$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133322e302f32342d3234203d3e203633383539.roa File: 3130332e34372e3133322e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: SRwsZydMySikfJ/GCD2mFqd9F0BIlnEhWXoAVYNn6HM= Subject key identifier: AE:C2:83:95:1B:AD:0D:39:B1:B0:50:4C:D9:6E:84:05:16:D1:F8:04 Certificate issuer: /CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4 Certificate serial: 228A9240E01B02BE6D8D00DD5347FF61710C0943 Authority key identifier: 17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133322e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 07:00:02 +0000 ROA not before: Sun 11 Aug 2024 06:55:02 +0000 ROA not after: Sun 10 Aug 2025 07:00:02 +0000 asID: 63859 IP address blocks: 103.47.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 23:10:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:8a:92:40:e0:1b:02:be:6d:8d:00:dd:53:47:ff:61:71:0c:09:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4 Validity Not Before: Aug 11 06:55:02 2024 GMT Not After : Aug 10 07:00:02 2025 GMT Subject: CN=AEC283951BAD0D39B1B0504CD96E840516D1F804 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:91:c7:e4:61:f8:ef:13:fa:85:4a:0c:fa:96: d8:b2:f7:9c:64:01:23:6f:9f:78:91:4d:10:b4:5f: e5:94:65:ec:ab:67:41:94:e6:5c:34:44:8c:b0:9b: ce:50:6f:8a:1a:7f:e5:f3:66:99:a5:3a:d2:ea:11: 82:b2:a7:f1:c7:e7:da:00:bd:dd:29:c8:1d:81:0c: 06:c3:40:61:35:99:df:58:d3:7d:19:20:65:27:46: f9:41:d8:9a:4e:bb:fd:5c:e9:4f:cd:29:0f:7c:7d: ce:6a:d4:fd:ad:b9:96:42:62:6a:b2:07:04:18:38: 69:e1:5f:a2:f5:16:3f:23:a2:4c:9c:71:57:bf:c5: d9:76:cd:86:c0:e0:da:49:b6:ac:59:74:c9:de:aa: 7c:07:cd:7f:ca:71:96:83:01:5a:c6:ab:c1:c7:2c: b8:36:7d:16:84:9a:08:24:ca:78:52:6a:5e:ad:b7: cb:e2:57:7d:a9:44:c3:28:ff:a5:64:f9:79:af:50: b8:14:50:50:1f:b5:14:38:02:5b:45:9c:ff:ee:4b: 26:ff:d1:43:48:c6:18:20:36:1a:48:83:6f:02:0e: cb:1f:06:4d:ee:c5:4b:d7:43:ae:42:f8:9a:bd:7b: 44:e2:ec:5d:3b:e8:4a:90:1a:3f:97:eb:95:38:9b: de:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:C2:83:95:1B:AD:0D:39:B1:B0:50:4C:D9:6E:84:05:16:D1:F8:04 X509v3 Authority Key Identifier: keyid:17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133322e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.47.132.0/24 Signature Algorithm: sha256WithRSAEncryption 67:b4:51:e5:6e:9d:db:54:26:a8:9d:c5:33:ab:cb:8d:53:35: e9:de:bb:c7:1c:21:c8:cf:8b:17:20:2a:7a:3a:34:b3:d8:64: a9:55:31:3b:45:1d:0c:eb:09:77:02:9a:b4:7d:b3:9b:bd:de: 6b:de:8c:79:54:06:49:a3:50:c4:9c:23:91:cc:89:ff:60:8e: 39:71:cf:84:b4:83:3c:db:24:e7:34:ce:68:79:b5:4b:72:25: 96:2a:0c:0b:a2:f2:31:52:0b:80:a4:33:9f:a8:ea:f1:58:81: 75:88:43:03:05:b7:70:d9:62:32:2d:8e:3c:7c:f5:3d:2f:3f: 23:75:64:e0:d3:64:7e:e5:52:35:68:4a:03:e0:9f:96:ac:79: 6d:e6:9b:98:bc:22:37:7e:95:df:e5:f0:c7:a8:83:cd:06:ec: 27:2e:1a:da:aa:f0:6c:e8:14:e8:c1:42:ab:c9:ac:c3:90:54: f9:8f:ca:d1:c3:12:c4:83:4a:46:ed:99:c2:ae:a9:47:2b:7a: 72:4f:7b:62:0b:fd:59:aa:9a:27:cd:da:b7:72:a8:56:bd:a1: 99:b0:c2:ec:97:27:d1:99:ee:bf:d0:28:0f:6a:f5:29:55:b6: 36:9c:72:55:fa:d9:2a:b5:0a:ca:de:c4:fe:40:82:53:86:07: 30:69:b0:39 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUIoqSQOAbAr5tjQDdU0f/YXEMCUMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBBNTky N0E3NDRFNDAeFw0yNDA4MTEwNjU1MDJaFw0yNTA4MTAwNzAwMDJaMDMxMTAvBgNV BAMTKEFFQzI4Mzk1MUJBRDBEMzlCMUIwNTA0Q0Q5NkU4NDA1MTZEMUY4MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+kcfkYfjvE/qFSgz6ltiy95xk ASNvn3iRTRC0X+WUZeyrZ0GU5lw0RIywm85Qb4oaf+XzZpmlOtLqEYKyp/HH59oA vd0pyB2BDAbDQGE1md9Y030ZIGUnRvlB2JpOu/1c6U/NKQ98fc5q1P2tuZZCYmqy BwQYOGnhX6L1Fj8jokyccVe/xdl2zYbA4NpJtqxZdMneqnwHzX/KcZaDAVrGq8HH LLg2fRaEmggkynhSal6tt8viV32pRMMo/6Vk+XmvULgUUFAftRQ4AltFnP/uSyb/ 0UNIxhggNhpIg28CDssfBk3uxUvXQ65C+Jq9e0Ti7F076EqQGj+X65U4m97bAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUrsKDlRutDTmxsFBM2W6EBRbR+AQwHwYDVR0j BBgwFoAUF9ArEW1LumUSRcvHzMMKWSenROQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMC8xN0QwMkIxMTZE NEJCQTY1MTI0NUNCQzdDQ0MzMEE1OTI3QTc0NEU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBBNTkyN0E3 NDRFNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzAzMzJlMzQzNzJlMzEzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcvhDANBgkqhkiG 9w0BAQsFAAOCAQEAZ7RR5W6d21QmqJ3FM6vLjVM16d67xxwhyM+LFyAqejo0s9hk qVUxO0UdDOsJdwKatH2zm73ea96MeVQGSaNQxJwjkcyJ/2COOXHPhLSDPNsk5zTO aHm1S3IllioMC6LyMVILgKQzn6jq8ViBdYhDAwW3cNliMi2OPHz1PS8/I3Vk4NNk fuVSNWhKA+Cflqx5beabmLwiN36V3+Xwx6iDzQbsJy4a2qrwbOgU6MFCq8msw5BU +Y/K0cMSxINKRu2Zwq6pRyt6ck97Ygv9WaqaJ83at3KoVr2hmbDC7Jcn0Znuv9Ao D2r1KVW2NpxyVfrZKrUKyt7E/kCCU4YHMGmwOQ== -----END CERTIFICATE-----Generated at Thu Nov 21 21:37:41 2024 by rpki-client on console-ams.rpki-client.org