$ rpki-client -vvf repo-rpki.idnic.net/repo/8b1664a7-c9c9-4442-8718-9aec9e2110a2/0/3130332e3136332e3138352e302f32342d3234203d3e20313432333636.roa File: 3130332e3136332e3138352e302f32342d3234203d3e20313432333636.roa (raw, json) Hash identifier: rBHXQQE56sq6EsG7xu2y3Ai8w3KX+cJsV+YvOEbZG7g= Subject key identifier: 9F:D6:12:C6:09:DD:33:69:21:F7:FB:28:5B:46:25:AB:30:6B:65:21 Certificate issuer: /CN=FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF Certificate serial: 2D62D8DDC36A94A63A048072CB3C762BB1FA95B5 Authority key identifier: FF:89:F2:3B:CB:C4:26:35:E9:7A:E1:5A:7F:B6:9E:1E:09:A9:7D:AF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b1664a7-c9c9-4442-8718-9aec9e2110a2/0/3130332e3136332e3138352e302f32342d3234203d3e20313432333636.roa Signing time: Mon 18 Nov 2024 06:00:02 +0000 ROA not before: Mon 18 Nov 2024 05:55:02 +0000 ROA not after: Mon 17 Nov 2025 06:00:02 +0000 asID: 142366 IP address blocks: 103.163.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b1664a7-c9c9-4442-8718-9aec9e2110a2/0/FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF.crl rsync://repo-rpki.idnic.net/repo/8b1664a7-c9c9-4442-8718-9aec9e2110a2/0/FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:62:d8:dd:c3:6a:94:a6:3a:04:80:72:cb:3c:76:2b:b1:fa:95:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF Validity Not Before: Nov 18 05:55:02 2024 GMT Not After : Nov 17 06:00:02 2025 GMT Subject: CN=9FD612C609DD336921F7FB285B4625AB306B6521 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:de:e9:f2:8d:7c:52:55:aa:70:e2:87:10:36: 55:99:83:3e:b9:e9:5f:32:10:f0:74:f8:e0:2c:e2: b9:72:0b:9e:6b:11:9e:6d:d6:36:8f:a1:5e:8c:67: 77:eb:81:68:0a:90:03:12:0c:64:d1:ec:96:05:e4: 84:62:2c:4b:89:c0:e2:52:af:2d:a2:59:45:b7:2b: 38:ef:c6:76:4b:8f:0c:7f:af:61:6e:2f:0e:7f:a7: 46:12:9b:e6:10:6c:a7:6c:ed:f0:80:fa:25:ea:e8: 88:b7:41:3b:70:ad:0a:88:52:a5:15:7c:ec:3a:c8: e4:ef:0a:81:55:9b:21:ac:a6:fd:40:e3:b6:7b:f4: 31:7d:0c:3f:d6:c5:68:fb:33:41:55:1b:aa:5d:01: e7:41:87:ad:1f:e9:a0:f0:b4:38:7d:0a:45:12:f6: ba:57:67:e7:03:d4:3f:30:ec:9b:6b:03:9d:57:05: 7b:65:2e:3a:80:a4:1d:56:88:9a:40:57:e1:33:84: 50:99:08:8e:0f:fd:5c:05:06:9a:40:be:68:d3:ba: d3:ad:80:ed:d2:47:82:e0:17:e2:1d:67:87:34:5f: bc:35:c8:7d:0a:da:04:5f:12:a0:cb:11:aa:25:2f: 34:1b:c3:d9:b5:d6:d6:17:ba:e2:6c:2d:4b:97:5c: 4c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:D6:12:C6:09:DD:33:69:21:F7:FB:28:5B:46:25:AB:30:6B:65:21 X509v3 Authority Key Identifier: keyid:FF:89:F2:3B:CB:C4:26:35:E9:7A:E1:5A:7F:B6:9E:1E:09:A9:7D:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b1664a7-c9c9-4442-8718-9aec9e2110a2/0/FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF89F23BCBC42635E97AE15A7FB69E1E09A97DAF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b1664a7-c9c9-4442-8718-9aec9e2110a2/0/3130332e3136332e3138352e302f32342d3234203d3e20313432333636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.185.0/24 