$ rpki-client -vvf repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37302e302f32342d3234203d3e20313431303831.roa File: 3130332e3135362e37302e302f32342d3234203d3e20313431303831.roa (raw, json) Hash identifier: FejRYWwdsuj+4j3TDWSOjALgozWd2vs6Lc0w2q44EY8= Subject key identifier: 70:FE:FA:E1:60:5D:89:7D:77:E5:73:A2:53:B2:FB:BA:95:7F:2C:57 Certificate issuer: /CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Certificate serial: 3651897C3AE3B1E54E8E8D5A1E348FF7A4964585 Authority key identifier: 66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37302e302f32342d3234203d3e20313431303831.roa Signing time: Wed 18 Sep 2024 11:00:01 +0000 ROA not before: Wed 18 Sep 2024 10:55:01 +0000 ROA not after: Wed 17 Sep 2025 11:00:01 +0000 asID: 141081 IP address blocks: 103.156.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:51:89:7c:3a:e3:b1:e5:4e:8e:8d:5a:1e:34:8f:f7:a4:96:45:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Validity Not Before: Sep 18 10:55:01 2024 GMT Not After : Sep 17 11:00:01 2025 GMT Subject: CN=70FEFAE1605D897D77E573A253B2FBBA957F2C57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0b:68:18:8c:47:be:44:09:cb:7b:c5:dd:72: f8:0a:77:07:97:f0:3c:d2:ee:77:54:44:88:49:78: e1:ab:19:04:7c:97:50:ce:20:9b:3f:ed:8c:08:bd: f4:6c:76:90:df:70:73:eb:de:62:09:a4:76:93:51: f6:b8:16:d7:43:ee:53:9e:0f:a7:b0:bb:69:8a:57: 1b:ae:3a:93:0d:6b:7e:43:dd:3a:7a:88:ea:67:f1: c9:3d:aa:fc:b9:0b:dc:ff:13:33:34:93:b1:b5:42: cb:d6:1c:a3:16:59:48:69:fe:ba:9f:0b:b3:9f:c9: 50:65:8f:de:eb:06:b4:e9:11:31:e8:36:be:ef:66: 29:19:61:d0:41:76:b7:dd:e3:4f:ba:90:d7:c9:fd: 2b:84:fb:8e:a2:19:53:1b:27:a3:c7:92:f0:8b:f5: f9:4d:d0:fa:58:be:cb:0e:c3:38:7f:ff:f7:55:a5: ae:d9:ff:3c:5c:50:0d:95:25:0f:94:08:56:cd:ee: 7e:e1:1b:e6:15:c9:dd:97:74:13:6f:d5:51:ce:e4: bf:cb:7d:48:81:92:54:2c:29:10:82:07:bd:cd:6f: 11:79:37:b0:18:d4:7c:b6:f1:da:94:f5:0d:94:30: fc:55:f3:7b:42:e9:64:06:0b:db:8c:e5:d1:54:1e: 53:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:FE:FA:E1:60:5D:89:7D:77:E5:73:A2:53:B2:FB:BA:95:7F:2C:57 X509v3 Authority Key Identifier: keyid:66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37302e302f32342d3234203d3e20313431303831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.70.0/24 Signature Algorithm: sha256WithRSAEncryption ab:69:52:ec:1b:d6:1c:2d:af:48:97:be:55:70:4e:f5:c7:3f: ff:e5:a7:c0:66:1f:67:01:07:1d:c0:fa:5c:99:82:46:d4:fe: 