$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/3130332e3135352e3131372e302f32342d3234203d3e20313431303536.roa File: 3130332e3135352e3131372e302f32342d3234203d3e20313431303536.roa (raw, json) Hash identifier: /TQ9lPnPYqONrVYXhhohcl7UP563J9mX/0O81vxmXto= Subject key identifier: DE:CF:AF:94:88:BA:5E:42:73:3E:5C:F9:6A:5F:41:7A:19:C9:FB:00 Certificate issuer: /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Certificate serial: 165DB5DEC1287F6A56199B6F4C9B4154B0116B77 Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/3130332e3135352e3131372e302f32342d3234203d3e20313431303536.roa Signing time: Mon 01 Jul 2024 01:02:20 +0000 ROA not before: Mon 01 Jul 2024 00:57:20 +0000 ROA not after: Mon 30 Jun 2025 01:02:20 +0000 asID: 141056 IP address blocks: 103.155.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:5d:b5:de:c1:28:7f:6a:56:19:9b:6f:4c:9b:41:54:b0:11:6b:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Validity Not Before: Jul 1 00:57:20 2024 GMT Not After : Jun 30 01:02:20 2025 GMT Subject: CN=DECFAF9488BA5E42733E5CF96A5F417A19C9FB00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:1d:03:2e:db:35:4a:b1:88:94:d5:19:60:d3: 1c:c2:5c:06:8c:8b:d5:95:e5:5d:a3:28:1f:fc:1e: bb:7d:22:3f:ea:8f:82:e7:b9:8e:56:b4:3c:96:bc: 62:6f:cf:d8:e8:25:cb:7c:f8:5b:18:4f:9e:a9:8d: ae:07:f5:03:cb:6e:53:29:18:78:12:6b:51:cb:9f: 89:06:1e:5c:73:5c:53:e8:f7:89:b7:d9:4f:8a:8e: 03:ea:79:a0:61:b5:20:46:39:1d:39:5e:b3:f6:65: 53:0e:1c:20:42:6a:6d:fc:77:8c:d4:e3:fb:ab:71: 3a:c1:1f:e3:f4:31:bb:7a:57:3c:63:10:fb:b2:ea: 7b:4a:c4:90:0b:23:2b:6f:69:16:94:9c:f4:98:a7: d0:e0:f5:88:cd:06:f7:ff:1b:49:35:56:e8:bd:f6: d1:5a:05:e7:05:6f:2f:74:45:05:8c:ea:22:5b:1e: 2f:39:90:30:7e:b0:f5:52:86:0f:41:67:2d:dc:8a: 9d:57:27:ad:f5:a8:d6:40:fc:26:90:00:c0:a0:30: 9a:77:ce:25:13:23:f5:a8:e1:5a:c1:e3:27:4f:8f: 88:f8:8a:cf:9f:42:84:c4:1a:e3:4c:b9:23:b3:bb: bf:e7:84:6d:6b:e7:cd:57:91:70:93:c7:69:e2:a2: 30:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:CF:AF:94:88:BA:5E:42:73:3E:5C:F9:6A:5F:41:7A:19:C9:FB:00 X509v3 Authority Key Identifier: keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/3130332e3135352e3131372e302f32342d3234203d3e20313431303536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.117.0/24 Signature Algorithm: sha256WithRSAEncryption 72:ad:ef:e0:e0:c8:04:71:bd:19:de:4f:23:cb:b4:2a:ff:ec: 7e:2e:26:05:84:92:c9:e3:5d:30:0a:2c:cb:ab:64:61:b0:dd: ba:6d:f1:09:5f:4e:58:2d:1c:99:77:33:be:d3:a6:90:6a:5d: ec:53:7f:ec:62:55:d2:4f:ee:7c:6f:d7:1f:3e:e8:a4:c9:bf: 9e:de:7b:43:39:42:fd:6a:9a:e9:74:63:af:2a:52:6f:ce:6d: 78:fc:69:af:d1:fe:72:a9:2e:41:29:05:4c:b9:9b:aa:fb:5c: 2b:d8:df:d9:25:1f:dc:c9:ec:6e:eb:b0:41:e1:dc:0a:86:c6: 7f:2b:5e:eb:29:55:d6:85:ff:da:cb:99:34:c6:db:69:41:44: e4:fe:c6:18:ab:05:a2:30:6d:2e:a3:f7:30:50:92:fc:49:61: 99:ea:ec:1b:ee:fc:e3:9b:cc:ac:9f:6f:ca:4d:93:92:e6:d4: a6:75:97:ee:3b:8a:13:bd:5b:d6:58:35:7c:39:7c:6c:85:4d: f6:a5:68:d9:bc:7b:2c:8d:1b:b9:92:d8:9b:19:c1:1c:e3:35: 18:f7:73:4f:ea:34:ca:c8:80:57:ef:39:50:cd:06:75:2c:08: 0d:8c:7c:23:6f:86:3e:e0:ae:4e:77:d4:cb:0c:0f:ae:2b:cc: 4a:d8:73:07 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUFl213sEof2pWGZtvTJtBVLARa3cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUy MDdGQTMzNzAeFw0yNDA3MDEwMDU3MjBaFw0yNTA2MzAwMTAyMjBaMDMxMTAvBgNV BAMTKERFQ0ZBRjk0ODhCQTVFNDI3MzNFNUNGOTZBNUY0MTdBMTlDOUZCMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyHQMu2zVKsYiU1Rlg0xzCXAaM i9WV5V2jKB/8Hrt9Ij/qj4LnuY5WtDyWvGJvz9joJct8+FsYT56pja4H9QPLblMp GHgSa1HLn4kGHlxzXFPo94m32U+KjgPqeaBhtSBGOR05XrP2ZVMOHCBCam38d4zU 4/urcTrBH+P0Mbt6VzxjEPuy6ntKxJALIytvaRaUnPSYp9Dg9YjNBvf/G0k1Vui9 9tFaBecFby90RQWM6iJbHi85kDB+sPVShg9BZy3cip1XJ631qNZA/CaQAMCgMJp3 ziUTI/Wo4VrB4ydPj4j4is+fQoTEGuNMuSOzu7/nhG1r581XkXCTx2niojBDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU3s+vlIi6XkJzPlz5al9BehnJ+wAwHwYDVR0j BBgwFoAUvKMZU7ksX8RS7ah7kMvZjiB/ozcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTJjNDgxNS1iMmRhLTRjMjAtYmMzMS01MDNhZGY0OWI0OTAvMC9CQ0EzMTk1M0I5 MkM1RkM0NTJFREE4N0I5MENCRDk4RTIwN0ZBMzM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUyMDdG QTMzNy5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlMmM0ODE1LWIyZGEtNGMyMC1i YzMxLTUwM2FkZjQ5YjQ5MC8wLzMxMzAzMzJlMzEzNTM1MmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzEzMDM1MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnm3UwDQYJ KoZIhvcNAQELBQADggEBAHKt7+DgyARxvRneTyPLtCr/7H4uJgWEksnjXTAKLMur ZGGw3bpt8QlfTlgtHJl3M77TppBqXexTf+xiVdJP7nxv1x8+6KTJv57ee0M5Qv1q mul0Y68qUm/ObXj8aa/R/nKpLkEpBUy5m6r7XCvY39klH9zJ7G7rsEHh3AqGxn8r XuspVdaF/9rLmTTG22lBROT+xhirBaIwbS6j9zBQkvxJYZnq7Bvu/OObzKyfb8pN k5Lm1KZ1l+47ihO9W9ZYNXw5fGyFTfalaNm8eyyNG7mS2JsZwRzjNRj3c0/qNMrI gFfvOVDNBnUsCA2MfCNvhj7grk531MsMD64rzErYcwc= -----END CERTIFICATE-----Generated at Sun Nov 24 05:18:49 2024 by rpki-client on console-ams.rpki-client.org