$ rpki-client -vvf repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/3130332e3137362e39372e302f32342d3234203d3e20313437313331.roa File: 3130332e3137362e39372e302f32342d3234203d3e20313437313331.roa (raw, json) Hash identifier: ZI9bMbzWd+/kVwgvj277LreSnIXRjKKAs+7/q2ITxSs= Subject key identifier: D3:AB:3B:51:03:51:5A:D4:42:B0:B8:C3:0E:0C:5F:83:02:83:C7:2B Certificate issuer: /CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Certificate serial: 6385FF76D69F8F67AFF7E481F8D4C2B1E1A3D649 Authority key identifier: 43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/3130332e3137362e39372e302f32342d3234203d3e20313437313331.roa Signing time: Mon 19 Feb 2024 17:00:01 +0000 ROA not before: Mon 19 Feb 2024 16:55:01 +0000 ROA not after: Mon 17 Feb 2025 17:00:01 +0000 asID: 147131 IP address blocks: 103.176.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:85:ff:76:d6:9f:8f:67:af:f7:e4:81:f8:d4:c2:b1:e1:a3:d6:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Validity Not Before: Feb 19 16:55:01 2024 GMT Not After : Feb 17 17:00:01 2025 GMT Subject: CN=D3AB3B5103515AD442B0B8C30E0C5F830283C72B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:2a:d7:4b:f0:63:84:e3:35:21:a5:73:19:d3: 85:e9:2e:9c:bb:c1:c0:48:42:86:7d:a2:a0:6d:7f: 33:7a:1d:5a:2a:65:31:14:95:23:d8:f1:ce:91:6a: da:30:13:42:35:c0:af:fb:95:dc:91:99:0b:88:f0: 5c:e4:0b:cf:42:f8:0e:76:f7:97:5f:2c:73:ea:95: 79:85:fe:14:6c:7d:a9:b1:45:23:59:52:65:bf:a1: 10:e1:04:f5:10:24:e5:3c:60:b6:d5:12:e8:4f:06: 03:68:bb:07:95:13:d0:2e:cf:53:1c:a8:c0:b2:a3: f6:39:c3:ec:04:e4:d4:d7:f8:26:92:ea:89:cc:ab: ba:4c:e3:c1:dd:99:da:90:db:ca:40:d9:ef:02:7a: 2c:04:15:e6:d9:43:6d:38:2b:79:34:47:6f:ae:7f: 18:12:1d:68:f7:dd:a9:01:07:e7:c9:bc:31:2d:70: b2:10:ed:01:34:99:bb:8b:2a:f7:3b:13:60:c3:b1: 1c:66:d7:e2:36:5e:0c:f8:47:07:c2:52:eb:b4:b1: 3d:9e:08:f0:a3:3d:78:a5:ab:5f:ef:51:83:4a:5d: f3:94:22:e1:1c:44:dc:a7:7f:06:08:08:ed:53:b0: 21:40:a1:d4:74:6c:a7:2e:c3:03:09:f8:73:2a:53: bd:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:AB:3B:51:03:51:5A:D4:42:B0:B8:C3:0E:0C:5F:83:02:83:C7:2B X509v3 Authority Key Identifier: keyid:43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/3130332e3137362e39372e302f32342d3234203d3e20313437313331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.97.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:22:39:66:3e:f3:6b:65:ca:ae:a9:e8:d3:ab:32:fa:b7:df: fe:61:36:3b:48:fb:1f:d7:0f:6b:ed:77:99:f2:84:11:a6:8a: 77:09:17:0d:a2:61:f7:90:27:2a:82:c9:23:6e:14:2b:32:b8: 81:f2:ed:33:12:6d:59:b6:6b:90:95:c5:26:80:44:47:f7:4d: a2:91:e9:7d:b5:6d:7b:20:f3:58:28:f6:c3:24:2e:55:f5:c8: 74:af:b7:67:b0:fb:b6:69:0a:8d:b9:8a:f8:e8:52:b2:14:34: 70:5d:2d:3e:7b:ae:f5:a1:db:ac:d4:ce:94:4f:0f:ca:d0:aa: 6f:13:37:49:7d:a5:1c:9d:ad:b1:d9:0b:92:54:08:e8:2a:7a: 36:9a:6f:d5:dd:ab:53:a3:b0:f7:de:bc:64:5e:af:59:6b:9b: f4:0d:c0:a6:d4:37:86:37:93:fe:5d:5e:5c:24:dd:c5:79:2c: a0:25:51:1a:8a:16:bf:d7:91:3b:df:90:45:e6:57:2f:63:49: 3a:aa:7c:7f:7a:46:60:0f:92:57:75:a7:f9:f0:d4:3d:39:17: 8f:25:df:42:6c:d9:0c:46:75:1f:bc:be:08:a7:37:67:4a:5e: 96:f2:dc:a7:8b:f8:74:16:9e:79:f1:21:75:8f:8d:61:19:89: c9:39:87:02 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUY4X/dtafj2ev9+SB+NTCseGj1kkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVF MzdCQjY1NzAeFw0yNDAyMTkxNjU1MDFaFw0yNTAyMTcxNzAwMDFaMDMxMTAvBgNV BAMTKEQzQUIzQjUxMDM1MTVBRDQ0MkIwQjhDMzBFMEM1RjgzMDI4M0M3MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoKtdL8GOE4zUhpXMZ04XpLpy7 wcBIQoZ9oqBtfzN6HVoqZTEUlSPY8c6RatowE0I1wK/7ldyRmQuI8FzkC89C+A52 95dfLHPqlXmF/hRsfamxRSNZUmW/oRDhBPUQJOU8YLbVEuhPBgNouweVE9Auz1Mc qMCyo/Y5w+wE5NTX+CaS6onMq7pM48HdmdqQ28pA2e8CeiwEFebZQ204K3k0R2+u fxgSHWj33akBB+fJvDEtcLIQ7QE0mbuLKvc7E2DDsRxm1+I2Xgz4RwfCUuu0sT2e CPCjPXilq1/vUYNKXfOUIuEcRNynfwYICO1TsCFAodR0bKcuwwMJ+HMqU713AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU06s7UQNRWtRCsLjDDgxfgwKDxyswHwYDVR0j BBgwFoAUQzfp/5Ggy2XOHrj662EI9eN7tlcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzM0ZGMzZi0zMDhmLTRkZTEtYTM2NS03MDFiZDljZjEwMDQvMC80MzM3RTlGRjkx QTBDQjY1Q0UxRUI4RkFFQjYxMDhGNUUzN0JCNjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVFMzdC QjY1Ny5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMzRkYzNmLTMwOGYtNGRlMS1h MzY1LTcwMWJkOWNmMTAwNC8wLzMxMzAzMzJlMzEzNzM2MmUzOTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM3MzEzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ7BhMA0GCSqG SIb3DQEBCwUAA4IBAQBbIjlmPvNrZcquqejTqzL6t9/+YTY7SPsf1w9r7XeZ8oQR pop3CRcNomH3kCcqgskjbhQrMriB8u0zEm1ZtmuQlcUmgERH902ikel9tW17IPNY KPbDJC5V9ch0r7dnsPu2aQqNuYr46FKyFDRwXS0+e671odus1M6UTw/K0KpvEzdJ faUcna2x2QuSVAjoKno2mm/V3atTo7D33rxkXq9Za5v0DcCm1DeGN5P+XV5cJN3F eSygJVEaiha/15E735BF5lcvY0k6qnx/ekZgD5JXdaf58NQ9ORePJd9CbNkMRnUf vL4IpzdnSl6W8tyni/h0Fp558SF1j41hGYnJOYcC -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org