$ rpki-client -vvf repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/3130332e3134372e3131342e302f32332d3234203d3e20313439393732.roa File: 3130332e3134372e3131342e302f32332d3234203d3e20313439393732.roa (raw, json) Hash identifier: rgFJ98/EqnKQuT7uOMG6CZkoBkNIU5ZfYz7pmO03ZPE= Subject key identifier: BA:86:67:07:38:AB:F0:39:A5:E1:F8:3E:C8:0A:6F:D9:A3:EC:78:07 Certificate issuer: /CN=CD3281FC875A8DD967E7E83CD40F106AD5B23A74 Certificate serial: 02DF9DE78922546FB4C0C692C02FA83FC42EB229 Authority key identifier: CD:32:81:FC:87:5A:8D:D9:67:E7:E8:3C:D4:0F:10:6A:D5:B2:3A:74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.cer Subject info access: rsync://repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/3130332e3134372e3131342e302f32332d3234203d3e20313439393732.roa Signing time: Thu 25 Jul 2024 05:02:16 +0000 ROA not before: Thu 25 Jul 2024 04:57:16 +0000 ROA not after: Thu 24 Jul 2025 05:02:16 +0000 asID: 149972 IP address blocks: 103.147.114.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.crl rsync://repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:df:9d:e7:89:22:54:6f:b4:c0:c6:92:c0:2f:a8:3f:c4:2e:b2:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD3281FC875A8DD967E7E83CD40F106AD5B23A74 Validity Not Before: Jul 25 04:57:16 2024 GMT Not After : Jul 24 05:02:16 2025 GMT Subject: CN=BA86670738ABF039A5E1F83EC80A6FD9A3EC7807 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:4f:be:72:bb:77:5a:a7:5a:e8:a4:0e:90:15: b2:96:d4:e7:b2:35:20:88:a2:cb:f5:89:d4:b2:04: 4d:5d:08:bc:dc:a6:61:74:86:36:17:fb:37:3a:9f: 79:fa:96:c0:b6:9d:3a:a6:28:c1:3f:49:3f:81:f3: 27:ef:2d:7f:14:a5:44:84:21:91:e1:bd:f9:40:99: 4c:80:87:4f:af:f6:ad:83:49:6a:08:1b:39:64:a3: 58:7f:54:d5:19:95:79:6a:f1:03:82:68:7c:a5:cf: 91:12:3e:b5:12:8d:48:ca:af:67:40:55:c5:31:3a: ed:20:6f:5b:22:44:3a:4b:6e:5f:77:f6:95:0d:1a: e3:30:01:74:d1:35:c7:ef:75:69:94:05:1f:e0:54: 8a:34:db:b4:e9:bb:8a:03:b6:86:a3:56:0d:70:74: d5:5d:85:e5:2e:c7:a5:c7:63:99:cc:4e:ea:8a:b9: cf:e0:54:93:6a:3f:bc:c0:36:15:1a:e1:a5:a1:80: ba:59:77:7d:fd:39:3e:1d:a1:f2:58:2e:cd:e7:f0: 80:b0:96:b2:3b:85:66:8b:fe:3e:d1:ab:3c:cf:c4: 9e:02:04:9b:cd:b8:b9:f1:5f:58:34:70:78:17:0d: f4:8a:2b:ec:7c:fc:42:d6:fc:34:7f:eb:f7:13:df: 03:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:86:67:07:38:AB:F0:39:A5:E1:F8:3E:C8:0A:6F:D9:A3:EC:78:07 X509v3 Authority Key Identifier: keyid:CD:32:81:FC:87:5A:8D:D9:67:E7:E8:3C:D4:0F:10:6A:D5:B2:3A:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CD3281FC875A8DD967E7E83CD40F106AD5B23A74.