$ rpki-client -vvf repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/3130332e3136372e33342e302f32342d3234203d3e20313431393638.roa File: 3130332e3136372e33342e302f32342d3234203d3e20313431393638.roa (raw, json) Hash identifier: 7+wvvnCh9i5VufJ7XDupsckYbKLQHErrwpdbL5bBKNQ= Subject key identifier: E9:1B:E2:E5:6D:4E:0C:BD:D0:BA:28:56:07:98:84:5B:BA:06:4E:31 Certificate issuer: /CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Certificate serial: 468FEADDF0F8D1E1E9EA471E57388D017538EE4E Authority key identifier: F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/3130332e3136372e33342e302f32342d3234203d3e20313431393638.roa Signing time: Sat 23 Nov 2024 01:02:32 +0000 ROA not before: Sat 23 Nov 2024 00:57:32 +0000 ROA not after: Sat 22 Nov 2025 01:02:32 +0000 asID: 141968 IP address blocks: 103.167.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:8f:ea:dd:f0:f8:d1:e1:e9:ea:47:1e:57:38:8d:01:75:38:ee:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Validity Not Before: Nov 23 00:57:32 2024 GMT Not After : Nov 22 01:02:32 2025 GMT Subject: CN=E91BE2E56D4E0CBDD0BA28560798845BBA064E31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:1f:8f:4e:ef:1a:6a:79:f5:ec:dd:c3:ae:9f: 36:a9:0c:a8:74:36:53:6b:8c:b6:24:4a:f0:69:16: 98:a6:6a:a4:bd:fd:f2:5d:71:fc:64:30:dc:fa:bd: 6b:9b:cf:dd:e2:53:1a:3f:36:db:9b:7b:ec:71:fc: 29:a1:39:99:c2:e0:57:84:34:4b:70:5a:2d:4b:a4: c5:88:c8:18:34:b6:37:71:05:49:42:76:15:c4:0c: de:1d:c4:de:68:d1:05:56:ac:94:7d:2b:32:b3:e2: 8a:8b:c6:75:ac:f1:06:a0:36:62:b7:57:bb:c3:13: 7e:5c:83:40:87:26:74:8a:24:27:08:0b:f2:0d:4b: e4:e6:dd:10:b6:92:f2:6c:87:fb:4d:20:0e:47:eb: 91:a5:83:e1:43:83:a5:7c:c4:cb:d0:a6:8e:2c:67: cd:82:5f:74:d5:6f:1f:dc:1a:f3:f3:e6:a9:25:1f: 0b:f6:94:cd:2b:db:ab:39:d9:e7:6e:df:7a:cf:7e: 35:b4:e8:a4:86:f2:10:3e:9b:08:8d:ed:43:8e:35: 80:18:eb:67:ea:a2:eb:22:dc:4d:d1:aa:34:0d:8c: f6:c7:79:9a:16:b0:18:d0:49:89:55:20:44:c7:cf: 6f:ab:3f:ff:70:f3:36:c6:85:ac:60:a7:59:fc:48: bc:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:1B:E2:E5:6D:4E:0C:BD:D0:BA:28:56:07:98:84:5B:BA:06:4E:31 X509v3 Authority Key Identifier: keyid:F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/3130332e3136372e33342e302f32342d3234203d3e20313431393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.34.