$ rpki-client -vvf repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/3130332e3137372e382e302f32342d3234203d3e20313437313337.roa File: 3130332e3137372e382e302f32342d3234203d3e20313437313337.roa (raw, json) Hash identifier: reMGXOxBqJAc/IWI0zDm6I+GN78LXRTD8Si9i1k3sTA= Subject key identifier: 8E:DA:53:C9:27:8A:D7:C7:54:65:06:46:E4:2D:7B:D1:63:1D:75:20 Certificate issuer: /CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Certificate serial: 6C56BBBEAC490D2085FB44BF3A71670E80A013D2 Authority key identifier: 9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/3130332e3137372e382e302f32342d3234203d3e20313437313337.roa Signing time: Tue 12 Dec 2023 11:00:01 +0000 ROA not before: Tue 12 Dec 2023 10:55:01 +0000 ROA not after: Tue 10 Dec 2024 11:00:01 +0000 asID: 147137 IP address blocks: 103.177.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Oct 2024 06:11:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:56:bb:be:ac:49:0d:20:85:fb:44:bf:3a:71:67:0e:80:a0:13:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A52B6405ED406A7B17C4478D516DF3E37282980 Validity Not Before: Dec 12 10:55:01 2023 GMT Not After : Dec 10 11:00:01 2024 GMT Subject: CN=8EDA53C9278AD7C754650646E42D7BD1631D7520 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:be:e6:5a:dd:00:1c:16:26:6f:e5:f1:8a:a2: 53:a1:51:41:41:ca:ea:a2:ed:ee:b2:22:5b:5f:1f: db:be:fc:ea:cc:61:87:72:88:5c:37:b0:c3:c4:96: 26:ca:3c:52:ea:e8:30:c8:11:a8:c8:6a:52:53:fa: a2:75:91:db:f7:cd:bf:61:77:5d:fb:97:4c:8a:5c: 28:80:34:a0:d9:dc:e0:bf:ae:ba:94:5b:b0:6c:e0: 8c:ed:27:df:f9:18:ef:34:f3:24:bf:b3:2c:e1:b0: 89:22:09:44:60:5e:a4:a5:8f:c5:40:5c:3c:80:34: 54:eb:2d:88:cb:1e:87:11:bc:56:bc:d5:72:46:a6: 78:b8:f6:74:35:96:7f:50:a8:cc:6f:34:8d:43:77: 29:b5:cc:a6:d4:b0:db:98:34:4d:2d:b4:35:49:3f: 84:d1:db:40:67:8e:39:16:ba:83:b2:c5:df:2d:bd: e3:68:d2:55:11:c1:26:a1:3d:e8:50:ee:97:d5:53: 3a:92:9b:60:51:a6:54:03:42:d2:cb:0e:c2:b9:28: 6b:ef:fd:05:bf:84:b6:06:32:fc:54:2f:91:37:ca: bb:13:54:08:db:dc:c0:f2:d9:5b:9f:e5:8b:33:44: 06:8e:b6:61:26:1b:e4:41:2e:9e:a7:3c:72:5c:41: 3b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:DA:53:C9:27:8A:D7:C7:54:65:06:46:E4:2D:7B:D1:63:1D:75:20 X509v3 Authority Key Identifier: keyid:9A:52:B6:40:5E:D4:06:A7:B1:7C:44:78:D5:16:DF:3E:37:28:29:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/9A52B6405ED406A7B17C4478D516DF3E37282980.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9A52B6405ED406A7B17C4478D516DF3E37282980.