$ rpki-client -vvf repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/3130332e3135342e3137392e302f32342d3234203d3e20313331373035.roa File: 3130332e3135342e3137392e302f32342d3234203d3e20313331373035.roa (raw, json) Hash identifier: 4rWzT0kttC+3o1m8M4nqZx/LEwYsgQQY9aJJrFVM75k= Subject key identifier: A9:F1:ED:0B:AA:CF:E7:08:78:54:06:50:0E:C7:FD:EA:A6:32:44:29 Certificate issuer: /CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Certificate serial: 3DFB8502949CB7990C784F5A988D95995A3F355F Authority key identifier: 0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/3130332e3135342e3137392e302f32342d3234203d3e20313331373035.roa Signing time: Fri 14 Jun 2024 07:00:00 +0000 ROA not before: Fri 14 Jun 2024 06:55:00 +0000 ROA not after: Fri 13 Jun 2025 07:00:00 +0000 asID: 131705 IP address blocks: 103.154.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:fb:85:02:94:9c:b7:99:0c:78:4f:5a:98:8d:95:99:5a:3f:35:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A8E8E063785238467D4AD1F507CC97B30DBB959 Validity Not Before: Jun 14 06:55:00 2024 GMT Not After : Jun 13 07:00:00 2025 GMT Subject: CN=A9F1ED0BAACFE708785406500EC7FDEAA6324429 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:11:f9:b4:37:dd:e5:cf:ce:1f:d9:4c:ab:45: 1e:a1:a4:0f:18:b8:d8:0c:7f:57:da:1a:5d:25:91: 75:97:bd:58:e7:c3:a3:d5:a5:d1:a1:00:7e:38:cb: df:28:e8:27:0c:82:02:35:65:06:af:16:b8:16:3e: 52:73:e8:b9:36:2a:e8:f3:27:3c:29:00:5f:c8:da: 27:81:93:e0:a6:2a:e2:1d:57:5f:fc:23:5c:5f:7f: 2f:26:bd:4a:7a:ea:f6:96:41:22:76:35:61:21:92: f7:26:ba:0b:7a:e7:ef:09:8d:be:10:ca:6a:18:41: 01:a0:19:87:ff:b8:0d:11:b1:74:fc:52:90:4d:08: 88:b1:7e:3b:4a:39:d4:ab:ac:9c:7c:63:b8:e9:a5: 98:f8:8e:37:78:e2:c6:54:eb:13:f1:51:37:17:df: aa:53:7a:c7:b9:9a:48:1e:46:42:02:77:f8:98:39: 42:44:28:6b:6a:a7:2c:e8:df:2d:4d:e8:0a:c1:35: 9e:cd:13:c2:b2:2d:cb:09:22:b3:19:ca:b4:eb:5c: 74:77:04:06:36:61:24:b0:3e:9a:f2:d4:25:7a:49: 54:b7:7e:7f:58:bc:46:7c:41:a0:9b:d7:0f:5e:a7: 74:ba:73:5a:c1:e8:60:ed:cb:e4:00:94:a2:98:b9: f2:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:F1:ED:0B:AA:CF:E7:08:78:54:06:50:0E:C7:FD:EA:A6:32:44:29 X509v3 Authority Key Identifier: keyid:0A:8E:8E:06:37:85:23:84:67:D4:AD:1F:50:7C:C9:7B:30:DB:B9:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/0A8E8E063785238467D4AD1F507CC97B30DBB959.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A8E8E063785238467D4AD1F507CC97B30DBB959.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f9d6acc6-0af3-4b97-99a4-0f45e8ecf576/0/3130332e3135342e3137392e302f32342d3234203d3e20313331373035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.179.