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:11:f8:dd:a8:5b:3e:f9:30:94:12:dc:7f:c8:31:97:e8:c0: 19:8e:73:54:84:f0:f8:9f:4f:57:dc:a4:57:7a:23:fa:2a:05: b9:34:07:a0:e3:f2:52:7c:5c:a7:9f:20:78:32:ca:bb:a9:0f: 78:07:be:a7:2e:01:05:ee:f3:5a:e5:71:b8:73:09:70:8d:aa: fe:35:d5:f4:81:b9:7e:47:6e:36:79:19:2c:06:7f:3a:6a:37: e1:89:8d:e4:64:ea:2c:db:c1:46:c8:bf:71:8f:ea:c4:c8:b0: 95:0a:aa:62:1d:84:ab:43:b7:b9:c3:7c:11:ea:13:68:e3:8c: 0f:31:72:4c:31:25:f7:b4:e1:fb:6f:cf:f3:25:18:d6:d3:40: a5:1a:0f:e3:f4:c3:88:6d:9a:77:98:4e:fa:6a:8e:7d:7d:36: c3:ba:57:9f:ab:06:ba:1d:3b:30:b4:bf:64:9d:f6:4d:5a:04: ee:ed:51:76:99:48:3a:1a:b1:6d:d6:79:76:ce:34:42:d3:1e: 4c:7b:30:82:cc:38:f7:c5:40:0e:33:0f:c4:4e:5c:7c:ff:bb: a7:a7:8d:a1:7a:b0:fb:e8:ae:8a:2f:b9:cf:e5:c6:75:f9:ff: a9:3b:af:4f:fd:84:cc:e6:2c:2b:9c:93:7e:8a:3a:ab:c9:af: 2d:40:c8:ad -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIURo/q3fD40eHp6kceVziNAXU47k4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVB NEY2OTM4NzAeFw0yNDExMjMwMDU3MzJaFw0yNTExMjIwMTAyMzJaMDMxMTAvBgNV BAMTKEU5MUJFMkU1NkQ0RTBDQkREMEJBMjg1NjA3OTg4NDVCQkEwNjRFMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaH49O7xpqefXs3cOunzapDKh0 NlNrjLYkSvBpFpimaqS9/fJdcfxkMNz6vWubz93iUxo/Ntube+xx/CmhOZnC4FeE NEtwWi1LpMWIyBg0tjdxBUlCdhXEDN4dxN5o0QVWrJR9KzKz4oqLxnWs8QagNmK3 V7vDE35cg0CHJnSKJCcIC/INS+Tm3RC2kvJsh/tNIA5H65Glg+FDg6V8xMvQpo4s Z82CX3TVbx/cGvPz5qklHwv2lM0r26s52edu33rPfjW06KSG8hA+mwiN7UOONYAY 62fqousi3E3RqjQNjPbHeZoWsBjQSYlVIETHz2+rP/9w8zbGhaxgp1n8SLwxAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU6Rvi5W1ODL3QuihWB5iEW7oGTjEwHwYDVR0j BBgwFoAU8GFUV0C2tmqdPB0f5PP9taT2k4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MzZhMjE3MS0xMmEwLTRlMDEtYmNhYi1iZTNiNmI4MzZmNWQvMC9GMDYxNTQ1NzQw QjZCNjZBOUQzQzFEMUZFNEYzRkRCNUE0RjY5Mzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVBNEY2 OTM4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzNmEyMTcxLTEyYTAtNGUwMS1i Y2FiLWJlM2I2YjgzNmY1ZC8wLzMxMzAzMzJlMzEzNjM3MmUzMzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzkzNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6ciMA0GCSqG SIb3DQEBCwUAA4IBAQBKEfjdqFs++TCUEtx/yDGX6MAZjnNUhPD4n09X3KRXeiP6 KgW5NAeg4/JSfFynnyB4Msq7qQ94B76nLgEF7vNa5XG4cwlwjar+NdX0gbl+R242 eRksBn86ajfhiY3kZOos28FGyL9xj+rEyLCVCqpiHYSrQ7e5w3wR6hNo44wPMXJM MSX3tOH7b8/zJRjW00ClGg/j9MOIbZp3mE76ao59fTbDulefqwa6HTswtL9knfZN WgTu7VF2mUg6GrFt1nl2zjRC0x5MezCCzDj3xUAOMw/ETlx8/7unp42herD76K6K L7nP5cZ1+f+pO69P/YTM5iwrnJN+ijqrya8tQMit -----END CERTIFICATE-----Generated at Mon Nov 25 04:42:07 2024 by rpki-client on console-ams.rpki-client.org