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/168cc059-5e6c-4501-b894-14a82d18d21e/0/3130332e3134372e3131342e302f32332d3234203d3e20313439393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.114.0/23 Signature Algorithm: sha256WithRSAEncryption b5:4d:5a:29:ce:fb:2a:ba:8e:14:39:4f:89:39:fb:1c:5b:9b: 8d:d5:60:45:e8:3a:90:9a:ec:c7:7e:76:14:21:56:c8:56:a7: 09:54:6f:b2:cb:a0:af:76:b8:45:22:89:ae:92:52:59:d0:f8: 85:9f:f4:b3:32:1b:04:4a:64:bf:0d:12:0c:c5:58:58:83:28: bf:16:ae:47:02:96:41:22:c0:9b:55:4a:60:34:32:52:fd:67: ce:7b:ef:e5:ca:d8:1e:d5:43:90:82:56:7d:a0:dd:fd:3c:39: 89:03:43:89:82:cd:d9:d0:cf:fc:bb:4a:20:90:de:b0:ff:a8: 48:5b:3c:30:0f:7c:02:dc:a2:6a:95:8a:15:c2:f7:4d:bb:58: b6:b4:0f:13:d0:cf:49:f0:3c:af:a9:56:65:c0:e1:78:c3:b7: f8:80:94:da:6a:a6:a3:30:42:de:0f:b7:37:ee:f8:e1:a5:db: 8f:cb:cc:50:41:df:8c:06:f1:d0:b0:81:fe:81:b1:b1:ce:b4: 71:8d:1a:44:bf:90:1b:42:f5:65:5f:6f:d1:5a:cf:2d:f6:7a: dc:9a:f8:aa:6e:0a:2a:0f:9b:80:d8:25:80:4e:2f:0c:2d:39: 22:ef:6d:02:d4:f6:59:10:19:65:c1:3b:e8:91:82:6b:99:04: d9:f0:43:86 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUAt+d54kiVG+0wMaSwC+oP8QusikwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0QzMjgxRkM4NzVBOEREOTY3RTdFODNDRDQwRjEwNkFE NUIyM0E3NDAeFw0yNDA3MjUwNDU3MTZaFw0yNTA3MjQwNTAyMTZaMDMxMTAvBgNV BAMTKEJBODY2NzA3MzhBQkYwMzlBNUUxRjgzRUM4MEE2RkQ5QTNFQzc4MDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfT75yu3dap1ropA6QFbKW1Oey NSCIosv1idSyBE1dCLzcpmF0hjYX+zc6n3n6lsC2nTqmKME/ST+B8yfvLX8UpUSE IZHhvflAmUyAh0+v9q2DSWoIGzlko1h/VNUZlXlq8QOCaHylz5ESPrUSjUjKr2dA VcUxOu0gb1siRDpLbl939pUNGuMwAXTRNcfvdWmUBR/gVIo027Tpu4oDtoajVg1w dNVdheUux6XHY5nMTuqKuc/gVJNqP7zANhUa4aWhgLpZd339OT4dofJYLs3n8ICw lrI7hWaL/j7RqzzPxJ4CBJvNuLnxX1g0cHgXDfSKK+x8/ELW/DR/6/cT3wNTAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUuoZnBzir8Dml4fg+yApv2aPseAcwHwYDVR0j BBgwFoAUzTKB/Idajdln5+g81A8QatWyOnQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NjhjYzA1OS01ZTZjLTQ1MDEtYjg5NC0xNGE4MmQxOGQyMWUvMC9DRDMyODFGQzg3 NUE4REQ5NjdFN0U4M0NENDBGMTA2QUQ1QjIzQTc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0QzMjgxRkM4NzVBOEREOTY3RTdFODNDRDQwRjEwNkFENUIy M0E3NC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2OGNjMDU5LTVlNmMtNDUwMS1i ODk0LTE0YTgyZDE4ZDIxZS8wLzMxMzAzMzJlMzEzNDM3MmUzMTMxMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM0MzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnk3IwDQYJ KoZIhvcNAQELBQADggEBALVNWinO+yq6jhQ5T4k5+xxbm43VYEXoOpCa7Md+dhQh VshWpwlUb7LLoK92uEUiia6SUlnQ+IWf9LMyGwRKZL8NEgzFWFiDKL8WrkcClkEi wJtVSmA0MlL9Z8577+XK2B7VQ5CCVn2g3f08OYkDQ4mCzdnQz/y7SiCQ3rD/qEhb PDAPfALcomqVihXC9027WLa0DxPQz0nwPK+pVmXA4XjDt/iAlNpqpqMwQt4Ptzfu +OGl24/LzFBB34wG8dCwgf6BsbHOtHGNGkS/kBtC9WVfb9Fazy32etya+KpuCioP m4DYJYBOLwwtOSLvbQLU9lkQGWXBO+iRgmuZBNnwQ4Y= -----END CERTIFICATE-----Generated at Fri Nov 22 15:22:18 2024 by rpki-client on console-fra.rpki-client.org