$ rpki-client -vvf repo-rpki.idnic.net/repo/fa415438-ad01-42dc-8c92-151bc8c2721f/0/3130332e3136362e32362e302f32342d3234203d3e20313431393334.roa File: 3130332e3136362e32362e302f32342d3234203d3e20313431393334.roa (raw, json) Hash identifier: WhL0uuz/He2Qtlqt0PLq8M7v44zvLbVytZ/ZdCqKzhs= Subject key identifier: 7D:0E:A8:2B:5C:1F:D7:C0:A7:73:E7:CA:37:1E:35:09:DA:CC:59:DE Certificate issuer: /CN=00F9E3D43956F7753B34BD1A4876FF9F8D1BBFBD Certificate serial: 1BECACBD93F5A40ACEF41F42E432D1C9026CEA86 Authority key identifier: 00:F9:E3:D4:39:56:F7:75:3B:34:BD:1A:48:76:FF:9F:8D:1B:BF:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00F9E3D43956F7753B34BD1A4876FF9F8D1BBFBD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fa415438-ad01-42dc-8c92-151bc8c2721f/0/3130332e3136362e32362e302f32342d3234203d3e20313431393334.roa Signing time: Thu 28 Nov 2024 09:00:00 +0000 ROA not before: Thu 28 Nov 2024 08:55:00 +0000 ROA not after: Thu 27 Nov 2025 09:00:00 +0000 asID: 141934 IP address blocks: 103.166.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fa415438-ad01-42dc-8c92-151bc8c2721f/0/00F9E3D43956F7753B34BD1A4876FF9F8D1BBFBD.crl rsync://repo-rpki.idnic.net/repo/fa415438-ad01-42dc-8c92-151bc8c2721f/0/00F9E3D43956F7753B34BD1A4876FF9F8D1BBFBD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00F9E3D43956F7753B34BD1A4876FF9F8D1BBFBD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 02:44:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:ec:ac:bd:93:f5:a4:0a:ce:f4:1f:42:e4:32:d1:c9:02:6c:ea:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00F9E3D43956F7753B34BD1A4876FF9F8D1BBFBD Validity Not Before: Nov 28 08:55:00 2024 GMT Not After : Nov 27 09:00:00 2025 GMT Subject: CN=7D0EA82B5C1FD7C0A773E7CA371E3509DACC59DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:bc:64:e5:f0:d4:b7:69:a0:a1:10:f7:70:7d: 16:ee:83:44:85:81:5c:e3:91:b5:7c:80:6e:e8:f2: 63:38:40:e7:15:19:e7:75:85:9a:58:25:40:6a:c1: 70:24:45:59:5a:c7:8a:e0:c9:de:14:a2:56:0d:de: fa:80:43:66:89:2c:0b:5d:aa:cd:05:f9:7f:6c:a8: 68:1b:34:f5:21:a0:cd:f8:56:69:cd:8f:9a:fc:bf: d4:52:0b:ee:fe:8a:41:a5:42:0e:b2:79:73:85:09: 73:04:3b:82:af:43:0d:9b:c6:c8:74:25:fe:2a:fc: a8:61:96:a1:68:7e:b1:14:a2:9c:2e:a2:6b:47:20: 15:b7:a7:9a:10:18:fa:66:8e:1a:ec:63:45:63:61: 55:15:f9:c6:09:ac:06:12:98:71:22:e2:98:f9:97: 59:85:57:21:9c:c9:62:c6:6c:c1:df:73:20:ad:62: 13:c9:90:0b:d2:2f:c1:3b:85:f6:43:b6:d0:c5:4f: ec:19:ee:d7:dd:99:6e:69:fd:7b:39:09:8e:39:41: 17:9b:3a:e2:0a:fe:64:ef:dd:a1:38:fe:32:01:e6: 33:e1:29:b1:fd:2e:84:e2:f2:2a:32:65:25:d3:9e: 3c:28:3b:43:93:d5:92:c1:37:9a:e7:cd:15:ac:10: 3c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:0E:A8:2B:5C:1F:D7:C0:A7:73:E7:CA:37:1E:35:09:DA:CC:59:DE X509v3 Authority Key Identifier: keyid:00:F9:E3:D4:39:56:F7:75:3B:34:BD:1A:48:76:FF:9F:8D:1B:BF:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fa415438-ad01-42dc-8c92-151bc8c2721f/0/00F9E3D43956F7753B34BD1A4876FF9F8D1BBFBD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/00F9E3D43956F7753B34BD1A4876FF9F8D1BBFBD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fa415438-ad01-42dc-8c92-151bc8c2721f/0/3130332e3136362e32362e302f32342d3234203d3e20313431393334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.26.0/24 Signature Algorithm: sha256WithRSAEncryption 24:15:24:f6:43:5e:28:0b:ec:e6:e3:cb:bf:e4:e7:56:e0:d0: e5:ed:d6:df:63:cb:c8:59:1c:e9:cf:12:c4:24:e9:34:17:c5: b4:97:1b:2d:7a:91:11:57:df:fc:44:0b:05:ff:84:3e:6f:d0: ca:29:87:2f:75:af:e1:f1:8d:d7:ca:e3:b4:1b:ba:92:95:29: 6f:18:72:ca:aa:39:6f:e4:1c:3f:e3:34:68:32:f7:ef:8e:bb: 43:e5:ac:75:db:ee:b9:43:0e:83:d6:8a:29:6e:00:35:88:03: 14:24:78:45:30:b3:14:a0:69:da:36:f3:00:c8:89:b3:f1:af: af:69:4a:c7:9b:1f:66:63:1f:40:d8:0a:8c:60:7f:06:b2:c6: 68:32:2a:21:23:bd:07:20:c1:ae:32:93:2d:ad:3c:fe:e8:70: 20:b6:e2:ee:3b:92:75:e4:a8:c9:6b:3c:0a:10:02:64:5e:e8: 3e:69:6c:35:6e:49:bd:fe:71:2a:81:b3:9d:ee:57:86:91:d1: 54:ba:13:d7:c1:4f:be:95:61:3b:4d:b5:a9:28:25:30:bc:d3: 40:f4:58:1f:0d:c2:84:10:5c:e6:c6:78:6f:ec:a4:69:ae:c8: 31:91:13:2f:29:70:fe:60:60:73:0f:0d:60:61:ee:a5:df:5d: 5a:4e:e0:18 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUG+ysvZP1pArO9B9C5DLRyQJs6oYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDBGOUUzRDQzOTU2Rjc3NTNCMzRCRDFBNDg3NkZGOUY4 RDFCQkZCRDAeFw0yNDExMjgwODU1MDBaFw0yNTExMjcwOTAwMDBaMDMxMTAvBgNV BAMTKDdEMEVBODJCNUMxRkQ3QzBBNzczRTdDQTM3MUUzNTA5REFDQzU5REUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNvGTl8NS3aaChEPdwfRbug0SF gVzjkbV8gG7o8mM4QOcVGed1hZpYJUBqwXAkRVlax4rgyd4UolYN3vqAQ2aJLAtd qs0F+X9sqGgbNPUhoM34VmnNj5r8v9RSC+7+ikGlQg6yeXOFCXMEO4KvQw2bxsh0 Jf4q/KhhlqFofrEUopwuomtHIBW3p5oQGPpmjhrsY0VjYVUV+cYJrAYSmHEi4pj5 l1mFVyGcyWLGbMHfcyCtYhPJkAvSL8E7hfZDttDFT+wZ7tfdmW5p/Xs5CY45QReb OuIK/mTv3aE4/jIB5jPhKbH9LoTi8ioyZSXTnjwoO0OT1ZLBN5rnzRWsEDxLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUfQ6oK1wf18Cnc+fKNx41CdrMWd4wHwYDVR0j BBgwFoAUAPnj1DlW93U7NL0aSHb/n40bv70wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YTQxNTQzOC1hZDAxLTQyZGMtOGM5Mi0xNTFiYzhjMjcyMWYvMC8wMEY5RTNENDM5 NTZGNzc1M0IzNEJEMUE0ODc2RkY5RjhEMUJCRkJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDBGOUUzRDQzOTU2Rjc3NTNCMzRCRDFBNDg3NkZGOUY4RDFC QkZCRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZhNDE1NDM4LWFkMDEtNDJkYy04 YzkyLTE1MWJjOGMyNzIxZi8wLzMxMzAzMzJlMzEzNjM2MmUzMjM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMxMzkzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ6YaMA0GCSqG SIb3DQEBCwUAA4IBAQAkFST2Q14oC+zm48u/5OdW4NDl7dbfY8vIWRzpzxLEJOk0 F8W0lxstepERV9/8RAsF/4Q+b9DKKYcvda/h8Y3XyuO0G7qSlSlvGHLKqjlv5Bw/ 4zRoMvfvjrtD5ax12+65Qw6D1oopbgA1iAMUJHhFMLMUoGnaNvMAyImz8a+vaUrH mx9mYx9A2AqMYH8GssZoMiohI70HIMGuMpMtrTz+6HAgtuLuO5J15KjJazwKEAJk Xug+aWw1bkm9/nEqgbOd7leGkdFUuhPXwU++lWE7TbWpKCUwvNNA9FgfDcKEEFzm xnhv7KRprsgxkRMvKXD+YGBzDw1gYe6l311aTuAY -----END CERTIFICATE-----Generated at Fri Apr 18 04:04:38 2025 by rpki-client