Signature Algorithm: sha256WithRSAEncryption 12:0d:64:77:44:ba:4e:cb:ff:5d:8d:bb:78:2e:b7:2f:36:01: 73:8b:6e:de:13:e1:50:4b:07:58:d8:17:c3:2f:04:35:d8:3a: 9d:95:22:b7:ef:b1:73:c8:de:96:e3:d7:83:b6:df:27:18:7b: eb:77:55:8e:ba:54:cf:e9:d9:bb:ce:52:77:84:3a:c4:4c:16: ae:72:9b:7f:d7:f3:f3:74:35:92:38:13:f1:3e:ff:7e:e1:1c: 07:22:ca:75:3f:5e:5a:05:d9:d9:a0:bf:88:8c:ce:a8:96:97: 76:42:f4:18:cb:3d:e7:44:4d:8d:f3:e2:9c:dd:b9:9b:2d:b0: e0:9f:af:c5:dc:9b:f8:f9:39:07:ef:ea:c5:2a:cc:66:3c:55: 65:18:81:99:15:ba:20:75:e8:fd:79:e3:c2:6b:20:9b:69:b3: f1:ae:f0:89:ae:db:f6:28:0e:b8:af:c9:a0:06:25:5d:53:11: 67:3a:3f:87:8f:03:3e:e1:0f:50:08:a1:fd:b9:52:fb:16:9e: f0:9d:e5:b3:12:98:fd:9e:15:b5:89:98:18:50:65:7b:25:dc: b2:c9:e3:e6:f4:ca:26:89:e2:6e:40:22:53:30:93:bc:bd:bc: e6:67:e0:57:6a:87:89:14:c5:04:ed:3f:d8:72:f6:12:bf:4e: 5e:b4:52:cd -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULWLY3cNqlKY6BIByyzx2K7H6lbUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkY4OUYyM0JDQkM0MjYzNUU5N0FFMTVBN0ZCNjlFMUUw OUE5N0RBRjAeFw0yNDExMTgwNTU1MDJaFw0yNTExMTcwNjAwMDJaMDMxMTAvBgNV BAMTKDlGRDYxMkM2MDlERDMzNjkyMUY3RkIyODVCNDYyNUFCMzA2QjY1MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk3unyjXxSVapw4ocQNlWZgz65 6V8yEPB0+OAs4rlyC55rEZ5t1jaPoV6MZ3frgWgKkAMSDGTR7JYF5IRiLEuJwOJS ry2iWUW3KzjvxnZLjwx/r2FuLw5/p0YSm+YQbKds7fCA+iXq6Ii3QTtwrQqIUqUV fOw6yOTvCoFVmyGspv1A47Z79DF9DD/WxWj7M0FVG6pdAedBh60f6aDwtDh9CkUS 9rpXZ+cD1D8w7JtrA51XBXtlLjqApB1WiJpAV+EzhFCZCI4P/VwFBppAvmjTutOt gO3SR4LgF+IdZ4c0X7w1yH0K2gRfEqDLEaolLzQbw9m11tYXuuJsLUuXXEzRAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUn9YSxgndM2kh9/soW0YlqzBrZSEwHwYDVR0j BBgwFoAU/4nyO8vEJjXpeuFaf7aeHgmpfa8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjE2NjRhNy1jOWM5LTQ0NDItODcxOC05YWVjOWUyMTEwYTIvMC9GRjg5RjIzQkNC QzQyNjM1RTk3QUUxNUE3RkI2OUUxRTA5QTk3REFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkY4OUYyM0JDQkM0MjYzNUU5N0FFMTVBN0ZCNjlFMUUwOUE5 N0RBRi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiMTY2NGE3LWM5YzktNDQ0Mi04 NzE4LTlhZWM5ZTIxMTBhMi8wLzMxMzAzMzJlMzEzNjMzMmUzMTM4MzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzIzMzM2MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABno7kwDQYJ KoZIhvcNAQELBQADggEBABINZHdEuk7L/12Nu3guty82AXOLbt4T4VBLB1jYF8Mv BDXYOp2VIrfvsXPI3pbj14O23ycYe+t3VY66VM/p2bvOUneEOsRMFq5ym3/X8/N0 NZI4E/E+/37hHAciynU/XloF2dmgv4iMzqiWl3ZC9BjLPedETY3z4pzduZstsOCf r8Xcm/j5OQfv6sUqzGY8VWUYgZkVuiB16P1548JrIJtps/Gu8Imu2/YoDrivyaAG JV1TEWc6P4ePAz7hD1AIof25UvsWnvCd5bMSmP2eFbWJmBhQZXsl3LLJ4+b0yiaJ 4m5AIlMwk7y9vOZn4Fdqh4kUxQTtP9hy9hK/Tl60Us0= -----END CERTIFICATE-----Generated at Fri Nov 22 16:43:36 2024 by rpki-client on console-ams.rpki-client.org