$ rpki-client -vvf repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/3130332e3136312e37332e302f32342d3234203d3e203538333738.roa File: 3130332e3136312e37332e302f32342d3234203d3e203538333738.roa (raw, json) Hash identifier: N58UqlFMp748Khi3FbSfGS0G+XtsfGGuqPSO+3bYMNA= Subject key identifier: 60:1D:38:40:E7:C7:30:80:07:82:92:7C:E6:C6:D8:0E:4E:55:83:01 Certificate issuer: /CN=C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4 Certificate serial: DD8B42F7B6671D9368892B23C809B4C585A603 Authority key identifier: C2:0D:D3:7A:F0:EF:3C:A0:55:DF:DF:8F:3F:5D:18:F0:81:81:96:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/3130332e3136312e37332e302f32342d3234203d3e203538333738.roa Signing time: Wed 13 Nov 2024 06:27:53 +0000 ROA not before: Wed 13 Nov 2024 06:22:53 +0000 ROA not after: Wed 12 Nov 2025 06:27:53 +0000 asID: 58378 IP address blocks: 103.161.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: dd:8b:42:f7:b6:67:1d:93:68:89:2b:23:c8:09:b4:c5:85:a6:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4 Validity Not Before: Nov 13 06:22:53 2024 GMT Not After : Nov 12 06:27:53 2025 GMT Subject: CN=601D3840E7C730800782927CE6C6D80E4E558301 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:91:d7:90:b5:f5:9d:4d:e6:11:e6:cc:eb:c2: ac:30:67:54:28:d3:50:59:c2:cd:0d:b8:e7:fd:fa: d4:16:c6:ff:1b:06:6d:97:33:c6:e7:fb:17:58:ea: 64:3d:a6:54:a5:0c:83:12:69:57:9c:cf:7d:5f:72: 49:91:db:36:72:c4:0a:8d:ff:e8:b9:5c:54:30:9d: 79:4b:06:2a:8b:7c:a0:75:d3:b4:7e:a2:57:ce:ed: c1:a6:ce:63:9b:4a:dd:58:26:41:40:8e:a7:cf:d0: 33:7d:45:26:9e:64:ac:0b:21:28:13:14:77:26:e8: bf:32:97:78:2b:b2:b6:d0:e5:cb:47:4f:2f:a0:65: 9e:13:20:ee:c4:70:88:60:0d:92:66:a2:0a:82:8d: 4d:41:ce:a7:1f:d7:ed:8b:f4:d6:9a:0a:bb:4d:6b: e8:d5:8b:b1:82:77:91:76:a1:63:c4:c0:73:57:2c: c0:d1:3d:b5:3c:46:45:ec:b7:fe:2f:a9:96:a2:ed: 80:b7:80:95:78:df:af:41:fc:4d:b5:d3:ff:5c:f4: 16:45:e4:4c:8f:c0:bb:27:f5:e9:47:9d:75:56:1d: 1c:a8:ed:5f:3a:75:7a:8e:83:6e:89:72:aa:64:22: 92:e2:c2:05:3f:82:6d:60:c0:3d:2d:27:05:9f:3a: 51:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:1D:38:40:E7:C7:30:80:07:82:92:7C:E6:C6:D8:0E:4E:55:83:01 X509v3 Authority Key Identifier: keyid:C2:0D:D3:7A:F0:EF:3C:A0:55:DF:DF:8F:3F:5D:18:F0:81:81:96:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/3130332e3136312e37332e302f32342d3234203d3e203538333738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.73.0/24 Signature Algorithm: sha256WithRSAEncryption b8:be:b7:d2:81:b3:9b:06:37:5c:a2:9c:ab:2b:b4:e2:bb:cd: 