$ rpki-client -vvf repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/3130332e3136372e3133362e302f32332d3234203d3e20313339343536.roa File: 3130332e3136372e3133362e302f32332d3234203d3e20313339343536.roa (raw, json) Hash identifier: 17ChIozSdmJ+qCeyTnh6PolCU0A1lGl43AAQ9utL0Ec= Subject key identifier: D0:81:1C:B4:9F:D0:71:E6:F4:C2:36:C0:BC:B1:C8:07:05:7B:48:5B Certificate issuer: /CN=0246DD14AF68F5E5512ABD88D1DB7507E6913C96 Certificate serial: 4B9D4E86314706C8E0DEBA03F90F833056C73A26 Authority key identifier: 02:46:DD:14:AF:68:F5:E5:51:2A:BD:88:D1:DB:75:07:E6:91:3C:96 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/3130332e3136372e3133362e302f32332d3234203d3e20313339343536.roa Signing time: Tue 22 Oct 2024 07:01:51 +0000 ROA not before: Tue 22 Oct 2024 06:56:51 +0000 ROA not after: Tue 21 Oct 2025 07:01:51 +0000 asID: 139456 IP address blocks: 103.167.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.crl rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:19:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:9d:4e:86:31:47:06:c8:e0:de:ba:03:f9:0f:83:30:56:c7:3a:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0246DD14AF68F5E5512ABD88D1DB7507E6913C96 Validity Not Before: Oct 22 06:56:51 2024 GMT Not After : Oct 21 07:01:51 2025 GMT Subject: CN=D0811CB49FD071E6F4C236C0BCB1C807057B485B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:87:23:44:50:99:69:52:15:fb:71:be:d3:29: 9d:db:d2:90:79:98:58:8e:d7:59:fa:7d:cf:1f:aa: aa:64:40:37:9c:e1:d7:f1:04:e9:52:c0:f6:cd:90: 1a:20:df:b3:c9:2f:22:22:92:27:6b:f4:11:0d:fc: bc:2c:b7:cd:a3:d7:19:6d:70:bd:09:88:a6:8c:e5: b5:9d:4c:d0:9b:8b:c1:83:db:62:19:0e:ac:0a:54: 2f:d5:d7:8e:71:57:c9:91:14:d1:58:ea:5c:96:43: 16:46:30:80:41:3b:73:1d:f4:4e:4e:3f:a6:c4:b0: e1:d3:12:7b:e9:87:cf:ac:68:c8:73:b2:5d:de:85: 96:e9:a1:2a:f0:30:8a:cd:6a:ed:bf:b4:25:39:c2: 93:ce:e7:27:8a:80:54:94:c4:1b:b9:fa:0b:ec:71: c6:f9:c4:2d:6a:69:51:28:17:81:4f:49:c6:f3:e1: 77:0f:f0:25:91:55:d0:83:24:9b:82:68:d3:8b:bd: b0:e6:a6:76:ef:e7:28:68:c3:0e:d9:1b:50:c5:02: b3:0a:c4:7d:96:ba:34:44:c0:9c:b2:ef:6c:86:27: 86:7e:ec:97:02:1e:9e:34:b5:6f:db:dc:5c:67:c2: 77:27:59:ee:8c:2c:6f:34:25:89:27:d1:4a:87:b6: a7:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:81:1C:B4:9F:D0:71:E6:F4:C2:36:C0:BC:B1:C8:07:05:7B:48:5B X509v3 Authority Key Identifier: keyid:02:46:DD:14:AF:68:F5:E5:51:2A:BD:88:D1:DB:75:07:E6:91:3C:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/3130332e3136372e3133362e302f32332d3234203d3e20313339343536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.136.0/23 Signature Algorithm: sha256WithRSAEncryption 