$ rpki-client -vvf repo-rpki.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/3130332e32302e38342e302f32342d3234203d3e20313530323337.roa File: 3130332e32302e38342e302f32342d3234203d3e20313530323337.roa (raw, json) Hash identifier: jgoQG83OGqOQ5bfCalQG8C0ODXrmVRj9zDn3cJfKnV4= Subject key identifier: 78:6B:5D:87:26:37:F1:FA:FB:7F:AC:C4:86:36:58:EF:E7:40:FE:61 Certificate issuer: /CN=BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0 Certificate serial: 6AC7B605CBB5E2ED3222A0351CE637167ED028B8 Authority key identifier: BD:0C:A7:BB:7E:E1:45:97:A1:71:F1:B1:E3:E3:12:7A:79:DF:FF:D0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/3130332e32302e38342e302f32342d3234203d3e20313530323337.roa Signing time: Thu 28 Dec 2023 18:00:00 +0000 ROA not before: Thu 28 Dec 2023 17:55:00 +0000 ROA not after: Thu 26 Dec 2024 18:00:00 +0000 asID: 150237 IP address blocks: 103.20.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0.crl rsync://repo-rpki.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:c7:b6:05:cb:b5:e2:ed:32:22:a0:35:1c:e6:37:16:7e:d0:28:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0 Validity Not Before: Dec 28 17:55:00 2023 GMT Not After : Dec 26 18:00:00 2024 GMT Subject: CN=786B5D872637F1FAFB7FACC4863658EFE740FE61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:fb:b6:c0:60:0e:2b:2b:15:d4:36:43:f8:80: 4d:0b:ae:71:7f:94:0b:1b:87:34:4f:de:f2:5d:03: 73:01:4c:04:86:11:94:2b:15:05:6a:80:25:c8:4e: 0a:77:02:29:5f:f1:18:00:1e:5c:03:09:66:68:f9: 08:e9:08:4e:84:e3:11:25:35:e2:f5:84:67:e6:fc: cd:c3:e1:11:ea:88:68:00:40:f1:2c:fa:36:e8:e7: 65:49:b7:fd:e1:4a:54:5d:cc:c5:5a:ac:f6:97:a3: 07:fb:9b:66:59:e5:5b:f5:47:ab:05:89:ae:f0:5f: f3:c1:2f:b5:75:de:57:dc:94:fd:23:b9:0e:c2:73: 74:98:2a:17:e9:a3:4d:2f:15:d6:ba:01:78:62:0a: a7:6a:c5:f8:a3:be:0b:60:21:26:f5:ae:f4:e0:b4: d7:a5:31:f1:e7:6e:35:fe:d8:77:cf:71:4c:a5:2e: 47:e7:92:38:e1:80:8c:76:65:d6:31:68:0d:77:2e: 1f:58:13:ae:5c:97:de:20:16:5b:7c:d1:21:a8:05: d6:06:11:4b:81:95:40:da:d7:ef:bc:68:eb:6d:c3: 03:d7:87:fb:d2:ba:00:5b:15:7e:2e:2c:98:b6:7a: 9b:c7:67:8e:40:ee:2b:1a:77:f7:9a:86:22:fc:ad: e1:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:6B:5D:87:26:37:F1:FA:FB:7F:AC:C4:86:36:58:EF:E7:40:FE:61 X509v3 Authority Key Identifier: keyid:BD:0C:A7:BB:7E:E1:45:97:A1:71:F1:B1:E3:E3:12:7A:79:DF:FF:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD0CA7BB7EE14597A171F1B1E3E3127A79DFFFD0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3d7a71bc-f910-4b8c-9cff-0857d5f2d37f/0/3130332e32302e38342e302f32342d3234203d3e20313530323337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.84.0/24 