$ rpki-client -vvf repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/3130332e3136342e3137322e302f32342d3234203d3e20313338313331.roa File: 3130332e3136342e3137322e302f32342d3234203d3e20313338313331.roa (raw, json) Hash identifier: IMm6CCSm6745f06rpuxAhuRN6fVIJUbPiGSK0gcfms4= Subject key identifier: 26:3C:26:7A:4A:51:37:7D:EF:53:EC:E1:66:FA:E1:33:6A:EE:57:AB Certificate issuer: /CN=D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C Certificate serial: 53324E5FD122DE29AF88056FB9A6068A3DD497A1 Authority key identifier: D7:85:2A:F0:5D:FB:B9:7A:CD:46:A3:73:99:F2:0D:EA:19:C2:EF:2C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/3130332e3136342e3137322e302f32342d3234203d3e20313338313331.roa Signing time: Sat 13 Jul 2024 13:02:15 +0000 ROA not before: Sat 13 Jul 2024 12:57:15 +0000 ROA not after: Sat 12 Jul 2025 13:02:15 +0000 asID: 138131 IP address blocks: 103.164.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.crl rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:21:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:32:4e:5f:d1:22:de:29:af:88:05:6f:b9:a6:06:8a:3d:d4:97:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C Validity Not Before: Jul 13 12:57:15 2024 GMT Not After : Jul 12 13:02:15 2025 GMT Subject: CN=263C267A4A51377DEF53ECE166FAE1336AEE57AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:bc:60:c2:43:fe:e7:0c:64:3a:9e:a1:71:c7: cc:7a:39:44:cb:c4:b3:6c:ec:f9:c3:c3:98:35:fd: f0:94:da:ba:a0:2e:a3:57:67:5e:35:e3:77:a7:e8: c4:34:f0:75:98:35:ae:33:75:95:de:df:b4:92:81: ec:41:3d:d9:af:6f:47:22:41:ae:21:ec:40:1d:36: ee:74:b1:c9:b0:02:54:f2:40:47:2f:36:f4:ba:5b: 35:14:cd:f2:a9:9b:07:9a:fb:2f:3c:ba:09:9b:ea: d6:d4:71:b8:aa:3a:c6:55:28:c9:00:1c:71:33:f7: 27:92:58:33:40:9d:cb:d2:61:f7:d7:1a:fc:43:c7: 38:1f:44:a8:26:59:ea:41:04:6c:39:3a:04:26:18: d1:da:ce:71:79:e6:19:cf:51:b9:95:e0:ca:5e:74: 81:38:f4:4f:3c:ee:d2:80:5a:73:72:31:25:73:3a: e3:c1:d6:4d:12:07:65:93:a5:5d:70:f9:c8:e0:5b: dd:80:01:05:f4:8a:80:69:85:cf:1e:43:2b:be:85: 1e:54:b1:74:d3:69:4b:8d:b6:87:97:f6:dd:be:a0: 0e:05:1f:5d:59:3b:9a:6a:12:ca:03:ee:fe:48:f3: 00:55:86:45:f1:a7:53:03:d0:35:26:0b:00:48:06: 72:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:3C:26:7A:4A:51:37:7D:EF:53:EC:E1:66:FA:E1:33:6A:EE:57:AB X509v3 Authority Key Identifier: keyid:D7:85:2A:F0:5D:FB:B9:7A:CD:46:A3:73:99:F2:0D:EA:19:C2:EF:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/3130332e3136342e3137322e302f32342d3234203d3e20313338313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.172.0/24 Signature Algorithm: sha256WithRSAEncryption 