$ rpki-client -vvf repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37312e302f32342d3234203d3e20313431303831.roa File: 3130332e3135362e37312e302f32342d3234203d3e20313431303831.roa (raw, json) Hash identifier: Miiyo70b9UEsqSD6s3MKnk488M/yLQdFrFnluWJWC9w= Subject key identifier: 95:0A:0A:5B:2C:4C:E7:FC:EE:43:17:60:66:1A:6E:B1:B8:82:26:B2 Certificate issuer: /CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Certificate serial: 42FB141C259EF3E9E1759C2910B9CEF1B943240E Authority key identifier: 66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37312e302f32342d3234203d3e20313431303831.roa Signing time: Wed 18 Sep 2024 11:00:00 +0000 ROA not before: Wed 18 Sep 2024 10:55:00 +0000 ROA not after: Wed 17 Sep 2025 11:00:00 +0000 asID: 141081 IP address blocks: 103.156.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:fb:14:1c:25:9e:f3:e9:e1:75:9c:29:10:b9:ce:f1:b9:43:24:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Validity Not Before: Sep 18 10:55:00 2024 GMT Not After : Sep 17 11:00:00 2025 GMT Subject: CN=950A0A5B2C4CE7FCEE431760661A6EB1B88226B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:51:1c:bc:31:f4:1c:ee:86:9e:d1:f3:7a:15: 83:cd:ee:4c:d7:9b:b2:4f:02:ac:8e:51:65:fe:43: 93:1a:bd:37:c8:43:99:21:7b:ce:45:df:13:f6:b7: 97:ac:72:cd:5a:f5:db:d4:32:83:0b:53:29:3a:87: 31:c4:20:c6:52:b2:72:75:64:7f:ea:81:40:b3:ac: 47:76:38:96:e2:6d:19:5a:3e:32:3e:bb:bc:76:be: ac:0b:17:df:f9:56:3e:91:6d:66:7f:3c:82:27:76: 9e:9f:e4:28:60:43:f1:c2:d4:81:5b:70:3f:93:e5: ff:ae:0b:60:de:48:f7:f4:06:d6:a6:b8:27:66:56: 08:2a:d6:93:cc:9f:83:84:26:6a:0c:4d:52:5f:0d: 9d:b2:12:37:21:1c:26:3e:07:37:da:28:69:9e:e1: 69:c1:46:7e:83:da:f9:32:10:d3:f0:30:14:2e:f8: f8:6d:51:3d:0e:85:c6:a9:37:f3:c8:e6:f7:ae:9d: 23:52:ce:6f:08:1f:74:c1:6b:48:9f:f2:ff:f2:1b: 92:3f:9a:d0:3a:4f:c8:91:64:eb:ba:79:cb:b3:2a: 2c:17:78:3f:db:a1:79:6e:19:5d:dc:3e:88:0d:00: a3:a7:4d:cc:10:fd:a4:95:7a:15:5d:53:5b:8d:55: df:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:0A:0A:5B:2C:4C:E7:FC:EE:43:17:60:66:1A:6E:B1:B8:82:26:B2 X509v3 Authority Key Identifier: keyid:66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/3130332e3135362e37312e302f32342d3234203d3e20313431303831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.71.