$ rpki-client -vvf repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135382e302f32342d3234203d3e20313431393535.roa File: 3130332e3136362e3135382e302f32342d3234203d3e20313431393535.roa (raw, json) Hash identifier: Bup7LELWa0M49WEmJBOXwO3r0+CyN1znNANGE751Xcc= Subject key identifier: 60:CE:DD:7E:5D:4B:33:2D:DD:26:4E:80:AF:16:63:E0:E2:5D:1C:EB Certificate issuer: /CN=8A54C81A444D07051A24AACF743F01863F8129AB Certificate serial: 64C7A027A041D3CE5CA56BF8768458DA1D1924B3 Authority key identifier: 8A:54:C8:1A:44:4D:07:05:1A:24:AA:CF:74:3F:01:86:3F:81:29:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A54C81A444D07051A24AACF743F01863F8129AB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135382e302f32342d3234203d3e20313431393535.roa Signing time: Sat 12 Oct 2024 13:00:02 +0000 ROA not before: Sat 12 Oct 2024 12:55:02 +0000 ROA not after: Sat 11 Oct 2025 13:00:02 +0000 asID: 141955 IP address blocks: 103.166.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/8A54C81A444D07051A24AACF743F01863F8129AB.crl rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/8A54C81A444D07051A24AACF743F01863F8129AB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A54C81A444D07051A24AACF743F01863F8129AB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 17:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:c7:a0:27:a0:41:d3:ce:5c:a5:6b:f8:76:84:58:da:1d:19:24:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A54C81A444D07051A24AACF743F01863F8129AB Validity Not Before: Oct 12 12:55:02 2024 GMT Not After : Oct 11 13:00:02 2025 GMT Subject: CN=60CEDD7E5D4B332DDD264E80AF1663E0E25D1CEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:22:5e:0d:d1:ab:db:83:88:41:0d:40:78:1e: be:62:d6:65:ff:ef:65:25:f6:4c:19:7e:8d:e0:9f: 5b:27:a6:d4:33:d3:9d:2e:c2:13:09:78:0e:3d:77: e8:46:77:ed:40:a6:9e:f1:e0:3a:e3:1f:49:b7:63: be:39:b9:e3:50:7a:af:42:65:d5:5f:73:f7:79:80: 58:72:a7:ca:e9:20:64:ef:00:07:68:e3:46:d1:de: 0b:3b:dd:a8:81:9f:32:2d:41:8d:3b:08:9b:1e:76: 01:4c:b1:1f:42:4b:b3:90:4d:05:d6:98:58:56:04: 0a:20:b9:61:a0:6e:d0:88:f8:05:3f:0c:b3:0d:a9: b4:93:e8:08:73:3b:da:a7:e0:76:06:37:b1:fa:48: 25:6b:6c:0f:55:3f:5b:d6:70:b4:5d:a4:b6:3f:b2: f5:22:9a:81:6c:da:ac:65:47:1a:68:db:71:a5:84: 50:7c:d8:02:88:b1:3a:a6:01:55:19:ce:b1:10:98: b0:db:3d:96:56:4b:f1:fc:41:c8:72:20:ae:67:2f: b6:3c:51:d2:ff:82:ad:93:bc:d1:65:b3:12:71:f3: 54:df:cf:dc:9b:90:3b:b2:45:da:16:d5:52:79:83: b1:fa:ee:9c:af:ec:81:b0:8c:4d:27:84:60:29:05: fa:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:CE:DD:7E:5D:4B:33:2D:DD:26:4E:80:AF:16:63:E0:E2:5D:1C:EB X509v3 Authority Key Identifier: keyid:8A:54:C8:1A:44:4D:07:05:1A:24:AA:CF:74:3F:01:86:3F:81:29:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/8A54C81A444D07051A24AACF743F01863F8129AB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8A54C81A444D07051A24AACF743F01863F8129AB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7ff01d0-26f9-4b20-a318-c311c267f2af/0/3130332e3136362e3135382e302f32342d3234203d3e20313431393535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.158.