$ rpki-client -vvf repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135382e302f32332d3233203d3e20313431393535.roa File: 3130332e3136362e3135382e302f32332d3233203d3e20313431393535.roa (raw, json) Hash identifier: WKmcvn8bAO9Eii6CFLm7I5z8vpQacNIDvmfF6K6iO9c= Subject key identifier: 82:05:8E:AC:48:75:1C:C8:92:0D:9F:94:20:65:2F:13:2A:B6:EE:A1 Certificate issuer: /CN=8A54C81A444D07051A24AACF743F01863F8129AB Certificate serial: 3DE6C1516CFBE233BFCE7F16CE71AD6DBD02B46E Authority key identifier: 8A:54:C8:1A:44:4D:07:05:1A:24:AA:CF:74:3F:01:86:3F:81:29:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A54C81A444D07051A24AACF743F01863F8129AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135382e302f32332d3233203d3e20313431393535.roa Signing time: Wed 31 Jan 2024 16:46:46 +0000 ROA not before: Wed 31 Jan 2024 16:41:46 +0000 ROA not after: Wed 29 Jan 2025 16:46:46 +0000 asID: 141955 IP address blocks: 103.166.158.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/8A54C81A444D07051A24AACF743F01863F8129AB.crl rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/8A54C81A444D07051A24AACF743F01863F8129AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A54C81A444D07051A24AACF743F01863F8129AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 17:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:e6:c1:51:6c:fb:e2:33:bf:ce:7f:16:ce:71:ad:6d:bd:02:b4:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A54C81A444D07051A24AACF743F01863F8129AB Validity Not Before: Jan 31 16:41:46 2024 GMT Not After : Jan 29 16:46:46 2025 GMT Subject: CN=82058EAC48751CC8920D9F9420652F132AB6EEA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6b:ad:74:67:14:bc:7d:2d:ce:e6:94:58:29: 86:39:bf:60:b8:5e:ad:9b:15:35:ae:88:fa:78:34: d5:6c:50:d9:1f:3b:68:aa:ce:cb:d6:8c:d8:87:25: b1:53:91:3f:57:9c:53:f4:39:d2:39:98:96:94:aa: b4:f6:2c:fe:29:65:4d:d8:b8:d4:03:00:f9:d4:d9: a5:51:12:f9:ba:29:c9:29:fa:87:f6:96:d6:d0:05: 8f:06:a3:ee:e9:03:5e:6c:31:3d:aa:8b:fd:de:61: 3e:54:23:c4:e4:18:83:33:8d:ee:8a:38:8d:c2:00: 00:30:a5:2e:19:34:ae:c1:ad:bc:7b:71:e3:b4:b8: 08:95:8d:4d:85:a9:10:df:25:83:7b:5e:7b:97:60: 8b:00:ad:75:ac:f6:81:55:c7:99:63:1e:1f:66:40: f6:16:06:bc:65:6a:e9:01:6b:1b:e1:ec:39:42:15: ec:8b:ab:b6:c3:22:a5:cf:88:9f:52:bd:4e:fc:aa: 7e:5a:46:ba:cd:4c:f9:33:e1:69:f8:a3:e4:1b:26: 9e:92:bb:5a:e9:0c:5f:00:45:4d:04:ed:0b:6f:b5: 3f:78:e4:9b:90:24:b2:c7:3e:b2:39:6b:c3:00:0c: 89:49:7d:ac:b0:1e:49:c7:39:09:1f:63:c7:d5:c5: ea:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:05:8E:AC:48:75:1C:C8:92:0D:9F:94:20:65:2F:13:2A:B6:EE:A1 X509v3 Authority Key Identifier: keyid:8A:54:C8:1A:44:4D:07:05:1A:24:AA:CF:74:3F:01:86:3F:81:29:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/8A54C81A444D07051A24AACF743F01863F8129AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A54C81A444D07051A24AACF743F01863F8129AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135382e302f32332d3233203d3e20313431393535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.158.