$ rpki-client -vvf repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3130332e3135362e3134302e302f32332d3234203d3e20313439383833.roa File: 3130332e3135362e3134302e302f32332d3234203d3e20313439383833.roa (raw, json) Hash identifier: n3sbBfuLKEC1geB0k1Dh7NZVeI84mrHDuJ/mBS5tW04= Subject key identifier: F2:D9:C5:C2:85:7B:C3:99:49:83:83:D1:BF:13:07:A3:B6:C6:3F:16 Certificate issuer: /CN=9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633 Certificate serial: 557AD0EA975B7D2D2100DE85ECA91692F95BB226 Authority key identifier: 9E:68:B7:0F:7E:56:B1:BA:86:F1:05:15:F2:AE:8D:F5:B1:1B:26:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3130332e3135362e3134302e302f32332d3234203d3e20313439383833.roa Signing time: Fri 27 Sep 2024 23:00:00 +0000 ROA not before: Fri 27 Sep 2024 22:55:00 +0000 ROA not after: Fri 26 Sep 2025 23:00:00 +0000 asID: 149883 IP address blocks: 103.156.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.crl rsync://repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:7a:d0:ea:97:5b:7d:2d:21:00:de:85:ec:a9:16:92:f9:5b:b2:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633 Validity Not Before: Sep 27 22:55:00 2024 GMT Not After : Sep 26 23:00:00 2025 GMT Subject: CN=F2D9C5C2857BC399498383D1BF1307A3B6C63F16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:61:24:ad:db:af:3d:2e:1c:4c:4c:f7:b7:43: 10:67:21:3b:ec:c8:56:c4:f1:5d:0e:1b:13:c5:f6: fe:df:b2:0d:01:a9:1f:66:0a:1e:a8:55:6f:66:46: b7:12:e6:aa:c0:f0:7a:5b:ee:b5:40:b1:c6:31:b8: cc:5f:e3:f0:84:58:3b:53:15:3f:01:8e:b8:3e:e8: ea:84:f0:b9:e9:b7:10:00:3c:9d:a5:4a:fd:98:11: 4a:b6:38:15:52:37:4c:c6:64:29:98:59:ce:29:f1: b7:b6:9f:d2:f7:96:69:c0:7a:dc:e8:4f:72:24:02: 5d:62:9b:39:ab:83:e6:a1:36:08:e8:34:dc:42:55: 1e:36:85:6b:ea:f3:7b:e6:1e:45:60:9c:c7:46:30: 1d:38:81:02:8d:9e:b7:61:52:ea:af:ff:52:76:2c: d6:38:68:81:84:16:df:0d:67:51:86:bf:3d:7e:f4: 46:e7:75:d6:56:67:b4:6c:cb:86:05:41:b6:16:59: 21:b4:27:2d:59:4f:3e:cc:43:9f:50:0f:43:61:a3: fd:fe:75:f0:ce:40:b4:19:61:45:f1:42:70:1d:16: fd:53:25:31:88:34:9b:7e:4f:d7:63:db:04:d6:e6: 59:aa:bc:32:4a:1d:84:39:79:9b:38:ed:2c:95:53: 07:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:D9:C5:C2:85:7B:C3:99:49:83:83:D1:BF:13:07:A3:B6:C6:3F:16 X509v3 Authority Key Identifier: keyid:9E:68:B7:0F:7E:56:B1:BA:86:F1:05:15:F2:AE:8D:F5:B1:1B:26:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3130332e3135362e3134302e302f32332d3234203d3e20313439383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.140.0/23 Signature Algorithm: sha256WithRSAEncryption a4:25:c5:f3:1b:58:be:88:1c:70:39:d0:03:7e:b7:7f:3a:66: 