$ rpki-client -vvf repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132342e302f32332d3233203d3e20313431393437.roa File: 3130332e3136362e3132342e302f32332d3233203d3e20313431393437.roa (raw, json) Hash identifier: i+gbmLv/cDTRzVSCU7nzrBuTZdrg904knWZTmS6Nm1M= Subject key identifier: 90:06:B5:74:0C:99:33:58:82:CB:2F:16:0A:64:86:92:FE:E6:F2:35 Certificate issuer: /CN=A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506 Certificate serial: 60ACAAE0C568073867EACA833E56D1C80B26E127 Authority key identifier: A9:E9:DB:B7:BC:3B:B1:6F:6A:6A:84:8E:43:07:E8:76:F9:F1:A5:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132342e302f32332d3233203d3e20313431393437.roa Signing time: Fri 12 Jul 2024 15:00:44 +0000 ROA not before: Fri 12 Jul 2024 14:55:44 +0000 ROA not after: Fri 11 Jul 2025 15:00:44 +0000 asID: 141947 IP address blocks: 103.166.124.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.crl rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:ac:aa:e0:c5:68:07:38:67:ea:ca:83:3e:56:d1:c8:0b:26:e1:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506 Validity Not Before: Jul 12 14:55:44 2024 GMT Not After : Jul 11 15:00:44 2025 GMT Subject: CN=9006B5740C99335882CB2F160A648692FEE6F235 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:88:8a:21:e6:48:5d:36:1c:48:ad:9a:b6:29: 9f:8b:2a:8e:ad:93:f4:0c:25:31:fb:1a:b7:4e:fc: 75:33:63:79:33:38:82:ff:1e:63:3f:ff:76:e7:73: 1c:b9:ee:44:ea:cd:08:2e:6e:1b:0d:61:63:04:91: 4b:f5:bf:ad:09:1a:e6:07:14:7f:12:eb:79:3a:1a: ff:12:e7:64:61:28:60:1c:77:85:b8:6e:ed:23:6f: 94:a9:16:4f:9f:83:3a:4a:bb:31:85:96:bf:6e:84: ee:66:ac:0f:4d:9f:48:ca:3f:be:52:19:4c:6c:fd: b4:dc:19:af:aa:23:3a:27:e1:2c:cc:6f:96:e3:10: 60:ff:b5:79:42:ef:2d:ee:6b:9a:60:4a:b1:05:23: 92:d8:5e:aa:3f:6f:6c:73:e2:09:23:82:31:18:2c: 12:d9:b5:1f:b0:e3:ac:53:a1:72:2b:83:a0:82:43: ef:a5:97:d3:45:bd:f7:57:54:d9:f5:6d:95:20:ea: dc:53:7f:0e:5e:2c:62:ce:a5:05:51:a1:c4:ff:88: 80:2a:84:36:ab:20:e4:a7:6e:95:47:f0:0e:c6:58: 14:ec:0c:f5:f1:0b:dd:36:2a:f8:f0:b5:22:27:dc: ba:44:05:cd:b4:83:15:14:7e:8a:75:b0:5f:b5:f1: 76:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:06:B5:74:0C:99:33:58:82:CB:2F:16:0A:64:86:92:FE:E6:F2:35 X509v3 Authority Key Identifier: keyid:A9:E9:DB:B7:BC:3B:B1:6F:6A:6A:84:8E:43:07:E8:76:F9:F1:A5:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132342e302f32332d3233203d3e20313431393437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.124.0/23 Signature Algorithm: sha256WithRSAEncryption 09:ae:0f:8c:19:5b:69:40:7a:58:8b:f8:7d:a8:2e:82:4a:28: 