$ rpki-client -vvf repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132342e302f32342d3234203d3e20313431393437.roa File: 3130332e3136362e3132342e302f32342d3234203d3e20313431393437.roa (raw, json) Hash identifier: ro3e2oTU4Bzqcv5mcE0CznmwyiTlHLs5/sM2KGvahsk= Subject key identifier: 06:C5:83:CF:0E:62:68:EB:6B:E7:2D:F9:63:0C:2B:0A:D0:80:FB:2E Certificate issuer: /CN=A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506 Certificate serial: 2816F643F9A7CCC0E8D5771809E3118CF4C98703 Authority key identifier: A9:E9:DB:B7:BC:3B:B1:6F:6A:6A:84:8E:43:07:E8:76:F9:F1:A5:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132342e302f32342d3234203d3e20313431393437.roa Signing time: Fri 11 Aug 2023 15:00:01 +0000 ROA not before: Fri 11 Aug 2023 14:55:01 +0000 ROA not after: Fri 09 Aug 2024 15:00:01 +0000 asID: 141947 IP address blocks: 103.166.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.crl rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:16:f6:43:f9:a7:cc:c0:e8:d5:77:18:09:e3:11:8c:f4:c9:87:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506 Validity Not Before: Aug 11 14:55:01 2023 GMT Not After : Aug 9 15:00:01 2024 GMT Subject: CN=06C583CF0E6268EB6BE72DF9630C2B0AD080FB2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:88:49:70:3c:46:fb:7d:43:ab:49:bf:af:dd: 14:01:20:a2:c9:66:66:9c:cb:83:e4:27:5b:78:bf: c9:52:f9:ca:58:89:a5:ef:47:e1:34:3d:9b:54:27: 69:32:c1:1f:38:d3:d5:0c:93:7a:86:ac:59:ef:1b: a2:6c:35:f0:09:2b:a0:6b:a6:05:c6:d0:99:20:b7: 30:9b:88:5d:4c:58:09:08:a2:2c:fa:19:89:42:f3: e8:52:d0:71:84:08:72:a6:d2:64:5e:20:a4:27:33: e4:ce:82:7c:8b:17:88:ac:b5:50:1e:eb:86:ac:75: 60:9e:fe:b1:18:17:01:44:06:0a:66:4a:b7:40:a1: 4d:11:f3:fa:52:07:d3:fb:fe:e9:13:d6:40:ed:ef: 3e:fa:7f:6d:a0:92:17:22:be:40:79:63:4b:3a:4e: 56:cb:7b:a5:e5:3a:2c:23:89:bd:d5:e0:6d:d4:21: b0:ce:f0:13:03:f7:20:9f:3b:7d:e5:a5:8b:9c:0d: 8a:83:61:e3:60:f0:44:bc:d5:2f:35:c9:0a:1e:6c: 02:73:5d:22:95:6b:66:4c:ca:f6:0d:d1:86:10:60: b7:c6:fe:9c:a4:3e:c5:b9:20:49:4e:83:2e:29:f7: 39:c2:2e:e2:3a:fc:34:00:fb:c7:9f:5f:91:c8:c8: c3:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:C5:83:CF:0E:62:68:EB:6B:E7:2D:F9:63:0C:2B:0A:D0:80:FB:2E X509v3 Authority Key Identifier: keyid:A9:E9:DB:B7:BC:3B:B1:6F:6A:6A:84:8E:43:07:E8:76:F9:F1:A5:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132342e302f32342d3234203d3e20313431393437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.124.