$ rpki-client -vvf repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/3130332e3136342e3137332e302f32342d3234203d3e20313338313331.roa File: 3130332e3136342e3137332e302f32342d3234203d3e20313338313331.roa (raw, json) Hash identifier: CSWgjUvsmFAUoxn+c8cQjQuQW7eYcbWtJrqUbfz/Tn4= Subject key identifier: CC:B8:FD:B2:6A:E2:89:18:F0:B5:E4:8B:48:E7:0F:9B:A4:3C:F4:96 Certificate issuer: /CN=D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C Certificate serial: 16C9F3055E27AF83B9E4FF13FBD35C40D86D62D6 Authority key identifier: D7:85:2A:F0:5D:FB:B9:7A:CD:46:A3:73:99:F2:0D:EA:19:C2:EF:2C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/3130332e3136342e3137332e302f32342d3234203d3e20313338313331.roa Signing time: Sat 13 Jul 2024 13:02:15 +0000 ROA not before: Sat 13 Jul 2024 12:57:15 +0000 ROA not after: Sat 12 Jul 2025 13:02:15 +0000 asID: 138131 IP address blocks: 103.164.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.crl rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 18:21:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:c9:f3:05:5e:27:af:83:b9:e4:ff:13:fb:d3:5c:40:d8:6d:62:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C Validity Not Before: Jul 13 12:57:15 2024 GMT Not After : Jul 12 13:02:15 2025 GMT Subject: CN=CCB8FDB26AE28918F0B5E48B48E70F9BA43CF496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:cb:7d:67:c0:ff:3d:6d:53:6a:c3:16:b7:37: a8:6f:cc:48:ab:b2:6f:f4:22:de:35:5d:5f:7e:36: ca:3d:f4:26:b1:34:77:f7:a5:93:18:25:9d:02:07: 03:da:81:ed:e2:87:cc:ff:38:8f:d4:29:ce:ad:9a: 05:be:11:00:4d:5d:5c:c7:00:44:01:e6:1e:d8:f4: 9a:ec:ef:0b:6c:dd:87:f8:a3:07:c9:1c:7e:29:bb: c8:e5:74:31:d4:ab:af:bc:7a:a6:2c:71:27:54:99: 61:2e:76:4e:95:94:0a:b7:85:15:12:b5:d2:e6:bb: b6:45:26:10:17:f3:2d:b4:06:67:35:e2:c3:bb:60: 71:05:35:db:c8:af:2e:cd:b3:63:af:ce:b7:65:23: a1:71:bf:66:c4:f8:d8:02:38:8e:82:09:5e:21:1d: e0:b5:30:5d:9c:9b:07:2f:04:c9:06:b3:b8:bf:8e: 38:e6:c7:07:5d:aa:eb:eb:5f:43:bd:fe:61:06:fd: a4:24:2d:42:48:fc:ac:bd:5c:f0:0b:40:c0:bd:bc: 09:90:37:8b:48:18:57:b9:a8:10:3e:d8:f6:72:2a: ce:c3:ca:b0:de:f7:59:56:e7:a7:59:35:5c:b2:2d: b3:7f:80:d2:b6:13:8e:56:71:d1:bc:6f:16:08:dd: e1:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:B8:FD:B2:6A:E2:89:18:F0:B5:E4:8B:48:E7:0F:9B:A4:3C:F4:96 X509v3 Authority Key Identifier: keyid:D7:85:2A:F0:5D:FB:B9:7A:CD:46:A3:73:99:F2:0D:EA:19:C2:EF:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D7852AF05DFBB97ACD46A37399F20DEA19C2EF2C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae89f1b4-ef63-4539-8455-98c671995ccf/0/3130332e3136342e3137332e302f32342d3234203d3e20313338313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.173.