$ rpki-client -vvf repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132352e302f32342d3234203d3e20313431393437.roa File: 3130332e3136362e3132352e302f32342d3234203d3e20313431393437.roa (raw, json) Hash identifier: rW2LU9K/rfb3qygTA6381vvcBFybx4fuXGfuXbWXxfQ= Subject key identifier: 0D:46:95:C6:0C:11:08:6F:6A:97:8B:9E:46:9C:D5:25:EF:E7:DF:A5 Certificate issuer: /CN=A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506 Certificate serial: 0A4E76131145F902D72B84EF5203B8BD72818C32 Authority key identifier: A9:E9:DB:B7:BC:3B:B1:6F:6A:6A:84:8E:43:07:E8:76:F9:F1:A5:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132352e302f32342d3234203d3e20313431393437.roa Signing time: Fri 12 Jul 2024 15:00:44 +0000 ROA not before: Fri 12 Jul 2024 14:55:44 +0000 ROA not after: Fri 11 Jul 2025 15:00:44 +0000 asID: 141947 IP address blocks: 103.166.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.crl rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:4e:76:13:11:45:f9:02:d7:2b:84:ef:52:03:b8:bd:72:81:8c:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506 Validity Not Before: Jul 12 14:55:44 2024 GMT Not After : Jul 11 15:00:44 2025 GMT Subject: CN=0D4695C60C11086F6A978B9E469CD525EFE7DFA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ea:d6:0a:9e:ba:60:49:fc:22:de:07:07:1f: f6:5e:63:06:fb:42:3c:c1:78:cb:4e:90:19:d7:9c: 15:6b:78:10:4f:47:f4:5d:d4:6b:b3:e2:2b:c0:f4: 5b:e5:4a:11:a1:6d:5f:d3:90:0f:b8:12:5f:31:4b: a4:78:c9:e0:86:5f:f9:0c:2f:0a:71:0c:a3:38:7a: 6d:f1:c0:b8:e7:3c:c0:52:95:37:78:20:47:3a:f6: e4:53:f2:6a:47:01:02:de:ee:8f:a2:8a:9f:2d:e6: 5a:38:b8:6c:b8:49:fb:b3:eb:e1:2d:85:f6:64:af: 0b:43:3a:85:fc:ba:e2:81:d4:d2:14:80:08:1a:b9: da:4a:8d:51:7a:e7:f1:53:af:c2:e0:e5:46:28:d1: 3c:b0:12:8e:01:37:75:45:77:dd:95:98:92:03:a2: 18:a0:4d:a2:9f:f6:f0:df:51:1f:2b:01:ac:a3:03: 42:71:9f:18:45:a9:99:3f:06:9e:69:e4:33:0f:27: 4b:1b:7f:cc:68:58:7a:5a:64:36:8b:d0:b0:51:27: c1:bd:34:e4:b3:34:1f:95:37:3f:2d:e9:8b:3a:a2: 72:fa:e7:07:26:0a:12:31:e5:ad:34:30:e0:59:80: be:60:b9:03:04:6f:29:b7:89:b8:12:f4:8e:48:86: 48:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:46:95:C6:0C:11:08:6F:6A:97:8B:9E:46:9C:D5:25:EF:E7:DF:A5 X509v3 Authority Key Identifier: keyid:A9:E9:DB:B7:BC:3B:B1:6F:6A:6A:84:8E:43:07:E8:76:F9:F1:A5:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132352e302f32342d3234203d3e20313431393437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.125.