$ rpki-client -vvf repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37302e302f32332d3233203d3e20313431303831.roa File: 3130332e3135362e37302e302f32332d3233203d3e20313431303831.roa (raw, json) Hash identifier: XyH2IkcIEuDvVJJGBcIvIdi7tMCNJuIdQc60W8BGrOU= Subject key identifier: 7E:5E:F6:90:7B:EE:80:82:33:AE:2D:DF:8B:2C:D9:3D:0B:48:5B:4A Certificate issuer: /CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Certificate serial: 0B68DC49E857396B83FA9105D4958D027966B01B Authority key identifier: 66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37302e302f32332d3233203d3e20313431303831.roa Signing time: Wed 18 Sep 2024 13:00:00 +0000 ROA not before: Wed 18 Sep 2024 12:55:00 +0000 ROA not after: Wed 17 Sep 2025 13:00:00 +0000 asID: 141081 IP address blocks: 103.156.70.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:68:dc:49:e8:57:39:6b:83:fa:91:05:d4:95:8d:02:79:66:b0:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Validity Not Before: Sep 18 12:55:00 2024 GMT Not After : Sep 17 13:00:00 2025 GMT Subject: CN=7E5EF6907BEE808233AE2DDF8B2CD93D0B485B4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:cb:dd:cb:9b:64:32:66:ad:f9:bc:8b:5b:e1: 06:eb:c6:46:1e:a3:9e:62:01:88:2c:d4:38:bc:ee: 4c:61:af:81:e6:28:0b:fc:88:24:67:bd:24:40:f2: 61:4f:ba:22:6a:40:68:5d:19:39:5d:db:92:74:ff: ec:99:ae:a3:bd:0e:8b:65:8d:90:67:e6:a5:bb:7f: aa:85:5c:d8:1b:11:e7:1e:34:46:ea:30:b6:f4:e4: 77:2b:ab:b8:f5:54:0f:46:eb:7b:de:d5:da:25:11: 7f:86:1d:3f:a7:3e:8d:13:51:56:67:b3:da:f3:e0: 4c:60:f3:7e:9a:de:87:13:26:38:9b:39:c7:0b:cc: 74:2b:5a:71:2e:e5:02:cc:1e:09:b4:8f:a5:50:70: 92:a8:13:54:05:f8:b2:8e:27:36:e1:80:63:45:1e: 35:a0:0b:1d:bf:63:40:4a:9c:d3:c3:85:1a:d5:5c: ff:a1:13:b7:3c:4a:1b:36:54:77:94:4f:76:dd:da: d4:cc:8e:e2:b5:b7:e6:93:ef:ee:6f:8f:25:d7:28: 7a:71:ca:cb:a1:b8:1a:fc:f0:6d:cc:d2:d8:8a:f7: 86:0c:f4:e0:39:53:18:cb:2b:f3:28:9b:16:a9:e9: 15:99:69:46:66:b3:11:3e:55:53:33:d8:05:b4:ed: 6a:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:5E:F6:90:7B:EE:80:82:33:AE:2D:DF:8B:2C:D9:3D:0B:48:5B:4A X509v3 Authority Key Identifier: keyid:66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37302e302f32332d3233203d3e20313431303831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.70.0/23 Signature Algorithm: sha256WithRSAEncryption 65:d8:b1:a0:77:52:52:e0:45:ab:37:76:28:e5:71:69:c1:1d: a0:75:aa:f4:a2:6a:88:c9:71:be:8f:f2:a3:c2:de:f7:8b:88: 