$ rpki-client -vvf repo-rpki.idnic.net/repo/85ee40dc-51ba-4769-8619-2289cce9629e/0/3130332e3136382e32382e302f32342d3234203d3e20313432333132.roa File: 3130332e3136382e32382e302f32342d3234203d3e20313432333132.roa (raw, json) Hash identifier: TxX16foFHY0P9rLHty/t34aBTRsPGLAmfWGkOzCDIEU= Subject key identifier: 79:7F:83:6A:04:CB:83:A5:B5:D6:41:EB:3F:71:05:FE:89:29:6E:D6 Certificate issuer: /CN=688610C731A4E7A1D35B3E264DF9A05873F1E6C1 Certificate serial: 0B40CADED7BF5C74214D5B72A21CD443A9FAF021 Authority key identifier: 68:86:10:C7:31:A4:E7:A1:D3:5B:3E:26:4D:F9:A0:58:73:F1:E6:C1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/688610C731A4E7A1D35B3E264DF9A05873F1E6C1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85ee40dc-51ba-4769-8619-2289cce9629e/0/3130332e3136382e32382e302f32342d3234203d3e20313432333132.roa Signing time: Tue 14 May 2024 09:00:00 +0000 ROA not before: Tue 14 May 2024 08:55:00 +0000 ROA not after: Tue 13 May 2025 09:00:00 +0000 asID: 142312 IP address blocks: 103.168.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85ee40dc-51ba-4769-8619-2289cce9629e/0/688610C731A4E7A1D35B3E264DF9A05873F1E6C1.crl rsync://repo-rpki.idnic.net/repo/85ee40dc-51ba-4769-8619-2289cce9629e/0/688610C731A4E7A1D35B3E264DF9A05873F1E6C1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/688610C731A4E7A1D35B3E264DF9A05873F1E6C1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:40:ca:de:d7:bf:5c:74:21:4d:5b:72:a2:1c:d4:43:a9:fa:f0:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=688610C731A4E7A1D35B3E264DF9A05873F1E6C1 Validity Not Before: May 14 08:55:00 2024 GMT Not After : May 13 09:00:00 2025 GMT Subject: CN=797F836A04CB83A5B5D641EB3F7105FE89296ED6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a6:1e:0a:7e:38:e4:15:5a:6d:e1:cb:88:00: 6d:9a:1e:5b:9e:de:64:12:b4:4b:ca:2e:74:10:5c: e3:50:d0:6f:02:81:c7:b4:c3:27:fa:ac:4b:9b:2c: 61:bc:63:6d:77:52:1e:01:8f:09:e1:80:e3:25:ba: fb:98:c5:a1:7a:42:c2:e0:74:19:86:2a:f7:32:b6: ac:ad:5a:9e:87:64:99:5d:80:bc:3d:38:c4:55:e2: 8b:64:c5:6c:f7:16:56:9f:77:06:ee:47:9f:48:cb: 0b:4e:68:7b:4e:69:c6:08:74:46:a1:35:71:a1:42: 1c:ba:4e:3e:5f:32:ba:8b:18:c8:62:56:14:92:e8: 32:f5:6a:82:cf:26:33:25:a7:54:99:dc:f7:f3:8a: 3d:41:bd:25:aa:65:70:c3:e5:e2:91:4c:3f:d0:df: b7:0e:f1:c2:43:0b:8d:87:b6:3a:16:f1:6c:65:02: d5:bb:cb:c9:df:62:a2:ed:d5:91:20:0b:30:1e:e1: e7:20:ef:68:66:7c:28:27:85:3e:87:8e:9b:be:b9: c2:39:0c:8d:c5:cc:7e:18:26:b9:7c:4e:c4:4d:de: 2e:92:cf:a6:1d:df:e2:25:94:b8:85:6c:b6:4d:37: 3c:46:55:45:8d:77:0d:c3:8b:df:ac:60:c8:70:7e: 20:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:7F:83:6A:04:CB:83:A5:B5:D6:41:EB:3F:71:05:FE:89:29:6E:D6 X509v3 Authority Key Identifier: keyid:68:86:10:C7:31:A4:E7:A1:D3:5B:3E:26:4D:F9:A0:58:73:F1:E6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85ee40dc-51ba-4769-8619-2289cce9629e/0/688610C731A4E7A1D35B3E264DF9A05873F1E6C1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/688610C731A4E7A1D35B3E264DF9A05873F1E6C1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85ee40dc-51ba-4769-8619-2289cce9629e/0/3130332e3136382e32382e302f32342d3234203d3e20313432333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.28.