$ rpki-client -vvf repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/3130332e3134372e37372e302f32342d3234203d3e20313339393532.roa File: 3130332e3134372e37372e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: M0+dpqMVH/AhdXBusvMBEAeDeV1kbyWftufl+NAPJrA= Subject key identifier: B2:40:D5:C4:CB:DE:84:64:45:DA:07:B8:59:44:EC:2D:A1:A8:B6:F2 Certificate issuer: /CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Certificate serial: 52AA7633418319B9D88C7D4B6C1FD9B7FBA568C4 Authority key identifier: BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/3130332e3134372e37372e302f32342d3234203d3e20313339393532.roa Signing time: Tue 31 Oct 2023 03:00:00 +0000 ROA not before: Tue 31 Oct 2023 02:55:00 +0000 ROA not after: Tue 29 Oct 2024 03:00:00 +0000 asID: 139952 IP address blocks: 103.147.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:aa:76:33:41:83:19:b9:d8:8c:7d:4b:6c:1f:d9:b7:fb:a5:68:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Validity Not Before: Oct 31 02:55:00 2023 GMT Not After : Oct 29 03:00:00 2024 GMT Subject: CN=B240D5C4CBDE846445DA07B85944EC2DA1A8B6F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:73:72:a8:52:42:96:07:b3:1f:5e:10:0f:1c: 0a:6c:0f:67:e8:74:af:65:29:4e:19:ad:a4:95:26: 95:6d:9f:e9:50:c5:27:c3:04:e6:cf:bb:75:18:0b: 1b:f4:68:98:62:d3:0a:2f:b8:eb:f9:ef:bd:10:20: 7b:10:20:2a:7d:df:da:e1:da:8a:ed:5c:8b:72:c6: 0e:69:ab:c6:f5:17:db:53:48:b3:ab:99:a3:95:23: fe:79:6a:4e:6a:ac:b0:ef:ca:9a:ae:cd:ac:d5:31: 2b:cb:de:f1:5a:ee:24:a5:f2:f0:1b:e7:66:21:05: 0e:00:74:cd:50:2a:37:58:82:0a:c9:b0:ea:65:cb: ae:45:23:3c:be:59:84:db:b0:a9:f0:19:44:c7:50: 40:b3:a3:1b:a4:5d:9e:78:d7:7c:54:01:b5:15:79: 30:e4:62:7a:51:a1:61:bb:c7:f8:7c:48:e8:5c:f9: 8b:b4:ee:fa:58:38:e4:0a:09:8d:c7:fc:2b:6d:4f: 0c:0c:8e:f2:3b:07:15:9b:67:54:ba:9d:04:26:e2: 8f:76:6f:af:12:1e:2c:41:4c:92:8e:6e:46:d4:5c: 66:ef:30:c4:71:5d:5e:69:65:42:e7:0a:85:f8:94: 3d:93:f6:55:e8:75:01:fa:6a:60:37:f1:82:19:e7: 25:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:40:D5:C4:CB:DE:84:64:45:DA:07:B8:59:44:EC:2D:A1:A8:B6:F2 X509v3 Authority Key Identifier: keyid:BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/3130332e3134372e37372e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.77.0/24 Signature Algorithm: sha256WithRSAEncryption 57:5c:3f:3c:4c:41:ba:41:6a:f3:9a:49:96:52:14:31:d8:19: 51:5e:0e:90:e9:83:df:79:23:e9:1a:82:43:4e:9c:da:91:a3: d3:bf:c8:4f:99:0c:c1:ec:fb:d7:4a:05:7d:24:30:68:5e:c2: fb:8a:bd:4a:50:5e:1c:a5:a2:a6:2a:6a:cf:9a:01:84:fd:b5: 4d:34:b8:cb:19:56:90:35:69:44:33:bd:b1:1d:80:65:77:7d: a1:2f:4c:11:65:ad:35:55:25:65:3c:eb:49:c3:c5:e4:a8:17: 8a:f6:ba:e7:65:90:d5:3a:c0:e3:f4:13:c4:ad:b7:34:aa:1f: ed:ee:18:04:1e:68:7b:be:a5:dd:43:f1:fc:b5:f0:76:4d:51: ab:a1:58:b9:f9:c1:7b:79:0b:e8:ae:57:8d:07:71:53:21:da: 83:3b:ed:40:b1:35:0b:77:e5:8b:3c:ab:c2:d7:bd:0f:f1:9b: a6:f7:d2:65:4d:ef:99:e2:4f:5f:a7:a0:f9:bb:7c:4c:91:eb: 8c:3d:66:33:5d:1e:ed:87:84:ac:e9:fd:dd:76:10:c7:e8:9c: f9:9d:86:8f:c4:19:c7:ab:9c:e0:3a:13:84:5a:7e:a6:1c:e4: e7:ef:e7:60:b5:0a:64:ec:b6:79:53:e0:0a:76:79:51:dc:08: b1:51:8e:b4 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUUqp2M0GDGbnYjH1LbB/Zt/ulaMQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNB QTM3QTNBMzAeFw0yMzEwMzEwMjU1MDBaFw0yNDEwMjkwMzAwMDBaMDMxMTAvBgNV BAMTKEIyNDBENUM0Q0JERTg0NjQ0NURBMDdCODU5NDRFQzJEQTFBOEI2RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsc3KoUkKWB7MfXhAPHApsD2fo dK9lKU4ZraSVJpVtn+lQxSfDBObPu3UYCxv0aJhi0wovuOv5770QIHsQICp939rh 2ortXItyxg5pq8b1F9tTSLOrmaOVI/55ak5qrLDvypquzazVMSvL3vFa7iSl8vAb 52YhBQ4AdM1QKjdYggrJsOply65FIzy+WYTbsKnwGUTHUECzoxukXZ5413xUAbUV eTDkYnpRoWG7x/h8SOhc+Yu07vpYOOQKCY3H/CttTwwMjvI7BxWbZ1S6nQQm4o92 b68SHixBTJKObkbUXGbvMMRxXV5pZULnCoX4lD2T9lXodQH6amA38YIZ5yVhAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUskDVxMvehGRF2ge4WUTsLaGotvIwHwYDVR0j BBgwFoAUvN9tj1ZwJX+FKRTofVUpg6o3o6MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NzdiMDFjZi1iMWM5LTQ1MGYtODU1MS00ZGNiNGNiZDQyNjIvMC9CQ0RGNkQ4RjU2 NzAyNTdGODUyOTE0RTg3RDU1Mjk4M0FBMzdBM0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNBQTM3 QTNBMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3N2IwMWNmLWIxYzktNDUwZi04 NTUxLTRkY2I0Y2JkNDI2Mi8wLzMxMzAzMzJlMzEzNDM3MmUzNzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5NNMA0GCSqG SIb3DQEBCwUAA4IBAQBXXD88TEG6QWrzmkmWUhQx2BlRXg6Q6YPfeSPpGoJDTpza kaPTv8hPmQzB7PvXSgV9JDBoXsL7ir1KUF4cpaKmKmrPmgGE/bVNNLjLGVaQNWlE M72xHYBld32hL0wRZa01VSVlPOtJw8XkqBeK9rrnZZDVOsDj9BPErbc0qh/t7hgE Hmh7vqXdQ/H8tfB2TVGroVi5+cF7eQvorleNB3FTIdqDO+1AsTULd+WLPKvC170P 8Zum99JlTe+Z4k9fp6D5u3xMkeuMPWYzXR7th4Ss6f3ddhDH6Jz5nYaPxBnHq5zg OhOEWn6mHOTn7+dgtQpk7LZ5U+AKdnlR3AixUY60 -----END CERTIFICATE-----Generated at Sat Jun 1 11:46:15 2024 by rpki-client on console-ams.rpki-client.org