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:79:66:ca:15:b5:11:4f:55:97:6d:1c:ad:52:56:b8:3d:4c: f3:ca:57:50:45:e8:4f:b1:ce:8f:2d:49:16:6f:55:57:e3:3a: 59:20:7f:66:80:a8:9d:1c:99:13:9f:8e:b8:0b:e2:a5:a0:cf: 70:b7:f4:eb:9e:1b:c6:2b:25:85:1e:49:db:b6:f4:0a:fa:94: 55:da:e8:5b:bf:62:87:eb:af:6b:e2:30:cc:45:36:c9:41:5b: 77:af:d8:59:a7:20:03:38:98:bb:a0:3c:86:22:87:64:b0:dd: 42:85:c0:0f:5c:3c:cd:80:21:c2:ab:a7:b6:6e:a6:69:bf:5f: 0f:b2:a0:8f:fe:97:ed:3e:56:19:50:32:25:35:2c:37:d8:86: 8a:91:47:30:0f:9e:b3:95:8a:d7:e6:8d:49:ab:3f:5e:8f:21: ec:90:12:d6:c8:81:76:d3:e4:30:e5:28:5b:a0:4e:69:07:4e: 6d:ff:7d:89:1f:70:5b:73:e7:73:40:3b:66:17:ff:59:dd:9d: a8:dd:98:76:e3:25:5f:63:bc:86:f0:eb:3e:be:c9:78:03:59: e5:33:2e:1d:48:5d:67:fe:0a:63:b0:59:91:6d:27:6c:95:74: c4:ab:f5:b5:fd:69:79:55:db:f9:40:c9:70:d2:3f:e6:b3:9b: c9:26:03:75 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUZMegJ6BB085cpWv4doRY2h0ZJLMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEE1NEM4MUE0NDREMDcwNTFBMjRBQUNGNzQzRjAxODYz RjgxMjlBQjAeFw0yNDEwMTIxMjU1MDJaFw0yNTEwMTExMzAwMDJaMDMxMTAvBgNV BAMTKDYwQ0VERDdFNUQ0QjMzMkRERDI2NEU4MEFGMTY2M0UwRTI1RDFDRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIIl4N0avbg4hBDUB4Hr5i1mX/ 72Ul9kwZfo3gn1snptQz050uwhMJeA49d+hGd+1App7x4DrjH0m3Y745ueNQeq9C ZdVfc/d5gFhyp8rpIGTvAAdo40bR3gs73aiBnzItQY07CJsedgFMsR9CS7OQTQXW mFhWBAoguWGgbtCI+AU/DLMNqbST6AhzO9qn4HYGN7H6SCVrbA9VP1vWcLRdpLY/ svUimoFs2qxlRxpo23GlhFB82AKIsTqmAVUZzrEQmLDbPZZWS/H8QchyIK5nL7Y8 UdL/gq2TvNFlsxJx81Tfz9ybkDuyRdoW1VJ5g7H67pyv7IGwjE0nhGApBfrxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUYM7dfl1LMy3dJk6ArxZj4OJdHOswHwYDVR0j BBgwFoAUilTIGkRNBwUaJKrPdD8Bhj+BKaswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k N2ZmMDFkMC0yNmY5LTRiMjAtYTMxOC1jMzExYzI2N2YyYWYvMC84QTU0QzgxQTQ0 NEQwNzA1MUEyNEFBQ0Y3NDNGMDE4NjNGODEyOUFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEE1NEM4MUE0NDREMDcwNTFBMjRBQUNGNzQzRjAxODYzRjgx MjlBQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3ZmYwMWQwLTI2ZjktNGIyMC1h MzE4LWMzMTFjMjY3ZjJhZi8wLzMxMzAzMzJlMzEzNjM2MmUzMTM1MzgyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzOTM1MzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnpp4wDQYJ KoZIhvcNAQELBQADggEBAI55ZsoVtRFPVZdtHK1SVrg9TPPKV1BF6E+xzo8tSRZv VVfjOlkgf2aAqJ0cmROfjrgL4qWgz3C39OueG8YrJYUeSdu29Ar6lFXa6Fu/Yofr r2viMMxFNslBW3ev2FmnIAM4mLugPIYih2Sw3UKFwA9cPM2AIcKrp7Zupmm/Xw+y oI/+l+0+VhlQMiU1LDfYhoqRRzAPnrOVitfmjUmrP16PIeyQEtbIgXbT5DDlKFug TmkHTm3/fYkfcFtz53NAO2YX/1ndnajdmHbjJV9jvIbw6z6+yXgDWeUzLh1IXWf+ CmOwWZFtJ2yVdMSr9bX9aXlV2/lAyXDSP+azm8kmA3U= -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:09 2024 by rpki-client on console-ams.rpki-client.org