$ rpki-client -vvf repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/3130332e3134372e3135342e302f32342d3234203d3e20313338313135.roa File: 3130332e3134372e3135342e302f32342d3234203d3e20313338313135.roa (raw, json) Hash identifier: n5l2TDbr0eIZ7shRLW4LZaxy1MHMOTIK7ObeHbqVyPo= Subject key identifier: 88:B3:78:5C:E3:6C:45:9D:C7:E8:BD:8F:90:B7:74:80:41:75:7A:FC Certificate issuer: /CN=9DEEEB0CB9492DADDE47B31629ACDA7241728768 Certificate serial: 3A26417B21849CB26D04166187317932D4ED391C Authority key identifier: 9D:EE:EB:0C:B9:49:2D:AD:DE:47:B3:16:29:AC:DA:72:41:72:87:68 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DEEEB0CB9492DADDE47B31629ACDA7241728768.cer Subject info access: rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/3130332e3134372e3135342e302f32342d3234203d3e20313338313135.roa Signing time: Sun 21 Jul 2024 16:00:00 +0000 ROA not before: Sun 21 Jul 2024 15:55:00 +0000 ROA not after: Sun 20 Jul 2025 16:00:00 +0000 asID: 138115 IP address blocks: 103.147.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/9DEEEB0CB9492DADDE47B31629ACDA7241728768.crl rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/9DEEEB0CB9492DADDE47B31629ACDA7241728768.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DEEEB0CB9492DADDE47B31629ACDA7241728768.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:26:41:7b:21:84:9c:b2:6d:04:16:61:87:31:79:32:d4:ed:39:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9DEEEB0CB9492DADDE47B31629ACDA7241728768 Validity Not Before: Jul 21 15:55:00 2024 GMT Not After : Jul 20 16:00:00 2025 GMT Subject: CN=88B3785CE36C459DC7E8BD8F90B7748041757AFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e0:47:a6:6a:fc:b7:a2:a6:78:15:eb:96:e7: 95:e9:ae:29:64:24:86:a5:07:f2:d0:3f:de:a5:eb: ed:de:91:32:12:40:f4:3e:9d:2a:51:35:7c:06:2e: 46:10:ac:5b:c6:c9:3e:9b:31:0a:f5:f8:2a:70:8d: cc:09:ba:ef:81:66:35:76:f6:5a:6b:a5:5c:e8:b1: 8b:69:8b:e2:b9:5c:bc:83:34:82:0e:53:fd:b3:ee: 93:87:54:0b:be:00:b8:48:8a:c3:2e:e4:e1:52:c5: 6e:ce:ef:02:03:7a:cc:29:36:cc:3f:09:d8:57:05: 23:20:dc:23:ca:96:10:72:bf:04:68:ee:55:d1:6c: 1f:35:46:bb:d6:b7:21:9f:86:22:18:d1:d8:a6:31: 0f:12:66:8e:85:cc:5a:e1:b7:54:69:ed:a2:d2:a1: 23:d6:a2:2c:6d:9d:10:4e:a4:b2:d1:4d:1d:a4:49: 00:e4:af:73:e2:cb:14:5a:63:46:ee:4d:0b:87:09: 98:7b:b0:e6:63:6a:83:55:b9:1b:c1:c8:bc:37:96: 01:22:b0:39:16:44:91:ce:6b:5b:f1:60:d4:ee:4b: 9e:b8:cc:51:c2:85:e9:65:84:7d:ed:36:0b:79:0b: e7:4e:fe:c8:c9:dd:0c:3a:38:28:33:9b:2b:7d:fe: 73:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:B3:78:5C:E3:6C:45:9D:C7:E8:BD:8F:90:B7:74:80:41:75:7A:FC X509v3 Authority Key Identifier: keyid:9D:EE:EB:0C:B9:49:2D:AD:DE:47:B3:16:29:AC:DA:72:41:72:87:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/9DEEEB0CB9492DADDE47B31629ACDA7241728768.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9DEEEB0CB9492DADDE47B31629ACDA7241728768.