$ rpki-client -vvf repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/3130332e3136312e3138342e302f32342d3234203d3e20313431363233.roa File: 3130332e3136312e3138342e302f32342d3234203d3e20313431363233.roa (raw, json) Hash identifier: mH+1VpWMh2xbaDJyAbOAhzGNCfmvCkGbF0WpIR3b6Fo= Subject key identifier: 60:1D:57:A7:DF:EC:23:3D:7D:AF:3D:BC:F9:EA:B9:87:52:63:E0:0F Certificate issuer: /CN=215FC7E5E22B8C46910D4D7CA214C923A096B2FE Certificate serial: 7CDD4BBE902E8CEC5F1B0C0D7D65EF88B218DA21 Authority key identifier: 21:5F:C7:E5:E2:2B:8C:46:91:0D:4D:7C:A2:14:C9:23:A0:96:B2:FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/3130332e3136312e3138342e302f32342d3234203d3e20313431363233.roa Signing time: Thu 26 Sep 2024 12:02:22 +0000 ROA not before: Thu 26 Sep 2024 11:57:22 +0000 ROA not after: Thu 25 Sep 2025 12:02:22 +0000 asID: 141623 IP address blocks: 103.161.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.crl rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:dd:4b:be:90:2e:8c:ec:5f:1b:0c:0d:7d:65:ef:88:b2:18:da:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=215FC7E5E22B8C46910D4D7CA214C923A096B2FE Validity Not Before: Sep 26 11:57:22 2024 GMT Not After : Sep 25 12:02:22 2025 GMT Subject: CN=601D57A7DFEC233D7DAF3DBCF9EAB9875263E00F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:1c:ee:e3:1d:c8:8f:44:0e:db:8a:08:f7:a2: 0b:2b:92:8b:e9:76:c9:b3:5d:09:59:a7:7b:63:05: 98:3f:4b:c4:3f:ac:1e:04:17:31:88:01:09:64:5f: 77:32:2b:55:1e:62:ee:7a:fe:a6:e4:85:de:f5:84: 60:35:7d:1e:05:cf:a6:83:d5:81:a8:61:b1:fe:8d: d8:9d:2b:d2:70:46:91:47:c1:3f:48:e5:f9:b5:48: 75:90:17:0a:6c:e9:c9:e3:44:57:2e:e0:2c:c6:78: c3:05:d3:4d:f6:b5:bf:f5:74:74:2d:f4:38:d8:69: d7:78:ef:fb:52:67:cd:67:d8:46:fa:fb:14:a9:6b: f2:9d:50:24:13:ec:ea:6d:e0:17:3e:29:a9:35:83: 2b:13:af:76:63:43:13:ae:12:09:e8:45:a8:24:5c: a1:7b:61:4e:36:6d:f0:c9:c5:6f:a9:ab:9c:55:3c: 0e:13:bb:37:7d:6f:b0:ea:1b:3c:54:49:35:55:ec: 8d:17:6f:0d:12:91:04:f4:e9:3a:a4:ae:d4:6f:31: ea:49:02:22:79:f1:05:49:8c:15:f8:d4:61:68:d1: 81:75:00:67:5c:7c:f3:69:40:02:01:cc:2d:b4:fc: 02:8a:ba:0d:a9:57:38:7f:b1:74:ba:26:7c:92:73: 43:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:1D:57:A7:DF:EC:23:3D:7D:AF:3D:BC:F9:EA:B9:87:52:63:E0:0F X509v3 Authority Key Identifier: keyid:21:5F:C7:E5:E2:2B:8C:46:91:0D:4D:7C:A2:14:C9:23:A0:96:B2:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/3130332e3136312e3138342e302f32342d3234203d3e20313431363233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.184.