$ rpki-client -vvf repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/3130332e3136312e37322e302f32342d3234203d3e203538333738.roa File: 3130332e3136312e37322e302f32342d3234203d3e203538333738.roa (raw, json) Hash identifier: WHyXZiHm1tFrwAXrz4brauNseb8V8ZMQneoiM0eZr/g= Subject key identifier: 9D:1C:18:2E:90:C6:44:CC:10:54:AB:5F:F4:81:AA:49:6E:09:E3:BD Certificate issuer: /CN=C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4 Certificate serial: 229A2640124C9FDD1B9BDA8FEDE7C7A04B44C96A Authority key identifier: C2:0D:D3:7A:F0:EF:3C:A0:55:DF:DF:8F:3F:5D:18:F0:81:81:96:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/3130332e3136312e37322e302f32342d3234203d3e203538333738.roa Signing time: Sat 16 Nov 2024 14:36:50 +0000 ROA not before: Sat 16 Nov 2024 14:31:50 +0000 ROA not after: Sat 15 Nov 2025 14:36:50 +0000 asID: 58378 IP address blocks: 103.161.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:9a:26:40:12:4c:9f:dd:1b:9b:da:8f:ed:e7:c7:a0:4b:44:c9:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4 Validity Not Before: Nov 16 14:31:50 2024 GMT Not After : Nov 15 14:36:50 2025 GMT Subject: CN=9D1C182E90C644CC1054AB5FF481AA496E09E3BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:da:6e:65:15:20:61:28:4e:aa:e8:d9:05:67: 4a:aa:a8:5a:36:cc:38:e4:9c:b2:3e:23:ad:d8:01: 18:0b:19:10:86:9a:e0:59:2f:fb:69:c9:7b:07:7d: 37:d4:14:5d:05:40:16:0c:e6:b0:8e:c9:67:b0:d7: 21:fd:bc:54:5e:86:95:e9:7a:ed:4f:98:e5:8f:03: 4a:16:a2:1a:53:fa:6e:1b:52:03:f7:bb:7f:87:69: ed:76:c2:c3:c3:b3:89:00:29:97:27:92:68:cd:0c: 0e:8d:1c:94:40:4e:81:9d:58:9d:ba:82:5a:ac:2e: ea:bc:57:e1:74:a5:f5:4a:b1:28:d9:90:58:b1:b1: c7:6e:91:fa:bd:c0:12:7a:1b:01:2e:c3:13:b0:84: 4e:4f:9d:28:7e:29:b7:e5:a9:e3:01:20:1a:00:4b: 38:e2:0b:6f:c2:09:5c:0e:c1:56:d8:0f:04:e3:04: c0:e2:af:83:28:de:df:84:75:34:58:c6:ae:55:94: 22:1b:2e:c7:a9:84:bf:9a:ac:12:a8:3e:69:1c:b6: 12:f7:22:3c:24:2a:62:66:5a:2c:63:d5:18:de:1e: 16:d6:7d:83:43:85:fd:a4:2a:ca:b2:fc:56:b6:65: 0c:14:75:9a:4c:c9:26:2b:5a:17:75:a6:1b:cb:88: e9:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:1C:18:2E:90:C6:44:CC:10:54:AB:5F:F4:81:AA:49:6E:09:E3:BD X509v3 Authority Key Identifier: keyid:C2:0D:D3:7A:F0:EF:3C:A0:55:DF:DF:8F:3F:5D:18:F0:81:81:96:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/3130332e3136312e37322e302f32342d3234203d3e203538333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.72.0/24 Signature Algorithm: sha256WithRSAEncryption 