48E70DDBE3473644FDBA420E82FBC.crl rsync://repo-rpki.idnic.net/repo/7e5c73cc-985e-4e92-ba69-cd8bffe4a53d/0/F256ED0C68D48E70DDBE3473644FDBA420E82FBC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F256ED0C68D48E70DDBE3473644FDBA420E82FBC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:67:9d:cd:a9:3d:5c:18:50:f1:0c:95:03:c3:01:4c:9d:13:34:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F256ED0C68D48E70DDBE3473644FDBA420E82FBC Validity Not Before: Dec 26 10:55:00 2023 GMT Not After : Dec 24 11:00:00 2024 GMT Subject: CN=250DBDD270CC64515F2455A8677FB68F66ED1E17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:96:e1:cb:3f:f7:d0:e2:81:3a:ed:db:7e:e5: 8b:be:37:cf:5b:4c:4b:be:a1:08:0e:89:35:4e:73: 36:39:75:18:6b:09:2b:49:70:ea:05:8d:9a:4f:28: 38:3f:6a:e5:da:9e:6d:3b:62:63:26:4f:d4:2f:3b: 7d:14:a7:81:84:99:84:5c:9a:73:eb:24:30:f4:20: e9:0a:45:58:6b:46:c7:a7:c7:6e:49:84:95:b5:02: 6e:77:f8:8a:55:0d:c2:e8:24:ed:1a:65:d0:86:f9: eb:50:71:93:4f:95:cd:51:a3:62:ca:20:e5:5f:43: c1:28:5c:82:59:8b:fc:9d:1e:a5:ce:e7:9c:90:ea: 65:6e:af:d6:8c:ab:70:2e:96:aa:0c:77:e3:e6:8e: 27:c8:08:3f:2b:32:6d:db:93:02:67:6e:4e:8f:2a: ae:95:3e:01:a7:92:b0:42:8d:ae:3f:0f:7d:93:d8: f8:f9:d6:25:de:48:5c:8e:20:22:a6:3b:06:50:82: 2e:0c:9e:3b:2f:58:c4:3f:5e:03:4e:b4:a7:bc:45: 6d:ae:62:5b:0d:69:1e:71:40:fd:27:f3:8d:8d:c8: d4:94:ea:5d:ea:6d:fe:f3:c1:2d:96:e4:22:78:47: a7:83:f0:39:65:a0:67:e9:18:2d:1e:19:7b:fa:dc: 0c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:0D:BD:D2:70:CC:64:51:5F:24:55:A8:67:7F:B6:8F:66:ED:1E:17 X509v3 Authority Key Identifier: keyid:F2:56:ED:0C:68:D4:8E:70:DD:BE:34:73:64:4F:DB:A4:20:E8:2F:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e5c73cc-985e-4e92-ba69-cd8bffe4a53d/0/F256ED0C68D48E70DDBE3473644FDBA420E82FBC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F256ED0C68D48E70DDBE3473644FDBA420E82FBC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e5c73cc-985e-4e92-ba69-cd8bffe4a53d/0/3130332e3136312e3133312e302f32342d3234203d3e20313431363133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.131.0/24 Signature Algorithm: sha256WithRSAEncryption 86:5e:89:c8:65:87:4b:2a:ad:cd:aa:3e:ae:de:ca:10:c1:7b: ec:06:1c:09:80:dc:36:dd:5e:1e:c0:0e:32:c9:0f:9e:7a:3a: 45:9f:97:bb:8f:06:5d:ca:15:a6:7b:36:db:8b:7d:10:46:ee: 51:fa:99:73:12:77:32:bb:5e:36:88:5a:cf:2b:05:a7:b7:68: e4:13:34:be:cc:45:f2:f4:3c:64:e0:a3:03:45:b5:15:96:9a: 