$ rpki-client -vvf repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/3130332e3136372e3130372e302f32342d3234203d3e203538333639.roa File: 3130332e3136372e3130372e302f32342d3234203d3e203538333639.roa (raw, json) Hash identifier: tT4gc0q94OJ9J51EDxZAqiRSsz3IQhNjUxtH2SdyPuA= Subject key identifier: 29:65:28:F7:C0:04:3A:95:E2:D1:68:8F:04:4C:AD:79:DA:AB:12:28 Certificate issuer: /CN=C8AC2212A272ECEAE88D5232072578922C0E2E05 Certificate serial: 330B33FE45AE962B242E06834F8E252AE58106C7 Authority key identifier: C8:AC:22:12:A2:72:EC:EA:E8:8D:52:32:07:25:78:92:2C:0E:2E:05 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8AC2212A272ECEAE88D5232072578922C0E2E05.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/3130332e3136372e3130372e302f32342d3234203d3e203538333639.roa Signing time: Sat 16 Mar 2024 09:00:01 +0000 ROA not before: Sat 16 Mar 2024 08:55:01 +0000 ROA not after: Sat 15 Mar 2025 09:00:01 +0000 asID: 58369 IP address blocks: 103.167.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/C8AC2212A272ECEAE88D5232072578922C0E2E05.crl rsync://repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/C8AC2212A272ECEAE88D5232072578922C0E2E05.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8AC2212A272ECEAE88D5232072578922C0E2E05.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 14:05:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:0b:33:fe:45:ae:96:2b:24:2e:06:83:4f:8e:25:2a:e5:81:06:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C8AC2212A272ECEAE88D5232072578922C0E2E05 Validity Not Before: Mar 16 08:55:01 2024 GMT Not After : Mar 15 09:00:01 2025 GMT Subject: CN=296528F7C0043A95E2D1688F044CAD79DAAB1228 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:cc:83:fb:31:60:5a:3f:39:bd:ce:65:be:a9: 54:d8:1f:21:c6:38:bb:f6:40:1a:f2:b7:4f:94:35: 8b:3a:eb:e5:6d:47:c6:5c:4a:c2:a1:9a:71:06:f5: ff:cc:13:38:7b:4c:29:7e:d1:a0:6c:93:34:4c:e7: 8c:46:6f:00:33:10:02:1b:e3:a9:d0:1d:22:a0:9c: f9:f1:46:0a:8f:9c:41:c2:b9:37:02:28:77:bd:ae: dd:eb:0a:43:9e:57:b9:1b:c5:b3:c0:f7:ad:20:79: 5f:8b:63:d4:f8:4b:16:ba:1e:43:90:95:91:4b:7f: e9:54:63:58:ef:59:ac:49:a7:b9:9f:db:36:bd:60: 42:07:0b:01:10:80:d6:42:be:a0:18:3e:e2:f7:ce: 86:8b:46:a9:3b:39:65:f5:10:32:a1:dd:d5:b8:4b: 06:da:cf:18:a3:80:ef:ae:d3:58:94:2f:6e:d6:55: 4c:d9:bd:93:ac:c8:69:3a:00:56:46:6c:fe:81:7c: bf:01:e7:13:23:09:8a:8c:24:45:bb:46:e2:d2:7b: 2b:f6:2a:cb:f6:cb:46:3f:b1:bd:39:95:93:30:e5: 0a:51:68:1a:a3:d4:23:d3:8b:9d:0b:87:7a:ce:3a: bb:6e:1b:94:45:ce:4f:98:02:7b:0b:64:18:87:e4: 33:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:65:28:F7:C0:04:3A:95:E2:D1:68:8F:04:4C:AD:79:DA:AB:12:28 X509v3 Authority Key Identifier: keyid:C8:AC:22:12:A2:72:EC:EA:E8:8D:52:32:07:25:78:92:2C:0E:2E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/C8AC2212A272ECEAE88D5232072578922C0E2E05.