0c:69:50:57:a5:9b:32:d9:99:12:37:63:82:2e:dc:04:3e:bc: 15:cb:cf:4a:59:d6:28:ed:1c:19:9e:3e:45:55:2a:59:11:a1: 4f:34:f9:c9:44:ad:95:a1:2f:0e:ac:6a:cd:83:0c:4c:0d:d2: c2:1d:2c:fe:37:1a:1f:62:d8:78:d9:57:26:9f:5c:93:9c:2e: 43:6f:a3:75:b7:06:60:4d:0a:04:26:5b:fe:87:f5:44:e8:df: f5:19:7f:bc:67:dd:46:97:4b:48:94:ae:67:17:c7:cf:ad:22: a9:00:58:e5:13:7f:d9:43:50:41:23:ab:40:a6:68:4c:e3:16: f9:72:98:a9:f5:26:8f:ed:9e:dd:fe:e6:42:db:63:5d:61:c0: c2:3c:8e:0a:10:52:38:cd:5c:e0:08:f0:d9:9c:d0:cc:51:91: 6e:2d:c6:f6:44:0f:39:13:f0:54:96:0b:63:5e:8f:14:fa:da: 76:b8:05:e3:4d:fa:8a:2f:42:19:5e:6f:3b:14:59:e2:94:4e: 77:d8:e6:33:2a:62:fa:11:40:52:5e:09:78:93:dd:28:ba:2a: 89:ce:d8:ad -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUNlGJfDrjseVOjo1aHjSP96SWRYUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RB NTVGMjA3MjAeFw0yNDA5MTgxMDU1MDFaFw0yNTA5MTcxMTAwMDFaMDMxMTAvBgNV BAMTKDcwRkVGQUUxNjA1RDg5N0Q3N0U1NzNBMjUzQjJGQkJBOTU3RjJDNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyC2gYjEe+RAnLe8XdcvgKdweX 8DzS7ndURIhJeOGrGQR8l1DOIJs/7YwIvfRsdpDfcHPr3mIJpHaTUfa4FtdD7lOe D6ewu2mKVxuuOpMNa35D3Tp6iOpn8ck9qvy5C9z/EzM0k7G1QsvWHKMWWUhp/rqf C7OfyVBlj97rBrTpETHoNr7vZikZYdBBdrfd40+6kNfJ/SuE+46iGVMbJ6PHkvCL 9flN0PpYvssOwzh///dVpa7Z/zxcUA2VJQ+UCFbN7n7hG+YVyd2XdBNv1VHO5L/L fUiBklQsKRCCB73NbxF5N7AY1Hy28dqU9Q2UMPxV83tC6WQGC9uM5dFUHlN1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUcP764WBdiX135XOiU7L7upV/LFcwHwYDVR0j BBgwFoAUZttH6M2q1dlXKYcf2+DzPaVfIHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2JhYmYwYi0xMTAxLTRhYTktYTRkZi01MjcxNDkzNGRiN2MvMC82NkRCNDdFOENE QUFENUQ5NTcyOTg3MUZEQkUwRjMzREE1NUYyMDcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RBNTVG MjA3Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzYmFiZjBiLTExMDEtNGFhOS1h NGRmLTUyNzE0OTM0ZGI3Yy8wLzMxMzAzMzJlMzEzNTM2MmUzNzMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzAzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5xGMA0GCSqG SIb3DQEBCwUAA4IBAQCraVLsG9YcLa9Il75VcE71xz//5afAZh9nAQcdwPpcmYJG 1P4MaVBXpZsy2ZkSN2OCLtwEPrwVy89KWdYo7RwZnj5FVSpZEaFPNPnJRK2VoS8O rGrNgwxMDdLCHSz+NxofYth42Vcmn1yTnC5Db6N1twZgTQoEJlv+h/VE6N/1GX+8 Z91Gl0tIlK5nF8fPrSKpAFjlE3/ZQ1BBI6tApmhM4xb5cpip9SaP7Z7d/uZC22Nd YcDCPI4KEFI4zVzgCPDZnNDMUZFuLcb2RA85E/BUlgtjXo8U+tp2uAXjTfqKL0IZ Xm87FFnilE532OYzKmL6EUBSXgl4k90ouiqJztit -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:15 2024 by rpki-client on console-ams.rpki-client.org