23:23:41:c3:aa:12:07:95:f6:e7:ef:a9:94:7e:f5:02:a0:ee: 56:0f:0a:62:a0:60:0a:79:a1:38:e3:0c:2b:70:e2:8e:9a:de: ee:a1:73:bf:e9:2b:0c:c8:2f:cd:85:17:65:be:14:b5:79:86: 6f:fe:aa:5f:74:28:2a:48:b5:b4:e5:dd:f4:02:fd:5a:26:3c: 57:09:de:2a:02:e9:dc:7f:d9:74:9d:b4:5d:34:62:65:12:66: ba:6d:45:92:f2:86:f4:c6:62:7c:d0:cb:81:64:f3:5e:72:8c: 4b:02:28:b7:e1:09:80:e4:54:2d:ce:99:45:89:44:0a:50:db: c9:93:7a:57:8b:47:26:6c:3d:a0:92:37:b8:1a:f0:7d:bd:0c: e6:b3:e0:0a:48:59:e8:4a:98:0d:22:11:4a:ee:e4:7d:72:82: 7b:a0:a8:a4:b9:db:2d:ee:f5:1e:c8:8e:ce:2f:81:70:51:6a: cb:5d:21:22:00:8c:69:39:86:17:20:41:68:98:9b:37:79:dd: 35:7e:64:c6:56:e9:aa:1a:9a:12:ea:38:ec:ea:af:a3:ee:b2: 17:52:42:ee:fb:12:fd:bc:e9:1c:e0:24:5a:4e:11:4a:fe:1c: 35:0a:39:3d -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUVXrQ6pdbfS0hAN6F7KkWkvlbsiYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUU2OEI3MEY3RTU2QjFCQTg2RjEwNTE1RjJBRThERjVC MTFCMjYzMzAeFw0yNDA5MjcyMjU1MDBaFw0yNTA5MjYyMzAwMDBaMDMxMTAvBgNV BAMTKEYyRDlDNUMyODU3QkMzOTk0OTgzODNEMUJGMTMwN0EzQjZDNjNGMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+YSSt2689LhxMTPe3QxBnITvs yFbE8V0OGxPF9v7fsg0BqR9mCh6oVW9mRrcS5qrA8Hpb7rVAscYxuMxf4/CEWDtT FT8Bjrg+6OqE8LnptxAAPJ2lSv2YEUq2OBVSN0zGZCmYWc4p8be2n9L3lmnAetzo T3IkAl1imzmrg+ahNgjoNNxCVR42hWvq83vmHkVgnMdGMB04gQKNnrdhUuqv/1J2 LNY4aIGEFt8NZ1GGvz1+9EbnddZWZ7Rsy4YFQbYWWSG0Jy1ZTz7MQ59QD0Nho/3+ dfDOQLQZYUXxQnAdFv1TJTGINJt+T9dj2wTW5lmqvDJKHYQ5eZs47SyVUwcNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU8tnFwoV7w5lJg4PRvxMHo7bGPxYwHwYDVR0j BBgwFoAUnmi3D35WsbqG8QUV8q6N9bEbJjMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDkxNzkzZS1iZDY5LTQ1YTQtOTdhOC1jNjhhYTNkZDQ3YTMvMC85RTY4QjcwRjdF NTZCMUJBODZGMTA1MTVGMkFFOERGNUIxMUIyNjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUU2OEI3MEY3RTU2QjFCQTg2RjEwNTE1RjJBRThERjVCMTFC MjYzMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwOTE3OTNlLWJkNjktNDVhNC05 N2E4LWM2OGFhM2RkNDdhMy8wLzMxMzAzMzJlMzEzNTM2MmUzMTM0MzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzkzODM4MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnnIwwDQYJ KoZIhvcNAQELBQADggEBAKQlxfMbWL6IHHA50AN+t386ZiMjQcOqEgeV9ufvqZR+ 9QKg7lYPCmKgYAp5oTjjDCtw4o6a3u6hc7/pKwzIL82FF2W+FLV5hm/+ql90KCpI tbTl3fQC/VomPFcJ3ioC6dx/2XSdtF00YmUSZrptRZLyhvTGYnzQy4Fk815yjEsC KLfhCYDkVC3OmUWJRApQ28mTeleLRyZsPaCSN7ga8H29DOaz4ApIWehKmA0iEUru 5H1ygnugqKS52y3u9R7Ijs4vgXBRastdISIAjGk5hhcgQWiYmzd53TV+ZMZW6aoa mhLqOOzqr6PushdSQu77Ev286RzgJFpOEUr+HDUKOT0= -----END CERTIFICATE-----Generated at Fri Nov 22 22:21:00 2024 by rpki-client on console-fra.rpki-client.org