$ rpki-client -vvf repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133352e302f32342d3234203d3e20313530343635.roa File: 3130332e3136312e3133352e302f32342d3234203d3e20313530343635.roa (raw, json) Hash identifier: Jn9654uE1MAkhxHMr7LmE5+YeOZ6sz4Pa6nAFO5Kq+Q= Subject key identifier: 62:7C:D8:4D:24:E3:9C:EF:19:CE:34:EA:91:0E:F5:D0:CD:CB:21:9C Certificate issuer: /CN=115880D133393FF2D96A5861679B5166AFDB1248 Certificate serial: 605B2FD4C20AD4A7EFE5CA43739013C7A9E88B90 Authority key identifier: 11:58:80:D1:33:39:3F:F2:D9:6A:58:61:67:9B:51:66:AF:DB:12:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133352e302f32342d3234203d3e20313530343635.roa Signing time: Fri 22 Nov 2024 12:00:01 +0000 ROA not before: Fri 22 Nov 2024 11:55:01 +0000 ROA not after: Fri 21 Nov 2025 12:00:01 +0000 asID: 150465 IP address blocks: 103.161.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.crl rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:5b:2f:d4:c2:0a:d4:a7:ef:e5:ca:43:73:90:13:c7:a9:e8:8b:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=115880D133393FF2D96A5861679B5166AFDB1248 Validity Not Before: Nov 22 11:55:01 2024 GMT Not After : Nov 21 12:00:01 2025 GMT Subject: CN=627CD84D24E39CEF19CE34EA910EF5D0CDCB219C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:aa:02:86:e4:80:bf:6d:d6:b5:98:12:2e:7c: 94:c1:26:5c:98:38:95:a6:a2:c9:a0:ea:64:38:58: 22:9b:7c:6d:b4:1d:43:ec:8b:27:e5:61:35:68:ec: f6:49:7d:51:7a:c8:a9:26:44:8c:63:c2:d1:0b:ec: e3:e0:22:ee:0a:71:56:56:e1:1c:52:b3:1a:a9:e6: d3:48:e4:96:8c:85:49:7b:ea:4d:36:2a:d4:df:2e: 03:bf:5f:51:a0:bc:74:e2:c7:6a:60:da:48:76:10: ac:43:19:71:3f:c6:89:82:66:3a:6e:54:f8:b3:5c: 6e:43:a5:d0:ab:c1:e9:61:80:b2:48:47:06:76:e4: b8:41:67:c2:52:85:a3:38:07:05:4e:ef:a3:36:63: 78:13:3e:cf:37:02:08:03:ce:fd:42:49:90:46:f7: c4:21:07:26:16:6c:0f:11:dd:5c:8b:2b:77:30:e9: a6:ef:13:9e:91:e2:94:b6:85:ad:9f:61:4a:38:20: d5:eb:d7:67:0e:53:47:03:ed:91:f8:48:e1:7f:77: a1:47:df:06:2c:9d:fa:c4:38:2d:4d:7e:9b:37:65: 7a:99:d2:94:73:ae:a2:b2:6b:3b:83:35:f6:36:5c: 9e:fd:54:28:f4:ab:76:27:bb:19:62:74:05:93:f4: 25:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:7C:D8:4D:24:E3:9C:EF:19:CE:34:EA:91:0E:F5:D0:CD:CB:21:9C X509v3 Authority Key Identifier: keyid:11:58:80:D1:33:39:3F:F2:D9:6A:58:61:67:9B:51:66:AF:DB:12:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133352e302f32342d3234203d3e20313530343635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.135.