$ rpki-client -vvf repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/3130332e3136372e33352e302f32342d3234203d3e20313431393638.roa File: 3130332e3136372e33352e302f32342d3234203d3e20313431393638.roa (raw, json) Hash identifier: toZR/Jsqz5eQ/RDfxtHGOlqep9bRFZ0ONRZgu1L0Uec= Subject key identifier: 53:17:3E:3F:0F:C7:F4:45:4F:F2:34:9E:68:5D:D0:98:D8:E2:BE:09 Certificate issuer: /CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Certificate serial: 50B6BA3871017BA3AC996CC103CB670078DE8372 Authority key identifier: F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/3130332e3136372e33352e302f32342d3234203d3e20313431393638.roa Signing time: Sat 23 Nov 2024 01:02:33 +0000 ROA not before: Sat 23 Nov 2024 00:57:33 +0000 ROA not after: Sat 22 Nov 2025 01:02:33 +0000 asID: 141968 IP address blocks: 103.167.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Feb 2025 14:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:b6:ba:38:71:01:7b:a3:ac:99:6c:c1:03:cb:67:00:78:de:83:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387 Validity Not Before: Nov 23 00:57:33 2024 GMT Not After : Nov 22 01:02:33 2025 GMT Subject: CN=53173E3F0FC7F4454FF2349E685DD098D8E2BE09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:5a:45:ec:55:1b:a6:c6:72:e6:b1:f2:21:de: ce:15:20:93:5e:bb:e9:01:89:21:78:cf:09:d7:eb: d1:d2:be:64:2b:d2:6d:a4:1c:ff:98:8f:18:0a:61: 55:ed:8f:fd:96:46:28:cc:36:dd:91:7d:d9:54:21: 15:cd:cb:dc:7d:44:79:ea:b9:4f:9e:91:57:9e:e7: 45:c1:ca:fd:2d:b5:74:d9:cb:d4:3f:86:38:64:6f: 73:a8:5e:ff:8c:94:79:84:3e:06:c4:7c:0f:23:54: 50:6f:c6:dd:3b:f1:64:92:07:db:af:b1:0c:e5:21: f4:21:a8:6b:8d:73:6a:d8:cf:ca:b0:72:9c:5f:a8: 4d:49:37:df:94:e8:f3:3c:90:87:25:04:92:5c:f8: c9:91:6a:52:85:11:5a:88:44:27:65:d4:aa:ff:4f: 08:85:91:48:15:56:2e:6b:4c:8e:0b:bf:85:af:a3: 5d:5e:27:69:55:82:bb:fb:32:f4:f8:8b:d6:bd:fe: 7e:a8:35:11:8c:4b:89:a1:2f:27:0f:bc:c9:de:6e: 85:92:6c:a6:b1:59:ee:e9:90:aa:ba:b7:51:bb:93: 10:1e:cd:a4:8e:35:ff:49:61:2f:cf:dd:bc:a2:c6: d4:67:a3:49:a8:77:61:c5:00:fd:ae:32:e5:1e:cb: 93:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:17:3E:3F:0F:C7:F4:45:4F:F2:34:9E:68:5D:D0:98:D8:E2:BE:09 X509v3 Authority Key Identifier: keyid:F0:61:54:57:40:B6:B6:6A:9D:3C:1D:1F:E4:F3:FD:B5:A4:F6:93:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F061545740B6B66A9D3C1D1FE4F3FDB5A4F69387.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a36a2171-12a0-4e01-bcab-be3b6b836f5d/0/3130332e3136372e33352e302f32342d3234203d3e20313431393638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.35.