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C8AC2212A272ECEAE88D5232072578922C0E2E05.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c81e9238-4267-48ef-b02e-1d7d04400941/0/3130332e3136372e3130372e302f32342d3234203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.107.0/24 Signature Algorithm: sha256WithRSAEncryption 17:9b:5e:fc:df:b2:8d:7a:2c:ae:cf:3c:52:47:17:5b:93:2d: f1:53:5a:99:46:cc:65:07:63:73:fb:d0:9e:4a:03:50:ef:18: 73:f6:c7:ed:8e:c9:c1:59:7d:fd:ec:34:41:49:b1:a5:bd:1d: 24:7b:04:88:ef:ad:d3:df:85:f6:87:ce:74:c2:75:34:ce:59: 96:cd:24:f4:b6:08:1f:32:b4:e7:dc:e7:f2:07:b2:79:79:0c: 74:1d:7e:5c:bc:da:86:7b:d5:f0:6c:55:2f:9d:36:55:b4:60: 80:6c:2b:5a:45:cc:82:52:0a:43:75:c6:2b:55:45:71:58:6f: 8c:eb:d6:ea:8c:48:55:9e:55:10:ec:5f:62:6b:52:f8:12:54: 43:3a:dc:1d:db:65:f8:5d:2e:90:c6:e2:eb:6c:fb:dd:60:fc: f7:6e:f9:59:1a:cb:e8:0c:fc:0c:7d:1a:64:46:4f:bb:04:c3: 5c:24:85:2b:dc:a3:f9:0d:01:1a:cf:a5:f0:2b:1b:ca:7f:f1: 70:de:c3:e0:08:09:6a:38:07:08:92:c8:07:a0:22:46:7b:96: 42:24:0e:25:94:d7:f2:04:bb:d3:c7:58:87:9d:93:a5:13:9e: ae:cf:e9:66:9d:bc:fb:2a:f3:a7:6b:19:3c:46:5f:09:87:5a: ae:29:13:01 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMwsz/kWuliskLgaDT44lKuWBBscwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzhBQzIyMTJBMjcyRUNFQUU4OEQ1MjMyMDcyNTc4OTIy QzBFMkUwNTAeFw0yNDAzMTYwODU1MDFaFw0yNTAzMTUwOTAwMDFaMDMxMTAvBgNV BAMTKDI5NjUyOEY3QzAwNDNBOTVFMkQxNjg4RjA0NENBRDc5REFBQjEyMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDczIP7MWBaPzm9zmW+qVTYHyHG OLv2QBryt0+UNYs66+VtR8ZcSsKhmnEG9f/MEzh7TCl+0aBskzRM54xGbwAzEAIb 46nQHSKgnPnxRgqPnEHCuTcCKHe9rt3rCkOeV7kbxbPA960geV+LY9T4Sxa6HkOQ lZFLf+lUY1jvWaxJp7mf2za9YEIHCwEQgNZCvqAYPuL3zoaLRqk7OWX1EDKh3dW4 SwbazxijgO+u01iUL27WVUzZvZOsyGk6AFZGbP6BfL8B5xMjCYqMJEW7RuLSeyv2 Ksv2y0Y/sb05lZMw5QpRaBqj1CPTi50Lh3rOOrtuG5RFzk+YAnsLZBiH5DNPAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKWUo98AEOpXi0WiPBEytedqrEigwHwYDVR0j BBgwFoAUyKwiEqJy7OrojVIyByV4kiwOLgUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ODFlOTIzOC00MjY3LTQ4ZWYtYjAyZS0xZDdkMDQ0MDA5NDEvMC9DOEFDMjIxMkEy NzJFQ0VBRTg4RDUyMzIwNzI1Nzg5MjJDMEUyRTA1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzhBQzIyMTJBMjcyRUNFQUU4OEQ1MjMyMDcyNTc4OTIyQzBF MkUwNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4MWU5MjM4LTQyNjctNDhlZi1i MDJlLTFkN2QwNDQwMDk0MS8wLzMxMzAzMzJlMzEzNjM3MmUzMTMwMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6drMA0GCSqG SIb3DQEBCwUAA4IBAQAXm17837KNeiyuzzxSRxdbky3xU1qZRsxlB2Nz+9CeSgNQ 7xhz9sftjsnBWX397DRBSbGlvR0kewSI763T34X2h850wnU0zlmWzST0tggfMrTn 3OfyB7J5eQx0HX5cvNqGe9XwbFUvnTZVtGCAbCtaRcyCUgpDdcYrVUVxWG+M69bq jEhVnlUQ7F9ia1L4ElRDOtwd22X4XS6QxuLrbPvdYPz3bvlZGsvoDPwMfRpkRk+7 BMNcJIUr3KP5DQEaz6XwKxvKf/Fw3sPgCAlqOAcIksgHoCJGe5ZCJA4llNfyBLvT x1iHnZOlE56uz+lmnbz7KvOnaxk8Rl8Jh1quKRMB -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:57 2024 by rpki-client on console-ams.rpki-client.org