42:9a:7d:89:0a:ea:4c:de:bd:ef:2d:39:61:0e:29:ce:ea:83: 81:72:36:0c:f7:43:b3:8f:a1:c5:d2:52:62:dc:7f:03:87:63: 47:34:03:38:78:c1:bd:2f:33:f1:f7:1a:27:6b:b6:99:42:76: ca:eb:91:82:71:4c:f1:67:62:13:49:f1:a9:22:ce:d1:77:e1: 66:ef:df:08:46:68:bb:ca:d1:f6:59:e3:5c:3e:32:14:60:2f: 39:5d:53:df:f7:78:c1:4d:b1:ff:1f:6a:3a:d3:48:8c:28:57: e3:e0:a7:1b:91:9f:0a:13:ce:56:b9:9a:39:6e:d4:18:9d:74: 41:09:7d:24:e6:89:c7:4b:96:e1:c8:ee:a5:e4:21:2b:6e:0b: aa:15:4b:16:6f:6a:cd:82:cf:af:0a:95:a6:1d:74:89:ad:ba: 41:6d:5e:12:9d:f9:e4:f8:c4:af:32:6a:7b:b9:fa:40:e4:e4: 8a:69:20:7b:09:cb:44:72:36:e6:ac:bf:27:aa:33:d6:bd:1b: 8c:04:be:ac:fe:ee:ee:34:75:d5:0a:df:ac:59:11:b2:4d:21: 50:36:f9:12:2a:a3:1a:6c:82:6a:6a:46:7a:d7:69:25:2d:f3: ec:16:2a:38:c9:84:f1:3b:ac:8d:8b:74:a8:e7:8d:b7:8a:d5: dc:95:8a:ed -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIpomQBJMn90bm9qP7efHoEtEyWowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4RjA4 MTgxOTZGNDAeFw0yNDExMTYxNDMxNTBaFw0yNTExMTUxNDM2NTBaMDMxMTAvBgNV BAMTKDlEMUMxODJFOTBDNjQ0Q0MxMDU0QUI1RkY0ODFBQTQ5NkUwOUUzQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc2m5lFSBhKE6q6NkFZ0qqqFo2 zDjknLI+I63YARgLGRCGmuBZL/tpyXsHfTfUFF0FQBYM5rCOyWew1yH9vFRehpXp eu1PmOWPA0oWohpT+m4bUgP3u3+Hae12wsPDs4kAKZcnkmjNDA6NHJRAToGdWJ26 glqsLuq8V+F0pfVKsSjZkFixscdukfq9wBJ6GwEuwxOwhE5PnSh+KbflqeMBIBoA SzjiC2/CCVwOwVbYDwTjBMDir4Mo3t+EdTRYxq5VlCIbLsephL+arBKoPmkcthL3 IjwkKmJmWixj1RjeHhbWfYNDhf2kKsqy/Fa2ZQwUdZpMySYrWhd1phvLiOmtAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUnRwYLpDGRMwQVKtf9IGqSW4J470wHwYDVR0j BBgwFoAUwg3TevDvPKBV39+PP10Y8IGBlvQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZWJlN2FkOC1lMTVjLTQwMTQtYmZiMy1iZTY5YjdkNWRlODgvMC9DMjBERDM3QUYw RUYzQ0EwNTVERkRGOEYzRjVEMThGMDgxODE5NkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4RjA4MTgx OTZGNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllYmU3YWQ4LWUxNWMtNDAxNC1i ZmIzLWJlNjliN2Q1ZGU4OC8wLzMxMzAzMzJlMzEzNjMxMmUzNzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGehSDANBgkqhkiG 9w0BAQsFAAOCAQEAQpp9iQrqTN697y05YQ4pzuqDgXI2DPdDs4+hxdJSYtx/A4dj RzQDOHjBvS8z8fcaJ2u2mUJ2yuuRgnFM8WdiE0nxqSLO0XfhZu/fCEZou8rR9lnj XD4yFGAvOV1T3/d4wU2x/x9qOtNIjChX4+CnG5GfChPOVrmaOW7UGJ10QQl9JOaJ x0uW4cjupeQhK24LqhVLFm9qzYLPrwqVph10ia26QW1eEp355PjErzJqe7n6QOTk imkgewnLRHI25qy/J6oz1r0bjAS+rP7u7jR11QrfrFkRsk0hUDb5EiqjGmyCampG etdpJS3z7BYqOMmE8TusjYt0qOeNt4rV3JWK7Q== -----END CERTIFICATE-----Generated at Thu Nov 21 07:38:03 2024 by rpki-client on console-ams.rpki-client.org