$ rpki-client -vvf repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32332d3233203d3e20313530343635.roa File: 3130332e3136312e3133342e302f32332d3233203d3e20313530343635.roa (raw, json) Hash identifier: fpqHvE9pJZm8ksvy2Ksf7NtWSjZWgRaBDizKA6vNKeM= Subject key identifier: 6D:21:B3:FD:86:DB:4B:69:88:4C:D1:B1:72:74:71:5C:18:CB:D1:00 Certificate issuer: /CN=115880D133393FF2D96A5861679B5166AFDB1248 Certificate serial: 48544CD1D2AF99FD43E752E0AD32C86095A44CAC Authority key identifier: 11:58:80:D1:33:39:3F:F2:D9:6A:58:61:67:9B:51:66:AF:DB:12:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32332d3233203d3e20313530343635.roa Signing time: Sat 23 Dec 2023 16:00:01 +0000 ROA not before: Sat 23 Dec 2023 15:55:01 +0000 ROA not after: Sat 21 Dec 2024 16:00:01 +0000 asID: 150465 IP address blocks: 103.161.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.crl rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:54:4c:d1:d2:af:99:fd:43:e7:52:e0:ad:32:c8:60:95:a4:4c:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=115880D133393FF2D96A5861679B5166AFDB1248 Validity Not Before: Dec 23 15:55:01 2023 GMT Not After : Dec 21 16:00:01 2024 GMT Subject: CN=6D21B3FD86DB4B69884CD1B17274715C18CBD100 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c7:ee:5f:bd:92:34:28:23:57:99:81:6e:3c: 8f:e6:54:22:b3:36:f9:44:50:3a:07:c2:3a:34:f9: 9d:3b:4b:18:43:6e:a8:3c:1e:c1:40:01:36:19:ea: 3d:ac:ee:74:ee:64:85:27:72:06:f6:95:0c:ec:e3: 61:1e:13:aa:05:ac:3e:81:af:be:5e:a4:06:67:fb: 07:ce:74:8c:21:58:ed:07:83:79:2b:88:32:0e:4d: 51:4e:bd:48:24:8b:cd:09:d1:aa:60:71:33:8c:1f: 67:05:53:15:86:bf:c3:4f:76:76:72:1d:cd:e1:43: c1:fa:2a:10:60:4b:10:ad:37:a9:75:f2:3c:9b:b8: 7e:45:7e:de:20:a0:2b:98:ff:48:53:5a:3c:b8:47: 05:7d:55:ef:2b:bc:e4:89:43:54:da:e5:d8:7c:e1: e8:a7:b4:f6:7a:58:17:d0:3f:f9:07:d1:59:19:99: db:44:6f:f4:05:9f:c0:5f:8d:34:f1:2b:90:67:d7: 3a:b8:c5:88:de:ad:05:a5:98:0b:fd:e9:e8:4d:98: cc:9e:16:0e:51:a7:b0:bf:5e:ac:7a:75:50:3e:d5: cc:a8:ce:93:ad:a5:b7:0c:21:50:e2:95:98:54:e2: 45:0b:b2:ff:2c:77:78:15:90:59:9e:90:a7:b1:2a: e1:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:21:B3:FD:86:DB:4B:69:88:4C:D1:B1:72:74:71:5C:18:CB:D1:00 X509v3 Authority Key Identifier: keyid:11:58:80:D1:33:39:3F:F2:D9:6A:58:61:67:9B:51:66:AF:DB:12:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32332d3233203d3e20313530343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.134.