$ rpki-client -vvf repo-rpki.idnic.net/repo/85f9002d-9267-4f8b-859a-dfa7d89143b4/0/3130332e3136362e3234302e302f32342d3234203d3e20313431393639.roa File: 3130332e3136362e3234302e302f32342d3234203d3e20313431393639.roa (raw, json) Hash identifier: yxKrPiSsf1x5fhpWy+3L9JKkG9LRwdglgLtEp+FGlHU= Subject key identifier: A7:69:F9:0C:B3:44:92:F6:53:07:B2:A2:54:9C:D2:FB:23:70:FC:F9 Certificate issuer: /CN=63A008B749DB87C773CA05C5DF448BCA5357BB01 Certificate serial: 4ED192CD3066F87CEBCCE3B22019FF243F524EFF Authority key identifier: 63:A0:08:B7:49:DB:87:C7:73:CA:05:C5:DF:44:8B:CA:53:57:BB:01 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/63A008B749DB87C773CA05C5DF448BCA5357BB01.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85f9002d-9267-4f8b-859a-dfa7d89143b4/0/3130332e3136362e3234302e302f32342d3234203d3e20313431393639.roa Signing time: Sat 13 Jul 2024 11:00:00 +0000 ROA not before: Sat 13 Jul 2024 10:55:00 +0000 ROA not after: Sat 12 Jul 2025 11:00:00 +0000 asID: 141969 IP address blocks: 103.166.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85f9002d-9267-4f8b-859a-dfa7d89143b4/0/63A008B749DB87C773CA05C5DF448BCA5357BB01.crl rsync://repo-rpki.idnic.net/repo/85f9002d-9267-4f8b-859a-dfa7d89143b4/0/63A008B749DB87C773CA05C5DF448BCA5357BB01.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/63A008B749DB87C773CA05C5DF448BCA5357BB01.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 08:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:d1:92:cd:30:66:f8:7c:eb:cc:e3:b2:20:19:ff:24:3f:52:4e:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63A008B749DB87C773CA05C5DF448BCA5357BB01 Validity Not Before: Jul 13 10:55:00 2024 GMT Not After : Jul 12 11:00:00 2025 GMT Subject: CN=A769F90CB34492F65307B2A2549CD2FB2370FCF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:98:11:1e:42:fd:3a:32:21:8d:4a:7c:cf:e4: bb:21:0e:da:c9:5b:2c:9d:83:16:d9:d1:f5:f0:1c: 8a:80:cb:83:b9:ef:2c:08:cf:64:c7:61:79:b9:29: 19:b5:9c:38:8a:96:29:d2:c4:39:3f:4e:f7:fa:ea: f6:d7:55:34:5b:37:bb:55:c8:64:40:d7:a4:ce:77: 6a:96:81:b1:12:98:65:84:3d:9b:53:00:b2:27:f7: 19:5d:e8:4c:bd:5b:9e:b5:ee:52:6a:f8:8a:16:5d: cf:90:62:a9:5a:21:14:19:89:72:b7:dc:c4:5c:28: 56:3b:af:55:48:11:7a:9e:00:66:4b:3a:83:d2:85: 78:ea:f0:43:8b:89:4c:3b:36:f0:1c:86:7c:dd:91: 7d:9a:26:30:03:2b:eb:eb:21:9e:cc:8a:3e:a4:c5: b5:fa:fd:e6:33:e1:7a:91:26:72:c9:b6:02:f3:56: fd:50:f0:c0:c5:7a:38:97:70:e2:ef:55:5a:d4:d8: 28:4a:cf:f6:42:0e:a7:15:1b:3b:f3:66:1d:e6:53: 55:98:1e:36:10:27:37:dd:e1:7d:f7:4a:8b:89:90: 62:bb:12:a6:eb:5b:36:39:83:99:91:60:fb:59:79: 69:7f:da:09:25:3f:4f:5c:06:46:2e:cd:2b:46:a6: 6b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:69:F9:0C:B3:44:92:F6:53:07:B2:A2:54:9C:D2:FB:23:70:FC:F9 X509v3 Authority Key Identifier: keyid:63:A0:08:B7:49:DB:87:C7:73:CA:05:C5:DF:44:8B:CA:53:57:BB:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85f9002d-9267-4f8b-859a-dfa7d89143b4/0/63A008B749DB87C773CA05C5DF448BCA5357BB01.