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:d6:01:c5:f3:58:7a:a9:22:90:ae:86:e9:ea:65:63:1f:1a: 30:a0:23:78:77:1f:36:4a:29:d3:d3:50:3e:cf:0a:54:17:8a: 8b:2d:50:90:82:ad:52:f4:f0:7f:33:58:1b:ff:57:4a:48:4a: ee:e8:0e:86:1c:1e:df:fa:dd:1b:e6:9d:ac:88:90:0e:30:77: 28:51:6a:50:bc:61:d2:9d:c0:fe:e8:cf:27:bd:f0:a1:73:ec: e7:92:0d:1d:10:5c:dd:7f:85:23:25:02:ed:76:d0:78:82:f0: 04:18:cd:1f:0f:36:59:57:fd:eb:4d:48:34:8c:68:33:88:fa: 7c:2d:f9:ed:e0:19:45:fb:9e:64:51:3c:df:da:ea:12:7b:5b: 5c:6e:a8:6d:bc:b6:f7:a1:fc:52:b0:0d:57:84:9d:a3:df:00: ac:05:bb:1d:2c:9b:9a:16:f5:5b:17:e4:34:a5:fe:a3:84:42: 36:a7:f3:44:d8:18:22:58:3b:56:b1:dd:5b:c2:ec:4f:a0:d3: 40:fd:56:a3:67:49:3d:ac:95:50:24:72:f6:02:1c:c7:63:d6: 01:b0:da:8a:e8:0a:f7:32:fd:f5:78:54:c7:49:72:ac:0f:f7: c8:8a:ec:7b:f9:3a:25:24:f4:33:2a:00:86:5b:1c:42:3f:1b: 34:6d:17:fc -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUPfuFApSct5kMeE9amI2VmVo/NV8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0Iz MERCQjk1OTAeFw0yNDA2MTQwNjU1MDBaFw0yNTA2MTMwNzAwMDBaMDMxMTAvBgNV BAMTKEE5RjFFRDBCQUFDRkU3MDg3ODU0MDY1MDBFQzdGREVBQTYzMjQ0MjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLEfm0N93lz84f2UyrRR6hpA8Y uNgMf1faGl0lkXWXvVjnw6PVpdGhAH44y98o6CcMggI1ZQavFrgWPlJz6Lk2Kujz JzwpAF/I2ieBk+CmKuIdV1/8I1xffy8mvUp66vaWQSJ2NWEhkvcmugt65+8Jjb4Q ymoYQQGgGYf/uA0RsXT8UpBNCIixfjtKOdSrrJx8Y7jppZj4jjd44sZU6xPxUTcX 36pTese5mkgeRkICd/iYOUJEKGtqpyzo3y1N6ArBNZ7NE8KyLcsJIrMZyrTrXHR3 BAY2YSSwPpry1CV6SVS3fn9YvEZ8QaCb1w9ep3S6c1rB6GDty+QAlKKYufJrAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUqfHtC6rP5wh4VAZQDsf96qYyRCkwHwYDVR0j BBgwFoAUCo6OBjeFI4Rn1K0fUHzJezDbuVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OWQ2YWNjNi0wYWYzLTRiOTctOTlhNC0wZjQ1ZThlY2Y1NzYvMC8wQThFOEUwNjM3 ODUyMzg0NjdENEFEMUY1MDdDQzk3QjMwREJCOTU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEE4RThFMDYzNzg1MjM4NDY3RDRBRDFGNTA3Q0M5N0IzMERC Qjk1OS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5ZDZhY2M2LTBhZjMtNGI5Ny05 OWE0LTBmNDVlOGVjZjU3Ni8wLzMxMzAzMzJlMzEzNTM0MmUzMTM3MzkyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzEzNzMwMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnmrMwDQYJ KoZIhvcNAQELBQADggEBAE3WAcXzWHqpIpCuhunqZWMfGjCgI3h3HzZKKdPTUD7P ClQXiostUJCCrVL08H8zWBv/V0pISu7oDoYcHt/63RvmnayIkA4wdyhRalC8YdKd wP7ozye98KFz7OeSDR0QXN1/hSMlAu120HiC8AQYzR8PNllX/etNSDSMaDOI+nwt +e3gGUX7nmRRPN/a6hJ7W1xuqG28tveh/FKwDVeEnaPfAKwFux0sm5oW9VsX5DSl /qOEQjan80TYGCJYO1ax3VvC7E+g00D9VqNnST2slVAkcvYCHMdj1gGw2oroCvcy /fV4VMdJcqwP98iK7Hv5OiUk9DMqAIZbHEI/GzRtF/w= -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:55 2024 by rpki-client on console-ams.rpki-client.org