$ rpki-client -vvf repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa File: 3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa (raw, json) Hash identifier: nOmusyTjg1lvZ1iGKTLy/8UGF4jeQtTQYSW2SNX3cao= Subject key identifier: 52:5F:00:9A:D9:BB:0E:1A:02:CF:B6:77:30:92:27:B5:84:C0:58:4A Certificate issuer: /CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Certificate serial: 35E0C2670A74D91F62D513A67877A6CC074587DB Authority key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa Signing time: Fri 27 Sep 2024 12:00:00 +0000 ROA not before: Fri 27 Sep 2024 11:55:00 +0000 ROA not after: Fri 26 Sep 2025 12:00:00 +0000 asID: 141975 IP address blocks: 103.167.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:e0:c2:67:0a:74:d9:1f:62:d5:13:a6:78:77:a6:cc:07:45:87:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Validity Not Before: Sep 27 11:55:00 2024 GMT Not After : Sep 26 12:00:00 2025 GMT Subject: CN=525F009AD9BB0E1A02CFB677309227B584C0584A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c1:e9:03:1c:86:11:5e:87:60:94:88:14:44: cf:2e:4d:2f:a7:dc:6e:7c:b5:1b:b8:d6:29:cb:8e: c9:16:af:df:ed:2e:d2:6e:02:1e:f5:67:b7:28:de: 0f:86:d1:61:25:95:ef:91:6f:d8:c1:50:46:0c:4c: 08:af:03:dc:ae:20:64:29:25:a0:d6:17:5d:c0:fc: f3:fc:a3:0e:34:c5:66:14:14:cd:d2:88:f8:26:97: b6:e4:a6:8e:35:ac:f6:67:b8:42:72:dd:68:8b:f6: 19:4d:27:ba:b9:be:94:82:55:ae:5c:6a:8f:01:98: e1:9c:e3:1d:19:4b:44:4f:4d:40:3b:8f:ac:59:2e: 37:3d:29:60:0a:9e:a4:cf:69:d1:d8:e9:09:5b:97: 9a:19:d6:56:e8:53:93:d2:6c:d0:9a:ff:8c:27:b7: d6:3d:f0:24:4d:b4:1e:0b:4e:c1:dc:6c:fb:a0:82: 38:52:ef:45:e1:bf:38:30:b2:db:01:b5:b9:61:d7: 56:2c:ad:31:c7:8e:3c:06:ca:2b:46:65:62:d6:3b: 29:82:0f:22:d7:a1:9f:db:8d:fb:3f:73:83:0f:a7: 32:a6:a1:c9:bd:7e:da:de:ec:1d:09:3a:80:40:09: 9d:26:9d:e0:fb:94:78:9f:13:f0:32:59:a2:0f:10: ea:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:5F:00:9A:D9:BB:0E:1A:02:CF:B6:77:30:92:27:B5:84:C0:58:4A X509v3 Authority Key Identifier: keyid:8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.70.0/24 Signature Algorithm: sha256WithRSAEncryption 20:3e:b4:ac:59:7f:39:ba:6a:71:97:42:b8:0f:09:c2:57:35: 91:ed:28:4a:57:2a:bb:46:d8:23:98:43:96:65:51:35:bb:28: f3:6a:96:36:1a:86:51:74:56:d3:78:27:b6:68:1a:32:aa:c5: af:8c:ec:99:ac:b5:06:f6:77:58:41:61:79:07:13:2c:4d:bd: 1e:1a:23:45:74:ed:c9:2f:e2:f5:21:75:c7:f6:2a:80:1a:b1: f8:52:b0:34:23:0f:db:7b:fd:f8:05:72:95:8a:ac:9b:a8:29: 9a:40:ee:9a:6e:00:23:60:9b:81:14:25:46:3b:2a:4a:b3:c3: c1:89:f2:f3:13:e7:7e:33:8f:c3:d4:15:0f:67:62:9f:3d:59: e1:e0:ff:26:65:01:40:78:69:19:3e:16:2b:95:0e:e6:4f:69: ec:3b:f7:7e:df:19:f7:ea:2c:bb:a7:9d:63:12:e8:7e:0e:c1: 97:7d:d7:ee:ad:59:a7:2d:a1:10:fe:fe:97:d7:6c:ca:76:56: 11:f8:e3:57:f1:d4:44:33:67:d2:8b:f9:ee:64:af:6a:49:83: fa:24:3c:98:c1:bc:95:1c:5a:91:51:1c:94:5d:a6:72:16:22: 88:1b:3b:f8:64:0e:f3:98:48:be:81:3b:a6:0e:a5:68:0d:d3: 7e:88:21:f4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNeDCZwp02R9i1ROmeHemzAdFh9swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5 OTYxMEU1MDAeFw0yNDA5MjcxMTU1MDBaFw0yNTA5MjYxMjAwMDBaMDMxMTAvBgNV BAMTKDUyNUYwMDlBRDlCQjBFMUEwMkNGQjY3NzMwOTIyN0I1ODRDMDU4NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvwekDHIYRXodglIgURM8uTS+n 3G58tRu41inLjskWr9/tLtJuAh71Z7co3g+G0WElle+Rb9jBUEYMTAivA9yuIGQp JaDWF13A/PP8ow40xWYUFM3SiPgml7bkpo41rPZnuEJy3WiL9hlNJ7q5vpSCVa5c ao8BmOGc4x0ZS0RPTUA7j6xZLjc9KWAKnqTPadHY6Qlbl5oZ1lboU5PSbNCa/4wn t9Y98CRNtB4LTsHcbPuggjhS70XhvzgwstsBtblh11YsrTHHjjwGyitGZWLWOymC DyLXoZ/bjfs/c4MPpzKmocm9ftre7B0JOoBACZ0mneD7lHifE/AyWaIPEOpnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUl8Amtm7DhoCz7Z3MJIntYTAWEowHwYDVR0j BBgwFoAUjae9L7U/JJH7bzyTGe80dJlhDlAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMC84REE3QkQyRkI1 M0YyNDkxRkI2RjNDOTMxOUVGMzQ3NDk5NjEwRTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5OTYx MEU1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4ZjllODdkLWU1MDktNDdiYS1i ZTlkLTg5NTU2ZjUzMGVhOC8wLzMxMzAzMzJlMzEzNjM3MmUzNzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzkzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6dGMA0GCSqG SIb3DQEBCwUAA4IBAQAgPrSsWX85umpxl0K4DwnCVzWR7ShKVyq7RtgjmEOWZVE1 uyjzapY2GoZRdFbTeCe2aBoyqsWvjOyZrLUG9ndYQWF5BxMsTb0eGiNFdO3JL+L1 IXXH9iqAGrH4UrA0Iw/be/34BXKViqybqCmaQO6abgAjYJuBFCVGOypKs8PBifLz E+d+M4/D1BUPZ2KfPVnh4P8mZQFAeGkZPhYrlQ7mT2nsO/d+3xn36iy7p51jEuh+ DsGXfdfurVmnLaEQ/v6X12zKdlYR+ONX8dREM2fSi/nuZK9qSYP6JDyYwbyVHFqR URyUXaZyFiKIGzv4ZA7zmEi+gTumDqVoDdN+iCH0 -----END CERTIFICATE-----Generated at Sun Nov 24 23:06:10 2024 by rpki-client on console-ams.rpki-client.org