$ rpki-client -vvf repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/3130332e3133362e3137302e302f32332d3233203d3e203538333639.roa File: 3130332e3133362e3137302e302f32332d3233203d3e203538333639.roa (raw, json) Hash identifier: BADyV6wJdXSSltzFLVS7v0Cc/6PXVJM18n7D+Fi9ZsM= Subject key identifier: 82:9A:92:C6:65:F8:1B:86:BF:09:D6:C5:D8:DB:A6:06:79:21:04:30 Certificate issuer: /CN=47C87696529FAF404AF0E8681AAFA8F224187D59 Certificate serial: 320890F91282F8C1CE7F4EAB9D8C12FE9524E939 Authority key identifier: 47:C8:76:96:52:9F:AF:40:4A:F0:E8:68:1A:AF:A8:F2:24:18:7D:59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47C87696529FAF404AF0E8681AAFA8F224187D59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/3130332e3133362e3137302e302f32332d3233203d3e203538333639.roa Signing time: Fri 12 Apr 2024 05:02:07 +0000 ROA not before: Fri 12 Apr 2024 04:57:07 +0000 ROA not after: Fri 11 Apr 2025 05:02:07 +0000 asID: 58369 IP address blocks: 103.136.170.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/47C87696529FAF404AF0E8681AAFA8F224187D59.crl rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/47C87696529FAF404AF0E8681AAFA8F224187D59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47C87696529FAF404AF0E8681AAFA8F224187D59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:08:90:f9:12:82:f8:c1:ce:7f:4e:ab:9d:8c:12:fe:95:24:e9:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47C87696529FAF404AF0E8681AAFA8F224187D59 Validity Not Before: Apr 12 04:57:07 2024 GMT Not After : Apr 11 05:02:07 2025 GMT Subject: CN=829A92C665F81B86BF09D6C5D8DBA60679210430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5d:e5:29:c8:d0:8c:3e:80:e0:0a:ee:94:43: 7d:0c:b3:b8:e9:8a:81:bb:6e:8d:da:d0:da:1d:c8: 37:f4:e7:89:ec:2c:1e:87:34:4b:42:99:de:1d:54: 78:24:57:e4:34:67:7c:4a:83:71:ca:77:f5:1a:1d: cd:7e:fe:e6:10:60:17:75:33:fe:8d:89:51:91:2b: e3:a4:8f:af:94:64:ff:91:07:07:8a:92:e2:87:9a: 6c:b4:c5:aa:3e:74:7d:0e:30:d9:b0:fe:df:aa:e8: 92:0f:d4:da:c2:9b:78:c9:de:d5:d5:c2:f3:92:60: 4c:69:64:e1:c8:6c:04:de:72:31:8b:02:19:98:95: d9:2a:10:b8:fd:f1:bd:2a:bc:4f:81:9a:76:a3:a3: 84:45:4c:c9:d1:3f:02:36:51:27:21:c8:ed:78:3e: 3d:ca:8d:e2:e9:63:08:9d:7e:1d:7c:21:2e:7e:57: e5:a8:fe:44:ad:cb:80:b0:b6:71:af:bd:71:a5:4d: 6f:11:70:f0:73:31:d9:23:69:69:15:4d:eb:c9:8e: ed:87:36:8e:ee:ad:97:33:0d:ec:62:e3:5a:83:e9: f9:b3:92:68:4b:aa:a0:d1:6f:cc:ba:59:f0:e7:99: cb:0e:53:84:80:aa:35:a5:ab:20:68:86:a1:32:20: 2f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:9A:92:C6:65:F8:1B:86:BF:09:D6:C5:D8:DB:A6:06:79:21:04:30 X509v3 Authority Key Identifier: keyid:47:C8:76:96:52:9F:AF:40:4A:F0:E8:68:1A:AF:A8:F2:24:18:7D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/47C87696529FAF404AF0E8681AAFA8F224187D59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/47C87696529FAF404AF0E8681AAFA8F224187D59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f61f04d-18e7-42ff-ae82-d56554f9264c/0/3130332e3133362e3137302e302f32332d3233203d3e203538333639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.136.170.0/23 