$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/3130332e3133362e3136322e302f32342d3234203d3e20313533303837.roa File: 3130332e3133362e3136322e302f32342d3234203d3e20313533303837.roa (raw, json) Hash identifier: h5S7ibTqFVYat+vFjIDby6wN5EznICZxhy5PuFcWGRk= Subject key identifier: BB:25:1F:2E:95:D2:2D:69:6D:36:E4:5A:C4:D1:39:10:EE:CC:3F:1B Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Certificate serial: 0B5091E3E2C59568517D6287D718F57D34DEC6E1 Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/3130332e3133362e3136322e302f32342d3234203d3e20313533303837.roa Signing time: Fri 02 Aug 2024 12:34:44 +0000 ROA not before: Fri 02 Aug 2024 12:29:44 +0000 ROA not after: Fri 01 Aug 2025 12:34:44 +0000 asID: 153087 IP address blocks: 103.136.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:50:91:e3:e2:c5:95:68:51:7d:62:87:d7:18:f5:7d:34:de:c6:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE Validity Not Before: Aug 2 12:29:44 2024 GMT Not After : Aug 1 12:34:44 2025 GMT Subject: CN=BB251F2E95D22D696D36E45AC4D13910EECC3F1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f3:7b:8b:65:af:f3:3b:95:58:e3:39:2d:f9: c7:a1:e0:5d:bc:21:b7:81:b6:ce:ec:2e:2a:7e:7c: da:47:95:f0:93:7d:9b:f6:31:1f:0c:54:3f:b8:8f: 79:43:28:7d:16:ef:6c:63:6e:28:c9:ac:1d:7a:e3: 75:98:28:0b:77:66:02:50:4b:91:1f:35:38:c8:f5: 09:97:ed:47:59:5c:b9:18:0a:30:15:b0:03:fd:bb: c2:14:9f:03:e8:80:09:44:57:ac:76:a7:47:a1:5d: 33:ab:a3:ad:8a:23:ee:14:9e:7a:d0:3d:87:c3:c5: c7:86:cf:79:6c:45:b2:53:ba:ec:94:72:f3:a3:ac: 5d:8b:83:f3:4c:0a:5a:c6:d3:4a:65:09:11:12:95: 3a:14:6e:39:be:45:6b:8b:ee:b3:2e:c8:7d:b0:db: a2:5a:6b:14:ac:ee:3d:ce:c8:a5:2d:4d:ab:6e:b1: fa:a6:54:20:e1:cf:84:9d:04:ae:ef:cc:64:d3:72: 02:68:a4:05:2e:d7:ed:c9:40:06:bb:a7:dc:ef:48: ed:6d:98:d1:19:c6:b6:ca:5f:c3:96:47:56:9d:5a: be:ed:a9:a5:8b:90:67:44:62:5e:41:a2:b9:d2:ef: 66:a4:0d:ad:a0:66:92:bf:f3:62:7f:c7:4a:b4:43: 6d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:25:1F:2E:95:D2:2D:69:6D:36:E4:5A:C4:D1:39:10:EE:CC:3F:1B X509v3 Authority Key Identifier: keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/3130332e3133362e3136322e302f32342d3234203d3e20313533303837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.162.0/24 Signature Algorithm: sha256WithRSAEncryption 04:8c:c0:93:52:4d:73:07:84:f0:1c:ca:c1:09:79:81:da:fb: 3d:41:fd:b4:19:d1:dc:cb:4c:60:e2:b3:2e:fe:70:63:3a:6a: 65:2a:64:6e:7a:f8:b9:97:e5:2a:3d:b6:64:c9:9a:77:c3:9c: f8:41:b8:94:91:3c:da:84:93:be:06:c4:71:20:f8:0c:49:af: b4:6b:6f:8c:09:51:25:8d:b2:75:7f:a9:fb:13:31:d9:30:70: 32:78:73:68:f9:23:fd:fe:8f:7e:f9:92:8c:d6:59:45:9d:44: 98:98:7e:20:f3:42:4d:fe:14:c7:ba:a9:2e:0c:b6:3d:ce:2f: fe:47:3f:f0:d7:c5:36:a0:9f:3a:85:ed:0f:9f:b6:0e:80:ce: f7:7f:c5:1e:48:5d:fa:9a:c9:ff:d2:3b:07:44:04:a9:45:c6: 38:f1:52:c6:8b:5a:87:cb:ae:d5:50:a5:1d:93:73:91:de:0a: ae:17:07:cd:3d:79:11:87:68:67:14:6f:3b:4e:5a:2c:ab:ad: d7:05:20:19:2a:bf:80:e0:87:89:23:89:ea:d7:a7:de:61:6c: 63:0a:4d:bc:77:31:31:91:bb:42:63:7a:9f:70:29:65:1b:19: a7:33:f6:54:64:3e:dd:f7:f6:dc:b8:74:cb:be:2d:6d:1b:f5: f5:22:14:a9 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUC1CR4+LFlWhRfWKH1xj1fTTexuEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzky NzI5REVFRTAeFw0yNDA4MDIxMjI5NDRaFw0yNTA4MDExMjM0NDRaMDMxMTAvBgNV BAMTKEJCMjUxRjJFOTVEMjJENjk2RDM2RTQ1QUM0RDEzOTEwRUVDQzNGMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv83uLZa/zO5VY4zkt+ceh4F28 IbeBts7sLip+fNpHlfCTfZv2MR8MVD+4j3lDKH0W72xjbijJrB1643WYKAt3ZgJQ S5EfNTjI9QmX7UdZXLkYCjAVsAP9u8IUnwPogAlEV6x2p0ehXTOro62KI+4UnnrQ PYfDxceGz3lsRbJTuuyUcvOjrF2Lg/NMClrG00plCRESlToUbjm+RWuL7rMuyH2w 26JaaxSs7j3OyKUtTatusfqmVCDhz4SdBK7vzGTTcgJopAUu1+3JQAa7p9zvSO1t mNEZxrbKX8OWR1adWr7tqaWLkGdEYl5BornS72akDa2gZpK/82J/x0q0Q23DAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUuyUfLpXSLWltNuRaxNE5EO7MPxswHwYDVR0j BBgwFoAURzdIuOs5vulvZGLDtTzqOScp3u4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjU0YThjMy0zMGM4LTQ5NTctODI5MS1hMGMxZjliMTgzOWUvMC80NzM3NDhCOEVC MzlCRUU5NkY2NDYyQzNCNTNDRUEzOTI3MjlERUVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDczNzQ4QjhFQjM5QkVFOTZGNjQ2MkMzQjUzQ0VBMzkyNzI5 REVFRS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NTRhOGMzLTMwYzgtNDk1Ny04 MjkxLWEwYzFmOWIxODM5ZS8wLzMxMzAzMzJlMzEzMzM2MmUzMTM2MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM1MzMzMDM4Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABniKIwDQYJ KoZIhvcNAQELBQADggEBAASMwJNSTXMHhPAcysEJeYHa+z1B/bQZ0dzLTGDisy7+ cGM6amUqZG56+LmX5So9tmTJmnfDnPhBuJSRPNqEk74GxHEg+AxJr7Rrb4wJUSWN snV/qfsTMdkwcDJ4c2j5I/3+j375kozWWUWdRJiYfiDzQk3+FMe6qS4Mtj3OL/5H P/DXxTagnzqF7Q+ftg6Azvd/xR5IXfqayf/SOwdEBKlFxjjxUsaLWofLrtVQpR2T c5HeCq4XB809eRGHaGcUbztOWiyrrdcFIBkqv4Dgh4kjierXp95hbGMKTbx3MTGR u0Jjep9wKWUbGacz9lRkPt339ty4dMu+LW0b9fUiFKk= -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:02 2024 by rpki-client on console-fra.rpki-client.org