$ rpki-client -vvf repo-rpki.idnic.net/repo/08985f59-0ee6-4208-9a90-29c108600cfc/0/3130332e3137372e3130302e302f32332d3234203d3e20313331313131.roa File: 3130332e3137372e3130302e302f32332d3234203d3e20313331313131.roa (raw, json) Hash identifier: 0vXpxdXBoxtpu0xcyCU+AYUkP5Qq7RrqqwsILvqbx7A= Subject key identifier: 1B:DC:73:48:C5:B6:5A:E7:FD:A5:EC:5F:09:C2:78:30:B8:3E:43:E8 Certificate issuer: /CN=1BF71219664707A7B776CD99B9A6D2CC60CE0BAB Certificate serial: 712187F86397426E5ED5273B53325CD7C61CD9E3 Authority key identifier: 1B:F7:12:19:66:47:07:A7:B7:76:CD:99:B9:A6:D2:CC:60:CE:0B:AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF71219664707A7B776CD99B9A6D2CC60CE0BAB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/08985f59-0ee6-4208-9a90-29c108600cfc/0/3130332e3137372e3130302e302f32332d3234203d3e20313331313131.roa Signing time: Tue 17 Sep 2024 10:02:51 +0000 ROA not before: Tue 17 Sep 2024 09:57:51 +0000 ROA not after: Tue 16 Sep 2025 10:02:51 +0000 asID: 131111 IP address blocks: 103.177.100.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/08985f59-0ee6-4208-9a90-29c108600cfc/0/1BF71219664707A7B776CD99B9A6D2CC60CE0BAB.crl rsync://repo-rpki.idnic.net/repo/08985f59-0ee6-4208-9a90-29c108600cfc/0/1BF71219664707A7B776CD99B9A6D2CC60CE0BAB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF71219664707A7B776CD99B9A6D2CC60CE0BAB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 21:42:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:21:87:f8:63:97:42:6e:5e:d5:27:3b:53:32:5c:d7:c6:1c:d9:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1BF71219664707A7B776CD99B9A6D2CC60CE0BAB Validity Not Before: Sep 17 09:57:51 2024 GMT Not After : Sep 16 10:02:51 2025 GMT Subject: CN=1BDC7348C5B65AE7FDA5EC5F09C27830B83E43E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:00:48:b2:38:9d:28:a8:b0:8e:15:94:ae:bd: 92:71:4d:e1:e0:b8:98:ac:2d:0b:66:b6:11:98:02: 5e:14:4e:f0:dc:5f:06:61:3f:af:d0:a6:5d:2a:ac: c9:37:df:e8:d5:39:30:b3:e6:f4:3d:db:c6:71:dc: e5:2d:30:75:c4:eb:be:b1:a6:98:ef:2f:d6:b3:66: f3:2e:a9:f1:00:b6:60:5b:7f:67:bd:ad:11:d6:ea: 59:64:e9:25:e1:04:ef:57:fe:08:c6:be:43:81:c5: 5d:5d:21:1b:01:1a:57:4c:be:74:fc:5e:24:bf:5a: 28:30:59:4e:c2:61:0c:2e:f2:06:25:f2:99:97:3b: be:99:d5:4f:f2:12:f0:25:d7:c4:cc:2d:85:cd:a6: 55:1e:79:38:39:9f:48:57:d3:1b:b3:02:e0:80:36: 04:36:f3:55:85:fd:40:e4:85:ff:00:90:b5:02:9a: 8e:28:13:37:b1:84:27:9b:9b:0e:37:e9:d8:0d:ac: 0c:aa:c5:82:43:00:2e:84:cb:f5:0d:2c:1f:dd:e7: ee:e0:20:16:93:0b:05:b3:6b:a5:cf:83:9a:4a:ff: 05:4b:04:a9:48:fd:e0:a8:e5:e4:56:55:1c:cc:c8: 50:9d:a8:5e:99:38:fe:e6:42:f8:39:69:37:85:63: b5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:DC:73:48:C5:B6:5A:E7:FD:A5:EC:5F:09:C2:78:30:B8:3E:43:E8 X509v3 Authority Key Identifier: keyid:1B:F7:12:19:66:47:07:A7:B7:76:CD:99:B9:A6:D2:CC:60:CE:0B:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/08985f59-0ee6-4208-9a90-29c108600cfc/0/1BF71219664707A7B776CD99B9A6D2CC60CE0BAB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BF71219664707A7B776CD99B9A6D2CC60CE0BAB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/08985f59-0ee6-4208-9a90-29c108600cfc/0/3130332e3137372e3130302e302f32332d3234203d3e20313331313131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.100.0/23 Signature Algorithm: sha256WithRSAEncryption 98:9a:cc:10:10:c5:3b:d9:dc:90:4e:74:ef:82:56:37:8f:3f: e3:d5:8c:9f:05:dd:4e:47:bd:1d:19:99:38:eb:9a:68:ec:38: 5c:f1:70:52:61:b4:43:ff:36:3a:2a:76:40:38:a9:56:88:e4: 60:cf:f2:6d:43:ac:27:c2:68:27:33:ef:96:8c:60:a6:95:37: 34:ad:c2:aa:4a:6a:bc:ee:e3:6b:a1:59:3a:7c:32:dc:cc:ad: 47:52:d3:73:14:4b:90:94:20:cf:4c:3e:85:53:d1:94:f6:df: 16:5c:e1:65:25:0b:aa:6f:be:0d:2a:da:3e:e7:a3:8f:d6:89: 11:3a:6e:57:b7:22:57:4c:e1:34:cf:e4:a0:6b:08:c0:8c:d4: b9:18:71:63:39:bf:9c:4d:84:ce:f3:e2:f0:36:29:66:7e:a3: d9:a5:c9:9c:18:12:bb:ff:56:07:b9:41:98:ca:71:82:cf:95: 7c:81:cb:c0:8f:58:de:6f:43:87:36:e2:f3:da:0d:68:c5:77: 25:63:b2:68:fd:be:71:2a:bb:17:25:53:8c:9a:d4:52:09:09: 95:cd:90:1c:89:d1:a4:06:56:51:49:8a:34:9f:41:6a:1e:79: a3:33:af:7d:6b:fc:48:0b:95:92:31:8a:61:a1:a1:0b:fb:45: 53:a8:8d:fe -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUcSGH+GOXQm5e1Sc7UzJc18Yc2eMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUJGNzEyMTk2NjQ3MDdBN0I3NzZDRDk5QjlBNkQyQ0M2 MENFMEJBQjAeFw0yNDA5MTcwOTU3NTFaFw0yNTA5MTYxMDAyNTFaMDMxMTAvBgNV BAMTKDFCREM3MzQ4QzVCNjVBRTdGREE1RUM1RjA5QzI3ODMwQjgzRTQzRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUAEiyOJ0oqLCOFZSuvZJxTeHg uJisLQtmthGYAl4UTvDcXwZhP6/Qpl0qrMk33+jVOTCz5vQ928Zx3OUtMHXE676x ppjvL9azZvMuqfEAtmBbf2e9rRHW6llk6SXhBO9X/gjGvkOBxV1dIRsBGldMvnT8 XiS/WigwWU7CYQwu8gYl8pmXO76Z1U/yEvAl18TMLYXNplUeeTg5n0hX0xuzAuCA NgQ281WF/UDkhf8AkLUCmo4oEzexhCebmw436dgNrAyqxYJDAC6Ey/UNLB/d5+7g IBaTCwWza6XPg5pK/wVLBKlI/eCo5eRWVRzMyFCdqF6ZOP7mQvg5aTeFY7XpAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUG9xzSMW2Wuf9pexfCcJ4MLg+Q+gwHwYDVR0j BBgwFoAUG/cSGWZHB6e3ds2ZuabSzGDOC6swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ODk4NWY1OS0wZWU2LTQyMDgtOWE5MC0yOWMxMDg2MDBjZmMvMC8xQkY3MTIxOTY2 NDcwN0E3Qjc3NkNEOTlCOUE2RDJDQzYwQ0UwQkFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUJGNzEyMTk2NjQ3MDdBN0I3NzZDRDk5QjlBNkQyQ0M2MENF MEJBQi5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA4OTg1ZjU5LTBlZTYtNDIwOC05 YTkwLTI5YzEwODYwMGNmYy8wLzMxMzAzMzJlMzEzNzM3MmUzMTMwMzAyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzEzMTMxMzEucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnsWQwDQYJ KoZIhvcNAQELBQADggEBAJiazBAQxTvZ3JBOdO+CVjePP+PVjJ8F3U5HvR0ZmTjr mmjsOFzxcFJhtEP/NjoqdkA4qVaI5GDP8m1DrCfCaCcz75aMYKaVNzStwqpKarzu 42uhWTp8MtzMrUdS03MUS5CUIM9MPoVT0ZT23xZc4WUlC6pvvg0q2j7no4/WiRE6 ble3IldM4TTP5KBrCMCM1LkYcWM5v5xNhM7z4vA2KWZ+o9mlyZwYErv/Vge5QZjK cYLPlXyBy8CPWN5vQ4c24vPaDWjFdyVjsmj9vnEquxclU4ya1FIJCZXNkByJ0aQG VlFJijSfQWoeeaMzr31r/EgLlZIximGhoQv7RVOojf4= -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:40 2024 by rpki-client on console-ams.rpki-client.org