$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133352e302f32342d3234203d3e203633383539.roa File: 3130332e34372e3133352e302f32342d3234203d3e203633383539.roa (raw, json) Hash identifier: AWozFiAIZWfxU287x13FXYtmmWl75ad9OAGJuE9QWfs= Subject key identifier: 2F:7D:FA:0F:8A:C1:BF:7F:D0:87:D7:3D:03:55:B6:81:AC:CA:90:C0 Certificate issuer: /CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4 Certificate serial: 2E1BF4E4FDB459597A31FC0BF866432504858624 Authority key identifier: 17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133352e302f32342d3234203d3e203633383539.roa Signing time: Sun 10 Sep 2023 09:00:02 +0000 ROA not before: Sun 10 Sep 2023 08:55:02 +0000 ROA not after: Sun 08 Sep 2024 09:00:02 +0000 asID: 63859 IP address blocks: 103.47.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:1b:f4:e4:fd:b4:59:59:7a:31:fc:0b:f8:66:43:25:04:85:86:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4 Validity Not Before: Sep 10 08:55:02 2023 GMT Not After : Sep 8 09:00:02 2024 GMT Subject: CN=2F7DFA0F8AC1BF7FD087D73D0355B681ACCA90C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f4:e8:c6:49:47:da:b4:b2:e4:02:41:0e:23: fc:07:06:c6:9a:3f:24:5b:bd:c8:db:11:1d:84:1c: bc:12:9e:10:5f:f9:1b:64:3a:ae:65:fa:04:ff:6c: 8a:7b:4d:7d:c3:cf:de:cd:29:bc:40:b0:54:f3:33: 1a:ec:1f:d6:81:d5:20:f7:79:30:b1:0f:9f:b3:c8: f2:c3:7c:8e:cd:90:21:43:95:13:70:fe:29:53:cd: 26:df:30:4f:74:79:92:e7:96:13:0a:67:73:01:aa: a0:a6:dd:c9:b4:9d:c6:42:72:08:85:f1:85:75:44: 09:31:39:60:c7:08:be:39:8c:5a:ba:35:e3:f4:04: a3:39:d5:78:66:ca:e8:69:d6:d6:38:f4:e5:8a:87: 1c:95:b7:ac:68:db:5b:c4:9e:e4:ce:58:3d:cb:71: 57:86:a1:8b:69:5b:49:1f:88:45:b1:b5:56:c2:b6: 1b:b8:48:7b:9f:43:6f:57:d9:be:0c:17:4b:6a:27: 58:30:5d:27:d6:60:2f:85:a8:c7:05:e0:9b:bc:86: 9e:fd:de:0d:f9:ac:7e:6c:2f:25:96:1d:ff:b1:51: 67:0d:72:7c:0d:3d:e2:1a:bf:85:c8:ad:7e:c1:49: 54:e4:94:f6:f4:36:40:6b:d7:f4:a9:e4:63:c6:ae: 04:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:7D:FA:0F:8A:C1:BF:7F:D0:87:D7:3D:03:55:B6:81:AC:CA:90:C0 X509v3 Authority Key Identifier: keyid:17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/3130332e34372e3133352e302f32342d3234203d3e203633383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.47.135.0/24 Signature Algorithm: sha256WithRSAEncryption 88:94:39:44:9f:10:4a:0c:81:75:0d:41:25:a8:c8:a9:87:55: ca:2b:0a:7a:12:06:4c:45:ba:5c:43:d5:a9:1b:d2:e7:5c:54: