$ rpki-client -vvf repo-rpki.idnic.net/repo/a634c8dc-8853-4f65-8209-4fbee7ab4252/0/3130332e3136362e3133362e302f32332d3234203d3e203137393935.roa File: 3130332e3136362e3133362e302f32332d3234203d3e203137393935.roa (raw, json) Hash identifier: RBc8t0SzZzq6PvIsQn/Y8gWPBkf8OuMfzBXzr0Qs6z4= Subject key identifier: E5:A5:92:D5:A5:CD:EF:54:CF:BA:3B:A3:52:E0:29:43:FE:41:B9:10 Certificate issuer: /CN=292C6CF5F336CE0D758E47F5DF9778633CDCA769 Certificate serial: 1E662E9AC6259B7B0CEC870CC174461CEBA11886 Authority key identifier: 29:2C:6C:F5:F3:36:CE:0D:75:8E:47:F5:DF:97:78:63:3C:DC:A7:69 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/292C6CF5F336CE0D758E47F5DF9778633CDCA769.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a634c8dc-8853-4f65-8209-4fbee7ab4252/0/3130332e3136362e3133362e302f32332d3234203d3e203137393935.roa Signing time: Fri 02 Aug 2024 11:02:24 +0000 ROA not before: Fri 02 Aug 2024 10:57:24 +0000 ROA not after: Fri 01 Aug 2025 11:02:24 +0000 asID: 17995 IP address blocks: 103.166.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a634c8dc-8853-4f65-8209-4fbee7ab4252/0/292C6CF5F336CE0D758E47F5DF9778633CDCA769.crl rsync://repo-rpki.idnic.net/repo/a634c8dc-8853-4f65-8209-4fbee7ab4252/0/292C6CF5F336CE0D758E47F5DF9778633CDCA769.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/292C6CF5F336CE0D758E47F5DF9778633CDCA769.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:66:2e:9a:c6:25:9b:7b:0c:ec:87:0c:c1:74:46:1c:eb:a1:18:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=292C6CF5F336CE0D758E47F5DF9778633CDCA769 Validity Not Before: Aug 2 10:57:24 2024 GMT Not After : Aug 1 11:02:24 2025 GMT Subject: CN=E5A592D5A5CDEF54CFBA3BA352E02943FE41B910 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:03:9f:56:38:0e:aa:f8:86:7b:77:1b:4b:d3: 69:3d:e7:e4:be:d8:cf:35:3f:19:91:63:0f:cd:14: 8b:04:7e:cc:81:a4:71:09:51:28:cf:b8:a9:ff:6d: 2e:c0:f4:84:37:dc:14:88:f2:3e:f8:4b:90:c2:6c: 4c:74:19:f4:e9:c6:fe:36:54:f2:31:39:e5:ea:b4: 0f:6e:68:ef:67:b1:88:71:d3:c8:ab:2e:22:61:cc: f0:c1:bc:dd:a8:be:f6:f9:ea:c2:22:f7:16:bd:56: 6d:5d:17:c3:23:66:db:07:22:eb:e6:0e:4f:bb:06: ec:38:56:aa:0a:0d:73:a5:61:4d:b5:6e:a8:c6:b3: b5:5a:aa:b3:4d:e6:e3:cd:7f:4f:18:b3:09:d1:8a: 52:94:84:5d:80:c9:86:be:45:9f:3c:bd:b9:2c:88: 5a:38:ab:5e:db:17:f0:15:f4:dd:48:61:c6:f3:81: bf:d9:19:6c:35:ae:9d:96:a9:ac:06:80:f2:79:3e: 5d:58:b3:6b:c5:dc:cb:11:56:de:11:93:03:74:9a: f4:f4:c0:2c:56:a8:e3:85:c5:4f:d6:96:d6:ba:57: 47:bc:23:b6:6f:e4:62:ec:a1:45:93:0d:c5:78:95: ce:88:11:d2:ee:22:8a:3c:d1:b8:7f:a6:d3:db:4c: b5:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:A5:92:D5:A5:CD:EF:54:CF:BA:3B:A3:52:E0:29:43:FE:41:B9:10 X509v3 Authority Key Identifier: keyid:29:2C:6C:F5:F3:36:CE:0D:75:8E:47:F5:DF:97:78:63:3C:DC:A7:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a634c8dc-8853-4f65-8209-4fbee7ab4252/0/292C6CF5F336CE0D758E47F5DF9778633CDCA769.