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/63A008B749DB87C773CA05C5DF448BCA5357BB01.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85f9002d-9267-4f8b-859a-dfa7d89143b4/0/3130332e3136362e3234302e302f32342d3234203d3e20313431393639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.240.0/24 Signature Algorithm: sha256WithRSAEncryption ac:2a:67:c3:7c:0d:a1:bd:d6:67:d8:06:12:a7:5c:b2:5b:84: 1f:85:9f:92:06:55:67:5a:a2:2e:2e:3c:81:06:a1:78:a3:b3: ef:3d:bb:ac:f1:b8:4d:67:0f:4e:e9:d6:e3:ed:be:df:2a:75: a1:0d:17:78:20:8a:40:d7:5d:3d:48:b6:2d:a3:76:56:f8:00: 40:4e:93:8c:14:95:62:70:03:70:a7:e3:06:ee:fe:1b:90:92: 5b:f5:61:68:28:4b:f9:06:66:4f:cf:82:44:94:56:52:1d:99: d6:db:f7:78:4c:fb:7e:1c:94:8d:5d:d8:2e:6f:05:ad:dd:b1: bb:6d:da:af:1c:99:8e:2f:57:54:14:52:27:a4:fd:eb:d9:5a: fb:04:58:4f:05:95:83:e7:fc:e1:33:76:65:6c:d4:7e:c9:0d: 41:a0:ac:3c:f0:48:a4:56:a1:9b:d5:10:dc:64:20:28:7d:89: 3e:b6:3c:97:cb:5e:03:57:0a:92:6b:7c:63:5e:20:94:62:3d: ce:4d:4c:c2:7b:da:a4:35:08:79:03:76:04:56:81:d0:b8:8b: 79:53:2d:a6:a4:e1:f5:7f:93:54:ae:9b:01:36:cd:6f:fe:e6: 4d:83:a4:d9:92:a4:23:5f:2f:be:0e:c9:db:c2:26:6e:aa:05: 93:16:8f:fe -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTtGSzTBm+HzrzOOyIBn/JD9STv8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjNBMDA4Qjc0OURCODdDNzczQ0EwNUM1REY0NDhCQ0E1 MzU3QkIwMTAeFw0yNDA3MTMxMDU1MDBaFw0yNTA3MTIxMTAwMDBaMDMxMTAvBgNV BAMTKEE3NjlGOTBDQjM0NDkyRjY1MzA3QjJBMjU0OUNEMkZCMjM3MEZDRjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDImBEeQv06MiGNSnzP5LshDtrJ WyydgxbZ0fXwHIqAy4O57ywIz2THYXm5KRm1nDiKlinSxDk/Tvf66vbXVTRbN7tV yGRA16TOd2qWgbESmGWEPZtTALIn9xld6Ey9W5617lJq+IoWXc+QYqlaIRQZiXK3 3MRcKFY7r1VIEXqeAGZLOoPShXjq8EOLiUw7NvAchnzdkX2aJjADK+vrIZ7Mij6k xbX6/eYz4XqRJnLJtgLzVv1Q8MDFejiXcOLvVVrU2ChKz/ZCDqcVGzvzZh3mU1WY HjYQJzfd4X33SouJkGK7EqbrWzY5g5mRYPtZeWl/2gklP09cBkYuzStGpmuLAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUp2n5DLNEkvZTB7KiVJzS+yNw/PkwHwYDVR0j BBgwFoAUY6AIt0nbh8dzygXF30SLylNXuwEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWY5MDAyZC05MjY3LTRmOGItODU5YS1kZmE3ZDg5MTQzYjQvMC82M0EwMDhCNzQ5 REI4N0M3NzNDQTA1QzVERjQ0OEJDQTUzNTdCQjAxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjNBMDA4Qjc0OURCODdDNzczQ0EwNUM1REY0NDhCQ0E1MzU3 QkIwMS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZjkwMDJkLTkyNjctNGY4Yi04 NTlhLWRmYTdkODkxNDNiNC8wLzMxMzAzMzJlMzEzNjM2MmUzMjM0MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpvAwDQYJ KoZIhvcNAQELBQADggEBAKwqZ8N8DaG91mfYBhKnXLJbhB+Fn5IGVWdaoi4uPIEG oXijs+89u6zxuE1nD07p1uPtvt8qdaENF3ggikDXXT1Iti2jdlb4AEBOk4wUlWJw A3Cn4wbu/huQklv1YWgoS/kGZk/PgkSUVlIdmdbb93hM+34clI1d2C5vBa3dsbtt 2q8cmY4vV1QUUiek/evZWvsEWE8FlYPn/OEzdmVs1H7JDUGgrDzwSKRWoZvVENxk ICh9iT62PJfLXgNXCpJrfGNeIJRiPc5NTMJ72qQ1CHkDdgRWgdC4i3lTLaak4fV/ k1SumwE2zW/+5k2DpNmSpCNfL74OydvCJm6qBZMWj/4= -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:21 2024 by rpki-client on console-fra.rpki-client.org