$ rpki-client -vvf repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132352e302f32342d3234203d3e20313431393437.roa File: 3130332e3136362e3132352e302f32342d3234203d3e20313431393437.roa (raw, json) Hash identifier: egnfM/Fp4UdwuWEpUWSdxpcnYQvSqfa+lGvzoQRmlJc= Subject key identifier: A4:C1:3A:40:6E:8E:48:E3:A8:1C:04:28:D4:0F:BC:63:DF:30:8E:43 Certificate issuer: /CN=A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506 Certificate serial: 50A9401FC83435458F8A3592F4249BAAB8E3C58E Authority key identifier: A9:E9:DB:B7:BC:3B:B1:6F:6A:6A:84:8E:43:07:E8:76:F9:F1:A5:06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132352e302f32342d3234203d3e20313431393437.roa Signing time: Fri 11 Aug 2023 15:00:01 +0000 ROA not before: Fri 11 Aug 2023 14:55:01 +0000 ROA not after: Fri 09 Aug 2024 15:00:01 +0000 asID: 141947 IP address blocks: 103.166.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.crl rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:a9:40:1f:c8:34:35:45:8f:8a:35:92:f4:24:9b:aa:b8:e3:c5:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506 Validity Not Before: Aug 11 14:55:01 2023 GMT Not After : Aug 9 15:00:01 2024 GMT Subject: CN=A4C13A406E8E48E3A81C0428D40FBC63DF308E43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5c:57:c1:a9:c6:0e:45:1e:22:7f:24:e4:1c: 67:3c:84:01:6a:5d:63:76:7d:98:c1:96:ea:24:e1: e2:fb:a4:4d:f8:73:d4:e5:69:1a:c6:75:10:26:e8: e1:53:72:55:3e:ea:81:21:ee:06:dd:f2:5a:18:e5: ba:3f:ff:87:5f:e6:2a:9c:75:84:86:2f:03:bb:26: c0:49:98:c6:25:3f:fc:84:f2:6b:fc:b5:e6:7c:c2: ef:12:40:bc:0b:d9:25:bc:c6:a1:3e:1e:40:4d:61: fc:ff:2e:55:3f:46:d8:c9:2a:23:a2:76:b5:d8:06: c4:72:cd:f8:6b:dc:1f:84:64:47:7b:a9:2c:c1:da: a7:d0:ce:2c:45:9f:7d:09:18:21:7f:c2:4f:31:47: ea:b2:61:87:c3:f2:38:4c:fc:c5:43:71:4f:59:8b: 16:36:11:7f:be:0a:0f:20:20:e4:9a:a4:86:df:04: 9e:bc:fe:5c:28:c0:93:3c:17:0e:31:b5:b5:31:2e: 37:76:54:16:76:4a:ab:d5:e6:f1:4d:3b:36:ce:5e: 9f:ca:7a:82:c8:bc:d3:5e:a8:0b:85:ec:38:d8:8b: dc:f2:2a:e8:14:d1:f1:e4:ba:38:ba:ee:2a:a1:16: 6c:b9:e8:e4:a1:49:04:46:69:b7:67:74:9e:1e:0c: 14:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:C1:3A:40:6E:8E:48:E3:A8:1C:04:28:D4:0F:BC:63:DF:30:8E:43 X509v3 Authority Key Identifier: keyid:A9:E9:DB:B7:BC:3B:B1:6F:6A:6A:84:8E:43:07:E8:76:F9:F1:A5:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A9E9DBB7BC3BB16F6A6A848E4307E876F9F1A506.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d54e456d-dbe2-460c-86d4-ebc2d1156176/0/3130332e3136362e3132352e302f32342d3234203d3e20313431393437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.125.