$ rpki-client -vvf repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132342e302f32342d3234203d3e20313431393437.roa File: 3130332e3136362e3132342e302f32342d3234203d3e20313431393437.roa (raw, json) Hash identifier: /BdahLT6vSLpuEBY3+9TOtbzLb267nsMd1TmGCjkxzI= Subject key identifier: 4C:4B:C7:18:98:A0:80:7D:2C:69:42:03:D7:C1:E2:25:74:E4:DF:A9 Certificate issuer: /CN=A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506 Certificate serial: 790093A09C1007A9DF65C41C1C12B056CCDACC3B Authority key identifier: A9:E9:DB:B7:BC:3B:B1:6F:6A:6A:84:8E:43:07:E8:76:F9:F1:A5:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132342e302f32342d3234203d3e20313431393437.roa Signing time: Fri 12 Jul 2024 15:00:44 +0000 ROA not before: Fri 12 Jul 2024 14:55:44 +0000 ROA not after: Fri 11 Jul 2025 15:00:44 +0000 asID: 141947 IP address blocks: 103.166.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.crl rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:00:93:a0:9c:10:07:a9:df:65:c4:1c:1c:12:b0:56:cc:da:cc:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506 Validity Not Before: Jul 12 14:55:44 2024 GMT Not After : Jul 11 15:00:44 2025 GMT Subject: CN=4C4BC71898A0807D2C694203D7C1E22574E4DFA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a7:01:2e:01:2f:22:66:54:bf:d4:3e:b3:b3: 1a:6b:3b:34:e4:1d:4b:6d:31:f2:09:fb:c5:b7:9e: 5f:b5:c1:02:ce:c5:c3:e6:40:5f:0f:5b:96:d5:ee: 5a:0b:57:a1:b6:ca:c7:04:fb:8d:31:10:1a:3b:15: a7:fd:19:f1:4a:6a:0e:b6:e3:0a:ec:da:3e:fc:52: 86:7f:67:6b:d0:5b:a8:a8:f5:ce:97:a0:e9:6b:13: 2f:de:ff:8f:69:bc:b2:56:17:ed:90:88:cc:8b:22: ba:76:41:b4:1e:28:53:ea:4e:27:c9:40:ba:ad:8d: 30:9d:52:71:f6:00:25:fd:82:43:47:ea:65:80:e9: 80:cc:d5:35:0a:d6:a8:3a:28:c0:93:bc:09:f9:91: 54:7d:25:9b:f8:e2:92:49:0b:af:0b:67:02:48:4d: 4e:cc:38:11:ad:7e:3a:93:71:76:6e:6e:15:31:02: 79:bd:c8:62:8f:1e:56:3b:90:d7:b0:df:e2:8a:09: d2:5a:6d:f5:28:d8:e1:72:ba:cc:3f:52:fb:eb:e2: 6a:da:12:bd:5b:27:09:87:ef:b9:63:ec:a6:1f:33: 69:16:21:5f:74:fa:89:74:f2:89:d8:10:42:3b:3a: 90:54:d6:46:08:c4:4f:5f:4e:e1:8b:d7:95:49:4e: b8:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:4B:C7:18:98:A0:80:7D:2C:69:42:03:D7:C1:E2:25:74:E4:DF:A9 X509v3 Authority Key Identifier: keyid:A9:E9:DB:B7:BC:3B:B1:6F:6A:6A:84:8E:43:07:E8:76:F9:F1:A5:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132342e302f32342d3234203d3e20313431393437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.124.0/24 Signature Algorithm: sha256WithRSAEncryption 68:22:ee:3a:9d:a6:7b:8f:d7:52:b7:57:ef:cb:8f:d0:ee:d3: 