$ rpki-client -vvf repo-rpki.idnic.net/repo/648b6583-4122-469d-8384-3af1bcc6607f/0/3130332e3134372e3133342e302f32332d3234203d3e20313339393633.roa File: 3130332e3134372e3133342e302f32332d3234203d3e20313339393633.roa (raw, json) Hash identifier: BjppJfwXPbmHCeUAWsFqIjK/iMCacW8kVEyJMndZWBE= Subject key identifier: 23:A5:1B:AC:9B:F8:C5:B5:56:A0:8A:EA:D8:42:9A:88:0B:3A:8C:4D Certificate issuer: /CN=16CD7877C91A179A0A6751085603DA8E7DE539F0 Certificate serial: 31DAD0735E8C836099714684F9EFAF6A4689CE6D Authority key identifier: 16:CD:78:77:C9:1A:17:9A:0A:67:51:08:56:03:DA:8E:7D:E5:39:F0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16CD7877C91A179A0A6751085603DA8E7DE539F0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/648b6583-4122-469d-8384-3af1bcc6607f/0/3130332e3134372e3133342e302f32332d3234203d3e20313339393633.roa Signing time: Thu 26 Sep 2024 03:00:00 +0000 ROA not before: Thu 26 Sep 2024 02:55:00 +0000 ROA not after: Thu 25 Sep 2025 03:00:00 +0000 asID: 139963 IP address blocks: 103.147.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/648b6583-4122-469d-8384-3af1bcc6607f/0/16CD7877C91A179A0A6751085603DA8E7DE539F0.crl rsync://repo-rpki.idnic.net/repo/648b6583-4122-469d-8384-3af1bcc6607f/0/16CD7877C91A179A0A6751085603DA8E7DE539F0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16CD7877C91A179A0A6751085603DA8E7DE539F0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:22:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:da:d0:73:5e:8c:83:60:99:71:46:84:f9:ef:af:6a:46:89:ce:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16CD7877C91A179A0A6751085603DA8E7DE539F0 Validity Not Before: Sep 26 02:55:00 2024 GMT Not After : Sep 25 03:00:00 2025 GMT Subject: CN=23A51BAC9BF8C5B556A08AEAD8429A880B3A8C4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e2:b5:a1:85:b8:ee:97:d2:4e:05:79:59:d9: 2c:9d:8d:2c:41:11:48:62:4a:e0:4a:38:6b:77:e9: fc:0d:30:d6:cb:89:5b:c3:b4:41:ee:2a:16:46:1b: 00:e6:2d:97:68:b6:93:ed:15:fb:c9:6e:bc:08:37: 1d:08:b5:a5:ad:51:53:63:25:f2:22:4b:74:f8:a9: 6d:14:2b:10:db:6e:d8:0e:38:39:48:36:ca:ad:cc: 3e:79:4b:99:2e:ef:24:ee:66:4e:46:44:46:2a:80: 96:1e:1e:53:2f:4a:ae:1b:94:0a:51:5a:07:77:60: c2:65:2b:32:a4:69:ad:60:29:ab:8b:17:17:da:aa: 0d:77:e8:86:06:a5:d5:c8:ee:5a:4f:ab:87:84:eb: 82:9f:cf:2a:39:56:ed:f4:5c:b5:8d:96:93:e0:e1: 2f:b8:85:9c:fd:49:c2:60:c6:98:8f:38:98:17:ce: 17:f0:f2:72:e7:d3:32:3d:83:3e:a0:38:71:c4:0a: 5b:07:2f:96:0b:7c:05:34:fa:55:9c:d7:30:2f:db: 00:6c:ca:98:8e:0c:2e:79:3b:0c:30:81:9e:b6:7d: 64:f4:30:5e:aa:03:70:4a:a4:a5:45:eb:64:b3:84: c8:2d:9d:b2:bb:ff:14:46:10:7a:f3:42:cf:27:02: 21:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:A5:1B:AC:9B:F8:C5:B5:56:A0:8A:EA:D8:42:9A:88:0B:3A:8C:4D X509v3 Authority Key Identifier: keyid:16:CD:78:77:C9:1A:17:9A:0A:67:51:08:56:03:DA:8E:7D:E5:39:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/648b6583-4122-469d-8384-3af1bcc6607f/0/16CD7877C91A179A0A6751085603DA8E7DE539F0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16CD7877C91A179A0A6751085603DA8E7DE539F0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/648b6583-4122-469d-8384-3af1bcc6607f/0/3130332e3134372e3133342e302f32332d3234203d3e20313339393633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.134.0/23 Signature Algorithm: sha256WithRSAEncryption 19:52:85:68:49:ce:7b:9b:59:d9:1c:5d:25:f4:85:fb:26:be: fc:83:fc:cf:68:49:e9:9f:8e:6c:f9:26:3e:56:a9:6b:ec:93: 67:2d:64:33:89:35:5c:38:a2:fb:ab:b1:fc:d2:97:1f:01:7b: 61:3d:af:69:16:88:bd:8a:9e:96:dd:b6:67:a2:6e:88:52:01: 1c:97:29:56:96:c9:76:98:07:06:32:ea:61:ae:0c:de:39:d0: b2:aa:10:62:1a:1b:aa:5f:bd:d5:f2:b5:6d:cc:ae:76:39:ac: e5:47:80:84:7e:d0:ef:0b:13:bc:5a:99:c2:0c:28:ac:7c:85: b8:e3:a1:53:74:0f:59:6d:5f:1f:95:ee:5b:47:45:07:79:5a: 82:14:09:c9:5c:cd:3c:61:fa:99:56:e6:eb:e0:23:c2:41:8b: db:f9:cc:44:2a:50:2a:5a:85:53:c5:c4:9f:43:cb:0e:08:e0: 4d:9d:5c:17:af:9e:73:00:27:74:df:93:47:c3:b2:cf:bb:cf: 18:91:83:a0:bd:ed:e1:c8:f8:37:d2:6b:1d:96:3b:a8:9f:a9: f1:11:59:c7:fd:ff:0e:60:6a:76:7b:d5:ba:16:7b:da:e3:68: 6f:ef:81:fb:29:b6:7c:9c:6e:de:75:a6:a1:b9:ee:bb:c6:60: 85:44:39:45 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUMdrQc16Mg2CZcUaE+e+vakaJzm0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTZDRDc4NzdDOTFBMTc5QTBBNjc1MTA4NTYwM0RBOEU3 REU1MzlGMDAeFw0yNDA5MjYwMjU1MDBaFw0yNTA5MjUwMzAwMDBaMDMxMTAvBgNV BAMTKDIzQTUxQkFDOUJGOEM1QjU1NkEwOEFFQUQ4NDI5QTg4MEIzQThDNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP4rWhhbjul9JOBXlZ2SydjSxB EUhiSuBKOGt36fwNMNbLiVvDtEHuKhZGGwDmLZdotpPtFfvJbrwINx0ItaWtUVNj JfIiS3T4qW0UKxDbbtgOODlINsqtzD55S5ku7yTuZk5GREYqgJYeHlMvSq4blApR Wgd3YMJlKzKkaa1gKauLFxfaqg136IYGpdXI7lpPq4eE64Kfzyo5Vu30XLWNlpPg 4S+4hZz9ScJgxpiPOJgXzhfw8nLn0zI9gz6gOHHEClsHL5YLfAU0+lWc1zAv2wBs ypiODC55OwwwgZ62fWT0MF6qA3BKpKVF62SzhMgtnbK7/xRGEHrzQs8nAiHxAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUI6UbrJv4xbVWoIrq2EKaiAs6jE0wHwYDVR0j BBgwFoAUFs14d8kaF5oKZ1EIVgPajn3lOfAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NDhiNjU4My00MTIyLTQ2OWQtODM4NC0zYWYxYmNjNjYwN2YvMC8xNkNENzg3N0M5 MUExNzlBMEE2NzUxMDg1NjAzREE4RTdERTUzOUYwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTZDRDc4NzdDOTFBMTc5QTBBNjc1MTA4NTYwM0RBOEU3REU1 MzlGMC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0OGI2NTgzLTQxMjItNDY5ZC04 Mzg0LTNhZjFiY2M2NjA3Zi8wLzMxMzAzMzJlMzEzNDM3MmUzMTMzMzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM2MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnk4YwDQYJ KoZIhvcNAQELBQADggEBABlShWhJznubWdkcXSX0hfsmvvyD/M9oSemfjmz5Jj5W qWvsk2ctZDOJNVw4ovursfzSlx8Be2E9r2kWiL2KnpbdtmeibohSARyXKVaWyXaY BwYy6mGuDN450LKqEGIaG6pfvdXytW3MrnY5rOVHgIR+0O8LE7xamcIMKKx8hbjj oVN0D1ltXx+V7ltHRQd5WoIUCclczTxh+plW5uvgI8JBi9v5zEQqUCpahVPFxJ9D yw4I4E2dXBevnnMAJ3Tfk0fDss+7zxiRg6C97eHI+DfSax2WO6ifqfERWcf9/w5g anZ71boWe9rjaG/vgfsptnycbt51pqG57rvGYIVEOUU= -----END CERTIFICATE-----Generated at Thu Nov 21 05:34:32 2024 by rpki-client on console-ams.rpki-client.org