b9:54:d2:f3:55:71:b9:43:ba:03:08:e9:d7:34:f5:00:2f:e3: 79:74:e1:1a:b8:4a:28:dc:5d:ea:a3:75:7f:88:67:c8:2d:e8: 46:d6:7f:97:c2:80:28:15:8b:a5:af:3e:17:b2:9f:f2:4b:0a: dc:c9:e1:b6:88:6c:0b:c1:0e:a2:97:c4:46:f0:4b:80:ae:a8: 8f:c7:4f:df:4b:ac:3d:86:4c:23:33:5c:af:ef:f5:1d:f0:47: 9b:a1:ba:7d:4c:26:d8:8d:0a:10:85:05:5f:e3:9e:88:11:5e: 84:90:62:19:7d:2e:e0:3a:ac:8b:bf:aa:da:86:da:a0:66:23: 1c:81:3a:e4:73:aa:ed:c3:37:69:0e:e7:de:11:e9:6c:a8:b9: 47:cd:fe:c2:d5:38:05:44:5f:27:df:78:46:c3:4a:cc:b5:6d: 3e:ec:8f:17:d2:9e:b4:f5:53:81:79:79:3e:c8:53:ca:93:ec: 70:72:e2:3b:2d:6b:49:20:60:cc:12:e6:f9:25:0b:83:21:67: bf:0d:d9:3e:ff:27:a6:2c:d1:41:d8:37:2e:93:e6:a2:1d:82: 09:a1:6e:90 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIULhv05P20WVl6MfwL+GZDJQSFhiQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBBNTky N0E3NDRFNDAeFw0yMzA5MTAwODU1MDJaFw0yNDA5MDgwOTAwMDJaMDMxMTAvBgNV BAMTKDJGN0RGQTBGOEFDMUJGN0ZEMDg3RDczRDAzNTVCNjgxQUNDQTkwQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs9OjGSUfatLLkAkEOI/wHBsaa PyRbvcjbER2EHLwSnhBf+RtkOq5l+gT/bIp7TX3Dz97NKbxAsFTzMxrsH9aB1SD3 eTCxD5+zyPLDfI7NkCFDlRNw/ilTzSbfME90eZLnlhMKZ3MBqqCm3cm0ncZCcgiF 8YV1RAkxOWDHCL45jFq6NeP0BKM51Xhmyuhp1tY49OWKhxyVt6xo21vEnuTOWD3L cVeGoYtpW0kfiEWxtVbCthu4SHufQ29X2b4MF0tqJ1gwXSfWYC+FqMcF4Ju8hp79 3g35rH5sLyWWHf+xUWcNcnwNPeIav4XIrX7BSVTklPb0NkBr1/Sp5GPGrgTpAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUL336D4rBv3/Qh9c9A1W2gazKkMAwHwYDVR0j BBgwFoAUF9ArEW1LumUSRcvHzMMKWSenROQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMC8xN0QwMkIxMTZE NEJCQTY1MTI0NUNCQzdDQ0MzMEE1OTI3QTc0NEU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBBNTkyN0E3 NDRFNC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNiYmIyNzM0LWU1ZmEtNDBlYi04 NTk4LWI3Y2QxMDEzNDNjYS8wLzMxMzAzMzJlMzQzNzJlMzEzMzM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzYzMzM4MzUzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcvhzANBgkqhkiG 9w0BAQsFAAOCAQEAiJQ5RJ8QSgyBdQ1BJajIqYdVyisKehIGTEW6XEPVqRvS51xU uVTS81VxuUO6Awjp1zT1AC/jeXThGrhKKNxd6qN1f4hnyC3oRtZ/l8KAKBWLpa8+ F7Kf8ksK3MnhtohsC8EOopfERvBLgK6oj8dP30usPYZMIzNcr+/1HfBHm6G6fUwm 2I0KEIUFX+OeiBFehJBiGX0u4Dqsi7+q2obaoGYjHIE65HOq7cM3aQ7n3hHpbKi5 R83+wtU4BURfJ994RsNKzLVtPuyPF9KetPVTgXl5PshTypPscHLiOy1rSSBgzBLm +SULgyFnvw3ZPv8npizRQdg3LpPmoh2CCaFukA== -----END CERTIFICATE-----Generated at Sun May 5 00:10:48 2024 by rpki-client on console-fra.rpki-client.org