$ rpki-client -vvf repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32332d3233203d3e203539323832.roa File: 3130332e3136312e3133342e302f32332d3233203d3e203539323832.roa (raw, json) Hash identifier: r2aCbnu7rww0m+UYY9N9siJy+cZfGF7NkmUFosLbeIk= Subject key identifier: 3C:44:E0:BA:E8:59:9D:A5:7B:52:AF:9B:8F:BD:84:53:4A:D5:E0:27 Certificate issuer: /CN=115880D133393FF2D96A5861679B5166AFDB1248 Certificate serial: 46EA1F3E874E477DA2446A9D074753B3C0D79668 Authority key identifier: 11:58:80:D1:33:39:3F:F2:D9:6A:58:61:67:9B:51:66:AF:DB:12:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32332d3233203d3e203539323832.roa Signing time: Thu 23 May 2024 05:01:57 +0000 ROA not before: Thu 23 May 2024 04:56:57 +0000 ROA not after: Thu 22 May 2025 05:01:57 +0000 asID: 59282 IP address blocks: 103.161.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.crl rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:ea:1f:3e:87:4e:47:7d:a2:44:6a:9d:07:47:53:b3:c0:d7:96:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=115880D133393FF2D96A5861679B5166AFDB1248 Validity Not Before: May 23 04:56:57 2024 GMT Not After : May 22 05:01:57 2025 GMT Subject: CN=3C44E0BAE8599DA57B52AF9B8FBD84534AD5E027 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e5:4d:7d:95:62:39:b4:e1:68:89:cb:bd:91: 1e:3b:63:3c:ce:1d:50:34:44:b3:3b:d6:f3:56:87: 15:75:1e:f5:40:93:fb:e4:4f:18:25:ad:31:f7:28: 0a:d6:c5:d7:da:13:40:16:b6:9b:a3:26:ec:de:62: 62:cd:0c:2f:48:64:6f:73:f4:81:ee:b0:fa:d1:b2: 7e:3a:12:89:2f:f0:d7:ca:61:e3:4b:6b:23:1b:bd: 9c:e2:ca:51:de:b0:3a:20:60:64:e7:c2:e6:2d:33: db:5a:fb:6c:0a:5c:ac:28:07:fb:ef:91:8b:32:0d: 0c:21:eb:d1:73:99:dd:a2:b8:f3:c4:5c:5c:0b:02: 35:5d:75:0c:c4:da:c3:dd:6a:74:b2:41:48:da:f6: 6a:e0:2d:49:8e:eb:c8:d4:4c:57:4b:0f:46:5f:fe: 18:76:d7:34:30:a5:d0:bb:48:2a:08:a8:2e:8b:44: 91:55:b6:ac:5a:6c:a7:c5:f0:c7:35:9f:e6:61:76: 64:81:7a:4a:9c:cb:b1:3d:3d:09:40:9e:73:8d:71: 1b:43:10:27:e3:27:d9:c5:0f:f5:53:93:4f:dc:aa: ad:81:f9:60:ac:45:9a:3f:87:6a:61:d5:5c:1b:b3: ab:7c:9e:77:07:4d:36:e4:f7:d0:fa:2f:02:db:40: 08:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:44:E0:BA:E8:59:9D:A5:7B:52:AF:9B:8F:BD:84:53:4A:D5:E0:27 X509v3 Authority Key Identifier: keyid:11:58:80:D1:33:39:3F:F2:D9:6A:58:61:67:9B:51:66:AF:DB:12:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133342e302f32332d3233203d3e203539323832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.134.