84:7b:85:ab:65:8e:63:78:85:ec:73:1d:7c:81:f7:89:d6:2d: 89:ac:36:28:f9:29:14:b6:4f:1d:55:d3:81:b7:73:d9:b6:0f: c5:68:73:00:6b:03:09:c7:b7:e7:1c:30:9f:a2:91:31:e8:cd: 4e:34:bc:2b:c0:c4:f8:c3:1a:6c:99:f8:3b:72:65:82:02:cb: 89:46:1a:74:04:33:64:7b:6f:93:aa:f0:63:60:d8:d8:31:b9: 86:53:a3:08:a0:ed:fd:7f:19:e5:15:11:ea:b0:36:3c:43:09: 3b:72:ce:7a:ed:95:cc:1b:9e:5f:c5:79:f3:1d:65:30:6c:f1: 4e:c4:9e:88:80:7a:15:e7:2e:22:c2:3c:e7:ed:94:45:cc:87: 69:38:a9:f8:07:de:2f:13:7a:66:5d:c3:71:88:71:97:e4:c9: 06:af:e5:42:14:90:5a:46:db:89:d9:ae:0b:bc:06:e1:c8:0e: 7f:48:c7:e5:69:0d:01:0b:af:46:65:99:6f:9d:c6:27:50:9e: 0d:bc:ca:f6:e2:47:f1:3f:53:de:5f:26:06:2b:ce:d4:75:34: d0:2e:73:f5:6c:1a:46:75:9b:28:48:39:57:55:fd:70:c1:36: e2:3f:48:3a:ee:81:38:7d:2f:5e:31:32:fc:a1:53:34:41:9f: a3:9a:07:dd -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUS51OhjFHBsjg3roD+Q+DMFbHOiYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI0NkREMTRBRjY4RjVFNTUxMkFCRDg4RDFEQjc1MDdF NjkxM0M5NjAeFw0yNDEwMjIwNjU2NTFaFw0yNTEwMjEwNzAxNTFaMDMxMTAvBgNV BAMTKEQwODExQ0I0OUZEMDcxRTZGNEMyMzZDMEJDQjFDODA3MDU3QjQ4NUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDphyNEUJlpUhX7cb7TKZ3b0pB5 mFiO11n6fc8fqqpkQDec4dfxBOlSwPbNkBog37PJLyIikidr9BEN/Lwst82j1xlt cL0JiKaM5bWdTNCbi8GD22IZDqwKVC/V145xV8mRFNFY6lyWQxZGMIBBO3Md9E5O P6bEsOHTEnvph8+saMhzsl3ehZbpoSrwMIrNau2/tCU5wpPO5yeKgFSUxBu5+gvs ccb5xC1qaVEoF4FPScbz4XcP8CWRVdCDJJuCaNOLvbDmpnbv5yhoww7ZG1DFArMK xH2WujREwJyy72yGJ4Z+7JcCHp40tW/b3FxnwncnWe6MLG80JYkn0UqHtqdPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU0IEctJ/Qceb0wjbAvLHIBwV7SFswHwYDVR0j BBgwFoAUAkbdFK9o9eVRKr2I0dt1B+aRPJYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZGZiMzk5Mi0xZDJmLTQ2Y2UtODg2YS04ZTIyYTMyNjExZjgvMC8wMjQ2REQxNEFG NjhGNUU1NTEyQUJEODhEMURCNzUwN0U2OTEzQzk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI0NkREMTRBRjY4RjVFNTUxMkFCRDg4RDFEQjc1MDdFNjkx M0M5Ni5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkZmIzOTkyLTFkMmYtNDZjZS04 ODZhLThlMjJhMzI2MTFmOC8wLzMxMzAzMzJlMzEzNjM3MmUzMTMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzNDM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnp4gwDQYJ KoZIhvcNAQELBQADggEBAIR7hatljmN4hexzHXyB94nWLYmsNij5KRS2Tx1V04G3 c9m2D8VocwBrAwnHt+ccMJ+ikTHozU40vCvAxPjDGmyZ+DtyZYICy4lGGnQEM2R7 b5Oq8GNg2NgxuYZTowig7f1/GeUVEeqwNjxDCTtyznrtlcwbnl/FefMdZTBs8U7E noiAehXnLiLCPOftlEXMh2k4qfgH3i8TemZdw3GIcZfkyQav5UIUkFpG24nZrgu8 BuHIDn9Ix+VpDQELr0ZlmW+dxidQng28yvbiR/E/U95fJgYrztR1NNAuc/VsGkZ1 myhIOVdV/XDBNuI/SDrugTh9L14xMvyhUzRBn6OaB90= -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:28 2024 by rpki-client on console-ams.rpki-client.org