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:bc:b8:4d:db:48:f5:a0:da:0e:31:97:08:0c:dd:c0:95:96: dc:48:81:3c:af:44:b1:3b:26:0a:ae:f2:16:86:a4:47:99:7c: 5b:88:63:d8:44:6c:5f:bd:3a:33:43:ce:c4:54:39:bc:6a:84: 26:fe:db:97:5d:79:9f:3e:39:db:e8:f0:21:b2:ec:21:73:79: c6:bd:95:41:65:01:97:ed:de:25:4e:dc:4c:88:2f:44:22:23: 69:81:98:22:90:50:17:d3:15:07:2c:49:ba:d1:ec:d7:0a:bd: 9a:f1:48:fd:ce:e7:2a:8c:a9:4b:8b:ee:1f:4b:34:20:fb:51: 54:80:c9:59:d3:ff:18:ae:b2:10:87:95:21:89:c0:bd:3f:f5: a0:0c:2c:24:f8:54:73:94:a8:a9:bc:f6:f9:f2:c5:d0:d4:e3: 08:3b:ca:b3:2d:c7:f9:b9:5f:b8:cb:b1:4e:75:45:6c:f1:e3: 5a:5f:8c:4c:e0:2e:c7:b9:d1:33:4f:c1:25:ad:0c:58:c2:a4: c6:0d:05:b6:db:16:31:df:05:b1:1d:29:2f:95:53:52:db:ee: e6:84:d9:b1:4a:a2:d3:a7:5b:4a:0f:6d:e5:b5:70:dd:7a:e9: fd:2a:61:eb:4b:8d:47:1b:65:5e:99:ad:ad:28:ce:3a:10:91: d3:a6:52:ea -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYFsv1MIK1Kfv5cpDc5ATx6noi5AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTE1ODgwRDEzMzM5M0ZGMkQ5NkE1ODYxNjc5QjUxNjZB RkRCMTI0ODAeFw0yNDExMjIxMTU1MDFaFw0yNTExMjExMjAwMDFaMDMxMTAvBgNV BAMTKDYyN0NEODREMjRFMzlDRUYxOUNFMzRFQTkxMEVGNUQwQ0RDQjIxOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrqgKG5IC/bda1mBIufJTBJlyY OJWmosmg6mQ4WCKbfG20HUPsiyflYTVo7PZJfVF6yKkmRIxjwtEL7OPgIu4KcVZW 4RxSsxqp5tNI5JaMhUl76k02KtTfLgO/X1GgvHTix2pg2kh2EKxDGXE/xomCZjpu VPizXG5DpdCrwelhgLJIRwZ25LhBZ8JShaM4BwVO76M2Y3gTPs83AggDzv1CSZBG 98QhByYWbA8R3VyLK3cw6abvE56R4pS2ha2fYUo4INXr12cOU0cD7ZH4SOF/d6FH 3wYsnfrEOC1Nfps3ZXqZ0pRzrqKyazuDNfY2XJ79VCj0q3YnuxlidAWT9CXrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUYnzYTSTjnO8ZzjTqkQ710M3LIZwwHwYDVR0j BBgwFoAUEViA0TM5P/LZalhhZ5tRZq/bEkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTU2ODAxZi1hNjdiLTQzZGQtOGY2Mi1iN2IwZDYwMzE3YWYvMC8xMTU4ODBEMTMz MzkzRkYyRDk2QTU4NjE2NzlCNTE2NkFGREIxMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTE1ODgwRDEzMzM5M0ZGMkQ5NkE1ODYxNjc5QjUxNjZBRkRC MTI0OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxNTY4MDFmLWE2N2ItNDNkZC04 ZjYyLWI3YjBkNjAzMTdhZi8wLzMxMzAzMzJlMzEzNjMxMmUzMTMzMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzAzNDM2MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoYcwDQYJ KoZIhvcNAQELBQADggEBABu8uE3bSPWg2g4xlwgM3cCVltxIgTyvRLE7Jgqu8haG pEeZfFuIY9hEbF+9OjNDzsRUObxqhCb+25ddeZ8+Odvo8CGy7CFzeca9lUFlAZft 3iVO3EyIL0QiI2mBmCKQUBfTFQcsSbrR7NcKvZrxSP3O5yqMqUuL7h9LNCD7UVSA yVnT/xiushCHlSGJwL0/9aAMLCT4VHOUqKm89vnyxdDU4wg7yrMtx/m5X7jLsU51 RWzx41pfjEzgLse50TNPwSWtDFjCpMYNBbbbFjHfBbEdKS+VU1Lb7uaE2bFKotOn W0oPbeW1cN166f0qYetLjUcbZV6Zra0ozjoQkdOmUuo= -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:26 2024 by rpki-client on console-ams.rpki-client.org