$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133332e302f32342d3234203d3e203633383539.roa File: 3130332e34372e3133332e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: 0xS1n+w9VXczMS13QZF1W/J/5uwMSBEtc22dFFlfKPU= Subject key identifier: 12:89:DB:16:1D:C4:8F:D8:4A:3B:8A:F0:D9:C4:96:49:B8:77:A1:06 Certificate issuer: /CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4 Certificate serial: 37BCE38AB31C1D5A71423F440079E3E82078DAAD Authority key identifier: 17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133332e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 09:00:02 +0000 ROA not before: Sun 11 Aug 2024 08:55:02 +0000 ROA not after: Sun 10 Aug 2025 09:00:02 +0000 asID: 63859 IP address blocks: 103.47.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:bc:e3:8a:b3:1c:1d:5a:71:42:3f:44:00:79:e3:e8:20:78:da:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4 Validity Not Before: Aug 11 08:55:02 2024 GMT Not After : Aug 10 09:00:02 2025 GMT Subject: CN=1289DB161DC48FD84A3B8AF0D9C49649B877A106 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ad:c3:b2:4c:a7:d3:e8:62:d4:2b:35:5f:1f: 95:dc:6e:57:c6:7f:b8:19:e9:86:7e:cc:9c:f8:49: 0b:4e:5f:c2:4b:ea:c3:7c:db:0f:21:ff:5b:3e:93: cb:3e:81:6e:cd:16:82:5d:38:d4:62:cb:6b:2e:f7: ce:00:da:e9:3b:18:ec:5a:0c:06:15:2a:42:de:aa: 35:60:c3:33:e8:34:73:68:7a:d3:f9:b6:e9:a8:dd: 90:09:49:ca:6c:63:a2:ed:8a:b8:ee:d1:89:01:f6: b4:05:e2:e8:32:62:62:fb:7d:b7:0a:bb:83:c2:9d: 6f:64:5a:a3:e1:ed:c4:40:9f:6d:46:99:c4:e8:46: 01:58:eb:e6:e5:f1:a4:8f:72:b5:b1:2a:ec:e1:b1: ee:fe:52:f9:48:74:42:d2:c9:29:e6:2a:bd:5e:79: 75:8b:a4:4b:6b:ad:98:0b:4f:7f:68:82:3f:e6:10: 7e:1e:ab:57:c9:bb:2b:8f:5b:08:8d:31:30:52:c4: f4:c4:f6:c4:84:e0:2e:56:89:98:48:88:3a:c8:ee: 86:cd:6c:29:12:46:72:1d:a3:a3:15:6a:69:bc:08: 01:75:47:e8:32:4b:28:c7:d9:8b:31:21:53:dc:ce: 47:0d:03:21:e8:10:dc:ef:76:9c:f1:58:86:24:0a: f1:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:89:DB:16:1D:C4:8F:D8:4A:3B:8A:F0:D9:C4:96:49:B8:77:A1:06 X509v3 Authority Key Identifier: keyid:17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133332e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.47.133.0/24 Signature Algorithm: sha256WithRSAEncryption ca:ff:ef:37:98:3e:79:5f:e6:76:66:d3:c9:f7:f0:ca:3e:4b: ea:5b:af:82:e3:b9:75:ed:a6:5e:fe:39:55:50:f5:a2:84:d8: 0a:aa:33:3c:fe:23:b4:7f:0d:98:a7:6b:cd:e0:4c:83:53:0e: f4:75:4e:ee:91:81:56:c1:86:a2:b0:e8:23:94:4c:0d:41:b6: d4:ff:d5:bc:de:72:f6:c6:ef:c6:f9:b9:5f:bc:b3:20:ac:92: 98:e7:69:8a:ed:da:d9:29:ce:40:a3:9b:8b:36:c1:5b:ed:45: 70:a5:21:98:db:73:0f:83:0a:ed:c6:f5:22:8c:3b:54:68:81: 77:af:8c:d8:38:cc:23:a1:5c:d8:b9:a6:40:20:fd:de:1f:c0: 9f:f5:74:46:32:34:73:d1:bb:32:ab:d3:98:18:b5:a8:04:6e: 8f:1b:be:df:8a:0b:34:18:33:13:b2:cd:8e:5c:00:d2:00:ff: 10:21:87:0b:c2:87:5a:78:53:d0:c2:78:4c:31:d4:e4:2e:49: a9:89:a8:f0:4b:37:29:34:8c:33:30:fa:f9:fb:19:fa:1a:b9: d9:3c:e6:ad:25:c6:f1:0e:0b:12:2f:d5:44:ce:41:ca:4b:11: 99:bb:d7:64:f7:77:75:46:23:7b:db:19:8e:d2:31:c9:eb:07: 63:c7:75:92 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUN7zjirMcHVpxQj9EAHnj6CB42q0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBBNTky N0E3NDRFNDAeFw0yNDA4MTEwODU1MDJaFw0yNTA4MTAwOTAwMDJaMDMxMTAvBgNV BAMTKDEyODlEQjE2MURDNDhGRDg0QTNCOEFGMEQ5QzQ5NjQ5Qjg3N0ExMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSrcOyTKfT6GLUKzVfH5XcblfG f7gZ6YZ+zJz4SQtOX8JL6sN82w8h/1s+k8s+gW7NFoJdONRiy2su984A2uk7GOxa DAYVKkLeqjVgwzPoNHNoetP5tumo3ZAJScpsY6Ltirju0YkB9rQF4ugyYmL7fbcK u4PCnW9kWqPh7cRAn21GmcToRgFY6+bl8aSPcrWxKuzhse7+UvlIdELSySnmKr1e eXWLpEtrrZgLT39ogj/mEH4eq1fJuyuPWwiNMTBSxPTE9sSE4C5WiZhIiDrI7obN bCkSRnIdo6MVamm8CAF1R+gySyjH2YsxIVPczkcNAyHoENzvdpzxWIYkCvENAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUEonbFh3Ej9hKO4rw2cSWSbh3oQYwHwYDVR0j BBgwFoAUF9ArEW1LumUSRcvHzMMKWSenROQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMC8xN0QwMkIxMTZE NEJCQTY1MTI0NUNCQzdDQ0MzMEE1OTI3QTc0NEU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBBNTkyN0E3 NDRFNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzAzMzJlMzQzNzJlMzEzMzMzMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcvhTANBgkqhkiG 9w0BAQsFAAOCAQEAyv/vN5g+eV/mdmbTyffwyj5L6luvguO5de2mXv45VVD1ooTY CqozPP4jtH8NmKdrzeBMg1MO9HVO7pGBVsGGorDoI5RMDUG21P/VvN5y9sbvxvm5 X7yzIKySmOdpiu3a2SnOQKObizbBW+1FcKUhmNtzD4MK7cb1Iow7VGiBd6+M2DjM I6Fc2LmmQCD93h/An/V0RjI0c9G7MqvTmBi1qARujxu+34oLNBgzE7LNjlwA0gD/ ECGHC8KHWnhT0MJ4TDHU5C5JqYmo8Es3KTSMMzD6+fsZ+hq52TzmrSXG8Q4LEi/V RM5ByksRmbvXZPd3dUYje9sZjtIxyesHY8d1kg== -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:53 2024 by rpki-client on console-fra.rpki-client.org