$ rpki-client -vvf repo-rpki.idnic.net/repo/6e4c61ac-7b5c-4d94-a365-c4021c1709c7/0/3130332e3134372e3136342e302f32332d3234203d3e203137373639.roa File: 3130332e3134372e3136342e302f32332d3234203d3e203137373639.roa (raw, json) Hash identifier: qsN6cCaNvPRadYvOCvh81rbUqW03/U/6OgyS9kMLbwY= Subject key identifier: 7A:D4:4D:45:0D:FE:98:42:A4:B8:B8:EE:76:1D:E6:65:30:63:BE:01 Certificate issuer: /CN=B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42 Certificate serial: 7389016C586B15B73A516EA020EB549161B3FD7E Authority key identifier: B3:B3:A1:DE:E0:9E:40:7B:C6:CE:08:EF:C7:CD:2B:AF:41:C7:BA:42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6e4c61ac-7b5c-4d94-a365-c4021c1709c7/0/3130332e3134372e3136342e302f32332d3234203d3e203137373639.roa Signing time: Mon 30 Sep 2024 11:00:00 +0000 ROA not before: Mon 30 Sep 2024 10:55:00 +0000 ROA not after: Mon 29 Sep 2025 11:00:00 +0000 asID: 17769 IP address blocks: 103.147.164.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6e4c61ac-7b5c-4d94-a365-c4021c1709c7/0/B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42.crl rsync://repo-rpki.idnic.net/repo/6e4c61ac-7b5c-4d94-a365-c4021c1709c7/0/B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 00:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:89:01:6c:58:6b:15:b7:3a:51:6e:a0:20:eb:54:91:61:b3:fd:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42 Validity Not Before: Sep 30 10:55:00 2024 GMT Not After : Sep 29 11:00:00 2025 GMT Subject: CN=7AD44D450DFE9842A4B8B8EE761DE6653063BE01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:0f:aa:6a:98:6c:29:92:75:82:d0:26:ff:25: 58:47:35:50:81:1f:b9:28:ce:04:1f:46:e0:2c:e3: 70:14:2a:bf:44:a7:9f:93:60:ef:6b:88:b2:c7:a7: 01:dd:04:7a:81:5f:92:8c:e0:07:f2:44:bb:57:a3: a2:6c:47:54:b7:18:8a:04:12:4a:d4:73:c9:34:d1: 53:ba:81:33:94:86:d8:70:d2:a8:ff:f9:3a:ed:3c: f3:49:71:49:31:77:52:be:54:38:e5:1a:90:4e:66: 57:1b:2f:26:9d:40:f0:96:65:d9:ba:32:14:3a:77: 37:47:8d:05:8b:52:53:57:de:3a:c2:de:41:5c:81: 37:57:1f:ae:18:9e:4d:61:d7:8c:6a:2a:7b:af:95: 4c:b8:04:c2:4d:cb:5a:2a:66:b5:a6:b3:33:0a:90: 39:a3:32:e2:f4:50:cb:75:4e:66:80:9c:9a:85:05: 20:4c:5a:5f:ad:42:c8:a4:05:61:c7:a9:2b:ad:fb: e3:ad:09:68:03:51:a4:45:fe:50:01:27:e9:06:f0: 3b:5a:04:07:e0:29:f9:76:f0:4a:3d:9d:c1:c0:94: 0c:be:b6:2f:65:c9:81:0b:07:36:a2:df:27:34:09: 40:b5:21:4c:99:84:50:17:7b:f5:14:54:51:84:9a: 7e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:D4:4D:45:0D:FE:98:42:A4:B8:B8:EE:76:1D:E6:65:30:63:BE:01 X509v3 Authority Key Identifier: keyid:B3:B3:A1:DE:E0:9E:40:7B:C6:CE:08:EF:C7:CD:2B:AF:41:C7:BA:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6e4c61ac-7b5c-4d94-a365-c4021c1709c7/0/B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B3B3A1DEE09E407BC6CE08EFC7CD2BAF41C7BA42.