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:8b:d5:cd:fa:04:2e:c2:e7:c8:97:30:90:af:55:75:d9:a4: c9:8a:ce:29:ac:0d:e3:87:b9:36:54:80:92:f3:83:26:b8:c5: 38:70:db:91:13:13:67:a2:cf:9e:02:69:e1:88:88:72:66:4b: cf:e7:58:b4:27:90:f7:eb:db:44:c2:b4:f7:e2:33:7e:23:58: ba:76:ad:1a:90:15:31:cb:2a:01:cc:38:67:c9:94:94:36:ba: 6c:76:db:bd:92:2f:b6:52:0e:a5:c9:e0:0b:3b:82:16:5e:04: b5:ba:43:57:4b:45:cd:d3:c5:50:fd:87:82:40:08:d1:9c:c2: 55:fb:39:d9:09:1a:b2:e9:41:3b:7f:06:2f:22:4b:b5:7c:b8: d3:f2:11:ca:a3:a9:fa:49:aa:4f:11:41:f2:e6:c7:a7:36:f3: b0:19:7f:f9:1f:28:7e:71:0b:1e:5e:08:39:f7:13:e9:83:45: fe:28:97:8f:90:07:fa:3f:58:bc:44:47:bc:0d:2a:0c:05:dd: 68:29:3e:57:f9:3f:91:25:05:58:54:1d:96:12:d3:d8:e4:d4: cd:91:aa:16:a3:5b:a4:62:5e:85:b0:98:ef:6e:bb:eb:f0:a9: 1b:b3:90:14:f5:7c:e5:5b:5d:e2:d7:05:0e:ac:a2:b3:65:5a: da:66:ac:85 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPebBUWz74jO/zn8WznGtbb0CtG4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEE1NEM4MUE0NDREMDcwNTFBMjRBQUNGNzQzRjAxODYz RjgxMjlBQjAeFw0yNDAxMzExNjQxNDZaFw0yNTAxMjkxNjQ2NDZaMDMxMTAvBgNV BAMTKDgyMDU4RUFDNDg3NTFDQzg5MjBEOUY5NDIwNjUyRjEzMkFCNkVFQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJa610ZxS8fS3O5pRYKYY5v2C4 Xq2bFTWuiPp4NNVsUNkfO2iqzsvWjNiHJbFTkT9XnFP0OdI5mJaUqrT2LP4pZU3Y uNQDAPnU2aVREvm6Kckp+of2ltbQBY8Go+7pA15sMT2qi/3eYT5UI8TkGIMzje6K OI3CAAAwpS4ZNK7Brbx7ceO0uAiVjU2FqRDfJYN7XnuXYIsArXWs9oFVx5ljHh9m QPYWBrxlaukBaxvh7DlCFeyLq7bDIqXPiJ9SvU78qn5aRrrNTPkz4Wn4o+QbJp6S u1rpDF8ARU0E7QtvtT945JuQJLLHPrI5a8MADIlJfaywHknHOQkfY8fVxeqzAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUggWOrEh1HMiSDZ+UIGUvEyq27qEwHwYDVR0j BBgwFoAUilTIGkRNBwUaJKrPdD8Bhj+BKaswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k N2ZmMDFkMC0yNmY5LTRiMjAtYTMxOC1jMzExYzI2N2YyYWYvMC84QTU0QzgxQTQ0 NEQwNzA1MUEyNEFBQ0Y3NDNGMDE4NjNGODEyOUFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEE1NEM4MUE0NDREMDcwNTFBMjRBQUNGNzQzRjAxODYzRjgx MjlBQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3ZmYwMWQwLTI2ZjktNGIyMC1h MzE4LWMzMTFjMjY3ZjJhZi8wLzMxMzAzMzJlMzEzNjM2MmUzMTM1MzgyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzEzOTM1MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnpp4wDQYJ KoZIhvcNAQELBQADggEBAD+L1c36BC7C58iXMJCvVXXZpMmKzimsDeOHuTZUgJLz gya4xThw25ETE2eiz54CaeGIiHJmS8/nWLQnkPfr20TCtPfiM34jWLp2rRqQFTHL KgHMOGfJlJQ2umx2272SL7ZSDqXJ4As7ghZeBLW6Q1dLRc3TxVD9h4JACNGcwlX7 OdkJGrLpQTt/Bi8iS7V8uNPyEcqjqfpJqk8RQfLmx6c287AZf/kfKH5xCx5eCDn3 E+mDRf4ol4+QB/o/WLxER7wNKgwF3WgpPlf5P5ElBVhUHZYS09jk1M2RqhajW6Ri XoWwmO9uu+vwqRuzkBT1fOVbXeLXBQ6sorNlWtpmrIU= -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:09 2024 by rpki-client on console-ams.rpki-client.org