$ rpki-client -vvf repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/3130332e3136372e3130362e302f32342d3234203d3e203538333639.roa File: 3130332e3136372e3130362e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: fIHZqGWuZY3lEs/zXPWmQlLoo+8xZeuSfASg+zrg9mc= Subject key identifier: 68:67:83:8F:33:48:3C:41:5E:AD:0B:88:20:B0:F9:5F:9E:91:DB:EC Certificate issuer: /CN=C8AC2212A272ECEAE88D5232072578922C0E2E05 Certificate serial: 6A13F0C7DD03949362A7A12A33D9B1C416EF9C24 Authority key identifier: C8:AC:22:12:A2:72:EC:EA:E8:8D:52:32:07:25:78:92:2C:0E:2E:05 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8AC2212A272ECEAE88D5232072578922C0E2E05.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/3130332e3136372e3130362e302f32342d3234203d3e203538333639.roa Signing time: Sat 16 Mar 2024 09:00:01 +0000 ROA not before: Sat 16 Mar 2024 08:55:01 +0000 ROA not after: Sat 15 Mar 2025 09:00:01 +0000 asID: 58369 IP address blocks: 103.167.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/C8AC2212A272ECEAE88D5232072578922C0E2E05.crl rsync://repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/C8AC2212A272ECEAE88D5232072578922C0E2E05.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8AC2212A272ECEAE88D5232072578922C0E2E05.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 06:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:13:f0:c7:dd:03:94:93:62:a7:a1:2a:33:d9:b1:c4:16:ef:9c:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8AC2212A272ECEAE88D5232072578922C0E2E05 Validity Not Before: Mar 16 08:55:01 2024 GMT Not After : Mar 15 09:00:01 2025 GMT Subject: CN=6867838F33483C415EAD0B8820B0F95F9E91DBEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9c:4c:17:23:ad:9a:10:13:dd:c2:ba:d4:07: e2:14:d1:29:0c:1a:d3:95:ef:67:0a:9b:d2:1b:40: 54:f2:e0:7c:84:17:45:d9:b5:c1:f8:1c:cf:ba:c8: ac:f0:7a:5c:6d:42:96:ca:30:ee:95:0e:26:ed:f7: 16:24:af:8c:15:85:3b:e3:6f:9b:c9:3b:57:9c:32: 73:3c:79:64:22:0e:c6:9a:40:d8:56:37:88:c4:b5: a4:f0:69:b5:4a:ac:74:f0:58:42:ad:d4:9c:27:03: 34:03:3c:fe:7f:cd:b4:ed:e5:a8:9b:e4:9d:45:8a: 38:98:7a:8d:b8:1c:25:79:56:68:8e:69:3d:bb:4a: 99:72:20:79:e8:8b:58:1e:e2:d4:6d:76:cb:18:6b: e0:57:17:82:af:80:b1:3b:43:78:ec:8b:a4:01:70: d9:4a:5b:60:c5:38:6d:a5:77:78:ae:2c:0c:ab:e6: 7e:a6:82:88:58:fd:46:cf:de:91:8b:e2:d5:10:ef: 9b:55:c1:26:3d:c4:3d:6a:0c:15:15:a0:cf:14:0b: 91:d9:23:54:1d:c1:bc:e0:b3:97:aa:1b:3e:96:d0: 6f:00:14:86:aa:7c:d3:a8:d9:05:b3:bc:19:39:ba: c4:5f:e5:66:cf:a8:f9:21:d3:b9:cc:40:9f:db:b9: e3:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:67:83:8F:33:48:3C:41:5E:AD:0B:88:20:B0:F9:5F:9E:91:DB:EC X509v3 Authority Key Identifier: keyid:C8:AC:22:12:A2:72:EC:EA:E8:8D:52:32:07:25:78:92:2C:0E:2E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/C8AC2212A272ECEAE88D5232072578922C0E2E05.