$ rpki-client -vvf repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/3130332e3136342e3139322e302f32332d3234203d3e20313431393339.roa File: 3130332e3136342e3139322e302f32332d3234203d3e20313431393339.roa (raw, json) Hash identifier: cJnOaGwkWse+gaN5dpuLlcDR+J9MkVOMmGejBDI/J0U= Subject key identifier: B8:6E:DA:1F:B0:7E:6F:E1:C2:6E:8D:EF:E8:86:87:C8:B7:91:2B:FA Certificate issuer: /CN=8659BE8500DEBB314448F1412FA1E264025A4148 Certificate serial: 46C13EFE64E17CB614C89A694C9D088871AF287B Authority key identifier: 86:59:BE:85:00:DE:BB:31:44:48:F1:41:2F:A1:E2:64:02:5A:41:48 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8659BE8500DEBB314448F1412FA1E264025A4148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/3130332e3136342e3139322e302f32332d3234203d3e20313431393339.roa Signing time: Wed 11 Sep 2024 05:00:01 +0000 ROA not before: Wed 11 Sep 2024 04:55:01 +0000 ROA not after: Wed 10 Sep 2025 05:00:01 +0000 asID: 141939 IP address blocks: 103.164.192.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.crl rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8659BE8500DEBB314448F1412FA1E264025A4148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:30:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:c1:3e:fe:64:e1:7c:b6:14:c8:9a:69:4c:9d:08:88:71:af:28:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8659BE8500DEBB314448F1412FA1E264025A4148 Validity Not Before: Sep 11 04:55:01 2024 GMT Not After : Sep 10 05:00:01 2025 GMT Subject: CN=B86EDA1FB07E6FE1C26E8DEFE88687C8B7912BFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:26:ac:79:22:d7:b2:65:73:c4:7f:9f:bf:fb: 58:bc:9f:0e:be:3d:6b:ac:13:f3:47:91:11:41:4b: 94:df:2e:18:36:90:0a:6d:5a:aa:f1:40:35:02:03: 25:75:ce:d3:51:0e:b1:ac:e4:50:41:27:09:63:80: d2:88:65:c3:12:1f:8a:51:d4:6a:c6:14:cf:66:8f: 1c:89:42:f1:d1:13:70:ed:01:97:57:9a:44:40:16: 3e:c9:e5:a4:cd:60:d1:ac:63:61:5c:16:0f:74:72: cd:87:09:f7:cd:5e:a4:37:44:9b:54:d5:3e:cb:5c: 8f:e0:bd:b7:27:dc:9a:32:51:79:da:5d:2d:14:a9: f0:37:cc:4f:1d:c8:66:28:0c:4d:78:38:a6:88:a4: 92:3a:9b:5b:51:4c:51:53:58:c3:14:20:5a:5f:89: 69:18:21:8c:d9:33:54:4e:0a:90:a8:18:f9:54:9d: 92:76:33:ea:bc:a9:9c:d8:a2:75:a3:69:75:2f:15: 09:c4:ca:ea:62:1e:6d:77:9b:ec:f6:a5:62:2e:b8: 63:b1:ff:94:73:2c:bf:60:f7:7f:32:ee:cf:6d:d2: e1:75:0c:27:df:a3:33:53:8b:8e:a5:86:39:3c:53: 74:96:5c:6c:92:78:fe:0a:a5:ce:ac:fa:14:de:ac: e5:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:6E:DA:1F:B0:7E:6F:E1:C2:6E:8D:EF:E8:86:87:C8:B7:91:2B:FA X509v3 Authority Key Identifier: keyid:86:59:BE:85:00:DE:BB:31:44:48:F1:41:2F:A1:E2:64:02:5A:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8659BE8500DEBB314448F1412FA1E264025A4148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/3130332e3136342e3139322e302f32332d3234203d3e20313431393339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.192.0/23 