8f:6e:0f:5d:5a:3d:e9:a5:e9:86:a1:73:0d:66:f8:c9:e7:15: ff:7d:f8:1f:3b:b6:0a:4a:a1:24:4f:14:da:d1:66:cf:6f:3c: 40:c3:5c:e2:d2:e7:4f:ba:31:13:62:24:d3:d8:68:7a:80:ff: e2:8a:fe:b0:cf:18:38:c3:ac:ee:84:5c:23:ab:08:86:66:8c: 0a:e9:7b:76:31:36:cf:ec:80:a0:cb:a3:4e:8a:9c:55:29:b4: 94:e4:f8:72:b9:f3:48:f8:a6:83:b9:ff:91:bf:79:8f:bf:1d: 8f:95:51:7f:76:21:d3:1e:d6:87:82:8e:53:75:75:96:9a:4f: d5:77:c7:ba:5a:8f:f1:4b:09:fd:86:1d:07:05:d6:17:55:63: e8:5a:34:3d:c4:30:54:dc:ea:9c:f1:e5:04:4a:d7:89:71:f1: 2d:55:1f:77:7e:5a:3d:e0:ad:1f:8d:e5:38:ff:25:7a:66:66: 22:83:f2:b3:76:ab:bb:e4:33:61:9e:fd:cd:f2:5a:4b:e2:76: cf:3a:7c:9e:4f:2b:ef:24:fd:93:67:18:63:44:e1:22:76:56: 0c:3e:80:a1:53:89:8a:36:00:b8:90:8e:5a:8a:3e:6b:f0:83: d8:1d:7e:56 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYKyq4MVoBzhn6sqDPlbRyAsm4ScwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlFOURCQjdCQzNCQjE2RjZBNkE4NDhFNDMwN0U4NzZG OUYxQTUwNjAeFw0yNDA3MTIxNDU1NDRaFw0yNTA3MTExNTAwNDRaMDMxMTAvBgNV BAMTKDkwMDZCNTc0MEM5OTMzNTg4MkNCMkYxNjBBNjQ4NjkyRkVFNkYyMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpiIoh5khdNhxIrZq2KZ+LKo6t k/QMJTH7GrdO/HUzY3kzOIL/HmM//3bncxy57kTqzQgubhsNYWMEkUv1v60JGuYH FH8S63k6Gv8S52RhKGAcd4W4bu0jb5SpFk+fgzpKuzGFlr9uhO5mrA9Nn0jKP75S GUxs/bTcGa+qIzon4SzMb5bjEGD/tXlC7y3ua5pgSrEFI5LYXqo/b2xz4gkjgjEY LBLZtR+w46xToXIrg6CCQ++ll9NFvfdXVNn1bZUg6txTfw5eLGLOpQVRocT/iIAq hDarIOSnbpVH8A7GWBTsDPXxC902KvjwtSIn3LpEBc20gxUUfop1sF+18XbBAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUkAa1dAyZM1iCyy8WCmSGkv7m8jUwHwYDVR0j BBgwFoAUqenbt7w7sW9qaoSOQwfodvnxpQYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NTRlNDU2ZC1kYmUyLTQ2MGMtODZkNC1lYmMyZDExNTYxNzYvMC9BOUU5REJCN0JD M0JCMTZGNkE2QTg0OEU0MzA3RTg3NkY5RjFBNTA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlFOURCQjdCQzNCQjE2RjZBNkE4NDhFNDMwN0U4NzZGOUYx QTUwNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q1NGU0NTZkLWRiZTItNDYwYy04 NmQ0LWViYzJkMTE1NjE3Ni8wLzMxMzAzMzJlMzEzNjM2MmUzMTMyMzQyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzOTM0Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnpnwwDQYJ KoZIhvcNAQELBQADggEBAAmuD4wZW2lAeliL+H2oLoJKKI9uD11aPeml6Yahcw1m +MnnFf99+B87tgpKoSRPFNrRZs9vPEDDXOLS50+6MRNiJNPYaHqA/+KK/rDPGDjD rO6EXCOrCIZmjArpe3YxNs/sgKDLo06KnFUptJTk+HK580j4poO5/5G/eY+/HY+V UX92IdMe1oeCjlN1dZaaT9V3x7paj/FLCf2GHQcF1hdVY+haND3EMFTc6pzx5QRK 14lx8S1VH3d+Wj3grR+N5Tj/JXpmZiKD8rN2q7vkM2Ge/c3yWkvids86fJ5PK+8k /ZNnGGNE4SJ2Vgw+gKFTiYo2ALiQjlqKPmvwg9gdflY= -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:52 2024 by rpki-client on console-fra.rpki-client.org