$ rpki-client -vvf repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/3130332e3136322e3233382e302f32342d3234203d3e20313431363639.roa File: 3130332e3136322e3233382e302f32342d3234203d3e20313431363639.roa (raw, json) Hash identifier: IJE11zWl6Bd22ECBH1B+diB+bL1zv7uu4MShP4zlbeo= Subject key identifier: 98:56:AA:7F:54:60:9E:E3:7C:89:2B:A3:E5:B8:7E:19:ED:17:48:B8 Certificate issuer: /CN=9DDB1110A2DE9FA031620A330D94EEBAF4F5135B Certificate serial: 4CFB440379FE976CF119A356CFECCF12FE5E75CF Authority key identifier: 9D:DB:11:10:A2:DE:9F:A0:31:62:0A:33:0D:94:EE:BA:F4:F5:13:5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/3130332e3136322e3233382e302f32342d3234203d3e20313431363639.roa Signing time: Thu 07 Nov 2024 11:00:39 +0000 ROA not before: Thu 07 Nov 2024 10:55:39 +0000 ROA not after: Thu 06 Nov 2025 11:00:39 +0000 asID: 141669 IP address blocks: 103.162.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.crl rsync://repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:fb:44:03:79:fe:97:6c:f1:19:a3:56:cf:ec:cf:12:fe:5e:75:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9DDB1110A2DE9FA031620A330D94EEBAF4F5135B Validity Not Before: Nov 7 10:55:39 2024 GMT Not After : Nov 6 11:00:39 2025 GMT Subject: CN=9856AA7F54609EE37C892BA3E5B87E19ED1748B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b4:15:de:b8:d3:c6:3e:c9:ec:da:7f:d5:10: 44:8b:3c:3c:5b:91:74:47:cb:a6:d3:45:25:f1:40: e5:f9:7a:2f:f5:52:dc:b6:bd:b3:ed:2f:5d:02:71: d6:9d:bc:28:fe:c1:d9:53:bb:46:85:96:15:87:9c: 1f:67:bc:c2:b6:47:b6:32:50:45:ff:08:4f:38:38: 49:69:3a:df:00:72:ec:c6:e8:a1:f0:1f:a0:b0:83: 89:ad:74:6f:a1:99:c7:88:39:ac:21:0a:3f:66:a8: 9b:d9:de:f4:53:e9:f8:49:c6:68:b4:44:85:c9:a7: 6f:3d:f6:fa:6d:34:99:de:ad:bc:3b:89:7a:b2:e4: b4:24:6b:30:59:aa:f4:ad:21:a8:75:b4:8c:f7:ae: d4:59:5c:45:f9:20:b3:cf:38:d1:ff:76:ef:dc:4c: 3b:05:f9:b6:04:7b:56:dd:51:46:dd:07:08:a9:80: f8:a9:ac:27:9c:64:0d:9b:53:85:9e:ba:8b:32:4f: fd:32:43:34:ec:91:94:fd:04:39:43:a2:0b:52:17: 88:08:ca:65:86:d0:96:0a:dd:62:11:2f:81:98:0f: ac:59:50:40:b7:19:d3:7a:27:6b:d0:ae:02:72:9e: e9:42:12:ad:a3:fa:99:eb:ab:4f:1b:88:66:53:7c: 36:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:56:AA:7F:54:60:9E:E3:7C:89:2B:A3:E5:B8:7E:19:ED:17:48:B8 X509v3 Authority Key Identifier: keyid:9D:DB:11:10:A2:DE:9F:A0:31:62:0A:33:0D:94:EE:BA:F4:F5:13:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DDB1110A2DE9FA031620A330D94EEBAF4F5135B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aaf6984f-ccf9-4c40-b114-380356a8cd88/0/3130332e3136322e3233382e302f32342d3234203d3e20313431363639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.238.0/24 Signature