Signature Algorithm: sha256WithRSAEncryption 50:11:21:2b:f8:3e:1b:d6:ff:43:77:26:3d:1d:64:e2:46:19: eb:0d:2b:51:1d:1b:b3:69:05:ae:57:f1:a3:79:97:f1:b1:80: 4e:9d:51:9c:6b:9b:eb:c0:81:4b:ce:29:ce:eb:60:a6:dc:bb: 50:22:7d:29:b8:54:ce:d7:51:c8:9f:b6:82:67:33:c3:94:ce: d4:a7:6b:de:52:69:d9:05:50:e7:ca:85:e0:5e:84:e7:6e:c7: c5:d2:46:d5:4b:88:dc:bc:e7:1c:07:a8:2e:b4:aa:fa:2a:da: af:3a:28:d0:be:b4:e7:2c:d5:6e:ae:78:a9:ec:ef:48:da:b1: 48:64:c0:42:fe:96:ae:1f:ef:79:e2:07:b0:bc:b9:01:4c:8b: a9:87:6a:14:e1:40:18:7c:91:31:9c:77:88:70:50:b8:96:d7: c1:24:7c:c9:4d:10:42:40:08:8a:ff:15:d5:2b:44:e2:42:6c: 35:e9:33:43:bd:99:cb:27:15:63:4f:fe:83:5c:f5:22:54:f3: f3:50:e1:51:59:51:56:a5:94:d5:11:9a:b3:98:f3:60:74:48: 61:6b:89:b0:ba:50:25:1b:5f:d7:44:3d:a9:ff:03:d8:41:96: 5a:50:7b:dd:46:aa:f4:d5:01:42:9e:76:69:c8:b2:8b:e7:08: 7a:c0:0a:c4 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUase2Bcu14u0yIqA1HOY3Fn7QKLgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQwQ0E3QkI3RUUxNDU5N0ExNzFGMUIxRTNFMzEyN0E3 OURGRkZEMDAeFw0yMzEyMjgxNzU1MDBaFw0yNDEyMjYxODAwMDBaMDMxMTAvBgNV BAMTKDc4NkI1RDg3MjYzN0YxRkFGQjdGQUNDNDg2MzY1OEVGRTc0MEZFNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp+7bAYA4rKxXUNkP4gE0LrnF/ lAsbhzRP3vJdA3MBTASGEZQrFQVqgCXITgp3Ailf8RgAHlwDCWZo+QjpCE6E4xEl NeL1hGfm/M3D4RHqiGgAQPEs+jbo52VJt/3hSlRdzMVarPaXowf7m2ZZ5Vv1R6sF ia7wX/PBL7V13lfclP0juQ7Cc3SYKhfpo00vFda6AXhiCqdqxfijvgtgISb1rvTg tNelMfHnbjX+2HfPcUylLkfnkjjhgIx2ZdYxaA13Lh9YE65cl94gFlt80SGoBdYG EUuBlUDa1++8aOttwwPXh/vSugBbFX4uLJi2epvHZ45A7isad/eahiL8reGLAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUeGtdhyY38fr7f6zEhjZY7+dA/mEwHwYDVR0j BBgwFoAUvQynu37hRZehcfGx4+MSennf/9AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZDdhNzFiYy1mOTEwLTRiOGMtOWNmZi0wODU3ZDVmMmQzN2YvMC9CRDBDQTdCQjdF RTE0NTk3QTE3MUYxQjFFM0UzMTI3QTc5REZGRkQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQwQ0E3QkI3RUUxNDU5N0ExNzFGMUIxRTNFMzEyN0E3OURG RkZEMC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNkN2E3MWJjLWY5MTAtNGI4Yy05 Y2ZmLTA4NTdkNWYyZDM3Zi8wLzMxMzAzMzJlMzIzMDJlMzgzNDJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcUVDANBgkqhkiG 9w0BAQsFAAOCAQEAUBEhK/g+G9b/Q3cmPR1k4kYZ6w0rUR0bs2kFrlfxo3mX8bGA Tp1RnGub68CBS84pzutgpty7UCJ9KbhUztdRyJ+2gmczw5TO1Kdr3lJp2QVQ58qF 4F6E527HxdJG1UuI3LznHAeoLrSq+irarzoo0L605yzVbq54qezvSNqxSGTAQv6W rh/veeIHsLy5AUyLqYdqFOFAGHyRMZx3iHBQuJbXwSR8yU0QQkAIiv8V1StE4kJs NekzQ72ZyycVY0/+g1z1IlTz81DhUVlRVqWU1RGas5jzYHRIYWuJsLpQJRtf10Q9 qf8D2EGWWlB73Uaq9NUBQp52aciyi+cIesAKxA== -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:32 2024 by rpki-client on console-ams.rpki-client.org