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/292C6CF5F336CE0D758E47F5DF9778633CDCA769.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a634c8dc-8853-4f65-8209-4fbee7ab4252/0/3130332e3136362e3133362e302f32332d3234203d3e203137393935.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.136.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:ae:f8:52:09:88:0e:ea:c7:1a:ca:6f:b6:86:84:87:64:8a: 75:3e:e5:33:a4:3f:11:3f:33:44:3a:2b:a3:84:42:f2:55:dc: bc:67:4b:48:c1:46:7e:0c:ce:e9:3e:d3:29:b4:b2:11:74:df: f7:e1:4b:d6:0f:55:53:8e:0c:0f:af:48:f4:4f:47:b3:0d:ea: 53:5c:10:fb:74:7d:24:0d:7a:2b:06:20:ca:b4:a1:f2:c8:2a: b8:dc:35:d2:7d:6c:9d:71:55:6d:bc:0d:08:46:bf:8e:5c:11: 85:37:91:b3:59:9c:02:27:90:d4:bc:84:e1:31:14:0e:75:6d: 56:e0:c9:93:ce:1b:03:0c:51:dc:be:5a:d9:f9:23:53:5b:a3: 63:0c:4c:b0:4d:82:9e:ae:3b:ff:4e:0e:d2:79:1c:dc:79:ab: 9d:9c:3d:ce:1f:5b:60:53:4c:d8:27:5f:1d:15:fd:d8:ed:e9: 40:c7:eb:45:05:ab:55:66:6c:1a:02:16:9d:5c:6b:32:2a:a5: 4c:e5:72:30:e8:35:e5:8b:4f:4e:ad:39:3b:3a:dd:f5:59:2c: 4b:a4:40:3c:d8:50:1a:13:08:24:58:a7:e1:42:d9:a2:e2:f1: 04:7f:b3:a3:69:4a:ba:9f:c3:b9:a7:2b:15:3c:00:3b:39:9b: 7a:24:a6:1e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHmYumsYlm3sM7IcMwXRGHOuhGIYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjkyQzZDRjVGMzM2Q0UwRDc1OEU0N0Y1REY5Nzc4NjMz Q0RDQTc2OTAeFw0yNDA4MDIxMDU3MjRaFw0yNTA4MDExMTAyMjRaMDMxMTAvBgNV BAMTKEU1QTU5MkQ1QTVDREVGNTRDRkJBM0JBMzUyRTAyOTQzRkU0MUI5MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVA59WOA6q+IZ7dxtL02k95+S+ 2M81PxmRYw/NFIsEfsyBpHEJUSjPuKn/bS7A9IQ33BSI8j74S5DCbEx0GfTpxv42 VPIxOeXqtA9uaO9nsYhx08irLiJhzPDBvN2ovvb56sIi9xa9Vm1dF8MjZtsHIuvm Dk+7Buw4VqoKDXOlYU21bqjGs7VaqrNN5uPNf08YswnRilKUhF2AyYa+RZ88vbks iFo4q17bF/AV9N1IYcbzgb/ZGWw1rp2WqawGgPJ5Pl1Ys2vF3MsRVt4RkwN0mvT0 wCxWqOOFxU/Wlta6V0e8I7Zv5GLsoUWTDcV4lc6IEdLuIoo80bh/ptPbTLUrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU5aWS1aXN71TPujujUuApQ/5BuRAwHwYDVR0j BBgwFoAUKSxs9fM2zg11jkf135d4Yzzcp2kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjM0YzhkYy04ODUzLTRmNjUtODIwOS00ZmJlZTdhYjQyNTIvMC8yOTJDNkNGNUYz MzZDRTBENzU4RTQ3RjVERjk3Nzg2MzNDRENBNzY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjkyQzZDRjVGMzM2Q0UwRDc1OEU0N0Y1REY5Nzc4NjMzQ0RD QTc2OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2MzRjOGRjLTg4NTMtNGY2NS04 MjA5LTRmYmVlN2FiNDI1Mi8wLzMxMzAzMzJlMzEzNjM2MmUzMTMzMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzkzOTM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6aIMA0GCSqG SIb3DQEBCwUAA4IBAQBfrvhSCYgO6scaym+2hoSHZIp1PuUzpD8RPzNEOiujhELy Vdy8Z0tIwUZ+DM7pPtMptLIRdN/34UvWD1VTjgwPr0j0T0ezDepTXBD7dH0kDXor BiDKtKHyyCq43DXSfWydcVVtvA0IRr+OXBGFN5GzWZwCJ5DUvIThMRQOdW1W4MmT zhsDDFHcvlrZ+SNTW6NjDEywTYKerjv/Tg7SeRzceaudnD3OH1tgU0zYJ18dFf3Y 7elAx+tFBatVZmwaAhadXGsyKqVM5XIw6DXli09OrTk7Ot31WSxLpEA82FAaEwgk WKfhQtmi4vEEf7OjaUq6n8O5pysVPAA7OZt6JKYe -----END CERTIFICATE-----Generated at Fri Nov 22 22:21:00 2024 by rpki-client on console-fra.rpki-client.org