Algorithm: sha256WithRSAEncryption 84:c1:32:e1:b4:81:a3:29:ce:d8:a3:72:e5:54:c5:2a:8c:c2: 47:d7:43:c3:cd:af:2e:59:32:6d:47:79:08:f0:5f:f6:50:8c: 01:45:14:e7:94:1f:cc:d6:5a:b0:8f:30:71:12:12:a7:2b:2e: f1:1e:2d:07:d7:bd:c7:25:8b:1b:bc:f7:f3:4b:19:38:e9:8a: 42:4f:fe:e0:d8:d3:a5:89:95:23:3a:8a:b7:04:aa:3c:90:c6: bf:c6:34:85:e2:39:e2:d7:24:f5:e1:5a:06:bd:52:d1:00:2b: b7:e6:2e:cc:a3:0b:93:5a:4c:b2:14:d0:b2:90:35:c1:bd:c3: 81:9b:38:d1:45:06:61:77:e3:55:88:6f:e4:19:63:5e:ad:2c: 98:63:d4:2b:f7:ca:b0:53:1b:98:0f:92:64:22:55:57:fc:b4: fa:56:85:c7:b1:09:6d:67:0a:3b:a5:41:1b:c0:73:08:80:4e: 87:c3:86:25:77:4f:7a:35:68:2b:33:39:af:75:ca:f6:0b:d0: 4f:e8:66:a8:1a:36:33:58:93:bb:90:5e:48:95:23:65:a3:80: 92:15:b5:24:75:27:3e:38:37:e7:4b:d7:33:c8:bd:f6:41:f4: 9a:20:af:4f:d5:d8:7e:df:c4:f5:ca:cb:a3:ed:21:f8:0c:9d: 93:da:c1:2a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUTPtEA3n+l2zxGaNWz+zPEv5edc8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUREQjExMTBBMkRFOUZBMDMxNjIwQTMzMEQ5NEVFQkFG NEY1MTM1QjAeFw0yNDExMDcxMDU1MzlaFw0yNTExMDYxMTAwMzlaMDMxMTAvBgNV BAMTKDk4NTZBQTdGNTQ2MDlFRTM3Qzg5MkJBM0U1Qjg3RTE5RUQxNzQ4QjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmtBXeuNPGPsns2n/VEESLPDxb kXRHy6bTRSXxQOX5ei/1Uty2vbPtL10CcdadvCj+wdlTu0aFlhWHnB9nvMK2R7Yy UEX/CE84OElpOt8AcuzG6KHwH6Cwg4mtdG+hmceIOawhCj9mqJvZ3vRT6fhJxmi0 RIXJp2899vptNJnerbw7iXqy5LQkazBZqvStIah1tIz3rtRZXEX5ILPPONH/du/c TDsF+bYEe1bdUUbdBwipgPiprCecZA2bU4WeuosyT/0yQzTskZT9BDlDogtSF4gI ymWG0JYK3WIRL4GYD6xZUEC3GdN6J2vQrgJynulCEq2j+pnrq08biGZTfDYfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUmFaqf1RgnuN8iSuj5bh+Ge0XSLgwHwYDVR0j BBgwFoAUndsREKLen6AxYgozDZTuuvT1E1swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWY2OTg0Zi1jY2Y5LTRjNDAtYjExNC0zODAzNTZhOGNkODgvMC85RERCMTExMEEy REU5RkEwMzE2MjBBMzMwRDk0RUVCQUY0RjUxMzVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUREQjExMTBBMkRFOUZBMDMxNjIwQTMzMEQ5NEVFQkFGNEY1 MTM1Qi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhZjY5ODRmLWNjZjktNGM0MC1i MTE0LTM4MDM1NmE4Y2Q4OC8wLzMxMzAzMzJlMzEzNjMyMmUzMjMzMzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjM2Mzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnou4wDQYJ KoZIhvcNAQELBQADggEBAITBMuG0gaMpztijcuVUxSqMwkfXQ8PNry5ZMm1HeQjw X/ZQjAFFFOeUH8zWWrCPMHESEqcrLvEeLQfXvcclixu89/NLGTjpikJP/uDY06WJ lSM6ircEqjyQxr/GNIXiOeLXJPXhWga9UtEAK7fmLsyjC5NaTLIU0LKQNcG9w4Gb ONFFBmF341WIb+QZY16tLJhj1Cv3yrBTG5gPkmQiVVf8tPpWhcexCW1nCjulQRvA cwiATofDhiV3T3o1aCszOa91yvYL0E/oZqgaNjNYk7uQXkiVI2WjgJIVtSR1Jz44 N+dL1zPIvfZB9Jogr0/V2H7fxPXKy6PtIfgMnZPawSo= -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:51 2024 by rpki-client on console-fra.rpki-client.org