Signature Algorithm: sha256WithRSAEncryption 77:6a:e8:78:1d:81:0b:f9:e7:f6:c7:2a:ec:16:a4:86:e4:dc: b8:4d:43:69:56:98:3a:79:ab:e7:b7:82:23:b2:de:86:ba:62: b3:f7:2e:96:07:e9:13:d7:7c:64:3a:b3:61:81:26:8f:93:4b: 80:0a:6d:c2:68:7b:d0:44:26:0c:40:9c:95:02:9d:ca:d6:21: c6:64:3a:bb:a8:3b:3b:be:de:f6:a2:74:1b:11:b1:9c:4d:2e: fc:84:18:94:66:eb:0d:ce:31:e4:5b:7b:f5:61:03:3b:d5:35: 99:0a:9d:50:50:83:d1:1a:77:93:7a:a2:37:41:c9:ab:8e:78: a6:1d:ad:23:e7:e0:93:2e:7f:c1:8b:83:2d:52:64:c6:14:38: 78:b1:7f:73:c3:66:f0:de:04:06:28:ee:71:93:c6:64:b4:66: 22:79:88:3e:81:cf:bb:03:0d:ee:1a:c3:d7:b4:23:56:05:0f: 9d:84:2e:56:8f:b0:8b:7d:97:3e:5b:5c:f9:b7:7e:be:a3:2b: 96:b4:f5:71:3e:4d:93:ea:3f:c2:39:f6:a9:52:0f:cd:84:f2: a1:13:75:31:d0:11:4c:a3:96:83:c5:48:85:1f:4d:63:f2:6d: 80:4c:07:09:f0:9e:fb:1d:5a:3a:8f:4b:6a:4b:1b:47:49:cb: 61:70:88:eb -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMgiQ+RKC+MHOf06rnYwS/pUk6TkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDdDODc2OTY1MjlGQUY0MDRBRjBFODY4MUFBRkE4RjIy NDE4N0Q1OTAeFw0yNDA0MTIwNDU3MDdaFw0yNTA0MTEwNTAyMDdaMDMxMTAvBgNV BAMTKDgyOUE5MkM2NjVGODFCODZCRjA5RDZDNUQ4REJBNjA2NzkyMTA0MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+XeUpyNCMPoDgCu6UQ30Ms7jp ioG7bo3a0NodyDf054nsLB6HNEtCmd4dVHgkV+Q0Z3xKg3HKd/UaHc1+/uYQYBd1 M/6NiVGRK+Okj6+UZP+RBweKkuKHmmy0xao+dH0OMNmw/t+q6JIP1NrCm3jJ3tXV wvOSYExpZOHIbATecjGLAhmYldkqELj98b0qvE+Bmnajo4RFTMnRPwI2USchyO14 Pj3KjeLpYwidfh18IS5+V+Wo/kSty4CwtnGvvXGlTW8RcPBzMdkjaWkVTevJju2H No7urZczDexi41qD6fmzkmhLqqDRb8y6WfDnmcsOU4SAqjWlqyBohqEyIC+HAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUgpqSxmX4G4a/CdbF2NumBnkhBDAwHwYDVR0j BBgwFoAUR8h2llKfr0BK8OhoGq+o8iQYfVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjYxZjA0ZC0xOGU3LTQyZmYtYWU4Mi1kNTY1NTRmOTI2NGMvMC80N0M4NzY5NjUy OUZBRjQwNEFGMEU4NjgxQUFGQThGMjI0MTg3RDU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDdDODc2OTY1MjlGQUY0MDRBRjBFODY4MUFBRkE4RjIyNDE4 N0Q1OS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNjFmMDRkLTE4ZTctNDJmZi1h ZTgyLWQ1NjU1NGY5MjY0Yy8wLzMxMzAzMzJlMzEzMzM2MmUzMTM3MzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzNTM4MzMzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ4iqMA0GCSqG SIb3DQEBCwUAA4IBAQB3auh4HYEL+ef2xyrsFqSG5Ny4TUNpVpg6eavnt4Ijst6G umKz9y6WB+kT13xkOrNhgSaPk0uACm3CaHvQRCYMQJyVAp3K1iHGZDq7qDs7vt72 onQbEbGcTS78hBiUZusNzjHkW3v1YQM71TWZCp1QUIPRGneTeqI3QcmrjnimHa0j 5+CTLn/Bi4MtUmTGFDh4sX9zw2bw3gQGKO5xk8ZktGYieYg+gc+7Aw3uGsPXtCNW BQ+dhC5Wj7CLfZc+W1z5t36+oyuWtPVxPk2T6j/COfapUg/NhPKhE3Ux0BFMo5aD xUiFH01j8m2ATAcJ8J77HVo6j0tqSxtHScthcIjr -----END CERTIFICATE-----Generated at Fri Nov 22 02:05:57 2024 by rpki-client on console-fra.rpki-client.org