$ rpki-client -vvf repo-rpki.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/3130332e3136312e3130382e302f32342d3234203d3e20313431393132.roa File: 3130332e3136312e3130382e302f32342d3234203d3e20313431393132.roa (raw, json) Hash identifier: rhPXvt3vZoIcR1IRod2t44CHmG+h6gK4lk8l2hSp6UQ= Subject key identifier: 83:CF:A2:32:47:2D:80:BD:2B:6A:B9:44:15:CF:AB:5D:90:6A:1D:9A Certificate issuer: /CN=FF1246B1AF5B158EA26E75654D7B7A6DED645787 Certificate serial: 24950A459F3C63871FDC05CA3E2CF1EE54FAE8C7 Authority key identifier: FF:12:46:B1:AF:5B:15:8E:A2:6E:75:65:4D:7B:7A:6D:ED:64:57:87 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF1246B1AF5B158EA26E75654D7B7A6DED645787.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/3130332e3136312e3130382e302f32342d3234203d3e20313431393132.roa Signing time: Thu 16 May 2024 09:16:22 +0000 ROA not before: Thu 16 May 2024 09:11:22 +0000 ROA not after: Thu 15 May 2025 09:16:22 +0000 asID: 141912 IP address blocks: 103.161.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/FF1246B1AF5B158EA26E75654D7B7A6DED645787.crl rsync://repo-rpki.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/FF1246B1AF5B158EA26E75654D7B7A6DED645787.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF1246B1AF5B158EA26E75654D7B7A6DED645787.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:95:0a:45:9f:3c:63:87:1f:dc:05:ca:3e:2c:f1:ee:54:fa:e8:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF1246B1AF5B158EA26E75654D7B7A6DED645787 Validity Not Before: May 16 09:11:22 2024 GMT Not After : May 15 09:16:22 2025 GMT Subject: CN=83CFA232472D80BD2B6AB94415CFAB5D906A1D9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d7:f7:73:df:79:53:69:98:f1:69:3d:e9:6d: c4:63:05:86:92:d6:1b:3f:7c:8e:c8:38:58:ab:c5: 9f:ba:1a:a9:64:a5:4e:7c:bc:91:1d:01:a6:68:65: 30:eb:7c:25:85:42:e1:fb:75:f0:c3:72:cb:86:f0: 86:29:92:b4:77:30:6a:30:08:48:17:0c:a9:be:67: ff:9a:0a:94:38:8b:e4:9c:a6:ce:be:55:51:cc:10: c4:48:48:b0:bc:1a:b6:23:a2:e3:ac:11:3a:c5:d5: 4a:92:2d:c0:a4:df:51:dd:eb:aa:e6:4c:13:b9:55: 36:b6:a9:0b:97:e6:fa:95:02:a8:94:41:f8:c6:2e: 17:39:33:03:50:7f:7e:40:48:f2:ee:7c:98:f2:50: 17:61:71:26:d6:dc:72:0a:04:1e:7a:2c:cd:e5:8a: 17:40:1c:64:83:a8:db:0a:08:50:94:59:47:75:0c: 72:ac:cf:52:c3:7a:d4:9e:8a:53:30:75:b3:ab:c6: 46:1e:68:33:3c:0e:0b:90:35:68:ed:cf:20:c8:fb: 93:63:b3:9e:2b:03:59:d1:c2:98:69:5c:28:4e:1c: e1:c4:a9:cd:e9:d9:6a:ca:9d:d5:de:1e:67:0e:44: ea:f0:ad:4a:ba:4a:88:d6:84:f5:69:32:06:0c:3e: c4:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:CF:A2:32:47:2D:80:BD:2B:6A:B9:44:15:CF:AB:5D:90:6A:1D:9A X509v3 Authority Key Identifier: keyid:FF:12:46:B1:AF:5B:15:8E:A2:6E:75:65:4D:7B:7A:6D:ED:64:57:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/FF1246B1AF5B158EA26E75654D7B7A6DED645787.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FF1246B1AF5B158EA26E75654D7B7A6DED645787.