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8AC2212A272ECEAE88D5232072578922C0E2E05.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/3130332e3136372e3130362e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.106.0/24 Signature Algorithm: sha256WithRSAEncryption c8:9b:4d:52:4e:b1:55:2c:b1:58:84:82:e7:c0:e3:e6:e7:56: c0:cd:f9:9e:01:25:51:53:48:13:22:36:e0:e9:e0:5f:80:0b: 9c:96:6c:34:08:2a:1d:e4:3c:3c:10:c5:51:a9:02:0c:41:ef: 18:78:91:d9:34:8f:7a:83:38:30:87:ad:01:36:bd:42:85:8f: 35:31:c9:e0:71:02:7f:ea:22:e8:ce:7b:64:7d:58:73:46:98: 73:f8:cf:8b:88:03:ec:3e:8f:42:c8:45:2a:b6:84:af:37:38: a5:71:f7:8b:2d:53:1b:04:cf:86:6d:81:2b:df:c4:13:84:70: 25:7f:73:ce:9e:fb:a9:d1:7e:50:75:3c:be:b0:3c:b7:de:ef: 2b:f5:37:3f:d3:aa:ed:71:78:21:e8:e1:58:0b:14:75:18:ac: 5d:71:97:c2:ab:0e:92:7a:8b:eb:aa:17:c4:12:b7:d8:bf:a0: bd:c7:32:15:79:76:b2:52:10:d2:8f:45:69:34:a3:36:8f:2b: 3a:e2:2b:8b:9b:0f:0a:99:07:91:6b:d8:dd:c4:df:65:3e:ee: 83:b8:f1:d3:e7:0f:87:03:a9:f4:57:bd:f0:2f:25:d3:9e:4c: 6a:6e:ce:e4:e7:95:91:e4:15:9e:49:b5:45:85:5d:f4:c0:f5: 51:31:e8:42 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUahPwx90DlJNip6EqM9mxxBbvnCQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhBQzIyMTJBMjcyRUNFQUU4OEQ1MjMyMDcyNTc4OTIy QzBFMkUwNTAeFw0yNDAzMTYwODU1MDFaFw0yNTAzMTUwOTAwMDFaMDMxMTAvBgNV BAMTKDY4Njc4MzhGMzM0ODNDNDE1RUFEMEI4ODIwQjBGOTVGOUU5MURCRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFnEwXI62aEBPdwrrUB+IU0SkM GtOV72cKm9IbQFTy4HyEF0XZtcH4HM+6yKzwelxtQpbKMO6VDibt9xYkr4wVhTvj b5vJO1ecMnM8eWQiDsaaQNhWN4jEtaTwabVKrHTwWEKt1JwnAzQDPP5/zbTt5aib 5J1FijiYeo24HCV5VmiOaT27SplyIHnoi1ge4tRtdssYa+BXF4KvgLE7Q3jsi6QB cNlKW2DFOG2ld3iuLAyr5n6mgohY/UbP3pGL4tUQ75tVwSY9xD1qDBUVoM8UC5HZ I1Qdwbzgs5eqGz6W0G8AFIaqfNOo2QWzvBk5usRf5WbPqPkh07nMQJ/bueOnAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUaGeDjzNIPEFerQuIILD5X56R2+wwHwYDVR0j BBgwFoAUyKwiEqJy7OrojVIyByV4kiwOLgUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ODFlOTIzOC00MjY3LTQ4ZWYtYjAyZS0xZDdkMDQ0MDA5NDEvMC9DOEFDMjIxMkEy NzJFQ0VBRTg4RDUyMzIwNzI1Nzg5MjJDMEUyRTA1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhBQzIyMTJBMjcyRUNFQUU4OEQ1MjMyMDcyNTc4OTIyQzBF MkUwNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4MWU5MjM4LTQyNjctNDhlZi1i MDJlLTFkN2QwNDQwMDk0MS8wLzMxMzAzMzJlMzEzNjM3MmUzMTMwMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6dqMA0GCSqG SIb3DQEBCwUAA4IBAQDIm01STrFVLLFYhILnwOPm51bAzfmeASVRU0gTIjbg6eBf gAuclmw0CCod5Dw8EMVRqQIMQe8YeJHZNI96gzgwh60BNr1ChY81McngcQJ/6iLo zntkfVhzRphz+M+LiAPsPo9CyEUqtoSvNzilcfeLLVMbBM+GbYEr38QThHAlf3PO nvup0X5QdTy+sDy33u8r9Tc/06rtcXgh6OFYCxR1GKxdcZfCqw6SeovrqhfEErfY v6C9xzIVeXayUhDSj0VpNKM2jys64iuLmw8KmQeRa9jdxN9lPu6DuPHT5w+HA6n0 V73wLyXTnkxqbs7k55WR5BWeSbVFhV30wPVRMehC -----END CERTIFICATE-----Generated at Wed May 1 03:18:53 2024 by rpki-client on console-fra.rpki-client.org