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6e4c61ac-7b5c-4d94-a365-c4021c1709c7/0/3130332e3134372e3136342e302f32332d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.164.0/23 Signature Algorithm: sha256WithRSAEncryption 41:98:ee:0b:37:fe:33:d0:15:86:8f:e6:87:15:fb:20:4f:ea: 4b:4f:37:bc:9c:8c:e5:f6:fc:4f:61:a7:f1:bc:4b:1a:13:28: db:25:35:31:8e:8c:ae:b9:1d:5d:0b:59:bf:10:12:66:33:01: 70:29:8c:0c:b4:60:97:96:60:c4:eb:05:ce:13:6c:2c:7a:3c: 96:de:8c:40:2f:c6:e3:31:58:37:06:8b:69:72:9c:a6:fa:3e: 47:69:d3:60:b9:65:35:c4:f8:bc:71:7d:77:cb:77:bf:dd:24: ec:f5:9a:c0:57:c3:b0:bf:3c:d2:0f:b3:be:92:6a:8e:93:a8: 40:d2:c1:e7:45:bb:c1:46:bd:82:08:2a:49:fd:8e:b3:bc:94: 13:f0:5c:ce:2d:ca:2c:81:80:4a:de:19:5a:d1:e6:de:19:94: 04:46:8c:ce:64:6d:48:fe:3e:6e:50:68:e6:4e:42:8d:cc:9c: e8:6d:93:82:38:cc:8b:40:2e:b4:89:0a:ff:0a:34:64:80:9b: 4f:a8:2f:53:01:a7:42:1b:03:5a:24:8c:46:b6:ae:e1:a7:e3: d9:37:58:ac:82:bd:84:a9:ae:e8:2e:f5:e2:c6:55:dd:72:1e: 85:d8:88:aa:83:49:86:be:c1:d6:31:80:f1:ab:cf:6f:e8:8f: 67:57:68:4e -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUc4kBbFhrFbc6UW6gIOtUkWGz/X4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNCM0ExREVFMDlFNDA3QkM2Q0UwOEVGQzdDRDJCQUY0 MUM3QkE0MjAeFw0yNDA5MzAxMDU1MDBaFw0yNTA5MjkxMTAwMDBaMDMxMTAvBgNV BAMTKDdBRDQ0RDQ1MERGRTk4NDJBNEI4QjhFRTc2MURFNjY1MzA2M0JFMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjD6pqmGwpknWC0Cb/JVhHNVCB H7kozgQfRuAs43AUKr9Ep5+TYO9riLLHpwHdBHqBX5KM4AfyRLtXo6JsR1S3GIoE EkrUc8k00VO6gTOUhthw0qj/+TrtPPNJcUkxd1K+VDjlGpBOZlcbLyadQPCWZdm6 MhQ6dzdHjQWLUlNX3jrC3kFcgTdXH64Ynk1h14xqKnuvlUy4BMJNy1oqZrWmszMK kDmjMuL0UMt1TmaAnJqFBSBMWl+tQsikBWHHqSut++OtCWgDUaRF/lABJ+kG8Dta BAfgKfl28Eo9ncHAlAy+ti9lyYELBzai3yc0CUC1IUyZhFAXe/UUVFGEmn69AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUetRNRQ3+mEKkuLjudh3mZTBjvgEwHwYDVR0j BBgwFoAUs7Oh3uCeQHvGzgjvx80rr0HHukIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZTRjNjFhYy03YjVjLTRkOTQtYTM2NS1jNDAyMWMxNzA5YzcvMC9CM0IzQTFERUUw OUU0MDdCQzZDRTA4RUZDN0NEMkJBRjQxQzdCQTQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjNCM0ExREVFMDlFNDA3QkM2Q0UwOEVGQzdDRDJCQUY0MUM3 QkE0Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlNGM2MWFjLTdiNWMtNGQ5NC1h MzY1LWM0MDIxYzE3MDljNy8wLzMxMzAzMzJlMzEzNDM3MmUzMTM2MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzczNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5OkMA0GCSqG SIb3DQEBCwUAA4IBAQBBmO4LN/4z0BWGj+aHFfsgT+pLTze8nIzl9vxPYafxvEsa EyjbJTUxjoyuuR1dC1m/EBJmMwFwKYwMtGCXlmDE6wXOE2wsejyW3oxAL8bjMVg3 Botpcpym+j5HadNguWU1xPi8cX13y3e/3STs9ZrAV8OwvzzSD7O+kmqOk6hA0sHn RbvBRr2CCCpJ/Y6zvJQT8FzOLcosgYBK3hla0ebeGZQERozOZG1I/j5uUGjmTkKN zJzobZOCOMyLQC60iQr/CjRkgJtPqC9TAadCGwNaJIxGtq7hp+PZN1isgr2Eqa7o LvXixlXdch6F2Iiqg0mGvsHWMYDxq89v6I9nV2hO -----END CERTIFICATE-----Generated at Wed Nov 20 23:10:17 2024 by rpki-client on console-fra.rpki-client.org