$ rpki-client -vvf repo-rpki.idnic.net/repo/d18c0383-629f-46e2-b114-188cc921a6a5/0/3130332e3139312e3136382e302f32342d3234203d3e20313439393234.roa File: 3130332e3139312e3136382e302f32342d3234203d3e20313439393234.roa (raw, json) Hash identifier: AKzYRBKAgaDMXTDjMBdoks0xvDWlgZswunocDWfSChs= Subject key identifier: 4C:66:F6:65:E9:E9:53:29:51:F0:5E:6F:AF:64:E2:72:5F:88:0A:E1 Certificate issuer: /CN=68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF Certificate serial: 2A2E56398E94D4A5F98DD28C0CE5080BB8B814 Authority key identifier: 68:B1:66:10:EA:F2:D4:B3:AB:FB:9A:C5:71:7E:DF:0A:60:01:EE:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d18c0383-629f-46e2-b114-188cc921a6a5/0/3130332e3139312e3136382e302f32342d3234203d3e20313439393234.roa Signing time: Tue 20 Aug 2024 13:00:00 +0000 ROA not before: Tue 20 Aug 2024 12:55:00 +0000 ROA not after: Tue 19 Aug 2025 13:00:00 +0000 asID: 149924 IP address blocks: 103.191.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d18c0383-629f-46e2-b114-188cc921a6a5/0/68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF.crl rsync://repo-rpki.idnic.net/repo/d18c0383-629f-46e2-b114-188cc921a6a5/0/68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:2e:56:39:8e:94:d4:a5:f9:8d:d2:8c:0c:e5:08:0b:b8:b8:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF Validity Not Before: Aug 20 12:55:00 2024 GMT Not After : Aug 19 13:00:00 2025 GMT Subject: CN=4C66F665E9E9532951F05E6FAF64E2725F880AE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:de:d6:93:cd:ed:f2:29:9f:34:28:9c:de:47: c3:94:54:8b:af:06:20:c0:41:05:11:b6:6e:ba:76: 6a:8f:e0:b5:ff:28:59:64:fe:1c:08:59:4c:da:c3: 93:f8:ea:9c:5b:f4:a4:e6:a1:0e:2a:21:70:43:30: de:3e:3d:65:65:14:62:5a:b1:37:c1:bd:5d:0f:35: 77:44:8e:a5:05:fe:13:00:90:9f:f6:84:f4:2a:a6: a5:5e:b2:25:e0:65:e6:1c:41:02:0c:77:39:cc:a6: 8d:57:43:80:cb:33:b3:23:56:90:bd:50:60:c6:c1: 45:5e:c2:3f:c3:c4:8e:1e:34:35:25:37:76:d9:03: a9:63:c3:d2:e7:60:e7:fc:b6:87:24:c9:53:81:69: 8f:c5:b3:86:7d:be:da:34:c5:50:1a:12:4f:54:7e: f8:68:62:fb:55:d1:22:e8:96:4b:74:e9:dd:3d:9d: 39:00:64:3f:48:02:71:ff:a3:1f:11:5b:13:65:d7: 50:f7:02:66:99:bf:10:be:53:37:15:94:6a:74:f7: 7b:7a:0a:a2:f0:34:8e:ec:a2:72:b7:15:2a:76:19: 2a:64:54:03:71:c3:36:62:c4:97:ee:02:f9:0f:86: 95:6b:e0:d0:f7:b5:6b:bc:42:5a:11:3b:05:a3:7a: 4e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:66:F6:65:E9:E9:53:29:51:F0:5E:6F:AF:64:E2:72:5F:88:0A:E1 X509v3 Authority Key Identifier: keyid:68:B1:66:10:EA:F2:D4:B3:AB:FB:9A:C5:71:7E:DF:0A:60:01:EE:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d18c0383-629f-46e2-b114-188cc921a6a5/0/68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68B16610EAF2D4B3ABFB9AC5717EDF0A6001EEFF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d18c0383-629f-46e2-b114-188cc921a6a5/0/3130332e3139312e3136382e302f32342d3234203d3e20313439393234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.168.0/24 