$ rpki-client -vvf repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/3130332e3136322e3135302e302f32342d3234203d3e20313431363536.roa File: 3130332e3136322e3135302e302f32342d3234203d3e20313431363536.roa (raw, json) Hash identifier: Ra4kBxyKq0eMRR5T+q214TFxoVWgjk/J53dcHzjeFD8= Subject key identifier: 01:EE:71:79:B0:84:7F:8E:E9:72:68:42:21:26:01:64:C6:D2:34:84 Certificate issuer: /CN=14043163A8BFF50600F16410DE27B7A0DEEC1E61 Certificate serial: 2DF5256F26F0E4AB086E8195957AEAD582E18DAC Authority key identifier: 14:04:31:63:A8:BF:F5:06:00:F1:64:10:DE:27:B7:A0:DE:EC:1E:61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14043163A8BFF50600F16410DE27B7A0DEEC1E61.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/3130332e3136322e3135302e302f32342d3234203d3e20313431363536.roa Signing time: Fri 04 Oct 2024 17:00:01 +0000 ROA not before: Fri 04 Oct 2024 16:55:01 +0000 ROA not after: Fri 03 Oct 2025 17:00:01 +0000 asID: 141656 IP address blocks: 103.162.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/14043163A8BFF50600F16410DE27B7A0DEEC1E61.crl rsync://repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/14043163A8BFF50600F16410DE27B7A0DEEC1E61.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14043163A8BFF50600F16410DE27B7A0DEEC1E61.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Feb 2025 23:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:f5:25:6f:26:f0:e4:ab:08:6e:81:95:95:7a:ea:d5:82:e1:8d:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14043163A8BFF50600F16410DE27B7A0DEEC1E61 Validity Not Before: Oct 4 16:55:01 2024 GMT Not After : Oct 3 17:00:01 2025 GMT Subject: CN=01EE7179B0847F8EE972684221260164C6D23484 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:9d:72:41:56:af:da:cd:b8:43:d2:03:68:de: f0:16:70:13:cb:28:c0:8d:75:a4:98:04:85:4a:6a: 2b:18:a7:24:51:18:34:3b:a1:35:09:2b:29:e2:dd: b0:29:00:64:75:68:45:39:d2:a8:fc:d1:d7:fc:db: ee:3c:e6:b8:39:0f:af:83:3b:3e:15:c4:80:10:c4: e5:0f:2a:a2:7b:5f:29:05:94:9c:95:c5:e3:9e:b4: 0d:70:e4:75:d8:e5:b6:8d:f3:6d:89:94:83:00:fe: e8:17:32:5c:ad:b3:56:59:77:b4:a0:aa:68:45:cf: b3:26:d5:6f:84:b1:31:ae:4b:91:52:cd:5b:b4:e6: 7d:6a:61:da:65:97:0d:fc:cc:ad:12:04:76:c7:70: 9b:21:06:d4:f0:57:d5:97:a0:dd:be:7c:8d:b6:ad: e7:e1:95:d4:f0:9b:fc:5f:cf:2b:16:d2:7b:e8:8c: 00:c7:52:64:39:2c:8b:97:f6:ca:68:00:1c:0e:6f: d6:ce:b4:59:e4:5b:ed:5e:68:1a:ae:7f:79:d8:08: a2:2d:50:b1:4b:da:b7:47:a2:c4:34:33:37:a2:0f: ce:68:e6:33:2f:6a:62:a4:74:73:8e:65:b7:12:04: f2:55:91:ee:d7:46:db:54:d1:a0:40:72:6f:e7:0d: 5f:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:EE:71:79:B0:84:7F:8E:E9:72:68:42:21:26:01:64:C6:D2:34:84 X509v3 Authority Key Identifier: keyid:14:04:31:63:A8:BF:F5:06:00:F1:64:10:DE:27:B7:A0:DE:EC:1E:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/14043163A8BFF50600F16410DE27B7A0DEEC1E61.