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:60:14:3c:75:f2:dc:cc:4e:df:8e:63:aa:e9:35:93:ea:fc: 93:2e:20:e6:4b:d1:41:1a:68:bc:98:db:25:35:c1:0c:3c:5f: 31:30:f6:e8:b2:b4:b9:66:12:9e:9a:56:c7:68:73:aa:f1:5a: 73:84:a3:de:92:4c:52:19:ac:8b:3f:e8:59:c5:55:01:5b:a5: 76:e2:1f:f5:e8:8b:e7:3b:bf:38:59:b2:61:46:d5:e3:ce:bc: 52:28:db:32:0e:f6:20:de:9f:a8:ef:ae:99:d3:be:d1:2b:69: 51:dc:ff:93:09:62:59:b8:1c:e0:32:30:f4:3f:65:af:b3:65: 98:f0:60:cd:4e:1f:2f:fe:c7:b0:ae:51:b1:8e:bc:5e:3c:f3: 08:6d:6f:f0:79:14:63:00:bc:c7:f7:34:3e:b1:99:e5:b9:9e: c2:9f:4d:b5:80:af:47:0f:23:96:dc:0a:7f:88:5b:2d:7f:ad: b0:da:51:17:65:24:1b:24:24:91:88:11:0c:9d:10:e6:a2:43: 2d:d1:e7:8b:a6:0e:f8:18:f0:06:b8:72:8b:d8:7b:37:ae:69: 0f:00:97:5d:7e:d5:39:f6:a7:e2:aa:78:e7:44:8d:a1:a4:fd: 8d:54:2b:23:50:df:7f:ca:77:c8:e3:3b:13:6c:1d:17:07:7f: 50:17:c5:b3 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUQvsUHCWe8+nhdZwpELnO8blDJA4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RB NTVGMjA3MjAeFw0yNDA5MTgxMDU1MDBaFw0yNTA5MTcxMTAwMDBaMDMxMTAvBgNV BAMTKDk1MEEwQTVCMkM0Q0U3RkNFRTQzMTc2MDY2MUE2RUIxQjg4MjI2QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsURy8MfQc7oae0fN6FYPN7kzX m7JPAqyOUWX+Q5MavTfIQ5khe85F3xP2t5escs1a9dvUMoMLUyk6hzHEIMZSsnJ1 ZH/qgUCzrEd2OJbibRlaPjI+u7x2vqwLF9/5Vj6RbWZ/PIIndp6f5ChgQ/HC1IFb cD+T5f+uC2DeSPf0BtamuCdmVggq1pPMn4OEJmoMTVJfDZ2yEjchHCY+BzfaKGme 4WnBRn6D2vkyENPwMBQu+PhtUT0OhcapN/PI5veunSNSzm8IH3TBa0if8v/yG5I/ mtA6T8iRZOu6ecuzKiwXeD/boXluGV3cPogNAKOnTcwQ/aSVehVdU1uNVd/tAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUlQoKWyxM5/zuQxdgZhpusbiCJrIwHwYDVR0j BBgwFoAUZttH6M2q1dlXKYcf2+DzPaVfIHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2JhYmYwYi0xMTAxLTRhYTktYTRkZi01MjcxNDkzNGRiN2MvMC82NkRCNDdFOENE QUFENUQ5NTcyOTg3MUZEQkUwRjMzREE1NUYyMDcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RBNTVG MjA3Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzYmFiZjBiLTExMDEtNGFhOS1h NGRmLTUyNzE0OTM0ZGI3Yy8wLzMxMzAzMzJlMzEzNTM2MmUzNzMxMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzAzODMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5xHMA0GCSqG SIb3DQEBCwUAA4IBAQAOYBQ8dfLczE7fjmOq6TWT6vyTLiDmS9FBGmi8mNslNcEM PF8xMPbosrS5ZhKemlbHaHOq8VpzhKPekkxSGayLP+hZxVUBW6V24h/16IvnO784 WbJhRtXjzrxSKNsyDvYg3p+o766Z077RK2lR3P+TCWJZuBzgMjD0P2Wvs2WY8GDN Th8v/sewrlGxjrxePPMIbW/weRRjALzH9zQ+sZnluZ7Cn021gK9HDyOW3Ap/iFst f62w2lEXZSQbJCSRiBEMnRDmokMt0eeLpg74GPAGuHKL2Hs3rmkPAJddftU59qfi qnjnRI2hpP2NVCsjUN9/ynfI4zsTbB0XB39QF8Wz -----END CERTIFICATE-----Generated at Wed Nov 20 21:51:52 2024 by rpki-client on console-fra.rpki-client.org