$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133342e302f32342d3234203d3e203633383539.roa File: 3130332e34372e3133342e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: d1M2Qas2ESRzzupnOZWeqZxveIlcoBIs/V8NeqRZsWI= Subject key identifier: D3:1F:ED:EE:BC:31:1F:67:CE:60:B5:CB:35:34:D3:00:13:B1:94:7F Certificate issuer: /CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4 Certificate serial: 4AD658CFF88B38A08347E836E7F22AA722DC8167 Authority key identifier: 17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133342e302f32342d3234203d3e203633383539.roa Signing time: Sun 10 Sep 2023 09:00:02 +0000 ROA not before: Sun 10 Sep 2023 08:55:02 +0000 ROA not after: Sun 08 Sep 2024 09:00:02 +0000 asID: 63859 IP address blocks: 103.47.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 00:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:d6:58:cf:f8:8b:38:a0:83:47:e8:36:e7:f2:2a:a7:22:dc:81:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4 Validity Not Before: Sep 10 08:55:02 2023 GMT Not After : Sep 8 09:00:02 2024 GMT Subject: CN=D31FEDEEBC311F67CE60B5CB3534D30013B1947F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e3:ef:9c:e2:59:7a:20:51:f9:1d:89:6b:bd: 90:f5:bd:4c:fd:3f:20:86:5e:b8:f2:41:2b:25:8b: 1b:a4:5c:58:02:f5:4f:2f:be:bf:b4:b5:ca:19:16: ea:5b:c9:a8:17:19:82:f0:60:db:7c:2a:77:ee:c8: 0e:52:61:3d:a5:35:dd:a1:1d:98:43:6a:5a:a9:f1: 94:ee:06:65:af:19:46:9a:e4:3b:f2:94:eb:a3:e5: d9:57:9c:59:5e:41:37:4d:96:d1:3e:74:09:21:63: bc:49:25:86:7d:00:1d:95:7f:f6:9d:3c:bb:4e:c1: d8:9b:ff:6f:bf:d7:a7:51:44:7b:f3:44:5c:18:4b: f9:32:10:50:38:08:53:62:1f:d9:af:64:a9:ed:61: 04:4a:ad:73:08:18:10:9b:06:ff:2d:6e:8b:88:fb: 69:ef:7c:f3:cd:d8:81:b8:33:37:7a:4f:34:e3:85: dc:79:4b:b1:c5:6e:ac:83:18:c4:d5:ae:64:33:d8: b5:cb:16:a9:93:57:15:f5:31:56:17:c3:60:3f:23: 63:c4:c8:a3:d0:3b:a1:a9:87:9e:77:0f:3e:7e:3f: 71:d6:97:f0:d4:f3:24:61:34:46:19:11:cc:4f:91: 31:ff:f9:e0:89:fe:2e:19:f5:01:ac:e7:9c:28:75: 7d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:1F:ED:EE:BC:31:1F:67:CE:60:B5:CB:35:34:D3:00:13:B1:94:7F X509v3 Authority Key Identifier: keyid:17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133342e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.47.134.0/24 Signature Algorithm: sha256WithRSAEncryption c6:55:a1:9e:88:6f:fb:56:77:42:3e:72:17:7d:70:cb:b2:60: ad:7f:8b:89:2d:41:ad:51:7d:97:23:04:d7:e9:68:be:26:d7: f3:95:6f:91:de:ad:cf:6a:ff:7c:7d:fa:42:70:50:56:ec:7f: 33:a0:44:83:3e:2f:20:5b:4a:86:d9:2b:3e:bb:94:b3:60:93: 6d:d6:ae:b4:1f:cc:dc:b7:ca:ba:4b:2d:06:df:a6:6c:ed:59: 83:7a:ec:4d:db:57:0f:41:0d:ce:ac:3a:e6:f2:1d:98:08:fd: 5f:bf:9c:98:f8:2f:ac:41:1f:56:69:d2:45:a9:73:c6:ff:fb: d6:e1:50:a2:21:7a:ca:ea:b8:c3:e9:2e:20:82:a7:b1:10:80: 72:1b:32:18:b8:11:70:0f:96:d8:de:9f:83:4a:2b:ce:7b:da: 57:93:57:7d:a1:de:c6:b6:2b:69:50:a0:f8:fc:f0:ec:2c:27: 89:1d:7a:58:c9:03:39:d5:f3:c7:f1:98:21:58:8a:16:f7:7d: 6c:f9:aa:14:39:5b:87:cc:61:3b:d1:80:61:ae:a7:7c:af:ba: ed:3f:d8:65:61:a6:90:3f:74:0e:e0:73:8d:cd:62:6a:98:b1: 31:dd:35:98:de:d1:1e:03:80:b7:77:1a:46:fc:93:69:4a:cc: 2e:4c:a0:54 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUStZYz/iLOKCDR+g25/IqpyLcgWcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBBNTky N0E3NDRFNDAeFw0yMzA5MTAwODU1MDJaFw0yNDA5MDgwOTAwMDJaMDMxMTAvBgNV BAMTKEQzMUZFREVFQkMzMTFGNjdDRTYwQjVDQjM1MzREMzAwMTNCMTk0N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL4++c4ll6IFH5HYlrvZD1vUz9 PyCGXrjyQSslixukXFgC9U8vvr+0tcoZFupbyagXGYLwYNt8KnfuyA5SYT2lNd2h HZhDalqp8ZTuBmWvGUaa5DvylOuj5dlXnFleQTdNltE+dAkhY7xJJYZ9AB2Vf/ad PLtOwdib/2+/16dRRHvzRFwYS/kyEFA4CFNiH9mvZKntYQRKrXMIGBCbBv8tbouI +2nvfPPN2IG4Mzd6TzTjhdx5S7HFbqyDGMTVrmQz2LXLFqmTVxX1MVYXw2A/I2PE yKPQO6Gph553Dz5+P3HWl/DU8yRhNEYZEcxPkTH/+eCJ/i4Z9QGs55wodX2bAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU0x/t7rwxH2fOYLXLNTTTABOxlH8wHwYDVR0j BBgwFoAUF9ArEW1LumUSRcvHzMMKWSenROQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMC8xN0QwMkIxMTZE NEJCQTY1MTI0NUNCQzdDQ0MzMEE1OTI3QTc0NEU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBBNTkyN0E3 NDRFNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzAzMzJlMzQzNzJlMzEzMzM0MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcvhjANBgkqhkiG 9w0BAQsFAAOCAQEAxlWhnohv+1Z3Qj5yF31wy7JgrX+LiS1BrVF9lyME1+lovibX 85Vvkd6tz2r/fH36QnBQVux/M6BEgz4vIFtKhtkrPruUs2CTbdautB/M3LfKukst Bt+mbO1Zg3rsTdtXD0ENzqw65vIdmAj9X7+cmPgvrEEfVmnSRalzxv/71uFQoiF6 yuq4w+kuIIKnsRCAchsyGLgRcA+W2N6fg0orznvaV5NXfaHexrYraVCg+Pzw7Cwn iR16WMkDOdXzx/GYIViKFvd9bPmqFDlbh8xhO9GAYa6nfK+67T/YZWGmkD90DuBz jc1iapixMd01mN7RHgOAt3caRvyTaUrMLkygVA== -----END CERTIFICATE-----Generated at Tue Apr 23 20:37:36 2024 by rpki-client on console-fra.rpki-client.org