$ rpki-client -vvf repo-rpki.idnic.net/repo/efe21c69-7b77-43a0-92a6-f555b6ed1ffc/0/3130332e3136332e3133382e302f32332d3234203d3e203535363838.roa File: 3130332e3136332e3133382e302f32332d3234203d3e203535363838.roa (raw, json) Hash identifier: KKhfc+IamAYKDzkax6ge1yp6fl/D4BcsTO1S04WxViQ= Subject key identifier: 65:5D:5B:2D:6A:58:F0:E2:AF:01:2B:A1:FD:7C:C0:6F:BB:2C:ED:42 Certificate issuer: /CN=9E22CCCB20898F95647D9A55FA112ABE8CE58EEC Certificate serial: 653CD403E49B6E1D07B21474CF43643D70E5A57E Authority key identifier: 9E:22:CC:CB:20:89:8F:95:64:7D:9A:55:FA:11:2A:BE:8C:E5:8E:EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E22CCCB20898F95647D9A55FA112ABE8CE58EEC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/efe21c69-7b77-43a0-92a6-f555b6ed1ffc/0/3130332e3136332e3133382e302f32332d3234203d3e203535363838.roa Signing time: Wed 17 Jan 2024 00:00:01 +0000 ROA not before: Tue 16 Jan 2024 23:55:01 +0000 ROA not after: Wed 15 Jan 2025 00:00:01 +0000 asID: 55688 IP address blocks: 103.163.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/efe21c69-7b77-43a0-92a6-f555b6ed1ffc/0/9E22CCCB20898F95647D9A55FA112ABE8CE58EEC.crl rsync://repo-rpki.idnic.net/repo/efe21c69-7b77-43a0-92a6-f555b6ed1ffc/0/9E22CCCB20898F95647D9A55FA112ABE8CE58EEC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E22CCCB20898F95647D9A55FA112ABE8CE58EEC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 23:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:3c:d4:03:e4:9b:6e:1d:07:b2:14:74:cf:43:64:3d:70:e5:a5:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E22CCCB20898F95647D9A55FA112ABE8CE58EEC Validity Not Before: Jan 16 23:55:01 2024 GMT Not After : Jan 15 00:00:01 2025 GMT Subject: CN=655D5B2D6A58F0E2AF012BA1FD7CC06FBB2CED42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d5:fb:91:da:2c:06:9b:a9:a8:45:40:de:e1: c9:6d:25:d6:f7:af:2f:a5:37:45:0a:11:ce:74:28: a1:65:5a:8e:d0:c9:db:32:dd:0e:9f:58:c9:77:78: 80:40:be:de:93:de:90:e0:77:07:df:7d:cb:ee:2a: b2:1b:7f:41:59:e3:f3:60:32:8e:c5:c4:06:4f:43: 3f:4e:bf:7a:79:7c:55:6b:7a:52:9e:44:b1:2b:ea: 8b:37:62:ee:7b:ff:82:6d:f3:ee:b9:1f:bb:77:3c: 75:78:dd:5d:c1:02:90:fa:b2:09:13:85:3e:91:a8: 8b:34:00:b7:88:d2:f9:bd:3c:f3:ab:ee:72:90:f2: 16:54:4d:8b:13:97:1d:1c:fa:e0:b3:4a:4a:d5:86: 8b:78:3f:d9:18:fb:39:62:43:51:bf:5f:c0:c2:08: 45:f0:1b:f4:09:0b:24:d4:e6:82:12:d3:80:c6:ba: 3f:5a:f3:61:ad:48:be:a6:90:f8:22:68:9b:f8:13: c2:7d:7b:8d:13:d4:4a:9c:2e:be:fe:32:28:33:b7: 19:4f:88:95:bf:07:f3:4a:ac:20:46:b4:c7:26:96: d6:8e:48:d9:4d:bc:b8:b9:59:d9:ce:24:c9:b2:37: ab:63:b3:f0:87:a9:53:0f:b8:1e:82:97:b6:0c:e5: 4c:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:5D:5B:2D:6A:58:F0:E2:AF:01:2B:A1:FD:7C:C0:6F:BB:2C:ED:42 X509v3 Authority Key Identifier: keyid:9E:22:CC:CB:20:89:8F:95:64:7D:9A:55:FA:11:2A:BE:8C:E5:8E:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/efe21c69-7b77-43a0-92a6-f555b6ed1ffc/0/9E22CCCB20898F95647D9A55FA112ABE8CE58EEC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9E22CCCB20898F95647D9A55FA112ABE8CE58EEC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/efe21c69-7b77-43a0-92a6-f555b6ed1ffc/0/3130332e3136332e3133382e302f32332d3234203d3e203535363838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.138.0/23 Signature Algorithm: sha256WithRSAEncryption 66:a2:78:71:8a:97:2d:c3:5b:11:0f:bd:10:07:d3:59:5d:3d: 03:40:43:da:8e:15:e8:ff:85:d5:cd:8e:8b:af:78:fc:83:fa: e1:d2:08:ea:9b:76:1b:c2:ab:0c:a6:b6:f5:c7:af:40:fe:b6: 07:ec:7f:b7:27:69:59:17:83:de:f1:81:d2:02:83:04:21:ad: ea:62:2f:7d:68:a5:2d:03:1c:f6:e3:83:1c:b2:28:40:1f:d3: b3:d2:58:b8:8d:5a:9b:36:4d:44:43:7e:06:9a:9d:5f:ee:b4: 52:c6:d7:b4:b1:aa:d7:1a:54:22:e4:7a:e8:4b:16:13:64:43: 8d:67:eb:b7:3b:cb:7c:ee:83:db:61:98:fc:df:5a:bf:86:df: 34:7c:43:80:b5:a1:eb:84:55:aa:a8:68:8e:1e:c3:94:2b:96: 54:d5:2f:07:2a:93:d2:81:c9:95:8e:3b:3e:cb:15:11:fd:db: 81:23:ed:c9:76:84:41:6f:8b:d8:9d:ff:60:18:32:96:72:d1: 36:a8:c0:1f:22:5d:6d:f2:21:fc:99:bc:9e:4a:ef:5f:3e:10: e9:ba:b1:0c:71:32:c1:46:d1:8c:6f:95:42:e9:c3:a9:5e:af: b9:cb:ef:0b:c4:1d:5f:d6:2f:01:20:05:36:27:e2:a2:03:54: 09:c4:9e:4a -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZTzUA+Sbbh0HshR0z0NkPXDlpX4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUUyMkNDQ0IyMDg5OEY5NTY0N0Q5QTU1RkExMTJBQkU4 Q0U1OEVFQzAeFw0yNDAxMTYyMzU1MDFaFw0yNTAxMTUwMDAwMDFaMDMxMTAvBgNV BAMTKDY1NUQ1QjJENkE1OEYwRTJBRjAxMkJBMUZEN0NDMDZGQkIyQ0VENDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC21fuR2iwGm6moRUDe4cltJdb3 ry+lN0UKEc50KKFlWo7Qydsy3Q6fWMl3eIBAvt6T3pDgdwfffcvuKrIbf0FZ4/Ng Mo7FxAZPQz9Ov3p5fFVrelKeRLEr6os3Yu57/4Jt8+65H7t3PHV43V3BApD6sgkT hT6RqIs0ALeI0vm9PPOr7nKQ8hZUTYsTlx0c+uCzSkrVhot4P9kY+zliQ1G/X8DC CEXwG/QJCyTU5oIS04DGuj9a82GtSL6mkPgiaJv4E8J9e40T1EqcLr7+MigztxlP iJW/B/NKrCBGtMcmltaOSNlNvLi5WdnOJMmyN6tjs/CHqVMPuB6Cl7YM5UzJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUZV1bLWpY8OKvASuh/XzAb7ss7UIwHwYDVR0j BBgwFoAUniLMyyCJj5VkfZpV+hEqvozljuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZmUyMWM2OS03Yjc3LTQzYTAtOTJhNi1mNTU1YjZlZDFmZmMvMC85RTIyQ0NDQjIw ODk4Rjk1NjQ3RDlBNTVGQTExMkFCRThDRTU4RUVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUUyMkNDQ0IyMDg5OEY5NTY0N0Q5QTU1RkExMTJBQkU4Q0U1 OEVFQy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VmZTIxYzY5LTdiNzctNDNhMC05 MmE2LWY1NTViNmVkMWZmYy8wLzMxMzAzMzJlMzEzNjMzMmUzMTMzMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzNTM1MzYzODM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ6OKMA0GCSqG SIb3DQEBCwUAA4IBAQBmonhxipctw1sRD70QB9NZXT0DQEPajhXo/4XVzY6Lr3j8 g/rh0gjqm3YbwqsMprb1x69A/rYH7H+3J2lZF4Pe8YHSAoMEIa3qYi99aKUtAxz2 44McsihAH9Oz0li4jVqbNk1EQ34Gmp1f7rRSxte0sarXGlQi5HroSxYTZEONZ+u3 O8t87oPbYZj831q/ht80fEOAtaHrhFWqqGiOHsOUK5ZU1S8HKpPSgcmVjjs+yxUR /duBI+3JdoRBb4vYnf9gGDKWctE2qMAfIl1t8iH8mbyeSu9fPhDpurEMcTLBRtGM b5VC6cOpXq+5y+8LxB1f1i8BIAU2J+KiA1QJxJ5K -----END CERTIFICATE-----Generated at Thu Nov 21 23:33:00 2024 by rpki-client on console-ams.rpki-client.org