$ rpki-client -vvf repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133352e302f32342d3234203d3e203539323832.roa File: 3130332e3136312e3133352e302f32342d3234203d3e203539323832.roa (raw, json) Hash identifier: 5bVeIjNze4NgtYF+7DLPZ+KLf3cElqCXdlNgPbcMTNg= Subject key identifier: E3:2B:ED:BC:E4:6F:C2:47:9A:14:BF:C1:87:D3:4B:8D:5A:7F:D9:68 Certificate issuer: /CN=115880D133393FF2D96A5861679B5166AFDB1248 Certificate serial: 4CE14BE14810B39B96A80BF7E9EE33171D28669A Authority key identifier: 11:58:80:D1:33:39:3F:F2:D9:6A:58:61:67:9B:51:66:AF:DB:12:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133352e302f32342d3234203d3e203539323832.roa Signing time: Thu 23 May 2024 05:01:57 +0000 ROA not before: Thu 23 May 2024 04:56:57 +0000 ROA not after: Thu 22 May 2025 05:01:57 +0000 asID: 59282 IP address blocks: 103.161.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.crl rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:e1:4b:e1:48:10:b3:9b:96:a8:0b:f7:e9:ee:33:17:1d:28:66:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=115880D133393FF2D96A5861679B5166AFDB1248 Validity Not Before: May 23 04:56:57 2024 GMT Not After : May 22 05:01:57 2025 GMT Subject: CN=E32BEDBCE46FC2479A14BFC187D34B8D5A7FD968 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4e:2e:07:b0:1a:69:e6:f3:5d:c6:e7:55:b2: 52:13:83:55:23:6c:2f:bc:cb:cb:ce:c2:f3:d1:b9: 1c:2d:5f:a0:2b:99:0f:29:13:3a:50:ed:64:60:db: ca:58:c2:11:4d:5b:b3:e5:78:fb:45:54:b3:52:0b: 6b:cc:50:fc:3e:c4:14:91:9b:29:85:3f:79:ef:8b: c6:38:8e:01:55:04:de:48:1e:8c:ed:6f:51:89:b9: 7e:31:54:3c:b3:9a:57:35:bc:b5:b0:3c:16:21:f2: 14:50:b5:88:e7:8f:91:1b:19:65:b0:86:14:c2:a9: 5e:af:25:6b:17:98:05:7c:a0:fb:0f:9e:60:eb:d4: 5f:1b:fe:2f:82:09:3f:c7:fe:92:e8:88:0e:e7:05: 7f:dc:df:bf:db:e0:c0:b1:18:9c:b0:d2:22:c5:7c: d1:3f:b4:7f:e7:21:38:a3:4d:4e:73:af:fb:f4:af: f3:64:7b:13:95:fa:c4:60:35:c9:43:80:20:96:2d: e0:30:fe:50:e5:96:4a:14:f3:08:37:9c:04:ee:ff: de:f9:b4:7e:d7:3c:5c:33:ef:67:05:22:25:f7:e2: 09:26:d8:af:4c:dd:b1:e7:05:c6:ef:04:8d:7b:26: 94:a8:c9:0d:60:94:de:f3:d1:99:69:5b:ec:f5:24: 01:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:2B:ED:BC:E4:6F:C2:47:9A:14:BF:C1:87:D3:4B:8D:5A:7F:D9:68 X509v3 Authority Key Identifier: keyid:11:58:80:D1:33:39:3F:F2:D9:6A:58:61:67:9B:51:66:AF:DB:12:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/115880D133393FF2D96A5861679B5166AFDB1248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/115880D133393FF2D96A5861679B5166AFDB1248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8156801f-a67b-43dd-8f62-b7b0d60317af/0/3130332e3136312e3133352e302f32342d3234203d3e203539323832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.135.