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:d1:c5:a6:16:e6:f3:0f:d6:c3:3b:ee:d8:3c:b2:18:66:53: 02:56:91:3d:79:6e:46:8b:ae:73:13:cb:6f:2f:65:14:fb:d8: b0:f5:4b:b4:bd:55:bd:5e:08:95:7d:fa:49:b9:ce:00:88:6d: fc:ee:6f:c2:3a:8c:8f:f7:57:b6:bd:90:85:96:02:d0:7a:35: 94:38:95:f5:2e:02:ee:c7:a3:be:76:bb:bd:8d:f1:f9:68:66: 09:96:d7:bf:59:f6:64:37:66:a9:67:05:a7:af:2a:13:6b:30: 08:22:f2:aa:00:e3:da:6c:bb:82:ff:e7:92:13:f5:30:05:06: 40:7d:82:6d:57:7e:01:04:8f:b0:a9:af:67:16:39:8b:3b:7c: 34:67:81:ce:31:4d:0a:dc:14:79:1f:cb:80:80:d7:cc:e6:fc: 62:f9:42:d4:1c:9c:64:f7:90:c7:ab:2c:6a:3e:93:4c:fa:94: 9c:88:ac:a0:0d:f5:5c:c1:df:29:0a:6c:a5:e6:20:e2:70:4d: 37:e4:71:de:0e:74:52:0e:49:2a:d5:31:ba:15:79:ae:5a:de: d9:8b:77:16:9e:50:64:a1:2a:7d:73:87:25:ab:f5:0f:97:e2: d5:36:31:03:ad:73:29:95:b8:5b:6a:da:f4:a6:73:74:23:e4: 4f:58:5e:ee -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUUKlAH8g0NUWPijWS9CSbqrjjxY4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlFOURCQjdCQzNCQjE2RjZBNkE4NDhFNDMwN0U4NzZG OUYxQTUwNjAeFw0yMzA4MTExNDU1MDFaFw0yNDA4MDkxNTAwMDFaMDMxMTAvBgNV BAMTKEE0QzEzQTQwNkU4RTQ4RTNBODFDMDQyOEQ0MEZCQzYzREYzMDhFNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3XFfBqcYORR4ifyTkHGc8hAFq XWN2fZjBluok4eL7pE34c9TlaRrGdRAm6OFTclU+6oEh7gbd8loY5bo//4df5iqc dYSGLwO7JsBJmMYlP/yE8mv8teZ8wu8SQLwL2SW8xqE+HkBNYfz/LlU/RtjJKiOi drXYBsRyzfhr3B+EZEd7qSzB2qfQzixFn30JGCF/wk8xR+qyYYfD8jhM/MVDcU9Z ixY2EX++Cg8gIOSapIbfBJ68/lwowJM8Fw4xtbUxLjd2VBZ2SqvV5vFNOzbOXp/K eoLIvNNeqAuF7DjYi9zyKugU0fHkuji67iqhFmy56OShSQRGabdndJ4eDBSNAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUpME6QG6OSOOoHAQo1A+8Y98wjkMwHwYDVR0j BBgwFoAUqenbt7w7sW9qaoSOQwfodvnxpQYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NTRlNDU2ZC1kYmUyLTQ2MGMtODZkNC1lYmMyZDExNTYxNzYvMC9BOUU5REJCN0JD M0JCMTZGNkE2QTg0OEU0MzA3RTg3NkY5RjFBNTA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTlFOURCQjdCQzNCQjE2RjZBNkE4NDhFNDMwN0U4NzZGOUYx QTUwNi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q1NGU0NTZkLWRiZTItNDYwYy04 NmQ0LWViYzJkMTE1NjE3Ni8wLzMxMzAzMzJlMzEzNjM2MmUzMTMyMzUyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM0Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpn0wDQYJ KoZIhvcNAQELBQADggEBAC/RxaYW5vMP1sM77tg8shhmUwJWkT15bkaLrnMTy28v ZRT72LD1S7S9Vb1eCJV9+km5zgCIbfzub8I6jI/3V7a9kIWWAtB6NZQ4lfUuAu7H o752u72N8floZgmW179Z9mQ3ZqlnBaevKhNrMAgi8qoA49psu4L/55IT9TAFBkB9 gm1XfgEEj7Cpr2cWOYs7fDRngc4xTQrcFHkfy4CA18zm/GL5QtQcnGT3kMerLGo+ k0z6lJyIrKAN9VzB3ykKbKXmIOJwTTfkcd4OdFIOSSrVMboVea5a3tmLdxaeUGSh Kn1zhyWr9Q+X4tU2MQOtcymVuFtq2vSmc3Qj5E9YXu4= -----END CERTIFICATE-----Generated at Sat Jun 1 15:52:57 2024 by rpki-client on console-ams.rpki-client.org