Signature Algorithm: sha256WithRSAEncryption a3:72:ec:47:bf:e3:9b:c3:02:4d:2f:29:8b:dd:23:4d:79:c3: 03:a8:71:19:b2:9d:bd:33:94:44:63:b8:52:5e:78:46:ba:bf: 67:82:2b:de:8b:89:47:d9:3a:59:96:85:39:69:de:de:9a:b5: 55:c5:23:43:48:01:69:ae:f2:57:d4:be:b2:8f:6d:18:ca:5c: 19:62:72:c5:96:9e:98:29:de:54:5a:ca:bc:17:b3:ef:de:83: 96:6f:33:ff:62:0d:01:49:4f:33:05:bc:2a:f9:db:f1:4c:7a: a0:59:77:36:75:87:af:17:83:cb:2c:05:c6:ad:d5:10:e6:1e: 19:91:f6:4c:d2:cf:1b:bf:c7:02:d7:48:4a:74:7e:ad:91:13: ee:d0:ae:e7:c6:0e:39:79:dc:76:a2:45:ce:21:ad:5d:c6:57: 81:19:ad:a8:02:15:bb:a1:54:57:59:50:e3:3b:80:e5:8a:54: f8:7f:72:3b:84:b2:da:36:10:a5:7c:f1:85:5d:58:20:60:f5: 6d:e2:ce:d4:ec:8e:ce:eb:2a:ad:f9:62:d6:f5:a9:ee:fc:f0: 28:24:8b:07:95:5a:e2:3a:14:f1:9a:d9:cc:6b:b1:6e:1f:f6: ca:b1:21:d1:01:ee:bc:28:b1:70:1a:ab:7e:47:6f:3b:ec:60: 0f:d3:8c:5a -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIURsE+/mThfLYUyJppTJ0IiHGvKHswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY1OUJFODUwMERFQkIzMTQ0NDhGMTQxMkZBMUUyNjQw MjVBNDE0ODAeFw0yNDA5MTEwNDU1MDFaFw0yNTA5MTAwNTAwMDFaMDMxMTAvBgNV BAMTKEI4NkVEQTFGQjA3RTZGRTFDMjZFOERFRkU4ODY4N0M4Qjc5MTJCRkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0Jqx5IteyZXPEf5+/+1i8nw6+ PWusE/NHkRFBS5TfLhg2kAptWqrxQDUCAyV1ztNRDrGs5FBBJwljgNKIZcMSH4pR 1GrGFM9mjxyJQvHRE3DtAZdXmkRAFj7J5aTNYNGsY2FcFg90cs2HCffNXqQ3RJtU 1T7LXI/gvbcn3JoyUXnaXS0UqfA3zE8dyGYoDE14OKaIpJI6m1tRTFFTWMMUIFpf iWkYIYzZM1ROCpCoGPlUnZJ2M+q8qZzYonWjaXUvFQnEyupiHm13m+z2pWIuuGOx /5RzLL9g938y7s9t0uF1DCffozNTi46lhjk8U3SWXGySeP4Kpc6s+hTerOVDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUuG7aH7B+b+HCbo3v6IaHyLeRK/owHwYDVR0j BBgwFoAUhlm+hQDeuzFESPFBL6HiZAJaQUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmE0OGU0ZS1mYzk1LTRhY2YtYmVhYy1kOTNhMGY2OTQ0MjEvMC84NjU5QkU4NTAw REVCQjMxNDQ0OEYxNDEyRkExRTI2NDAyNUE0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODY1OUJFODUwMERFQkIzMTQ0NDhGMTQxMkZBMUUyNjQwMjVB NDE0OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZiYTQ4ZTRlLWZjOTUtNGFjZi1i ZWFjLWQ5M2EwZjY5NDQyMS8wLzMxMzAzMzJlMzEzNjM0MmUzMTM5MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzEzOTMzMzkucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnpMAwDQYJ KoZIhvcNAQELBQADggEBAKNy7Ee/45vDAk0vKYvdI015wwOocRmynb0zlERjuFJe eEa6v2eCK96LiUfZOlmWhTlp3t6atVXFI0NIAWmu8lfUvrKPbRjKXBlicsWWnpgp 3lRayrwXs+/eg5ZvM/9iDQFJTzMFvCr52/FMeqBZdzZ1h68Xg8ssBcat1RDmHhmR 9kzSzxu/xwLXSEp0fq2RE+7QrufGDjl53HaiRc4hrV3GV4EZragCFbuhVFdZUOM7 gOWKVPh/cjuEsto2EKV88YVdWCBg9W3iztTsjs7rKq35Ytb1qe788CgkiweVWuI6 FPGa2cxrsW4f9sqxIdEB7rwosXAaq35HbzvsYA/TjFo= -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:44 2024 by rpki-client on console-fra.rpki-client.org