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:d1:4f:cf:26:25:db:68:b6:2f:d9:d2:5d:52:3c:b0:d5:25: 21:cf:a6:d2:70:56:34:3c:d0:44:f0:1c:8b:06:94:eb:82:14: 76:cf:aa:ab:fd:fd:75:5a:ea:a1:d3:23:ac:03:4e:64:70:bd: 45:94:66:0a:1a:47:0e:1f:77:1a:a8:6c:06:a5:a1:8d:42:d9: 02:27:25:f1:62:42:41:a7:88:1a:78:10:94:50:ba:b0:6e:4a: a6:44:11:93:c5:77:bd:f6:eb:e8:e2:c5:ab:33:b8:3e:00:9b: eb:f1:bd:53:c9:02:ff:12:28:68:1c:50:03:52:28:13:7a:91: 62:a1:de:97:32:8f:cd:83:4c:b6:e2:8f:51:3d:7c:05:a6:95: 62:c8:a9:ce:83:f5:fb:bc:fb:3e:63:2f:2c:ce:ba:af:02:09: 52:f7:0b:f8:40:d0:61:a2:8c:23:30:f1:5c:49:6a:bd:af:fc: 9c:e3:cf:f8:b6:e9:3e:5f:04:b0:1a:e5:ff:7d:c5:fd:29:ad: 25:fa:2d:da:68:f8:18:c4:75:85:fc:dd:b8:66:dd:65:3f:e6: 9e:ed:38:5b:40:7b:22:65:e5:2b:e3:85:2b:5d:e6:ea:90:cf: 8a:55:ca:00:46:68:b5:af:bf:dd:6d:da:6e:33:03:07:00:1d: da:dc:4e:a4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURuofPodOR32iRGqdB0dTs8DXlmgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTE1ODgwRDEzMzM5M0ZGMkQ5NkE1ODYxNjc5QjUxNjZB RkRCMTI0ODAeFw0yNDA1MjMwNDU2NTdaFw0yNTA1MjIwNTAxNTdaMDMxMTAvBgNV BAMTKDNDNDRFMEJBRTg1OTlEQTU3QjUyQUY5QjhGQkQ4NDUzNEFENUUwMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/5U19lWI5tOFoicu9kR47YzzO HVA0RLM71vNWhxV1HvVAk/vkTxglrTH3KArWxdfaE0AWtpujJuzeYmLNDC9IZG9z 9IHusPrRsn46Eokv8NfKYeNLayMbvZziylHesDogYGTnwuYtM9ta+2wKXKwoB/vv kYsyDQwh69Fzmd2iuPPEXFwLAjVddQzE2sPdanSyQUja9mrgLUmO68jUTFdLD0Zf /hh21zQwpdC7SCoIqC6LRJFVtqxabKfF8Mc1n+ZhdmSBekqcy7E9PQlAnnONcRtD ECfjJ9nFD/VTk0/cqq2B+WCsRZo/h2ph1Vwbs6t8nncHTTbk99D6LwLbQAj/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUPETguuhZnaV7Uq+bj72EU0rV4CcwHwYDVR0j BBgwFoAUEViA0TM5P/LZalhhZ5tRZq/bEkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTU2ODAxZi1hNjdiLTQzZGQtOGY2Mi1iN2IwZDYwMzE3YWYvMC8xMTU4ODBEMTMz MzkzRkYyRDk2QTU4NjE2NzlCNTE2NkFGREIxMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTE1ODgwRDEzMzM5M0ZGMkQ5NkE1ODYxNjc5QjUxNjZBRkRC MTI0OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxNTY4MDFmLWE2N2ItNDNkZC04 ZjYyLWI3YjBkNjAzMTdhZi8wLzMxMzAzMzJlMzEzNjMxMmUzMTMzMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM5MzIzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6GGMA0GCSqG SIb3DQEBCwUAA4IBAQBq0U/PJiXbaLYv2dJdUjyw1SUhz6bScFY0PNBE8ByLBpTr ghR2z6qr/f11Wuqh0yOsA05kcL1FlGYKGkcOH3caqGwGpaGNQtkCJyXxYkJBp4ga eBCUULqwbkqmRBGTxXe99uvo4sWrM7g+AJvr8b1TyQL/EihoHFADUigTepFiod6X Mo/Ng0y24o9RPXwFppViyKnOg/X7vPs+Yy8szrqvAglS9wv4QNBhoowjMPFcSWq9 r/yc48/4tuk+XwSwGuX/fcX9Ka0l+i3aaPgYxHWF/N24Zt1lP+ae7ThbQHsiZeUr 44UrXebqkM+KVcoARmi1r7/dbdpuMwMHAB3a3E6k -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:43 2024 by rpki-client on console-fra.rpki-client.org