$ rpki-client -vvf repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/3130332e3134372e3131362e302f32332d3234203d3e203137373639.roa File: 3130332e3134372e3131362e302f32332d3234203d3e203137373639.roa (raw, json) Hash identifier: gpKP80eZFgz1Xe+59VM+E5nhQuUU0t/9JV7P0fWMBTY= Subject key identifier: 2A:D4:F6:D3:8D:3F:9A:CD:80:AC:7A:BE:04:FC:7E:FB:DF:FE:DD:B2 Certificate issuer: /CN=957CC5B55223EC29F2E71324C678334C4348BE02 Certificate serial: 6C20567EA5FD143CABFE16CC44A3B572D38652D6 Authority key identifier: 95:7C:C5:B5:52:23:EC:29:F2:E7:13:24:C6:78:33:4C:43:48:BE:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/3130332e3134372e3131362e302f32332d3234203d3e203137373639.roa Signing time: Tue 01 Oct 2024 04:03:50 +0000 ROA not before: Tue 01 Oct 2024 03:58:50 +0000 ROA not after: Tue 30 Sep 2025 04:03:50 +0000 asID: 17769 IP address blocks: 103.147.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.crl rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:05:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:20:56:7e:a5:fd:14:3c:ab:fe:16:cc:44:a3:b5:72:d3:86:52:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=957CC5B55223EC29F2E71324C678334C4348BE02 Validity Not Before: Oct 1 03:58:50 2024 GMT Not After : Sep 30 04:03:50 2025 GMT Subject: CN=2AD4F6D38D3F9ACD80AC7ABE04FC7EFBDFFEDDB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:cd:c8:47:3c:3a:af:34:f3:af:3a:21:7e:52: 4e:03:31:ee:0f:4c:d1:67:db:8f:a1:79:24:b2:dc: dd:74:89:72:05:b4:60:16:3f:4c:97:b3:1c:ff:09: c5:44:c6:37:ec:76:25:c1:59:e2:4f:5d:0e:e4:1f: 6b:72:86:4a:02:a1:26:53:af:89:68:7a:a8:10:8c: 07:e5:13:eb:a4:15:09:e6:15:1d:20:32:ff:d9:c3: 57:07:1a:8c:13:92:58:f1:aa:69:fa:e3:fc:41:6b: 9d:63:72:32:59:c8:96:c6:24:33:56:c8:14:d9:a6: bc:83:6f:60:66:12:4e:14:90:4a:f4:0f:c2:c7:64: 1e:b2:c4:06:72:7e:1a:99:b0:62:be:7c:dd:77:26: d6:5c:ea:72:16:5e:a6:d4:37:11:1d:59:c9:e9:d4: 9f:de:30:b0:24:27:46:d8:0b:ba:08:98:2b:b8:b3: 60:9b:69:3f:5d:f1:ed:f6:88:ff:90:a9:f4:ff:af: 24:34:96:99:4c:e5:f9:f2:e3:a1:df:d2:bc:60:f0: dc:e0:b7:03:71:59:df:8a:ad:d7:22:73:77:67:01: 2e:f6:eb:97:88:a2:08:aa:04:dc:df:58:52:6d:e5: e4:3f:a4:02:20:c4:4b:aa:38:d6:2e:cd:d7:fc:9d: ec:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:D4:F6:D3:8D:3F:9A:CD:80:AC:7A:BE:04:FC:7E:FB:DF:FE:DD:B2 X509v3 Authority Key Identifier: keyid:95:7C:C5:B5:52:23:EC:29:F2:E7:13:24:C6:78:33:4C:43:48:BE:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/957CC5B55223EC29F2E71324C678334C4348BE02.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/957CC5B55223EC29F2E71324C678334C4348BE02.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20a78c06-1d6e-43b6-bf30-860cebddfb32/0/3130332e3134372e3131362e302f32332d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.116.