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:9a:65:2a:80:8e:00:4c:d0:56:fe:b2:f8:bc:7b:74:90:3a: 0a:2f:60:ba:70:cf:31:0c:b6:6d:e1:84:6f:93:80:8c:ca:e5: f4:88:56:e8:8d:c9:74:40:88:61:ba:5a:cb:49:bc:43:d1:ad: db:4e:5c:8f:46:d6:5b:29:f1:2a:bc:f9:2d:c5:31:4a:fe:57: e5:88:ea:e1:bb:b2:0c:e5:6f:f3:d9:13:10:02:28:1c:93:1c: dc:86:4c:33:1e:62:7c:78:aa:1c:7a:9e:5c:76:45:d7:fc:00: 8a:f7:7c:6b:bc:2d:3f:c2:dd:95:b5:9f:e4:d1:d4:66:56:e7: a0:84:2e:0f:0e:a0:53:ac:94:05:64:4d:ae:8a:44:91:32:99: 77:9c:dd:7c:d3:61:5e:ed:16:00:ac:d8:e8:0c:8c:9f:f8:2b: 3e:6d:f0:12:c8:23:4c:49:49:54:2b:7e:1f:c0:a2:d9:22:f7: 70:9c:4b:3b:33:ea:1f:94:f2:a1:2e:b7:a4:13:cd:e4:81:8b: 7e:76:2f:a0:52:07:b7:2e:52:6c:1c:88:24:96:85:3b:54:7d: f9:14:dc:39:5d:48:f1:23:35:bd:10:82:c7:33:19:74:e8:16: 90:9a:4b:98:d2:0e:a0:4c:16:81:80:56:56:c1:8f:5f:22:fc: 3e:44:ba:88 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUfN1LvpAujOxfGwwNfWXviLIY2iEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE1RkM3RTVFMjJCOEM0NjkxMEQ0RDdDQTIxNEM5MjNB MDk2QjJGRTAeFw0yNDA5MjYxMTU3MjJaFw0yNTA5MjUxMjAyMjJaMDMxMTAvBgNV BAMTKDYwMUQ1N0E3REZFQzIzM0Q3REFGM0RCQ0Y5RUFCOTg3NTI2M0UwMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlHO7jHciPRA7bigj3ogsrkovp dsmzXQlZp3tjBZg/S8Q/rB4EFzGIAQlkX3cyK1UeYu56/qbkhd71hGA1fR4Fz6aD 1YGoYbH+jdidK9JwRpFHwT9I5fm1SHWQFwps6cnjRFcu4CzGeMMF0032tb/1dHQt 9DjYadd47/tSZ81n2Eb6+xSpa/KdUCQT7Opt4Bc+Kak1gysTr3ZjQxOuEgnoRagk XKF7YU42bfDJxW+pq5xVPA4Tuzd9b7DqGzxUSTVV7I0Xbw0SkQT06TqkrtRvMepJ AiJ58QVJjBX41GFo0YF1AGdcfPNpQAIBzC20/AKKug2pVzh/sXS6JnySc0O1AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUYB1Xp9/sIz19rz28+eq5h1Jj4A8wHwYDVR0j BBgwFoAUIV/H5eIrjEaRDU18ohTJI6CWsv4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2VhYzljMC1kZTFiLTQ2ZGQtYmYzNy0xOGZlM2E4ZDVmYmYvMC8yMTVGQzdFNUUy MkI4QzQ2OTEwRDREN0NBMjE0QzkyM0EwOTZCMkZFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjE1RkM3RTVFMjJCOEM0NjkxMEQ0RDdDQTIxNEM5MjNBMDk2 QjJGRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzZWFjOWMwLWRlMWItNDZkZC1i ZjM3LTE4ZmUzYThkNWZiZi8wLzMxMzAzMzJlMzEzNjMxMmUzMTM4MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzNjMyMzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnobgwDQYJ KoZIhvcNAQELBQADggEBAC2aZSqAjgBM0Fb+svi8e3SQOgovYLpwzzEMtm3hhG+T gIzK5fSIVuiNyXRAiGG6WstJvEPRrdtOXI9G1lsp8Sq8+S3FMUr+V+WI6uG7sgzl b/PZExACKByTHNyGTDMeYnx4qhx6nlx2Rdf8AIr3fGu8LT/C3ZW1n+TR1GZW56CE Lg8OoFOslAVkTa6KRJEymXec3XzTYV7tFgCs2OgMjJ/4Kz5t8BLII0xJSVQrfh/A otki93CcSzsz6h+U8qEut6QTzeSBi352L6BSB7cuUmwciCSWhTtUffkU3DldSPEj Nb0QgsczGXToFpCaS5jSDqBMFoGAVlbBj18i/D5Euog= -----END CERTIFICATE-----Generated at Sun Nov 24 06:43:23 2024 by rpki-client on console-fra.rpki-client.org