73:00:44:f9:f0:fb:66:c2:03:34:57:f6:5a:be:7c:b8:40:47: 42:25:1e:b4:31:3f:7d:71:0c:63:b0:db:72:cd:9d:67:41:33: 6f:29:0e:3f:28:ef:eb:67:be:c0:fc:40:c6:dd:d1:e6:28:38: 9e:fc:2e:59:4c:6f:c7:d2:43:89:63:39:53:2a:e4:3c:ed:3b: db:0a:93:04:5c:0d:ee:c0:6a:f7:56:a7:d4:ac:d3:3e:30:c4: b7:4d:70:27:79:e7:cd:ba:cf:54:70:3d:cd:c2:99:6d:08:4d: e2:f5:00:6d:3a:1d:08:ca:44:04:e8:e9:68:7e:b8:3b:d5:7d: 7b:42:bc:b4:62:1e:a5:80:80:73:99:9c:0e:ec:f2:32:0c:85: 56:dd:56:7a:a3:f2:31:70:db:8c:c8:98:7b:ae:5a:15:3c:2f: 24:67:fc:c2:e8:ef:55:83:11:a7:be:ee:ca:64:bd:af:1c:b1: d0:0b:06:71:2f:bd:17:ad:02:39:02:13:38:7e:17:7f:85:41: 41:6a:d9:0e:68:b8:7f:a0:99:09:22:dd:b1:1d:32:56:33:64: 5b:b2:74:f0 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUC2jcSehXOWuD+pEF1JWNAnlmsBswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RB NTVGMjA3MjAeFw0yNDA5MTgxMjU1MDBaFw0yNTA5MTcxMzAwMDBaMDMxMTAvBgNV BAMTKDdFNUVGNjkwN0JFRTgwODIzM0FFMkRERjhCMkNEOTNEMEI0ODVCNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDey93Lm2QyZq35vItb4QbrxkYe o55iAYgs1Di87kxhr4HmKAv8iCRnvSRA8mFPuiJqQGhdGTld25J0/+yZrqO9Dotl jZBn5qW7f6qFXNgbEeceNEbqMLb05Hcrq7j1VA9G63ve1dolEX+GHT+nPo0TUVZn s9rz4Exg836a3ocTJjibOccLzHQrWnEu5QLMHgm0j6VQcJKoE1QF+LKOJzbhgGNF HjWgCx2/Y0BKnNPDhRrVXP+hE7c8Shs2VHeUT3bd2tTMjuK1t+aT7+5vjyXXKHpx ysuhuBr88G3M0tiK94YM9OA5UxjLK/Momxap6RWZaUZmsxE+VVMz2AW07WrfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfl72kHvugIIzri3fiyzZPQtIW0owHwYDVR0j BBgwFoAUZttH6M2q1dlXKYcf2+DzPaVfIHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2JhYmYwYi0xMTAxLTRhYTktYTRkZi01MjcxNDkzNGRiN2MvMC82NkRCNDdFOENE QUFENUQ5NTcyOTg3MUZEQkUwRjMzREE1NUYyMDcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RBNTVG MjA3Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzYmFiZjBiLTExMDEtNGFhOS1h NGRmLTUyNzE0OTM0ZGI3Yy8wLzMxMzAzMzJlMzEzNTM2MmUzNzMwMmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzNDMxMzAzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5xGMA0GCSqG SIb3DQEBCwUAA4IBAQBl2LGgd1JS4EWrN3Yo5XFpwR2gdar0omqIyXG+j/Kjwt73 i4hzAET58PtmwgM0V/Zavny4QEdCJR60MT99cQxjsNtyzZ1nQTNvKQ4/KO/rZ77A /EDG3dHmKDie/C5ZTG/H0kOJYzlTKuQ87TvbCpMEXA3uwGr3VqfUrNM+MMS3TXAn eefNus9UcD3NwpltCE3i9QBtOh0IykQE6Olofrg71X17Qry0Yh6lgIBzmZwO7PIy DIVW3VZ6o/IxcNuMyJh7rloVPC8kZ/zC6O9VgxGnvu7KZL2vHLHQCwZxL70XrQI5 AhM4fhd/hUFBatkOaLh/oJkJIt2xHTJWM2RbsnTw -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:15 2024 by rpki-client on console-ams.rpki-client.org