$ rpki-client -vvf repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/3130332e3134372e37362e302f32332d3233203d3e20313339393532.roa File: 3130332e3134372e37362e302f32332d3233203d3e20313339393532.roa (raw, json) Hash identifier: wXlkmxwi7/34ddrk854GfkHymHTZJQyn7AeLJRM2mj8= Subject key identifier: 5A:CE:95:F8:32:A6:95:38:02:A5:C1:5C:BD:5D:27:52:68:DE:08:F7 Certificate issuer: /CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Certificate serial: 59A81B016DA5C5E7B63634DA5D97AF312239854B Authority key identifier: BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/3130332e3134372e37362e302f32332d3233203d3e20313339393532.roa Signing time: Tue 01 Oct 2024 04:01:26 +0000 ROA not before: Tue 01 Oct 2024 03:56:26 +0000 ROA not after: Tue 30 Sep 2025 04:01:26 +0000 asID: 139952 IP address blocks: 103.147.76.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 17:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:a8:1b:01:6d:a5:c5:e7:b6:36:34:da:5d:97:af:31:22:39:85:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Validity Not Before: Oct 1 03:56:26 2024 GMT Not After : Sep 30 04:01:26 2025 GMT Subject: CN=5ACE95F832A6953802A5C15CBD5D275268DE08F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:7d:04:87:86:b8:a9:48:b1:e0:d7:b4:69:a2: d4:1e:67:e0:73:ad:8e:54:9e:ae:ed:01:f4:78:65: 54:5f:7a:d9:83:c4:e6:d8:a2:aa:28:58:f2:c4:8b: fc:93:4a:8a:a9:b4:1d:8e:11:10:49:35:db:55:05: 7b:6e:6b:7d:63:75:41:a6:03:06:46:5a:8c:ff:b3: 46:bc:ab:25:92:aa:18:8a:9e:18:dd:b1:e5:a0:92: 3f:6e:e6:c9:20:6f:80:12:c9:6c:fa:32:61:33:f1: 96:2f:7e:ef:eb:92:66:25:86:fe:65:06:af:ae:b9: f3:6b:1b:6d:f5:0f:fa:18:b7:cb:3d:24:b5:ef:4a: 17:c2:02:fe:84:a4:e4:eb:f9:34:90:7d:63:ce:7b: 2f:6d:f2:8a:fc:10:f2:6d:a3:5f:42:09:31:b2:d4: 5c:ce:cb:90:2c:d4:ed:68:d5:ac:ce:66:a1:8d:b5: aa:6a:68:9f:f3:80:d9:dd:ef:34:73:bc:9d:98:fa: 5a:f7:7b:a9:6a:ae:c4:f4:f5:47:6f:b5:f6:df:6f: 9d:75:35:73:b3:56:3f:c6:d4:80:dc:fb:25:2d:30: 8f:c6:85:44:7c:07:a2:e3:77:ca:bc:b9:97:93:8f: de:4a:f1:32:a3:f9:57:ef:02:8a:be:aa:41:f2:bf: 5c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:CE:95:F8:32:A6:95:38:02:A5:C1:5C:BD:5D:27:52:68:DE:08:F7 X509v3 Authority Key Identifier: keyid:BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/3130332e3134372e37362e302f32332d3233203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.76.