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:04:b0:57:d6:dd:ad:1d:fe:89:09:b7:df:25:b9:d1:d0:8c: 0c:e6:7a:35:c7:d7:30:49:8f:cb:d3:28:c5:32:73:e2:35:ec: 45:e1:6c:41:50:bd:1f:65:33:ec:5f:15:96:e5:c7:10:df:cb: 9f:b5:a8:c2:b2:64:b9:83:0a:2f:f6:78:51:45:95:86:6a:4c: 78:12:c9:d2:9f:c6:78:e9:14:0c:a6:c5:a8:3e:5c:e2:e9:50: 4d:1b:df:43:40:14:2e:df:1a:56:83:3f:76:1e:21:4a:58:f1: 4b:a0:59:fc:af:de:21:9b:5c:48:3b:a8:c2:b4:2d:6c:e6:10: d7:61:79:88:84:b8:ec:48:d6:e7:cb:de:c1:e2:bb:af:71:8e: 76:10:e6:5e:1e:5a:32:a5:cf:30:44:e0:53:37:2c:c0:98:43: 0e:2a:b8:c1:17:f0:ba:e1:1f:61:bf:7e:96:de:12:a5:c5:03: d6:ca:8f:b7:c4:25:51:98:26:25:85:b0:3a:43:7e:16:5f:37: c6:0f:3c:04:59:fd:47:6c:87:8b:3a:e7:de:e0:91:e7:1e:b0: 6c:a4:97:13:2a:6a:03:3e:5b:13:95:b9:8f:b9:5e:87:d3:60: 7b:59:ee:75:0e:04:e1:f6:07:ac:4b:84:99:fc:0e:b9:da:49: 46:b3:11:8c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUSFRM0dKvmf1D51LgrTLIYJWkTKwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTE1ODgwRDEzMzM5M0ZGMkQ5NkE1ODYxNjc5QjUxNjZB RkRCMTI0ODAeFw0yMzEyMjMxNTU1MDFaFw0yNDEyMjExNjAwMDFaMDMxMTAvBgNV BAMTKDZEMjFCM0ZEODZEQjRCNjk4ODRDRDFCMTcyNzQ3MTVDMThDQkQxMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0x+5fvZI0KCNXmYFuPI/mVCKz NvlEUDoHwjo0+Z07SxhDbqg8HsFAATYZ6j2s7nTuZIUncgb2lQzs42EeE6oFrD6B r75epAZn+wfOdIwhWO0Hg3kriDIOTVFOvUgki80J0apgcTOMH2cFUxWGv8NPdnZy Hc3hQ8H6KhBgSxCtN6l18jybuH5Fft4goCuY/0hTWjy4RwV9Ve8rvOSJQ1Ta5dh8 4eintPZ6WBfQP/kH0VkZmdtEb/QFn8BfjTTxK5Bn1zq4xYjerQWlmAv96ehNmMye Fg5Rp7C/Xqx6dVA+1cyozpOtpbcMIVDilZhU4kULsv8sd3gVkFmekKexKuGVAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUbSGz/YbbS2mITNGxcnRxXBjL0QAwHwYDVR0j BBgwFoAUEViA0TM5P/LZalhhZ5tRZq/bEkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTU2ODAxZi1hNjdiLTQzZGQtOGY2Mi1iN2IwZDYwMzE3YWYvMC8xMTU4ODBEMTMz MzkzRkYyRDk2QTU4NjE2NzlCNTE2NkFGREIxMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTE1ODgwRDEzMzM5M0ZGMkQ5NkE1ODYxNjc5QjUxNjZBRkRC MTI0OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxNTY4MDFmLWE2N2ItNDNkZC04 ZjYyLWI3YjBkNjAzMTdhZi8wLzMxMzAzMzJlMzEzNjMxMmUzMTMzMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM1MzAzNDM2MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnoYYwDQYJ KoZIhvcNAQELBQADggEBAC8EsFfW3a0d/okJt98ludHQjAzmejXH1zBJj8vTKMUy c+I17EXhbEFQvR9lM+xfFZblxxDfy5+1qMKyZLmDCi/2eFFFlYZqTHgSydKfxnjp FAymxag+XOLpUE0b30NAFC7fGlaDP3YeIUpY8UugWfyv3iGbXEg7qMK0LWzmENdh eYiEuOxI1ufL3sHiu69xjnYQ5l4eWjKlzzBE4FM3LMCYQw4quMEX8LrhH2G/fpbe EqXFA9bKj7fEJVGYJiWFsDpDfhZfN8YPPARZ/Udsh4s6597gkecesGyklxMqagM+ WxOVuY+5XofTYHtZ7nUOBOH2B6xLhJn8DrnaSUazEYw= -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:26 2024 by rpki-client on console-ams.rpki-client.org