41:58:20:db:0b:d5:5e:dd:e0:b5:9d:c8:01:d2:dd:df:79:38: 66:ef:33:9b:bf:56:17:75:25:ba:4a:87:f2:24:c5:12:b7:f3: 3f:11:b5:0e:1e:08:81:67:fe:11:41:47:13:42:2a:e3:7f:f6: 2d:11:af:2e:15:60:e7:93:88:c3:75:eb:32:6f:f6:a9:b7:aa: 4c:c8:60:40:56:2d:df:39:42:82:6d:af:30:24:a4:59:81:41: ba:dc:30:d2:f4:c1:31:9f:7c:3f:a0:56:93:92:1b:47:c2:3b: 60:2a:ad:41:bd:1b:d9:77:87:df:06:5a:02:37:46:b3:e5:72: ae:3f:fb:4b:e7:48:ca:99:ac:c1:31:c9:6c:eb:23:ea:8d:73: a7:d9:d1:c7:c5:90:7d:e5:62:09:00:dc:bc:c9:f5:d8:03:e5: 21:2e:92:10:f9:8a:9a:64:e4:4e:a5:08:d8:32:f6:71:af:40: bc:9d:39:11:c4:41:b7:47:72:3c:59:fe:5f:42:b0:1a:c1:02: 39:d5:bd:ff:9d:5e:48:74:c3:c5:75:5d:02:34:84:99:a0:89: 2d:0b:ab:34:f6:f5:2e:51:d2:03:c1:1c:10:06:5b:6b:93:e8: eb:34:7c:09:0e:40:b3:03:4a:44:cd:ef:21:b8:10:34:a9:12: da:47:d7:91 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUzJOX9Ei3imviAVvuaYGij3Ul6EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDc4NTJBRjA1REZCQjk3QUNENDZBMzczOTlGMjBERUEx OUMyRUYyQzAeFw0yNDA3MTMxMjU3MTVaFw0yNTA3MTIxMzAyMTVaMDMxMTAvBgNV BAMTKDI2M0MyNjdBNEE1MTM3N0RFRjUzRUNFMTY2RkFFMTMzNkFFRTU3QUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvvGDCQ/7nDGQ6nqFxx8x6OUTL xLNs7PnDw5g1/fCU2rqgLqNXZ14143en6MQ08HWYNa4zdZXe37SSgexBPdmvb0ci Qa4h7EAdNu50scmwAlTyQEcvNvS6WzUUzfKpmwea+y88ugmb6tbUcbiqOsZVKMkA HHEz9yeSWDNAncvSYffXGvxDxzgfRKgmWepBBGw5OgQmGNHaznF55hnPUbmV4Mpe dIE49E887tKAWnNyMSVzOuPB1k0SB2WTpV1w+cjgW92AAQX0ioBphc8eQyu+hR5U sXTTaUuNtoeX9t2+oA4FH11ZO5pqEsoD7v5I8wBVhkXxp1MD0DUmCwBIBnI1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUJjwmekpRN33vU+zhZvrhM2ruV6swHwYDVR0j BBgwFoAU14Uq8F37uXrNRqNzmfIN6hnC7ywwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTg5ZjFiNC1lZjYzLTQ1MzktODQ1NS05OGM2NzE5OTVjY2YvMC9ENzg1MkFGMDVE RkJCOTdBQ0Q0NkEzNzM5OUYyMERFQTE5QzJFRjJDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDc4NTJBRjA1REZCQjk3QUNENDZBMzczOTlGMjBERUExOUMy RUYyQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlODlmMWI0LWVmNjMtNDUzOS04 NDU1LTk4YzY3MTk5NWNjZi8wLzMxMzAzMzJlMzEzNjM0MmUzMTM3MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMzMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpKwwDQYJ KoZIhvcNAQELBQADggEBAEFYINsL1V7d4LWdyAHS3d95OGbvM5u/Vhd1JbpKh/Ik xRK38z8RtQ4eCIFn/hFBRxNCKuN/9i0Rry4VYOeTiMN16zJv9qm3qkzIYEBWLd85 QoJtrzAkpFmBQbrcMNL0wTGffD+gVpOSG0fCO2AqrUG9G9l3h98GWgI3RrPlcq4/ +0vnSMqZrMExyWzrI+qNc6fZ0cfFkH3lYgkA3LzJ9dgD5SEukhD5ippk5E6lCNgy 9nGvQLydORHEQbdHcjxZ/l9CsBrBAjnVvf+dXkh0w8V1XQI0hJmgiS0LqzT29S5R 0gPBHBAGW2uT6Os0fAkOQLMDSkTN7yG4EDSpEtpH15E= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:53 2024 by rpki-client on console-ams.rpki-client.org