$ rpki-client -vvf repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3130332e3135362e3134302e302f32342d3234203d3e20313439383833.roa File: 3130332e3135362e3134302e302f32342d3234203d3e20313439383833.roa (raw, json) Hash identifier: tCdlLAwoC+YY63D9MBa5GyVbtzsufzTeHqMYaKr8EzE= Subject key identifier: D5:43:07:C1:13:87:83:D1:6A:A7:7B:9A:91:AC:97:99:58:E8:9F:3B Certificate issuer: /CN=9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633 Certificate serial: 6F5483A0FF6BD427F9C7F16677BD8301EF589180 Authority key identifier: 9E:68:B7:0F:7E:56:B1:BA:86:F1:05:15:F2:AE:8D:F5:B1:1B:26:33 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3130332e3135362e3134302e302f32342d3234203d3e20313439383833.roa Signing time: Tue 10 Sep 2024 05:00:00 +0000 ROA not before: Tue 10 Sep 2024 04:55:00 +0000 ROA not after: Tue 09 Sep 2025 05:00:00 +0000 asID: 149883 IP address blocks: 103.156.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.crl rsync://repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:54:83:a0:ff:6b:d4:27:f9:c7:f1:66:77:bd:83:01:ef:58:91:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633 Validity Not Before: Sep 10 04:55:00 2024 GMT Not After : Sep 9 05:00:00 2025 GMT Subject: CN=D54307C1138783D16AA77B9A91AC979958E89F3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b7:b6:fa:58:f4:82:8e:4b:28:90:4a:9a:7e: 66:3b:f1:63:c2:8e:05:8f:af:d3:8a:90:5c:77:84: 1b:02:61:9d:96:35:fe:1b:28:c7:1e:08:40:41:e9: 83:81:1e:70:fe:96:a6:c1:8b:d4:9b:9f:94:fd:09: 73:eb:11:0d:a5:a5:25:40:f8:ac:e9:2a:07:ea:12: a7:a2:80:3b:4d:5b:da:8f:1b:06:0d:9f:2b:4a:b7: 2c:dd:cc:11:55:f1:1b:39:68:45:69:a3:93:50:6c: ee:c3:a1:f6:67:bf:e8:c7:cf:0b:ff:46:c2:6c:36: ee:93:74:72:af:25:01:3f:48:c5:c9:64:42:96:65: 24:db:9a:19:91:dc:86:e8:55:08:9e:25:e7:43:fb: e2:f7:a3:eb:2d:ce:1a:d9:7e:fa:57:17:b9:38:7c: a4:94:74:b2:f1:94:cb:26:9e:f6:38:c1:0d:88:8b: 00:61:51:ec:f7:3c:a1:fb:84:24:ea:83:e9:fb:87: 09:06:bd:63:64:2f:ce:19:0e:94:a9:90:66:1a:40: 57:48:87:8b:19:76:62:98:de:b7:c5:1e:4d:ec:3e: 5d:2d:33:9f:f3:2f:f9:ed:44:cb:04:83:06:7c:cc: 23:0f:9a:ff:0f:f7:35:34:a7:a9:a8:64:ca:f5:c8: 42:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:43:07:C1:13:87:83:D1:6A:A7:7B:9A:91:AC:97:99:58:E8:9F:3B X509v3 Authority Key Identifier: keyid:9E:68:B7:0F:7E:56:B1:BA:86:F1:05:15:F2:AE:8D:F5:B1:1B:26:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E68B70F7E56B1BA86F10515F2AE8DF5B11B2633.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a091793e-bd69-45a4-97a8-c68aa3dd47a3/0/3130332e3135362e3134302e302f32342d3234203d3e20313439383833.