Signature Algorithm: sha256WithRSAEncryption 14:39:8f:41:43:49:6d:de:d9:97:0a:ef:ee:9b:16:ff:28:aa: 15:94:22:7a:cd:15:77:ef:42:e3:21:e7:d3:fc:16:d7:16:9c: c3:e8:e8:cc:6c:eb:7f:86:93:e0:74:e8:66:1a:dd:67:32:ee: 49:bf:0f:df:3e:76:6a:ba:3b:5e:20:b1:61:c1:0c:7f:3c:a5: a2:f3:cd:c3:4b:e8:24:2e:92:ff:0e:66:4e:1c:93:22:f6:85: 4d:0d:30:22:c7:0f:d9:95:15:02:b2:ac:0f:90:61:04:9a:d6: a1:d5:9d:a4:47:98:67:ea:68:19:ad:05:a1:5d:48:51:56:a2: c7:f6:38:b2:9d:62:29:14:0e:ae:8e:f8:ec:37:d2:84:3f:76: 11:cc:f5:db:5b:5e:ff:2a:2f:97:23:a0:ec:eb:86:22:9e:2a: a2:74:bb:5e:c4:5b:af:7f:76:ef:ff:06:21:3b:d7:e8:94:5a: 33:83:b1:2c:4f:d5:c2:d9:f0:04:97:63:2e:ff:bf:20:d3:38: 87:38:40:61:75:8c:cd:32:93:4d:d8:2b:4d:93:56:49:27:87: 23:32:14:bb:df:80:1f:fb:4b:8d:ad:50:78:b8:68:48:71:00: f3:b4:b0:df:74:39:31:05:2a:84:bb:0e:a1:a1:51:3a:b6:24: 97:82:e0:a3 -----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgITKi5WOY6U1KX5jdKMDOUIC7i4FDANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyg2OEIxNjYxMEVBRjJENEIzQUJGQjlBQzU3MTdFREYwQTYw MDFFRUZGMB4XDTI0MDgyMDEyNTUwMFoXDTI1MDgxOTEzMDAwMFowMzExMC8GA1UE AxMoNEM2NkY2NjVFOUU5NTMyOTUxRjA1RTZGQUY2NEUyNzI1Rjg4MEFFMTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANne1pPN7fIpnzQonN5Hw5RUi68G IMBBBRG2brp2ao/gtf8oWWT+HAhZTNrDk/jqnFv0pOahDiohcEMw3j49ZWUUYlqx N8G9XQ81d0SOpQX+EwCQn/aE9CqmpV6yJeBl5hxBAgx3OcymjVdDgMszsyNWkL1Q YMbBRV7CP8PEjh40NSU3dtkDqWPD0udg5/y2hyTJU4Fpj8Wzhn2+2jTFUBoST1R+ +Ghi+1XRIuiWS3Tp3T2dOQBkP0gCcf+jHxFbE2XXUPcCZpm/EL5TNxWUanT3e3oK ovA0juyicrcVKnYZKmRUA3HDNmLEl+4C+Q+GlWvg0Pe1a7xCWhE7BaN6Tr0CAwEA AaOCAjYwggIyMB0GA1UdDgQWBBRMZvZl6elTKVHwXm+vZOJyX4gK4TAfBgNVHSME GDAWgBRosWYQ6vLUs6v7msVxft8KYAHu/zAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Qx OGMwMzgzLTYyOWYtNDZlMi1iMTE0LTE4OGNjOTIxYTZhNS8wLzY4QjE2NjEwRUFG MkQ0QjNBQkZCOUFDNTcxN0VERjBBNjAwMUVFRkYuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi82OEIxNjYxMEVBRjJENEIzQUJGQjlBQzU3MTdFREYwQTYwMDFF RUZGLmNlcjCBpgYIKwYBBQUHAQsEgZkwgZYwgZMGCCsGAQUFBzALhoGGcnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDE4YzAzODMtNjI5Zi00NmUyLWIx MTQtMTg4Y2M5MjFhNmE1LzAvMzEzMDMzMmUzMTM5MzEyZTMxMzYzODJlMzAyZjMy MzQyZDMyMzQyMDNkM2UyMDMxMzQzOTM5MzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGe/qDANBgkq hkiG9w0BAQsFAAOCAQEAFDmPQUNJbd7Zlwrv7psW/yiqFZQies0Vd+9C4yHn0/wW 1xacw+jozGzrf4aT4HToZhrdZzLuSb8P3z52aro7XiCxYcEMfzylovPNw0voJC6S /w5mThyTIvaFTQ0wIscP2ZUVArKsD5BhBJrWodWdpEeYZ+poGa0FoV1IUVaix/Y4 sp1iKRQOro747DfShD92Ecz121te/yovlyOg7OuGIp4qonS7XsRbr3927/8GITvX 6JRaM4OxLE/VwtnwBJdjLv+/INM4hzhAYXWMzTKTTdgrTZNWSSeHIzIUu9+AH/tL ja1QeLhoSHEA87Sw33Q5MQUqhLsOoaFROrYkl4Lgow== -----END CERTIFICATE-----Generated at Fri Nov 22 08:00:09 2024 by rpki-client on console-ams.rpki-client.org