$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133352e302f32342d3234203d3e203633383539.roa File: 3130332e34372e3133352e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: vkcujdZ/39Au/wJ2Cd7g42T7SVP95uPuSJkl+n4ENIE= Subject key identifier: B9:47:F9:66:56:8B:83:79:D4:5F:A1:8B:81:0B:8F:F8:E4:17:DC:E4 Certificate issuer: /CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4 Certificate serial: 3C46EF866A61032932C6319453199021BEBCF2AF Authority key identifier: 17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133352e302f32342d3234203d3e203633383539.roa Signing time: Sun 11 Aug 2024 10:00:02 +0000 ROA not before: Sun 11 Aug 2024 09:55:02 +0000 ROA not after: Sun 10 Aug 2025 10:00:02 +0000 asID: 63859 IP address blocks: 103.47.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:46:ef:86:6a:61:03:29:32:c6:31:94:53:19:90:21:be:bc:f2:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4 Validity Not Before: Aug 11 09:55:02 2024 GMT Not After : Aug 10 10:00:02 2025 GMT Subject: CN=B947F966568B8379D45FA18B810B8FF8E417DCE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a7:15:92:8b:d9:53:03:c8:03:1e:99:9b:a0: b5:ab:ea:91:10:cf:3d:86:bd:7b:63:bc:3f:22:9b: 9e:51:04:85:ad:d0:06:ae:96:97:78:dd:3f:0f:37: 7f:5c:56:b8:13:70:4c:4b:bd:a4:79:cc:f7:a3:7e: 25:db:da:64:8e:8d:4a:13:97:f2:11:2d:03:f3:6b: 5c:e0:c7:b0:98:71:56:2c:62:5f:7f:0d:e1:de:c7: c0:1a:b6:36:60:b4:91:7b:e6:3f:db:83:d1:d5:81: de:85:68:c7:62:e0:d5:e9:32:6d:a6:53:b9:90:7f: f8:3b:fb:27:89:7d:d0:fc:5d:36:0e:95:24:5c:ca: 64:1d:71:bb:90:18:df:d1:63:13:b7:3a:1d:fe:39: 71:20:e7:8b:83:89:25:fb:9e:ba:e6:e2:98:6c:41: 7c:fa:9b:bf:31:c1:81:b0:ac:b0:23:1c:f6:4b:e6: ce:64:49:51:e9:46:a9:d4:f6:90:1b:7f:de:b4:08: 90:fd:1e:3b:48:cc:0f:8d:20:51:cd:f7:33:ca:2b: 7e:6d:25:aa:97:95:22:3d:09:5b:87:74:41:f0:14: 6d:9c:e0:6f:cd:c3:b0:1d:7c:ba:d5:4b:f0:8d:56: b4:f7:66:4c:36:d6:73:dd:af:18:88:14:77:0d:93: cf:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:47:F9:66:56:8B:83:79:D4:5F:A1:8B:81:0B:8F:F8:E4:17:DC:E4 X509v3 Authority Key Identifier: keyid:17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133352e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.47.135.0/24 Signature Algorithm: sha256WithRSAEncryption 31:65:65:24:40:75:59:62:93:52:64:a3:20:7d:b1:6a:90:f7: 9d:1f:1f:4e:ac:a3:7d:d7:b8:d2:9e:70:e2:f3:7c:15:b1:f5: fb:65:de:3f:20:d3:5e:cb:7f:ac:06:2f:48:13:8b:de:39:44: 54:97:af:a8:2b:33:90:b2:35:9c:60:b0:6d:90:c1:1b:75:a0: 26:fa:a4:07:5c:c2:32:85:35:28:72:4e:0d:d8:73:5a:41:7c: 92:da:4c:06:2f:10:08:db:fe:9d:3e:50:ce:fc:62:e0:4b:9e: da:30:57:7f:b3:99:e1:e7:1b:7a:74:59:ad:d7:bd:20:69:bc: 0c:63:c1:96:f1:fc:9d:d4:81:13:f7:ab:ec:e3:60:50:6b:9a: c5:c9:69:43:32:85:f1:98:f9:74:ca:ff:7d:40:e6:1e:60:d2: 45:7d:ec:28:69:e7:04:59:9d:2d:99:c2:d8:26:57:02:7e:3c: d7:d5:64:99:a2:67:d3:29:c3:5c:f3:c3:15:71:24:b8:08:47: e3:28:f1:c2:77:29:97:18:1b:5d:e0:1f:96:9e:8a:74:ce:70: 4b:40:83:46:3d:02:a9:9d:5d:88:26:e5:06:aa:f7:7a:9b:2c: 89:2b:89:02:ac:6b:e2:d3:c0:27:29:f1:7f:c9:43:20:b4:0b: e8:27:ae:32 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUPEbvhmphAykyxjGUUxmQIb688q8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBBNTky N0E3NDRFNDAeFw0yNDA4MTEwOTU1MDJaFw0yNTA4MTAxMDAwMDJaMDMxMTAvBgNV BAMTKEI5NDdGOTY2NTY4QjgzNzlENDVGQTE4QjgxMEI4RkY4RTQxN0RDRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1pxWSi9lTA8gDHpmboLWr6pEQ zz2GvXtjvD8im55RBIWt0Aaulpd43T8PN39cVrgTcExLvaR5zPejfiXb2mSOjUoT l/IRLQPza1zgx7CYcVYsYl9/DeHex8AatjZgtJF75j/bg9HVgd6FaMdi4NXpMm2m U7mQf/g7+yeJfdD8XTYOlSRcymQdcbuQGN/RYxO3Oh3+OXEg54uDiSX7nrrm4phs QXz6m78xwYGwrLAjHPZL5s5kSVHpRqnU9pAbf960CJD9HjtIzA+NIFHN9zPKK35t JaqXlSI9CVuHdEHwFG2c4G/Nw7AdfLrVS/CNVrT3Zkw21nPdrxiIFHcNk89lAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUuUf5ZlaLg3nUX6GLgQuP+OQX3OQwHwYDVR0j BBgwFoAUF9ArEW1LumUSRcvHzMMKWSenROQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMC8xN0QwMkIxMTZE NEJCQTY1MTI0NUNCQzdDQ0MzMEE1OTI3QTc0NEU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBBNTkyN0E3 NDRFNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzAzMzJlMzQzNzJlMzEzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcvhzANBgkqhkiG 9w0BAQsFAAOCAQEAMWVlJEB1WWKTUmSjIH2xapD3nR8fTqyjfde40p5w4vN8FbH1 +2XePyDTXst/rAYvSBOL3jlEVJevqCszkLI1nGCwbZDBG3WgJvqkB1zCMoU1KHJO DdhzWkF8ktpMBi8QCNv+nT5Qzvxi4Eue2jBXf7OZ4ecbenRZrde9IGm8DGPBlvH8 ndSBE/er7ONgUGuaxclpQzKF8Zj5dMr/fUDmHmDSRX3sKGnnBFmdLZnC2CZXAn48 19VkmaJn0ynDXPPDFXEkuAhH4yjxwncplxgbXeAflp6KdM5wS0CDRj0CqZ1diCbl Bqr3epssiSuJAqxr4tPAJynxf8lDILQL6CeuMg== -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:53 2024 by rpki-client on console-fra.rpki-client.org