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:91:f5:f7:a5:ac:81:88:92:e9:9a:94:51:0a:1e:09:48:90: 33:16:6a:86:29:fc:a9:59:b5:36:b6:c4:7d:c8:27:a9:b5:bc: 7c:b3:2f:04:e5:4e:11:9f:e3:c9:a5:67:ca:57:0f:9f:d5:5a: a4:89:53:bc:89:3d:30:cb:5c:48:5d:4f:21:3a:ab:39:a8:99: 0a:1e:0f:f6:6b:d1:d7:6a:36:71:4a:a7:37:a9:ea:55:04:48: c6:0b:7a:fa:0a:75:03:29:54:23:ce:e4:d9:24:7f:93:53:c7: 6b:37:c1:08:11:0b:dc:3c:56:67:88:a9:83:bd:4a:c3:f8:f8: b2:91:88:65:dd:93:7d:78:e3:24:71:b0:e6:86:17:2a:6e:a3: 4c:4a:d4:4e:48:3d:32:8e:0a:ab:bc:0f:75:98:ab:8a:4c:a9: b6:80:3a:41:c3:93:6c:4f:8b:32:e4:58:27:fa:2c:29:59:b0: ed:b3:be:ef:69:bb:21:ef:e6:28:7b:18:fa:4b:05:1f:81:58: 2a:cc:26:27:53:e7:b0:30:ef:a8:b4:69:3e:0b:1d:21:02:61: 60:10:8b:a4:51:7a:60:9b:b4:d8:68:d0:d4:08:06:95:45:4a: f8:ca:18:87:2e:c8:20:29:11:1a:c2:0d:ff:84:c9:4a:ff:c4: 6d:58:5b:c1 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUULa6OHEBe6OsmWzBA8tnAHjeg3IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVB NEY2OTM4NzAeFw0yNDExMjMwMDU3MzNaFw0yNTExMjIwMTAyMzNaMDMxMTAvBgNV BAMTKDUzMTczRTNGMEZDN0Y0NDU0RkYyMzQ5RTY4NUREMDk4RDhFMkJFMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChWkXsVRumxnLmsfIh3s4VIJNe u+kBiSF4zwnX69HSvmQr0m2kHP+YjxgKYVXtj/2WRijMNt2RfdlUIRXNy9x9RHnq uU+ekVee50XByv0ttXTZy9Q/hjhkb3OoXv+MlHmEPgbEfA8jVFBvxt078WSSB9uv sQzlIfQhqGuNc2rYz8qwcpxfqE1JN9+U6PM8kIclBJJc+MmRalKFEVqIRCdl1Kr/ TwiFkUgVVi5rTI4Lv4Wvo11eJ2lVgrv7MvT4i9a9/n6oNRGMS4mhLycPvMneboWS bKaxWe7pkKq6t1G7kxAezaSONf9JYS/P3byixtRno0mod2HFAP2uMuUey5OzAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUxc+Pw/H9EVP8jSeaF3QmNjivgkwHwYDVR0j BBgwFoAU8GFUV0C2tmqdPB0f5PP9taT2k4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MzZhMjE3MS0xMmEwLTRlMDEtYmNhYi1iZTNiNmI4MzZmNWQvMC9GMDYxNTQ1NzQw QjZCNjZBOUQzQzFEMUZFNEYzRkRCNUE0RjY5Mzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjA2MTU0NTc0MEI2QjY2QTlEM0MxRDFGRTRGM0ZEQjVBNEY2 OTM4Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzNmEyMTcxLTEyYTAtNGUwMS1i Y2FiLWJlM2I2YjgzNmY1ZC8wLzMxMzAzMzJlMzEzNjM3MmUzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzkzNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6cjMA0GCSqG SIb3DQEBCwUAA4IBAQCLkfX3payBiJLpmpRRCh4JSJAzFmqGKfypWbU2tsR9yCep tbx8sy8E5U4Rn+PJpWfKVw+f1VqkiVO8iT0wy1xIXU8hOqs5qJkKHg/2a9HXajZx Sqc3qepVBEjGC3r6CnUDKVQjzuTZJH+TU8drN8EIEQvcPFZniKmDvUrD+PiykYhl 3ZN9eOMkcbDmhhcqbqNMStROSD0yjgqrvA91mKuKTKm2gDpBw5NsT4sy5Fgn+iwp WbDts77vabsh7+Yoexj6SwUfgVgqzCYnU+ewMO+otGk+Cx0hAmFgEIukUXpgm7TY aNDUCAaVRUr4yhiHLsggKREawg3/hMlK/8RtWFvB -----END CERTIFICATE-----Generated at Sun Feb 16 21:50:18 2025 by rpki-client