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:52:5c:27:3d:74:96:69:19:31:53:48:fe:1f:a1:27:d9:4b: dd:ff:ff:b3:7c:e4:85:53:e3:1f:2f:18:83:73:2f:16:82:37: c9:03:bd:b1:2c:d1:8e:40:5f:7c:46:4a:61:93:20:0a:5b:19: 37:bb:5d:c7:6b:4b:84:e5:4c:a0:f0:32:90:b7:b8:82:85:a7: 88:f0:f3:fa:e9:c4:7c:f4:6f:2e:dc:d4:70:ba:c0:cb:e2:11: 4a:27:7f:98:b5:3c:7f:7f:eb:bb:ea:7a:df:f1:a8:98:dd:e7: c2:3e:9f:12:a7:b8:e1:73:97:d7:81:90:86:47:68:a0:88:0b: 81:2e:a5:29:b7:9f:4e:4d:9b:19:74:4b:c3:70:75:f2:e3:fb: 5e:05:4a:48:fc:f0:0a:4b:cf:80:aa:8a:81:fa:94:60:2a:02: 8c:c3:14:9d:8c:dd:a8:2d:87:54:c3:f7:e5:93:2f:66:75:60: ba:14:be:ce:27:0b:b5:47:6a:e1:22:57:ca:4d:c9:d7:78:ac: 90:af:b4:2a:83:58:a5:f0:a0:0c:ac:cb:e7:02:3a:40:93:6d: 7a:51:58:d3:a0:33:36:6e:ce:80:2c:95:cb:b6:16:94:95:49: 1a:36:2d:89:8f:a0:f6:93:49:54:43:bd:88:84:cb:d0:b1:5d: f7:ea:46:1c -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFsnzBV4nr4O55P8T+9NcQNhtYtYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDc4NTJBRjA1REZCQjk3QUNENDZBMzczOTlGMjBERUEx OUMyRUYyQzAeFw0yNDA3MTMxMjU3MTVaFw0yNTA3MTIxMzAyMTVaMDMxMTAvBgNV BAMTKENDQjhGREIyNkFFMjg5MThGMEI1RTQ4QjQ4RTcwRjlCQTQzQ0Y0OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4y31nwP89bVNqwxa3N6hvzEir sm/0It41XV9+Nso99CaxNHf3pZMYJZ0CBwPage3ih8z/OI/UKc6tmgW+EQBNXVzH AEQB5h7Y9Jrs7wts3Yf4owfJHH4pu8jldDHUq6+8eqYscSdUmWEudk6VlAq3hRUS tdLmu7ZFJhAX8y20Bmc14sO7YHEFNdvIry7Ns2OvzrdlI6Fxv2bE+NgCOI6CCV4h HeC1MF2cmwcvBMkGs7i/jjjmxwddquvrX0O9/mEG/aQkLUJI/Ky9XPALQMC9vAmQ N4tIGFe5qBA+2PZyKs7DyrDe91lW56dZNVyyLbN/gNK2E45WcdG8bxYI3eHPAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUzLj9smriiRjwteSLSOcPm6Q89JYwHwYDVR0j BBgwFoAU14Uq8F37uXrNRqNzmfIN6hnC7ywwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTg5ZjFiNC1lZjYzLTQ1MzktODQ1NS05OGM2NzE5OTVjY2YvMC9ENzg1MkFGMDVE RkJCOTdBQ0Q0NkEzNzM5OUYyMERFQTE5QzJFRjJDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDc4NTJBRjA1REZCQjk3QUNENDZBMzczOTlGMjBERUExOUMy RUYyQy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlODlmMWI0LWVmNjMtNDUzOS04 NDU1LTk4YzY3MTk5NWNjZi8wLzMxMzAzMzJlMzEzNjM0MmUzMTM3MzMyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMzMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpK0wDQYJ KoZIhvcNAQELBQADggEBAB5SXCc9dJZpGTFTSP4foSfZS93//7N85IVT4x8vGINz LxaCN8kDvbEs0Y5AX3xGSmGTIApbGTe7XcdrS4TlTKDwMpC3uIKFp4jw8/rpxHz0 by7c1HC6wMviEUonf5i1PH9/67vqet/xqJjd58I+nxKnuOFzl9eBkIZHaKCIC4Eu pSm3n05Nmxl0S8NwdfLj+14FSkj88ApLz4CqioH6lGAqAozDFJ2M3agth1TD9+WT L2Z1YLoUvs4nC7VHauEiV8pNydd4rJCvtCqDWKXwoAysy+cCOkCTbXpRWNOgMzZu zoAslcu2FpSVSRo2LYmPoPaTSVRDvYiEy9CxXffqRhw= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:33 2024 by rpki-client on console-fra.rpki-client.org