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:c3:47:a8:09:39:0e:a4:6d:9b:68:4f:ce:8f:9e:d9:59:81: ee:8f:6d:f8:90:f8:f9:4e:e5:35:7c:63:c2:fe:26:c3:88:a9: c3:39:65:88:09:be:dc:f9:86:b8:e4:b2:28:9f:02:78:9a:b3: 31:6e:b3:56:02:0f:38:27:34:f9:c4:bd:df:31:5e:3e:d8:a1: 89:ec:f7:55:eb:6f:e2:f5:a2:91:94:97:1d:19:0a:0b:51:61: 48:17:f4:9a:30:20:6b:f6:f5:36:05:e9:0c:76:58:33:16:21: 3e:85:9b:7f:ba:54:9b:ce:a0:42:59:c1:45:c6:a6:0e:75:e6: 6e:ca:ad:d3:b5:9c:22:75:f8:07:0a:70:32:8f:53:88:4c:88: 08:52:0e:db:56:a8:cd:d5:49:bc:2e:f4:cb:78:0c:76:14:9f: fb:64:a8:99:21:e8:d8:88:5d:11:0f:c7:93:12:7a:cb:b4:9a: f6:a1:f1:10:55:21:39:45:ea:e5:88:dd:19:27:b6:01:a6:63: f1:d9:ac:e4:82:9e:ad:fd:c1:2f:36:d5:64:c2:ed:53:bd:dd: 10:00:39:78:c2:af:0b:e4:b6:ce:3f:e0:b0:4c:fd:c8:95:fc: c6:eb:f5:e3:90:d5:6d:6d:10:f7:b7:77:25:4f:6d:38:8e:1b: 50:60:3d:b2 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUTOFL4UgQs5uWqAv36e4zFx0oZpowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTE1ODgwRDEzMzM5M0ZGMkQ5NkE1ODYxNjc5QjUxNjZB RkRCMTI0ODAeFw0yNDA1MjMwNDU2NTdaFw0yNTA1MjIwNTAxNTdaMDMxMTAvBgNV BAMTKEUzMkJFREJDRTQ2RkMyNDc5QTE0QkZDMTg3RDM0QjhENUE3RkQ5NjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+Ti4HsBpp5vNdxudVslITg1Uj bC+8y8vOwvPRuRwtX6ArmQ8pEzpQ7WRg28pYwhFNW7PlePtFVLNSC2vMUPw+xBSR mymFP3nvi8Y4jgFVBN5IHoztb1GJuX4xVDyzmlc1vLWwPBYh8hRQtYjnj5EbGWWw hhTCqV6vJWsXmAV8oPsPnmDr1F8b/i+CCT/H/pLoiA7nBX/c37/b4MCxGJyw0iLF fNE/tH/nITijTU5zr/v0r/NkexOV+sRgNclDgCCWLeAw/lDllkoU8wg3nATu/975 tH7XPFwz72cFIiX34gkm2K9M3bHnBcbvBI17JpSoyQ1glN7z0ZlpW+z1JAGHAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU4yvtvORvwkeaFL/Bh9NLjVp/2WgwHwYDVR0j BBgwFoAUEViA0TM5P/LZalhhZ5tRZq/bEkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTU2ODAxZi1hNjdiLTQzZGQtOGY2Mi1iN2IwZDYwMzE3YWYvMC8xMTU4ODBEMTMz MzkzRkYyRDk2QTU4NjE2NzlCNTE2NkFGREIxMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTE1ODgwRDEzMzM5M0ZGMkQ5NkE1ODYxNjc5QjUxNjZBRkRC MTI0OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxNTY4MDFmLWE2N2ItNDNkZC04 ZjYyLWI3YjBkNjAzMTdhZi8wLzMxMzAzMzJlMzEzNjMxMmUzMTMzMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzIzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6GHMA0GCSqG SIb3DQEBCwUAA4IBAQCcw0eoCTkOpG2baE/Oj57ZWYHuj234kPj5TuU1fGPC/ibD iKnDOWWICb7c+Ya45LIonwJ4mrMxbrNWAg84JzT5xL3fMV4+2KGJ7PdV62/i9aKR lJcdGQoLUWFIF/SaMCBr9vU2BekMdlgzFiE+hZt/ulSbzqBCWcFFxqYOdeZuyq3T tZwidfgHCnAyj1OITIgIUg7bVqjN1Um8LvTLeAx2FJ/7ZKiZIejYiF0RD8eTEnrL tJr2ofEQVSE5RerliN0ZJ7YBpmPx2azkgp6t/cEvNtVkwu1Tvd0QADl4wq8L5LbO P+CwTP3IlfzG6/XjkNVtbRD3t3clT204jhtQYD2y -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:26 2024 by rpki-client on console-ams.rpki-client.org