$ rpki-client -vvf repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa File: 3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa (raw, json) Hash identifier: 9E8QVBoAroDUqMrtqFLZdvTypP1Njqyq9IYgh3B0/7s= Subject key identifier: 92:39:FB:64:B0:5B:3B:82:52:7B:AC:C0:98:23:F4:9A:70:AD:F0:90 Certificate issuer: /CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Certificate serial: 479C2CB7685A3B28CCE063215C6CA681631FEA71 Authority key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa Signing time: Fri 27 Sep 2024 12:00:00 +0000 ROA not before: Fri 27 Sep 2024 11:55:00 +0000 ROA not after: Fri 26 Sep 2025 12:00:00 +0000 asID: 149175 IP address blocks: 103.167.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:9c:2c:b7:68:5a:3b:28:cc:e0:63:21:5c:6c:a6:81:63:1f:ea:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Validity Not Before: Sep 27 11:55:00 2024 GMT Not After : Sep 26 12:00:00 2025 GMT Subject: CN=9239FB64B05B3B82527BACC09823F49A70ADF090 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:d4:de:04:1d:1a:f6:45:11:c0:8a:17:3c:6f: 64:db:6d:19:e4:24:0e:48:7c:a2:40:9b:ab:f7:0f: 6c:c4:e1:df:fb:37:00:96:e7:3f:d2:7c:bf:91:8f: 03:7b:3e:11:82:84:d9:cc:61:6b:13:b8:08:03:36: a7:32:75:a6:26:32:6f:33:cb:09:3b:77:76:19:e1: 30:77:0d:b1:6e:f4:6f:15:08:d0:b8:96:b5:85:88: d2:7f:63:69:23:9f:7c:3c:ed:da:dd:14:16:a1:9e: 91:bc:a1:92:4c:0a:14:a0:00:7c:61:5a:b1:f0:08: 08:b9:12:f5:91:e7:ab:0f:90:8a:be:45:19:87:bc: 52:46:47:e2:4f:f5:49:72:2e:22:d6:72:13:31:1a: 23:5e:0b:39:13:76:3b:0e:17:22:97:2e:be:d4:66: b7:2f:c1:b8:8a:6e:73:7e:6c:90:04:cb:f8:75:de: 97:3b:10:85:55:47:6a:23:70:68:84:cb:90:f6:29: f3:88:9b:b3:f8:1c:c0:83:15:06:93:2f:ec:cc:04: f6:88:af:15:22:91:30:3e:43:ea:d1:dc:17:4b:20: 0d:8c:1a:5c:a1:9d:eb:05:46:04:d4:f3:08:b8:b2: 04:af:2a:62:ae:15:81:b7:d3:4d:04:13:1b:26:aa: ee:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:39:FB:64:B0:5B:3B:82:52:7B:AC:C0:98:23:F4:9A:70:AD:F0:90 X509v3 Authority Key Identifier: keyid:8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.71.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:ea:e4:39:39:d9:86:07:d3:b8:cc:61:54:08:fc:b8:4e:01: 0a:2f:eb:b7:cb:57:b1:79:00:a2:5b:84:54:87:2a:e1:b9:d7: 65:2d:2b:37:28:57:80:67:16:97:55:b0:ba:31:27:68:2d:17: d7:95:b4:d4:b0:d1:09:33:bf:90:ce:03:4d:61:5d:92:c5:84: 3b:7a:50:d9:1d:32:79:f4:13:fa:e8:ca:2e:d0:47:20:49:d2: 23:b1:6f:ae:b8:10:3b:08:f4:35:c8:70:ff:e4:5c:47:6f:70: eb:dc:c5:1d:63:3d:ab:df:f4:b6:5e:64:ec:17:29:f3:59:b4: 9a:42:4e:af:89:c6:62:f6:5b:f7:93:b0:d5:9e:36:65:89:11: a7:5c:98:d6:41:02:9e:58:fa:e6:ac:4d:24:d1:dd:4b:ba:95: 8b:30:2c:2b:95:91:03:18:04:5c:f6:29:6f:1e:35:19:55:c6: b2:44:ce:df:cb:e4:d3:45:5d:9a:de:fb:80:4a:6a:de:53:18: 5c:18:eb:28:d3:fc:dd:2d:94:24:45:2f:9b:b2:24:26:42:d7: 9f:c0:b3:f3:a4:5f:1a:c4:b8:53:71:dc:b0:88:78:19:46:e1: ab:e9:9f:9c:c3:fb:44:19:8b:a7:6b:d9:5d:5c:ee:8a:81:76: 99:ff:5e:a9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUR5wst2haOyjM4GMhXGymgWMf6nEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5 OTYxMEU1MDAeFw0yNDA5MjcxMTU1MDBaFw0yNTA5MjYxMjAwMDBaMDMxMTAvBgNV BAMTKDkyMzlGQjY0QjA1QjNCODI1MjdCQUNDMDk4MjNGNDlBNzBBREYwOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDv1N4EHRr2RRHAihc8b2TbbRnk JA5IfKJAm6v3D2zE4d/7NwCW5z/SfL+RjwN7PhGChNnMYWsTuAgDNqcydaYmMm8z ywk7d3YZ4TB3DbFu9G8VCNC4lrWFiNJ/Y2kjn3w87drdFBahnpG8oZJMChSgAHxh WrHwCAi5EvWR56sPkIq+RRmHvFJGR+JP9UlyLiLWchMxGiNeCzkTdjsOFyKXLr7U ZrcvwbiKbnN+bJAEy/h13pc7EIVVR2ojcGiEy5D2KfOIm7P4HMCDFQaTL+zMBPaI rxUikTA+Q+rR3BdLIA2MGlyhnesFRgTU8wi4sgSvKmKuFYG3000EExsmqu4dAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUkjn7ZLBbO4JSe6zAmCP0mnCt8JAwHwYDVR0j BBgwFoAUjae9L7U/JJH7bzyTGe80dJlhDlAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMC84REE3QkQyRkI1 M0YyNDkxRkI2RjNDOTMxOUVGMzQ3NDk5NjEwRTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5OTYx MEU1MC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4ZjllODdkLWU1MDktNDdiYS1i ZTlkLTg5NTU2ZjUzMGVhOC8wLzMxMzAzMzJlMzEzNjM3MmUzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzEzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6dHMA0GCSqG SIb3DQEBCwUAA4IBAQBK6uQ5OdmGB9O4zGFUCPy4TgEKL+u3y1exeQCiW4RUhyrh uddlLSs3KFeAZxaXVbC6MSdoLRfXlbTUsNEJM7+QzgNNYV2SxYQ7elDZHTJ59BP6 6Mou0EcgSdIjsW+uuBA7CPQ1yHD/5FxHb3Dr3MUdYz2r3/S2XmTsFynzWbSaQk6v icZi9lv3k7DVnjZliRGnXJjWQQKeWPrmrE0k0d1LupWLMCwrlZEDGARc9ilvHjUZ VcayRM7fy+TTRV2a3vuASmreUxhcGOso0/zdLZQkRS+bsiQmQtefwLPzpF8axLhT cdywiHgZRuGr6Z+cw/tEGYuna9ldXO6KgXaZ/16p -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:44 2024 by rpki-client on console-fra.rpki-client.org