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14043163A8BFF50600F16410DE27B7A0DEEC1E61.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/3130332e3136322e3135302e302f32342d3234203d3e20313431363536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.150.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:22:2f:ec:e5:76:4f:96:df:6f:c9:e8:56:3d:1d:d4:30:13: 2d:e2:21:42:f5:42:6c:12:9c:44:1f:ee:fa:fc:b1:87:50:a9: 72:24:59:37:48:2f:00:d6:2d:9f:ac:a8:af:8c:33:6d:a2:53: c2:e5:89:fd:35:71:86:7c:77:e7:17:6b:5e:79:b8:2f:9b:84: 23:6e:d1:a0:df:de:44:27:13:ac:4e:9d:bf:0b:f6:eb:3c:74: ab:6e:09:3c:37:40:37:27:d6:52:2b:df:2a:0d:58:cc:7b:70: 42:fc:f1:cd:cc:ac:fb:b8:81:27:45:bf:92:ed:a7:01:88:33: 17:a1:08:80:87:d5:c9:1f:a1:07:c8:72:0c:7d:03:5d:b8:3d: 8f:f3:9d:1e:07:f2:31:62:62:fe:1b:f3:c9:fe:b9:0a:7a:6b: 0c:bf:82:29:7b:a9:94:35:d1:76:19:89:45:7c:d5:f1:93:87: 32:ec:60:c9:e0:4f:99:35:86:3d:07:b3:20:3e:64:11:6e:40: 93:77:c4:0f:61:2d:12:f6:42:3a:5b:60:90:73:f7:c2:a9:7c: 16:4f:69:2b:9e:e6:3e:d3:c5:22:0f:21:e8:d4:72:d0:2d:ec: 4e:a5:4a:38:2e:f1:cc:55:2f:a5:fe:61:6e:e6:1e:e6:9b:8e: 5f:80:18:21 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIULfUlbybw5KsIboGVlXrq1YLhjawwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTQwNDMxNjNBOEJGRjUwNjAwRjE2NDEwREUyN0I3QTBE RUVDMUU2MTAeFw0yNDEwMDQxNjU1MDFaFw0yNTEwMDMxNzAwMDFaMDMxMTAvBgNV BAMTKDAxRUU3MTc5QjA4NDdGOEVFOTcyNjg0MjIxMjYwMTY0QzZEMjM0ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCknXJBVq/azbhD0gNo3vAWcBPL KMCNdaSYBIVKaisYpyRRGDQ7oTUJKyni3bApAGR1aEU50qj80df82+485rg5D6+D Oz4VxIAQxOUPKqJ7XykFlJyVxeOetA1w5HXY5baN822JlIMA/ugXMlyts1ZZd7Sg qmhFz7Mm1W+EsTGuS5FSzVu05n1qYdpllw38zK0SBHbHcJshBtTwV9WXoN2+fI22 refhldTwm/xfzysW0nvojADHUmQ5LIuX9spoABwOb9bOtFnkW+1eaBquf3nYCKIt ULFL2rdHosQ0MzeiD85o5jMvamKkdHOOZbcSBPJVke7XRttU0aBAcm/nDV9jAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUAe5xebCEf47pcmhCISYBZMbSNIQwHwYDVR0j BBgwFoAUFAQxY6i/9QYA8WQQ3ie3oN7sHmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWQ5ZWEyMC0zNDNkLTRhY2ItOTU4MS04MWY5ZDdlYTkyZmUvMC8xNDA0MzE2M0E4 QkZGNTA2MDBGMTY0MTBERTI3QjdBMERFRUMxRTYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTQwNDMxNjNBOEJGRjUwNjAwRjE2NDEwREUyN0I3QTBERUVD MUU2MS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlZDllYTIwLTM0M2QtNGFjYi05 NTgxLTgxZjlkN2VhOTJmZS8wLzMxMzAzMzJlMzEzNjMyMmUzMTM1MzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnopYwDQYJ KoZIhvcNAQELBQADggEBAC8iL+zldk+W32/J6FY9HdQwEy3iIUL1QmwSnEQf7vr8 sYdQqXIkWTdILwDWLZ+sqK+MM22iU8Llif01cYZ8d+cXa155uC+bhCNu0aDf3kQn E6xOnb8L9us8dKtuCTw3QDcn1lIr3yoNWMx7cEL88c3MrPu4gSdFv5LtpwGIMxeh CICH1ckfoQfIcgx9A124PY/znR4H8jFiYv4b88n+uQp6awy/gil7qZQ10XYZiUV8 1fGThzLsYMngT5k1hj0HsyA+ZBFuQJN3xA9hLRL2QjpbYJBz98KpfBZPaSue5j7T xSIPIejUctAt7E6lSjgu8cxVL6X+YW7mHuabjl+AGCE= -----END CERTIFICATE-----Generated at Fri Feb 21 11:00:13 2025 by rpki-client