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:d4:4f:26:2a:9b:9d:71:7b:b2:1c:3c:9d:90:c3:da:50:34: b5:b0:ca:10:98:57:c0:59:96:50:f2:15:bf:bd:e4:63:10:2a: 18:41:04:24:2d:1e:34:82:d0:28:48:85:cf:54:7a:7d:b2:4a: da:3a:85:f6:55:a4:f9:cd:81:fa:cc:40:29:9f:d9:bb:b3:43: bb:69:ae:e1:ca:b6:98:fa:93:e2:35:2c:fc:11:7a:f3:78:c6: 9d:54:11:fc:00:5e:f5:6b:9c:bf:e2:e6:c6:4a:b4:fe:18:ab: 23:89:e2:63:bf:13:c9:d1:2f:f5:53:6d:ab:30:bd:fe:08:7d: ea:ad:87:78:2f:91:91:0e:d8:38:7d:79:ed:d7:59:00:df:06: 85:21:eb:e6:11:91:c9:3b:97:fd:7b:ce:00:50:4a:fa:76:e8: e1:53:49:0d:6e:e1:42:b1:28:e7:35:9d:fe:7c:3a:47:ae:8a: da:16:3e:e5:4d:f5:35:98:a4:70:b7:62:e8:d0:c1:a9:c1:20: e3:1d:ab:e2:7f:ef:db:3b:28:e4:97:95:26:c6:8a:81:77:82: b8:6c:2b:da:e6:f1:2e:6a:e3:6b:13:57:8e:6e:db:c7:a0:2b: 27:c1:e1:9a:70:26:8b:14:b2:16:83:ad:89:af:35:d9:bc:8c: 1f:64:5f:71 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUWagbAW2lxee2NjTaXZevMSI5hUswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNB QTM3QTNBMzAeFw0yNDEwMDEwMzU2MjZaFw0yNTA5MzAwNDAxMjZaMDMxMTAvBgNV BAMTKDVBQ0U5NUY4MzJBNjk1MzgwMkE1QzE1Q0JENUQyNzUyNjhERTA4RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCffQSHhripSLHg17RpotQeZ+Bz rY5Unq7tAfR4ZVRfetmDxObYoqooWPLEi/yTSoqptB2OERBJNdtVBXtua31jdUGm AwZGWoz/s0a8qyWSqhiKnhjdseWgkj9u5skgb4ASyWz6MmEz8ZYvfu/rkmYlhv5l Bq+uufNrG231D/oYt8s9JLXvShfCAv6EpOTr+TSQfWPOey9t8or8EPJto19CCTGy 1FzOy5As1O1o1azOZqGNtapqaJ/zgNnd7zRzvJ2Y+lr3e6lqrsT09Udvtfbfb511 NXOzVj/G1IDc+yUtMI/GhUR8B6Ljd8q8uZeTj95K8TKj+VfvAoq+qkHyv1xhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUWs6V+DKmlTgCpcFcvV0nUmjeCPcwHwYDVR0j BBgwFoAUvN9tj1ZwJX+FKRTofVUpg6o3o6MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NzdiMDFjZi1iMWM5LTQ1MGYtODU1MS00ZGNiNGNiZDQyNjIvMC9CQ0RGNkQ4RjU2 NzAyNTdGODUyOTE0RTg3RDU1Mjk4M0FBMzdBM0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNBQTM3 QTNBMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3N2IwMWNmLWIxYzktNDUwZi04 NTUxLTRkY2I0Y2JkNDI2Mi8wLzMxMzAzMzJlMzEzNDM3MmUzNzM2MmUzMDJmMzIz MzJkMzIzMzIwM2QzZTIwMzEzMzM5MzkzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5NMMA0GCSqG SIb3DQEBCwUAA4IBAQAf1E8mKpudcXuyHDydkMPaUDS1sMoQmFfAWZZQ8hW/veRj ECoYQQQkLR40gtAoSIXPVHp9skraOoX2VaT5zYH6zEApn9m7s0O7aa7hyraY+pPi NSz8EXrzeMadVBH8AF71a5y/4ubGSrT+GKsjieJjvxPJ0S/1U22rML3+CH3qrYd4 L5GRDtg4fXnt11kA3waFIevmEZHJO5f9e84AUEr6dujhU0kNbuFCsSjnNZ3+fDpH roraFj7lTfU1mKRwt2Lo0MGpwSDjHavif+/bOyjkl5UmxoqBd4K4bCva5vEuauNr E1eObtvHoCsnweGacCaLFLIWg62JrzXZvIwfZF9x -----END CERTIFICATE-----Generated at Wed Nov 20 15:56:08 2024 by rpki-client on console-ams.rpki-client.org