27:4f:70:09:a9:00:18:6a:32:f2:4d:e2:7e:43:1a:96:4e:68: d3:2c:76:3c:34:65:8a:69:ec:0d:e1:0e:bd:ed:86:1b:0a:32: bc:e6:fb:b8:7e:ab:31:5f:73:07:f4:25:1e:5e:11:7a:64:2c: 06:78:f6:7e:e3:0e:bf:46:97:1c:27:87:e7:d4:41:97:89:b2: 6a:c9:96:6a:cf:58:58:56:2d:fe:77:fa:8d:e2:64:cc:5b:1f: 0b:a7:da:d8:08:f5:f7:17:28:6b:f8:55:6e:2e:b2:6f:cc:c0: c8:61:80:08:6f:d1:81:49:ac:6d:04:f2:f3:35:0a:2c:50:9c: 15:3b:39:74:b8:e9:f0:ba:a3:87:c9:2b:fc:ca:fa:46:b0:fe: 0d:9c:05:ee:f5:3f:06:83:10:1c:64:7a:46:35:59:c6:83:ae: 88:18:77:64:3b:a3:2d:14:5b:b5:ba:54:3f:cd:41:cf:22:d5: 90:c1:9c:02:2d:6c:cf:e9:4d:42:79:50:f9:8e:62:4f:58:9e: 46:13:7d:33:97:08:ce:5c:5b:c5:d2:08:c9:d9:4b:8d:e7:b5: ad:93:32:f6:67:09:7a:ab:4c:16:3e:02:46:64:70:5b:07:49: 80:b2:41:4f -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUeQCToJwQB6nfZcQcHBKwVszazDswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlFOURCQjdCQzNCQjE2RjZBNkE4NDhFNDMwN0U4NzZG OUYxQTUwNjAeFw0yNDA3MTIxNDU1NDRaFw0yNTA3MTExNTAwNDRaMDMxMTAvBgNV BAMTKDRDNEJDNzE4OThBMDgwN0QyQzY5NDIwM0Q3QzFFMjI1NzRFNERGQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDapwEuAS8iZlS/1D6zsxprOzTk HUttMfIJ+8W3nl+1wQLOxcPmQF8PW5bV7loLV6G2yscE+40xEBo7Faf9GfFKag62 4wrs2j78UoZ/Z2vQW6io9c6XoOlrEy/e/49pvLJWF+2QiMyLIrp2QbQeKFPqTifJ QLqtjTCdUnH2ACX9gkNH6mWA6YDM1TUK1qg6KMCTvAn5kVR9JZv44pJJC68LZwJI TU7MOBGtfjqTcXZubhUxAnm9yGKPHlY7kNew3+KKCdJabfUo2OFyusw/Uvvr4mra Er1bJwmH77lj7KYfM2kWIV90+ol08onYEEI7OpBU1kYIxE9fTuGL15VJTrjfAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUTEvHGJiggH0saUID18HiJXTk36kwHwYDVR0j BBgwFoAUqenbt7w7sW9qaoSOQwfodvnxpQYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NTRlNDU2ZC1kYmUyLTQ2MGMtODZkNC1lYmMyZDExNTYxNzYvMC9BOUU5REJCN0JD M0JCMTZGNkE2QTg0OEU0MzA3RTg3NkY5RjFBNTA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlFOURCQjdCQzNCQjE2RjZBNkE4NDhFNDMwN0U4NzZGOUYx QTUwNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q1NGU0NTZkLWRiZTItNDYwYy04 NmQ0LWViYzJkMTE1NjE3Ni8wLzMxMzAzMzJlMzEzNjM2MmUzMTMyMzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM0Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpnwwDQYJ KoZIhvcNAQELBQADggEBAGgi7jqdpnuP11K3V+/Lj9Du0ydPcAmpABhqMvJN4n5D GpZOaNMsdjw0ZYpp7A3hDr3thhsKMrzm+7h+qzFfcwf0JR5eEXpkLAZ49n7jDr9G lxwnh+fUQZeJsmrJlmrPWFhWLf53+o3iZMxbHwun2tgI9fcXKGv4VW4usm/MwMhh gAhv0YFJrG0E8vM1CixQnBU7OXS46fC6o4fJK/zK+kaw/g2cBe71PwaDEBxkekY1 WcaDrogYd2Q7oy0UW7W6VD/NQc8i1ZDBnAItbM/pTUJ5UPmOYk9YnkYTfTOXCM5c W8XSCMnZS43nta2TMvZnCXqrTBY+AkZkcFsHSYCyQU8= -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:52 2024 by rpki-client on console-fra.rpki-client.org