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a665c32-6daf-472b-bce6-317d5d6c789e/0/3130332e3137372e382e302f32342d3234203d3e20313437313337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.8.0/24 Signature Algorithm: sha256WithRSAEncryption 31:85:d7:43:e1:82:7f:bc:18:71:12:ac:9a:2b:e8:49:45:d0: f6:c5:75:52:da:39:7a:e1:55:a2:55:31:57:85:85:c5:44:59: ee:5f:2a:fb:66:ef:f8:af:66:97:3d:65:8f:1b:6b:9c:e9:64: 1a:12:3a:25:b2:5e:b0:fc:3c:d6:81:5e:a5:f7:70:3b:09:29: 3d:64:02:ee:fa:bb:09:c8:13:68:f6:65:0d:0e:f8:b1:5f:47: 5f:c7:08:c7:02:56:4e:1f:be:5b:51:49:20:fc:bb:d0:3c:44: bd:e9:2c:07:93:c0:3e:32:85:dc:c5:bc:5e:43:a9:22:b9:e2: b9:35:26:e0:7f:b3:66:2c:6f:97:6e:a6:b3:c9:66:85:c5:05: 5c:48:0b:c5:0f:83:7c:b1:4c:a5:38:5a:d5:0b:e5:b4:15:56: b8:2c:c4:f7:65:8c:69:d8:ca:d8:60:84:3a:98:e9:a5:6c:90: a6:2a:be:0a:b3:cd:38:d0:b1:b4:7c:0f:f1:ae:99:7b:fa:20: 0e:99:30:a7:f6:bf:2e:f1:ad:b8:e0:44:76:d3:8d:42:1d:bc: 51:e3:51:f9:71:0d:cf:9b:0d:ab:27:c6:48:02:77:36:b9:6d: fe:fc:42:c6:92:04:f7:d0:aa:09:3a:28:d2:f2:71:99:47:97: 91:ad:14:b3 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUbFa7vqxJDSCF+0S/OnFnDoCgE9IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0Uz NzI4Mjk4MDAeFw0yMzEyMTIxMDU1MDFaFw0yNDEyMTAxMTAwMDFaMDMxMTAvBgNV BAMTKDhFREE1M0M5Mjc4QUQ3Qzc1NDY1MDY0NkU0MkQ3QkQxNjMxRDc1MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD7vuZa3QAcFiZv5fGKolOhUUFB yuqi7e6yIltfH9u+/OrMYYdyiFw3sMPElibKPFLq6DDIEajIalJT+qJ1kdv3zb9h d137l0yKXCiANKDZ3OC/rrqUW7Bs4IztJ9/5GO808yS/syzhsIkiCURgXqSlj8VA XDyANFTrLYjLHocRvFa81XJGpni49nQ1ln9QqMxvNI1Ddym1zKbUsNuYNE0ttDVJ P4TR20BnjjkWuoOyxd8tveNo0lURwSahPehQ7pfVUzqSm2BRplQDQtLLDsK5KGvv /QW/hLYGMvxUL5E3yrsTVAjb3MDy2Vuf5YszRAaOtmEmG+RBLp6nPHJcQTtLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUjtpTySeK18dUZQZG5C170WMddSAwHwYDVR0j BBgwFoAUmlK2QF7UBqexfER41RbfPjcoKYAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTY2NWMzMi02ZGFmLTQ3MmItYmNlNi0zMTdkNWQ2Yzc4OWUvMC85QTUyQjY0MDVF RDQwNkE3QjE3QzQ0NzhENTE2REYzRTM3MjgyOTgwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUE1MkI2NDA1RUQ0MDZBN0IxN0M0NDc4RDUxNkRGM0UzNzI4 Mjk4MC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNjY1YzMyLTZkYWYtNDcyYi1i Y2U2LTMxN2Q1ZDZjNzg5ZS8wLzMxMzAzMzJlMzEzNzM3MmUzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzQzNzMxMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGexCDANBgkqhkiG 9w0BAQsFAAOCAQEAMYXXQ+GCf7wYcRKsmivoSUXQ9sV1Uto5euFVolUxV4WFxURZ 7l8q+2bv+K9mlz1ljxtrnOlkGhI6JbJesPw81oFepfdwOwkpPWQC7vq7CcgTaPZl DQ74sV9HX8cIxwJWTh++W1FJIPy70DxEveksB5PAPjKF3MW8XkOpIrniuTUm4H+z Zixvl26ms8lmhcUFXEgLxQ+DfLFMpTha1QvltBVWuCzE92WMadjK2GCEOpjppWyQ piq+CrPNONCxtHwP8a6Ze/ogDpkwp/a/LvGtuOBEdtONQh28UeNR+XENz5sNqyfG SAJ3Nrlt/vxCxpIE99CqCToo0vJxmUeXka0Usw== -----END CERTIFICATE-----Generated at Sat Sep 28 02:14:02 2024 by rpki-client on console-fra.rpki-client.org