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a89a0661-31ee-49a2-ae9f-f6d573a17df7/0/3130332e3136312e3130382e302f32342d3234203d3e20313431393132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.108.0/24 Signature Algorithm: sha256WithRSAEncryption a4:f0:ac:af:a8:2b:1b:fc:7f:92:ef:c0:0f:98:76:fc:91:a7: 4f:55:cf:97:6e:b2:e8:29:41:6c:29:05:0b:ab:43:3f:04:d5: 6f:e4:b5:ed:05:4f:ce:41:56:63:52:c1:b6:ef:6f:81:3f:43: 1e:a5:9e:d7:e7:e2:91:f1:89:a7:54:77:18:c4:07:8b:47:e7: 01:68:79:cf:6e:5a:a2:ef:16:0a:5e:65:3c:95:8e:4d:8c:a3: 2f:2a:b9:01:d3:2a:fa:6f:1b:cf:b5:96:e6:13:ed:e3:29:40: c7:2b:5b:84:f4:d9:d1:4d:fe:27:4c:ed:af:61:43:de:c4:88: bd:07:9f:59:b8:c2:fa:48:f6:6b:15:c6:c9:69:b9:a6:d1:82: 16:5a:5c:cd:39:08:f5:5d:07:de:88:65:38:0f:ea:89:ce:42: 84:88:c2:e9:c1:d3:35:a4:66:80:5b:7a:a5:30:a8:23:e4:6b: 35:10:23:cc:74:17:8f:d0:08:2f:d6:2f:ca:b2:e9:28:5c:54: 9e:a9:18:53:6b:ee:55:cd:dc:76:4a:0e:62:33:a8:d2:40:62: f1:24:d4:a1:e5:0e:ef:d3:3b:cc:be:34:94:17:3d:18:4c:c5: 70:8a:11:17:86:46:fb:70:31:9e:11:bd:74:d0:67:a3:97:fe: 73:a1:78:eb -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJJUKRZ88Y4cf3AXKPizx7lT66McwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkYxMjQ2QjFBRjVCMTU4RUEyNkU3NTY1NEQ3QjdBNkRF RDY0NTc4NzAeFw0yNDA1MTYwOTExMjJaFw0yNTA1MTUwOTE2MjJaMDMxMTAvBgNV BAMTKDgzQ0ZBMjMyNDcyRDgwQkQyQjZBQjk0NDE1Q0ZBQjVEOTA2QTFEOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC31/dz33lTaZjxaT3pbcRjBYaS 1hs/fI7IOFirxZ+6GqlkpU58vJEdAaZoZTDrfCWFQuH7dfDDcsuG8IYpkrR3MGow CEgXDKm+Z/+aCpQ4i+Scps6+VVHMEMRISLC8GrYjouOsETrF1UqSLcCk31Hd66rm TBO5VTa2qQuX5vqVAqiUQfjGLhc5MwNQf35ASPLufJjyUBdhcSbW3HIKBB56LM3l ihdAHGSDqNsKCFCUWUd1DHKsz1LDetSeilMwdbOrxkYeaDM8DguQNWjtzyDI+5Nj s54rA1nRwphpXChOHOHEqc3p2WrKndXeHmcOROrwrUq6SojWhPVpMgYMPsR7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUg8+iMkctgL0rarlEFc+rXZBqHZowHwYDVR0j BBgwFoAU/xJGsa9bFY6ibnVlTXt6be1kV4cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ODlhMDY2MS0zMWVlLTQ5YTItYWU5Zi1mNmQ1NzNhMTdkZjcvMC9GRjEyNDZCMUFG NUIxNThFQTI2RTc1NjU0RDdCN0E2REVENjQ1Nzg3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkYxMjQ2QjFBRjVCMTU4RUEyNkU3NTY1NEQ3QjdBNkRFRDY0 NTc4Ny5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4OWEwNjYxLTMxZWUtNDlhMi1h ZTlmLWY2ZDU3M2ExN2RmNy8wLzMxMzAzMzJlMzEzNjMxMmUzMTMwMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTMxMzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnoWwwDQYJ KoZIhvcNAQELBQADggEBAKTwrK+oKxv8f5LvwA+YdvyRp09Vz5dusugpQWwpBQur Qz8E1W/kte0FT85BVmNSwbbvb4E/Qx6lntfn4pHxiadUdxjEB4tH5wFoec9uWqLv FgpeZTyVjk2Moy8quQHTKvpvG8+1luYT7eMpQMcrW4T02dFN/idM7a9hQ97EiL0H n1m4wvpI9msVxslpuabRghZaXM05CPVdB96IZTgP6onOQoSIwunB0zWkZoBbeqUw qCPkazUQI8x0F4/QCC/WL8qy6ShcVJ6pGFNr7lXN3HZKDmIzqNJAYvEk1KHlDu/T O8y+NJQXPRhMxXCKEReGRvtwMZ4RvXTQZ6OX/nOheOs= -----END CERTIFICATE-----Generated at Sun Nov 24 13:26:10 2024 by rpki-client on console-ams.rpki-client.org