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:93:c9:45:b3:37:6e:1c:b2:6f:87:a1:53:4a:3a:c1:b8:e4: 35:b2:8a:cd:b5:c0:bf:dd:c1:15:ea:1e:b5:de:6e:d3:28:b7: 0b:ab:7d:2f:40:78:28:bb:c3:4c:fa:c7:d1:1d:b4:51:9b:a7: 3d:dd:07:8f:ce:1b:ee:e2:52:4f:9a:0d:1d:38:98:2e:a3:29: 4d:7e:31:4c:37:af:41:59:af:36:a3:7e:2f:14:6e:e3:55:e7: 26:9f:94:a3:27:cd:e9:d8:53:af:31:13:77:1c:41:c2:53:8e: 1c:2a:21:d7:15:5e:e1:c5:3b:02:fa:fa:c0:62:fc:cf:8e:fa: 7e:08:73:fe:f4:fb:b4:9d:6e:26:e4:6c:90:a5:68:4d:57:f1: 97:c9:39:28:d0:65:e1:dd:c0:5c:5e:cd:a9:2b:fa:09:b6:86: b6:08:f4:99:b2:f5:36:20:31:66:e2:82:89:c5:d9:1f:54:ed: e1:26:ae:6d:df:ab:47:e7:45:de:4c:08:c2:bc:6f:c2:06:18: 09:f9:11:8c:0d:12:6f:8e:82:b8:ef:68:e8:64:43:90:bc:96: b8:34:17:3a:48:b9:93:0a:f1:b4:8c:ff:88:45:57:be:4a:94: 2c:cb:7d:6c:90:2f:27:b6:73:d6:34:af:9b:0f:77:90:22:d5: 3a:cd:da:50 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUC0DK3te/XHQhTVtyohzUQ6n68CEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjg4NjEwQzczMUE0RTdBMUQzNUIzRTI2NERGOUEwNTg3 M0YxRTZDMTAeFw0yNDA1MTQwODU1MDBaFw0yNTA1MTMwOTAwMDBaMDMxMTAvBgNV BAMTKDc5N0Y4MzZBMDRDQjgzQTVCNUQ2NDFFQjNGNzEwNUZFODkyOTZFRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQph4KfjjkFVpt4cuIAG2aHlue 3mQStEvKLnQQXONQ0G8Cgce0wyf6rEubLGG8Y213Uh4BjwnhgOMluvuYxaF6QsLg dBmGKvcytqytWp6HZJldgLw9OMRV4otkxWz3FlafdwbuR59IywtOaHtOacYIdEah NXGhQhy6Tj5fMrqLGMhiVhSS6DL1aoLPJjMlp1SZ3Pfzij1BvSWqZXDD5eKRTD/Q 37cO8cJDC42HtjoW8WxlAtW7y8nfYqLt1ZEgCzAe4ecg72hmfCgnhT6Hjpu+ucI5 DI3FzH4YJrl8TsRN3i6Sz6Yd3+IllLiFbLZNNzxGVUWNdw3Di9+sYMhwfiDRAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUeX+DagTLg6W11kHrP3EF/okpbtYwHwYDVR0j BBgwFoAUaIYQxzGk56HTWz4mTfmgWHPx5sEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWVlNDBkYy01MWJhLTQ3NjktODYxOS0yMjg5Y2NlOTYyOWUvMC82ODg2MTBDNzMx QTRFN0ExRDM1QjNFMjY0REY5QTA1ODczRjFFNkMxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjg4NjEwQzczMUE0RTdBMUQzNUIzRTI2NERGOUEwNTg3M0Yx RTZDMS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZWU0MGRjLTUxYmEtNDc2OS04 NjE5LTIyODljY2U5NjI5ZS8wLzMxMzAzMzJlMzEzNjM4MmUzMjM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMyMzMzMTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6gcMA0GCSqG SIb3DQEBCwUAA4IBAQBfk8lFszduHLJvh6FTSjrBuOQ1sorNtcC/3cEV6h613m7T KLcLq30vQHgou8NM+sfRHbRRm6c93QePzhvu4lJPmg0dOJguoylNfjFMN69BWa82 o34vFG7jVecmn5SjJ83p2FOvMRN3HEHCU44cKiHXFV7hxTsC+vrAYvzPjvp+CHP+ 9Pu0nW4m5GyQpWhNV/GXyTko0GXh3cBcXs2pK/oJtoa2CPSZsvU2IDFm4oKJxdkf VO3hJq5t36tH50XeTAjCvG/CBhgJ+RGMDRJvjoK472joZEOQvJa4NBc6SLmTCvG0 jP+IRVe+SpQsy31skC8ntnPWNK+bD3eQItU6zdpQ -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:33 2024 by rpki-client on console-ams.rpki-client.org