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:2e:f1:70:b7:1e:b6:76:52:0e:df:e2:76:3b:27:8a:8d:5b: 5f:14:cd:54:ed:80:fe:1e:4b:34:a1:15:8c:8f:b2:11:2b:92: e7:09:94:73:e7:6f:a9:1c:f1:44:b8:3c:78:2d:7a:06:b3:ce: ce:31:28:14:b1:2f:c8:22:b0:e9:2c:fb:d9:06:62:0a:e2:68: 03:c0:28:9e:95:ae:47:98:ef:ea:a6:6a:1a:3d:2f:cf:65:f6: d3:c5:59:e7:5a:0c:0d:90:1b:76:f5:9a:44:2e:5b:db:0c:c1: b8:a0:f7:47:e2:4a:52:6c:4e:70:6b:0d:75:9f:ca:7f:be:88: 9f:94:c2:c6:ea:0f:dc:75:fe:fa:f8:52:48:94:7a:13:ca:64: 4d:29:a2:15:2c:1c:72:48:a8:07:b5:25:ad:c5:42:bd:8e:41: 26:aa:f2:e5:66:a7:e3:ac:f0:dd:22:be:71:e5:c5:a5:d9:c8: 25:96:6a:bd:7f:79:eb:83:98:6c:47:f5:2a:a5:30:80:9c:04: 87:2d:32:f8:38:9a:dc:d0:5e:52:b8:3c:f9:f5:b8:d6:23:64: 5d:ba:4d:26:c3:35:b9:94:43:e0:e7:a4:b6:db:a6:9f:24:16: 62:94:b9:3c:fa:7b:7b:c4:43:b1:8a:30:26:0d:92:ef:56:19: d6:0d:46:ba -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUCk52ExFF+QLXK4TvUgO4vXKBjDIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlFOURCQjdCQzNCQjE2RjZBNkE4NDhFNDMwN0U4NzZG OUYxQTUwNjAeFw0yNDA3MTIxNDU1NDRaFw0yNTA3MTExNTAwNDRaMDMxMTAvBgNV BAMTKDBENDY5NUM2MEMxMTA4NkY2QTk3OEI5RTQ2OUNENTI1RUZFN0RGQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+6tYKnrpgSfwi3gcHH/ZeYwb7 QjzBeMtOkBnXnBVreBBPR/Rd1Guz4ivA9FvlShGhbV/TkA+4El8xS6R4yeCGX/kM LwpxDKM4em3xwLjnPMBSlTd4IEc69uRT8mpHAQLe7o+iip8t5lo4uGy4Sfuz6+Et hfZkrwtDOoX8uuKB1NIUgAgaudpKjVF65/FTr8Lg5UYo0TywEo4BN3VFd92VmJID ohigTaKf9vDfUR8rAayjA0JxnxhFqZk/Bp5p5DMPJ0sbf8xoWHpaZDaL0LBRJ8G9 NOSzNB+VNz8t6Ys6onL65wcmChIx5a00MOBZgL5guQMEbym3ibgS9I5IhkiFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUDUaVxgwRCG9ql4ueRpzVJe/n36UwHwYDVR0j BBgwFoAUqenbt7w7sW9qaoSOQwfodvnxpQYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NTRlNDU2ZC1kYmUyLTQ2MGMtODZkNC1lYmMyZDExNTYxNzYvMC9BOUU5REJCN0JD M0JCMTZGNkE2QTg0OEU0MzA3RTg3NkY5RjFBNTA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlFOURCQjdCQzNCQjE2RjZBNkE4NDhFNDMwN0U4NzZGOUYx QTUwNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q1NGU0NTZkLWRiZTItNDYwYy04 NmQ0LWViYzJkMTE1NjE3Ni8wLzMxMzAzMzJlMzEzNjM2MmUzMTMyMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM0Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpn0wDQYJ KoZIhvcNAQELBQADggEBAE8u8XC3HrZ2Ug7f4nY7J4qNW18UzVTtgP4eSzShFYyP shErkucJlHPnb6kc8US4PHgtegazzs4xKBSxL8gisOks+9kGYgriaAPAKJ6VrkeY 7+qmaho9L89l9tPFWedaDA2QG3b1mkQuW9sMwbig90fiSlJsTnBrDXWfyn++iJ+U wsbqD9x1/vr4UkiUehPKZE0pohUsHHJIqAe1Ja3FQr2OQSaq8uVmp+Os8N0ivnHl xaXZyCWWar1/eeuDmGxH9SqlMICcBIctMvg4mtzQXlK4PPn1uNYjZF26TSbDNbmU Q+DnpLbbpp8kFmKUuTz6e3vEQ7GKMCYNku9WGdYNRro= -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:52 2024 by rpki-client on console-fra.rpki-client.org