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/64cf632d-d61a-4826-b572-9f1948ae580c/0/3130332e3134372e3135342e302f32342d3234203d3e20313338313135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.154.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:06:a0:c0:9f:3b:ed:ba:45:b4:98:52:9a:b7:c1:d2:cf:39: c3:b3:01:9d:62:16:2e:f4:a9:ba:84:73:45:77:84:12:e4:7d: ea:e3:ba:3f:7c:62:47:97:58:10:87:e9:4e:e8:77:19:1e:6b: b3:d6:fa:48:71:5d:e5:a5:06:dd:df:9f:63:8b:32:46:bf:59: 58:5d:d3:8c:44:9f:62:1c:d8:d3:fa:34:29:ed:b0:a6:8d:f6: 29:9b:8e:cf:ae:08:ae:e3:60:03:d2:53:cd:8b:41:31:27:e0: 4b:3d:ac:65:86:11:4c:cf:84:a2:98:85:35:b0:c6:7b:27:cf: 55:1e:53:33:21:e5:65:d0:0b:03:89:42:5b:d6:3b:be:e7:fb: 5b:59:ec:a7:d0:44:aa:b6:cf:dd:76:61:f3:da:c3:09:cf:9b: 04:a5:68:9a:dc:f3:d6:54:d0:f8:b7:39:41:da:27:be:bf:f9: 28:a4:3b:82:5c:d6:75:7b:3e:2a:71:6e:30:13:6c:6e:2c:54: ff:0d:ad:18:7e:94:56:2a:4f:c4:cf:b2:d5:d4:a3:f7:ac:35: 79:2e:00:c6:b3:0e:75:cb:df:ac:31:fd:57:95:4c:90:9d:3e: e9:34:a3:a2:42:8d:c5:5c:4c:b7:f5:9b:5b:2a:fb:6d:96:95: 86:f0:4a:b5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUOiZBeyGEnLJtBBZhhzF5MtTtORwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOURFRUVCMENCOTQ5MkRBRERFNDdCMzE2MjlBQ0RBNzI0 MTcyODc2ODAeFw0yNDA3MjExNTU1MDBaFw0yNTA3MjAxNjAwMDBaMDMxMTAvBgNV BAMTKDg4QjM3ODVDRTM2QzQ1OURDN0U4QkQ4RjkwQjc3NDgwNDE3NTdBRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA4Eemavy3oqZ4FeuW55Xprilk JIalB/LQP96l6+3ekTISQPQ+nSpRNXwGLkYQrFvGyT6bMQr1+CpwjcwJuu+BZjV2 9lprpVzosYtpi+K5XLyDNIIOU/2z7pOHVAu+ALhIisMu5OFSxW7O7wIDeswpNsw/ CdhXBSMg3CPKlhByvwRo7lXRbB81RrvWtyGfhiIY0dimMQ8SZo6FzFrht1Rp7aLS oSPWoixtnRBOpLLRTR2kSQDkr3PiyxRaY0buTQuHCZh7sOZjaoNVuRvByLw3lgEi sDkWRJHOa1vxYNTuS564zFHChellhH3tNgt5C+dO/sjJ3Qw6OCgzmyt9/nOvAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUiLN4XONsRZ3H6L2PkLd0gEF1evwwHwYDVR0j BBgwFoAUne7rDLlJLa3eR7MWKazackFyh2gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NGNmNjMyZC1kNjFhLTQ4MjYtYjU3Mi05ZjE5NDhhZTU4MGMvMC85REVFRUIwQ0I5 NDkyREFEREU0N0IzMTYyOUFDREE3MjQxNzI4NzY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOURFRUVCMENCOTQ5MkRBRERFNDdCMzE2MjlBQ0RBNzI0MTcy ODc2OC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0Y2Y2MzJkLWQ2MWEtNDgyNi1i NTcyLTlmMTk0OGFlNTgwYy8wLzMxMzAzMzJlMzEzNDM3MmUzMTM1MzQyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMTMxMzUucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnk5owDQYJ KoZIhvcNAQELBQADggEBAH0GoMCfO+26RbSYUpq3wdLPOcOzAZ1iFi70qbqEc0V3 hBLkferjuj98YkeXWBCH6U7odxkea7PW+khxXeWlBt3fn2OLMka/WVhd04xEn2Ic 2NP6NCntsKaN9imbjs+uCK7jYAPSU82LQTEn4Es9rGWGEUzPhKKYhTWwxnsnz1Ue UzMh5WXQCwOJQlvWO77n+1tZ7KfQRKq2z912YfPawwnPmwSlaJrc89ZU0Pi3OUHa J76/+SikO4Jc1nV7PipxbjATbG4sVP8NrRh+lFYqT8TPstXUo/esNXkuAMazDnXL 36wx/VeVTJCdPuk0o6JCjcVcTLf1m1sq+22WlYbwSrU= -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:00 2024 by rpki-client on console-ams.rpki-client.org