60:28:2c:ab:75:44:f9:76:09:84:53:1c:5e:db:d8:be:b0:0d: 0b:da:3b:7f:5c:8e:54:f7:07:5a:9c:41:bd:c7:3c:8e:f2:d4: 18:72:14:4e:66:e2:01:7c:fb:11:62:b9:ce:7c:3e:d7:79:a0: 8e:1e:9f:12:25:29:8d:02:51:98:ca:98:a2:72:e1:47:93:00: 8a:ea:89:61:cc:de:81:47:1d:fc:39:95:1a:ca:66:65:c1:29: d0:aa:2d:aa:d6:86:1e:d0:d4:7b:51:02:9a:cb:33:8c:f9:9e: 3e:df:f8:99:4f:83:aa:77:dd:bf:4c:ee:91:81:a9:52:52:c8: b6:0f:d5:35:21:2e:2a:3e:e8:02:ee:f9:b8:60:03:c8:b6:17: d4:6f:e1:6d:ac:4b:44:4f:ec:38:ef:55:7f:96:88:1c:b7:c3: ee:43:ba:c0:af:2c:81:a2:2a:b0:19:22:4d:8b:e9:02:52:83: 9b:5c:31:ea:c0:68:a2:8d:f0:ad:ec:6f:d5:ed:6a:9d:9b:64: 1e:62:f5:fb:12:f0:e0:93:9f:57:d1:27:11:b5:b3:25:9e:5c: 0a:be:02:11:c3:ba:24:56:87:c5:c3:b7:01:a6:79:0c:52:ad: 78:7f:ca:f8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUAN2LQve2Zx2TaIkrI8gJtMWFpgMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4RjA4 MTgxOTZGNDAeFw0yNDExMTMwNjIyNTNaFw0yNTExMTIwNjI3NTNaMDMxMTAvBgNV BAMTKDYwMUQzODQwRTdDNzMwODAwNzgyOTI3Q0U2QzZEODBFNEU1NTgzMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCakdeQtfWdTeYR5szrwqwwZ1Qo 01BZws0NuOf9+tQWxv8bBm2XM8bn+xdY6mQ9plSlDIMSaVecz31fckmR2zZyxAqN /+i5XFQwnXlLBiqLfKB107R+olfO7cGmzmObSt1YJkFAjqfP0DN9RSaeZKwLISgT FHcm6L8yl3grsrbQ5ctHTy+gZZ4TIO7EcIhgDZJmogqCjU1Bzqcf1+2L9NaaCrtN a+jVi7GCd5F2oWPEwHNXLMDRPbU8RkXst/4vqZai7YC3gJV4369B/E210/9c9BZF 5EyPwLsn9elHnXVWHRyo7V86dXqOg26JcqpkIpLiwgU/gm1gwD0tJwWfOlHVAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUYB04QOfHMIAHgpJ85sbYDk5VgwEwHwYDVR0j BBgwFoAUwg3TevDvPKBV39+PP10Y8IGBlvQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZWJlN2FkOC1lMTVjLTQwMTQtYmZiMy1iZTY5YjdkNWRlODgvMC9DMjBERDM3QUYw RUYzQ0EwNTVERkRGOEYzRjVEMThGMDgxODE5NkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4RjA4MTgx OTZGNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllYmU3YWQ4LWUxNWMtNDAxNC1i ZmIzLWJlNjliN2Q1ZGU4OC8wLzMxMzAzMzJlMzEzNjMxMmUzNzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzUzODMzMzczOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGehSTANBgkqhkiG 9w0BAQsFAAOCAQEAuL630oGzmwY3XKKcqyu04rvNYCgsq3VE+XYJhFMcXtvYvrAN C9o7f1yOVPcHWpxBvcc8jvLUGHIUTmbiAXz7EWK5znw+13mgjh6fEiUpjQJRmMqY onLhR5MAiuqJYczegUcd/DmVGspmZcEp0KotqtaGHtDUe1ECmsszjPmePt/4mU+D qnfdv0zukYGpUlLItg/VNSEuKj7oAu75uGADyLYX1G/hbaxLRE/sOO9Vf5aIHLfD 7kO6wK8sgaIqsBkiTYvpAlKDm1wx6sBooo3wrexv1e1qnZtkHmL1+xLw4JOfV9En EbWzJZ5cCr4CEcO6JFaHxcO3AaZ5DFKteH/K+A== -----END CERTIFICATE-----Generated at Thu Nov 21 06:48:40 2024 by rpki-client on console-fra.rpki-client.org