$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133322e302f32342d3234203d3e203633383539.roa File: 3130332e34372e3133322e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: AZ/rrLVpYCLk7CInpDZBCjxvb0NiSY9xYAK4edmbBx4= Subject key identifier: 68:6A:65:B6:A2:1E:6B:19:EB:83:3B:B0:02:D1:20:4E:FB:6E:29:A4 Certificate issuer: /CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4 Certificate serial: 41F01A18D4E41E25EFF08497BE9D684BB40897B2 Authority key identifier: 17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133322e302f32342d3234203d3e203633383539.roa Signing time: Sun 10 Sep 2023 07:00:01 +0000 ROA not before: Sun 10 Sep 2023 06:55:01 +0000 ROA not after: Sun 08 Sep 2024 07:00:01 +0000 asID: 63859 IP address blocks: 103.47.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 23:46:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:f0:1a:18:d4:e4:1e:25:ef:f0:84:97:be:9d:68:4b:b4:08:97:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4 Validity Not Before: Sep 10 06:55:01 2023 GMT Not After : Sep 8 07:00:01 2024 GMT Subject: CN=686A65B6A21E6B19EB833BB002D1204EFB6E29A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:45:29:c3:55:c8:d2:e4:32:26:36:34:76:70: 0c:99:e7:d9:e6:bc:24:f8:e4:a0:1c:91:e4:de:54: ad:09:cb:b7:b7:53:2f:ff:11:22:77:70:db:93:8b: 9e:92:ff:61:e5:e4:9e:d7:5b:62:61:36:48:a5:84: d4:87:e9:b8:5b:8b:d5:54:64:76:2e:7e:7b:46:d6: 2d:2b:22:7a:93:d1:b9:a5:4f:5a:c3:3c:ac:57:95: e5:68:a7:a6:f0:46:a1:74:72:37:0d:73:d4:92:10: cd:4b:45:5d:91:f5:a8:f6:d7:78:fb:c7:72:aa:65: e1:24:57:fc:2a:da:09:95:0e:45:88:2f:99:3f:9e: df:b1:12:96:8a:2c:b7:26:fd:4d:7e:c1:29:70:38: 28:42:dc:cd:87:43:d0:2d:6a:c1:9f:b5:dd:fd:f5: ac:9a:84:55:35:6a:d5:50:a1:06:63:69:f9:70:6a: a7:dd:30:86:37:d3:20:18:ba:70:7a:0f:c0:f4:0a: 33:4a:ef:b2:a4:1a:ee:2a:19:01:56:da:93:d6:7d: 8a:e7:10:9f:6e:3d:4a:be:a6:df:d5:5c:d1:e0:70: cf:8e:86:e6:86:e5:c9:bb:68:07:c4:a4:c4:3a:07: 2a:98:17:2f:98:3b:c2:d9:2e:fb:98:55:66:87:76: 4d:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:6A:65:B6:A2:1E:6B:19:EB:83:3B:B0:02:D1:20:4E:FB:6E:29:A4 X509v3 Authority Key Identifier: keyid:17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133322e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.47.132.0/24 Signature Algorithm: sha256WithRSAEncryption b4:1d:a1:08:61:c0:21:90:ee:6e:3e:dc:5e:f1:67:bf:72:7e: 08:61:f1:f3:de:49:5b:2e:7a:48:60:9f:a4:e9:80:25:d8:9b: de:56:63:20:30:85:a7:ea:f4:4c:8a:dc:e4:41:55:25:d4:64: 5f:4b:02:f1:fe:8e:3f:b5:d3:2f:e3:b1:81:1a:46:4f:90:b5: 30:b9:ba:47:39:5b:2a:6f:ee:42:6e:f5:7e:4d:ff:be:d7:5d: da:9a:07:b0:fb:4d:ce:5b:91:bd:06:74:30:7a:d6:1c:34:49: f1:cf:9c:e5:c6:ce:10:62:1e:ec:af:25:13:24:b9:fc:db:a1: a0:8b:8d:61:71:dc:28:af:28:9b:7d:ad:f8:52:d3:4f:d5:56: 1d:66:de:81:e9:2a:63:ba:77:3c:c8:5e:b1:b2:75:3d:a6:6b: b0:fe:46:bf:f8:7d:28:f1:c3:61:72:2b:df:2b:a5:be:09:c8: 30:2d:2f:0c:b2:d1:af:79:cc:cc:20:fa:20:ae:cd:cb:ab:8c: 4e:63:1c:9f:30:ea:42:8f:75:a9:8a:97:fa:4b:30:49:7f:dd: 64:10:1a:fe:e9:ef:56:f5:3e:84:24:9a:9b:35:b5:61:0b:dd: 86:82:63:a5:f9:2f:5f:0b:05:7e:59:a9:b4:9f:96:73:2e:b2: 47:47:ee:a8 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUQfAaGNTkHiXv8ISXvp1oS7QIl7IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBBNTky N0E3NDRFNDAeFw0yMzA5MTAwNjU1MDFaFw0yNDA5MDgwNzAwMDFaMDMxMTAvBgNV BAMTKDY4NkE2NUI2QTIxRTZCMTlFQjgzM0JCMDAyRDEyMDRFRkI2RTI5QTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrRSnDVcjS5DImNjR2cAyZ59nm vCT45KAckeTeVK0Jy7e3Uy//ESJ3cNuTi56S/2Hl5J7XW2JhNkilhNSH6bhbi9VU ZHYufntG1i0rInqT0bmlT1rDPKxXleVop6bwRqF0cjcNc9SSEM1LRV2R9aj213j7 x3KqZeEkV/wq2gmVDkWIL5k/nt+xEpaKLLcm/U1+wSlwOChC3M2HQ9AtasGftd39 9ayahFU1atVQoQZjaflwaqfdMIY30yAYunB6D8D0CjNK77KkGu4qGQFW2pPWfYrn EJ9uPUq+pt/VXNHgcM+OhuaG5cm7aAfEpMQ6ByqYFy+YO8LZLvuYVWaHdk3/AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUaGpltqIeaxnrgzuwAtEgTvtuKaQwHwYDVR0j BBgwFoAUF9ArEW1LumUSRcvHzMMKWSenROQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMC8xN0QwMkIxMTZE NEJCQTY1MTI0NUNCQzdDQ0MzMEE1OTI3QTc0NEU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBBNTkyN0E3 NDRFNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzAzMzJlMzQzNzJlMzEzMzMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcvhDANBgkqhkiG 9w0BAQsFAAOCAQEAtB2hCGHAIZDubj7cXvFnv3J+CGHx895JWy56SGCfpOmAJdib 3lZjIDCFp+r0TIrc5EFVJdRkX0sC8f6OP7XTL+OxgRpGT5C1MLm6RzlbKm/uQm71 fk3/vtdd2poHsPtNzluRvQZ0MHrWHDRJ8c+c5cbOEGIe7K8lEyS5/NuhoIuNYXHc KK8om32t+FLTT9VWHWbegekqY7p3PMhesbJ1PaZrsP5Gv/h9KPHDYXIr3yulvgnI MC0vDLLRr3nMzCD6IK7Ny6uMTmMcnzDqQo91qYqX+kswSX/dZBAa/unvVvU+hCSa mzW1YQvdhoJjpfkvXwsFflmptJ+Wcy6yR0fuqA== -----END CERTIFICATE-----Generated at Thu May 2 20:02:07 2024 by rpki-client on console-ams.rpki-client.org