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.140.0/24 Signature Algorithm: sha256WithRSAEncryption e0:ca:1e:05:cb:fb:6d:e4:98:c5:93:7a:a3:63:f1:aa:2c:b3: 45:d9:ff:cb:1b:9e:f8:2d:17:8f:05:98:a3:9e:f1:db:02:36: 04:08:f4:da:b9:04:19:37:64:35:a7:0f:79:d1:e2:47:25:c7: 30:ab:47:36:a1:84:17:c7:b5:89:ad:45:30:4f:59:95:74:a2: 00:cb:48:c7:29:41:86:fe:fa:8e:ba:2c:1b:1f:8f:b9:2c:9e: 26:40:87:a1:d4:68:0b:3d:8e:fb:5b:da:59:7a:e4:0d:d3:22: fd:6f:c9:fe:84:82:66:c0:7f:9a:df:7e:90:f8:a7:ff:ae:c5: cf:74:79:4b:b8:07:22:a7:31:df:5b:04:ea:92:3c:13:56:0e: d9:e2:4f:e1:2c:d9:76:54:f7:c7:f2:8e:47:0e:39:29:51:6d: 03:a0:65:fc:b0:05:89:7a:59:2c:60:7c:10:97:16:54:cc:5e: b0:ae:89:fc:7a:40:ab:fb:6e:b3:f9:2b:98:2c:0a:2c:07:83: 88:78:09:0f:38:ca:30:a9:72:86:2d:8f:35:67:97:42:00:04: c1:43:62:2f:70:d6:37:c1:0a:50:88:aa:f9:33:63:98:be:59: 27:63:a0:63:30:4e:8f:79:81:85:d9:89:51:5f:19:83:f8:b6: c4:c7:18:33 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUb1SDoP9r1Cf5x/Fmd72DAe9YkYAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUU2OEI3MEY3RTU2QjFCQTg2RjEwNTE1RjJBRThERjVC MTFCMjYzMzAeFw0yNDA5MTAwNDU1MDBaFw0yNTA5MDkwNTAwMDBaMDMxMTAvBgNV BAMTKEQ1NDMwN0MxMTM4NzgzRDE2QUE3N0I5QTkxQUM5Nzk5NThFODlGM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQt7b6WPSCjksokEqafmY78WPC jgWPr9OKkFx3hBsCYZ2WNf4bKMceCEBB6YOBHnD+lqbBi9Sbn5T9CXPrEQ2lpSVA +KzpKgfqEqeigDtNW9qPGwYNnytKtyzdzBFV8Rs5aEVpo5NQbO7DofZnv+jHzwv/ RsJsNu6TdHKvJQE/SMXJZEKWZSTbmhmR3IboVQieJedD++L3o+stzhrZfvpXF7k4 fKSUdLLxlMsmnvY4wQ2IiwBhUez3PKH7hCTqg+n7hwkGvWNkL84ZDpSpkGYaQFdI h4sZdmKY3rfFHk3sPl0tM5/zL/ntRMsEgwZ8zCMPmv8P9zU0p6moZMr1yEIJAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU1UMHwROHg9Fqp3uakayXmVjonzswHwYDVR0j BBgwFoAUnmi3D35WsbqG8QUV8q6N9bEbJjMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MDkxNzkzZS1iZDY5LTQ1YTQtOTdhOC1jNjhhYTNkZDQ3YTMvMC85RTY4QjcwRjdF NTZCMUJBODZGMTA1MTVGMkFFOERGNUIxMUIyNjMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUU2OEI3MEY3RTU2QjFCQTg2RjEwNTE1RjJBRThERjVCMTFC MjYzMy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwOTE3OTNlLWJkNjktNDVhNC05 N2E4LWM2OGFhM2RkNDdhMy8wLzMxMzAzMzJlMzEzNTM2MmUzMTM0MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzODM4MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnnIwwDQYJ KoZIhvcNAQELBQADggEBAODKHgXL+23kmMWTeqNj8aoss0XZ/8sbnvgtF48FmKOe 8dsCNgQI9Nq5BBk3ZDWnD3nR4kclxzCrRzahhBfHtYmtRTBPWZV0ogDLSMcpQYb+ +o66LBsfj7ksniZAh6HUaAs9jvtb2ll65A3TIv1vyf6EgmbAf5rffpD4p/+uxc90 eUu4ByKnMd9bBOqSPBNWDtniT+Es2XZU98fyjkcOOSlRbQOgZfywBYl6WSxgfBCX FlTMXrCuifx6QKv7brP5K5gsCiwHg4h4CQ84yjCpcoYtjzVnl0IABMFDYi9w1jfB ClCIqvkzY5i+WSdjoGMwTo95gYXZiVFfGYP4tsTHGDM= -----END CERTIFICATE-----Generated at Fri Nov 22 22:09:43 2024 by rpki-client on console-ams.rpki-client.org