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:dc:c2:df:19:c0:e4:65:46:fe:0c:51:74:10:8a:db:d2:bd: 9e:eb:bf:24:e2:a2:21:70:1f:52:3a:40:56:d5:87:69:b3:36: eb:a8:72:9a:a9:f8:22:e5:a7:82:fc:5f:39:56:11:2f:2b:58: dc:8b:0a:bb:08:2c:31:ef:06:53:58:e4:1b:55:7c:e4:79:5e: 4a:15:c2:a2:99:45:3d:e3:d6:e8:16:98:8d:24:13:0f:aa:34: 94:41:7d:5c:9f:74:fc:94:15:0e:18:a1:2d:3f:ee:ed:95:82: 64:01:e9:ca:38:be:dd:d8:42:20:37:02:8c:4f:13:c6:b9:03: 06:1a:31:6a:80:fa:13:52:a9:28:11:53:2b:cd:53:73:33:97: 10:a5:0d:00:1f:d3:f8:14:5e:2d:a6:9f:22:86:5b:4d:fc:9a: 6a:eb:96:c4:a2:53:10:c4:34:6b:a1:54:ba:d5:c4:f9:cf:ba: 1f:e9:f7:7b:df:90:cc:34:7f:9a:0c:e5:b9:fc:80:d3:f9:14: 45:a5:ea:f4:8f:17:38:2a:ea:2f:7a:80:12:47:32:ca:50:17: b5:66:5f:02:93:8e:84:be:51:fd:01:67:24:66:17:d7:fc:45: 2d:79:05:6c:df:7c:0c:de:06:b3:08:5d:6e:58:44:d9:b7:1a: 61:26:54:8f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUKBb2Q/mnzMDo1XcYCeMRjPTJhwMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlFOURCQjdCQzNCQjE2RjZBNkE4NDhFNDMwN0U4NzZG OUYxQTUwNjAeFw0yMzA4MTExNDU1MDFaFw0yNDA4MDkxNTAwMDFaMDMxMTAvBgNV BAMTKDA2QzU4M0NGMEU2MjY4RUI2QkU3MkRGOTYzMEMyQjBBRDA4MEZCMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTiElwPEb7fUOrSb+v3RQBIKLJ Zmacy4PkJ1t4v8lS+cpYiaXvR+E0PZtUJ2kywR8409UMk3qGrFnvG6JsNfAJK6Br pgXG0JkgtzCbiF1MWAkIoiz6GYlC8+hS0HGECHKm0mReIKQnM+TOgnyLF4istVAe 64asdWCe/rEYFwFEBgpmSrdAoU0R8/pSB9P7/ukT1kDt7z76f22gkhcivkB5Y0s6 TlbLe6XlOiwjib3V4G3UIbDO8BMD9yCfO33lpYucDYqDYeNg8ES81S81yQoebAJz XSKVa2ZMyvYN0YYQYLfG/pykPsW5IElOgy4p9znCLuI6/DQA+8efX5HIyMMfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUBsWDzw5iaOtr5y35YwwrCtCA+y4wHwYDVR0j BBgwFoAUqenbt7w7sW9qaoSOQwfodvnxpQYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NTRlNDU2ZC1kYmUyLTQ2MGMtODZkNC1lYmMyZDExNTYxNzYvMC9BOUU5REJCN0JD M0JCMTZGNkE2QTg0OEU0MzA3RTg3NkY5RjFBNTA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlFOURCQjdCQzNCQjE2RjZBNkE4NDhFNDMwN0U4NzZGOUYx QTUwNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q1NGU0NTZkLWRiZTItNDYwYy04 NmQ0LWViYzJkMTE1NjE3Ni8wLzMxMzAzMzJlMzEzNjM2MmUzMTMyMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM0Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpnwwDQYJ KoZIhvcNAQELBQADggEBAJ/cwt8ZwORlRv4MUXQQitvSvZ7rvyTioiFwH1I6QFbV h2mzNuuocpqp+CLlp4L8XzlWES8rWNyLCrsILDHvBlNY5BtVfOR5XkoVwqKZRT3j 1ugWmI0kEw+qNJRBfVyfdPyUFQ4YoS0/7u2VgmQB6co4vt3YQiA3AoxPE8a5AwYa MWqA+hNSqSgRUyvNU3MzlxClDQAf0/gUXi2mnyKGW038mmrrlsSiUxDENGuhVLrV xPnPuh/p93vfkMw0f5oM5bn8gNP5FEWl6vSPFzgq6i96gBJHMspQF7VmXwKTjoS+ Uf0BZyRmF9f8RS15BWzffAzeBrMIXW5YRNm3GmEmVI8= -----END CERTIFICATE-----Generated at Sat Jun 1 14:35:01 2024 by rpki-client on console-fra.rpki-client.org