00:db:8d:67:ae:79:3a:6e:2a:e1:27:09:e1:8c:c5:9a:39:e8: e5:b9:e6:eb:bd:40:1e:61:ef:5d:83:8f:8c:be:b3:1c:97:2f: d9:32:d4:aa:ee:1e:37:0a:83:14:fe:c7:cc:00:b4:b7:26:db: 14:3c:95:63:20:a3:68:0e:1e:5a:37:f6:c3:46:bd:af:51:cf: fe:5c:7b:2e:98:4b:12:bb:a2:70:39:b0:5f:40:bf:a0:28:04: 48:a1:06:be:6f:b5:0d:20:72:aa:13:df:39:9f:6c:a0:51:f7: 61:68:62:d0:07:5c:a3:a0:d2:37:e3:7d:c7:a7:de:0a:ba:89: 7e:fc:2b:60:4e:78:39:ac:7f:57:6f:2c:f8:f9:32:35:fa:b3: 65:92:0d:e9:8a:fd:14:3c:07:67:25:3e:48:71:69:68:e3:ed: c6:0d:81:8b -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUO2edzak9XBhQ8QyVA8MBTJ0TNKcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjI1NkVEMEM2OEQ0OEU3MEREQkUzNDczNjQ0RkRCQTQy MEU4MkZCQzAeFw0yMzEyMjYxMDU1MDBaFw0yNDEyMjQxMTAwMDBaMDMxMTAvBgNV BAMTKDI1MERCREQyNzBDQzY0NTE1RjI0NTVBODY3N0ZCNjhGNjZFRDFFMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaluHLP/fQ4oE67dt+5Yu+N89b TEu+oQgOiTVOczY5dRhrCStJcOoFjZpPKDg/auXanm07YmMmT9QvO30Up4GEmYRc mnPrJDD0IOkKRVhrRsenx25JhJW1Am53+IpVDcLoJO0aZdCG+etQcZNPlc1Ro2LK IOVfQ8EoXIJZi/ydHqXO55yQ6mVur9aMq3AulqoMd+PmjifICD8rMm3bkwJnbk6P Kq6VPgGnkrBCja4/D32T2Pj51iXeSFyOICKmOwZQgi4MnjsvWMQ/XgNOtKe8RW2u YlsNaR5xQP0n842NyNSU6l3qbf7zwS2W5CJ4R6eD8DlloGfpGC0eGXv63AyfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJQ290nDMZFFfJFWoZ3+2j2btHhcwHwYDVR0j BBgwFoAU8lbtDGjUjnDdvjRzZE/bpCDoL7wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTVjNzNjYy05ODVlLTRlOTItYmE2OS1jZDhiZmZlNGE1M2QvMC9GMjU2RUQwQzY4 RDQ4RTcwRERCRTM0NzM2NDRGREJBNDIwRTgyRkJDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjI1NkVEMEM2OEQ0OEU3MEREQkUzNDczNjQ0RkRCQTQyMEU4 MkZCQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlNWM3M2NjLTk4NWUtNGU5Mi1i YTY5LWNkOGJmZmU0YTUzZC8wLzMxMzAzMzJlMzEzNjMxMmUzMTMzMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjMxMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoYMwDQYJ KoZIhvcNAQELBQADggEBAIZeichlh0sqrc2qPq7eyhDBe+wGHAmA3DbdXh7ADjLJ D556OkWfl7uPBl3KFaZ7NtuLfRBG7lH6mXMSdzK7XjaIWs8rBae3aOQTNL7MRfL0 PGTgowNFtRWWmgDbjWeueTpuKuEnCeGMxZo56OW55uu9QB5h712Dj4y+sxyXL9ky 1KruHjcKgxT+x8wAtLcm2xQ8lWMgo2gOHlo39sNGva9Rz/5cey6YSxK7onA5sF9A v6AoBEihBr5vtQ0gcqoT3zmfbKBR92FoYtAHXKOg0jfjfcen3gq6iX78K2BOeDms f1dvLPj5MjX6s2WSDemK/RQ8B2clPkhxaWjj7cYNgYs= -----END CERTIFICATE-----Generated at Sun Nov 24 04:28:52 2024 by rpki-client on console-fra.rpki-client.org