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:0d:08:b6:53:5c:5a:f4:28:c0:ed:c2:3f:24:a2:3b:80:c5: e4:36:ac:64:2c:61:79:ae:45:6b:3b:40:ef:9d:f0:c3:23:c9: c5:93:a2:30:e2:42:9c:90:11:01:7c:5b:23:20:b2:32:66:ba: e0:53:5f:fa:da:4f:bd:2d:39:45:24:da:0b:8b:97:a4:93:c0: 0e:8a:14:a4:45:9a:f6:8d:37:db:4a:d4:80:df:b5:57:e0:70: 9e:e6:c6:43:53:de:42:1f:8f:e2:9a:1d:53:2b:46:5f:8c:e1: a5:e9:30:80:c3:50:42:a3:1b:7f:04:1d:63:bf:73:11:bf:0d: a7:52:85:7f:56:4d:74:75:0a:fe:6e:15:4d:85:58:b0:11:e9: e8:86:0f:3c:38:13:81:9c:93:e8:d7:bf:95:e3:d6:5d:fe:8c: b1:72:73:b8:5c:48:de:36:90:e2:61:13:d7:31:e1:3f:56:62: ae:5f:cf:da:c6:fa:f9:99:22:0a:f2:86:1d:16:d6:1f:54:df: 06:82:ba:46:73:44:c1:b1:f2:ab:46:41:f9:e4:8f:3c:da:63: 11:13:fe:bd:ee:61:a1:03:f8:78:33:aa:55:00:d8:53:99:da: 0a:19:f4:63:c7:be:b9:88:21:1d:ef:e2:b9:dc:53:73:01:24: 15:a5:c8:82 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUbCBWfqX9FDyr/hbMRKO1ctOGUtYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU3Q0M1QjU1MjIzRUMyOUYyRTcxMzI0QzY3ODMzNEM0 MzQ4QkUwMjAeFw0yNDEwMDEwMzU4NTBaFw0yNTA5MzAwNDAzNTBaMDMxMTAvBgNV BAMTKDJBRDRGNkQzOEQzRjlBQ0Q4MEFDN0FCRTA0RkM3RUZCREZGRUREQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRzchHPDqvNPOvOiF+Uk4DMe4P TNFn24+heSSy3N10iXIFtGAWP0yXsxz/CcVExjfsdiXBWeJPXQ7kH2tyhkoCoSZT r4loeqgQjAflE+ukFQnmFR0gMv/Zw1cHGowTkljxqmn64/xBa51jcjJZyJbGJDNW yBTZpryDb2BmEk4UkEr0D8LHZB6yxAZyfhqZsGK+fN13JtZc6nIWXqbUNxEdWcnp 1J/eMLAkJ0bYC7oImCu4s2CbaT9d8e32iP+QqfT/ryQ0lplM5fny46Hf0rxg8Nzg twNxWd+Krdcic3dnAS7265eIogiqBNzfWFJt5eQ/pAIgxEuqONYuzdf8nexXAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUKtT2040/ms2ArHq+BPx++9/+3bIwHwYDVR0j BBgwFoAUlXzFtVIj7Cny5xMkxngzTENIvgIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGE3OGMwNi0xZDZlLTQzYjYtYmYzMC04NjBjZWJkZGZiMzIvMC85NTdDQzVCNTUy MjNFQzI5RjJFNzEzMjRDNjc4MzM0QzQzNDhCRTAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTU3Q0M1QjU1MjIzRUMyOUYyRTcxMzI0QzY3ODMzNEM0MzQ4 QkUwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwYTc4YzA2LTFkNmUtNDNiNi1i ZjMwLTg2MGNlYmRkZmIzMi8wLzMxMzAzMzJlMzEzNDM3MmUzMTMxMzYyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzczNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5N0MA0GCSqG SIb3DQEBCwUAA4IBAQAsDQi2U1xa9CjA7cI/JKI7gMXkNqxkLGF5rkVrO0DvnfDD I8nFk6Iw4kKckBEBfFsjILIyZrrgU1/62k+9LTlFJNoLi5ekk8AOihSkRZr2jTfb StSA37VX4HCe5sZDU95CH4/imh1TK0ZfjOGl6TCAw1BCoxt/BB1jv3MRvw2nUoV/ Vk10dQr+bhVNhViwEenohg88OBOBnJPo17+V49Zd/oyxcnO4XEjeNpDiYRPXMeE/ VmKuX8/axvr5mSIK8oYdFtYfVN8GgrpGc0TBsfKrRkH55I882mMRE/697mGhA/h4 M6pVANhTmdoKGfRjx765iCEd7+K53FNzASQVpciC -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:54 2024 by rpki-client on console-fra.rpki-client.org