$ rpki-client -vvf repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/3130332e3134372e37372e302f32342d3234203d3e20313339393532.roa File: 3130332e3134372e37372e302f32342d3234203d3e20313339393532.roa (raw, json) Hash identifier: 0N5j+ZERhxA6Ar8dT9/oyVhTL5hECc6nE7wFownHGuo= Subject key identifier: 48:4A:4C:F7:AA:26:30:E8:AD:A3:AB:E0:2D:03:18:41:DB:F3:E5:57 Certificate issuer: /CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Certificate serial: 3DB1ED7DB84B9F305A40F844123727CE850FB2C0 Authority key identifier: BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/3130332e3134372e37372e302f32342d3234203d3e20313339393532.roa Signing time: Tue 01 Oct 2024 04:01:27 +0000 ROA not before: Tue 01 Oct 2024 03:56:27 +0000 ROA not after: Tue 30 Sep 2025 04:01:27 +0000 asID: 139952 IP address blocks: 103.147.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 17:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:b1:ed:7d:b8:4b:9f:30:5a:40:f8:44:12:37:27:ce:85:0f:b2:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Validity Not Before: Oct 1 03:56:27 2024 GMT Not After : Sep 30 04:01:27 2025 GMT Subject: CN=484A4CF7AA2630E8ADA3ABE02D031841DBF3E557 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bd:ed:6a:66:3a:31:70:a4:f6:3e:17:12:45: ea:cc:2e:d7:3a:a9:73:f8:e3:76:a1:e1:4c:f8:a1: 58:2c:b8:2f:50:1f:fd:89:a9:d2:bc:67:19:36:17: ce:93:9e:c3:1c:5b:58:9a:08:af:e2:60:86:6e:89: d7:c8:a9:6d:f9:f9:80:c2:6a:f2:4d:dd:ed:ca:bd: e3:c8:d9:90:ff:39:56:97:23:83:6c:f7:45:5b:6b: e3:59:fb:70:ce:62:88:f9:f4:04:be:4b:a9:77:17: 66:4b:c7:75:b5:ca:48:f1:72:c3:70:ce:0f:00:b6: b0:a8:23:21:ee:54:6c:9f:98:77:bb:4d:c5:77:8a: 7e:e4:17:3e:44:7e:fc:21:7c:1d:d9:a5:5c:9f:53: a2:97:fb:19:76:1f:d7:dc:22:0f:dc:b8:2c:f3:d1: 75:00:36:49:6e:e8:f3:49:d1:17:7e:10:1c:17:4d: e4:ff:67:7e:cf:f7:25:b9:26:49:57:f1:4b:27:c1: d2:5b:e2:9f:27:fc:a2:88:e1:33:47:5e:fe:d6:15: 01:ca:f4:b8:ad:9c:55:b5:a7:12:73:42:d8:e9:8c: a6:d8:06:06:b8:81:bb:d0:63:87:fa:4c:51:4c:78: 33:9a:eb:88:b4:30:e6:28:0c:8e:58:2c:8e:b7:01: 33:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:4A:4C:F7:AA:26:30:E8:AD:A3:AB:E0:2D:03:18:41:DB:F3:E5:57 X509v3 Authority Key Identifier: keyid:BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/3130332e3134372e37372e302f32342d3234203d3e20313339393532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.77.0/24 Signature Algorithm: sha256WithRSAEncryption 05:bb:fa:52:da:ce:96:f1:47:33:53:5f:73:3d:aa:14:8b:a5: 5e:4f:27:d2:9a:97:10:54:46:d5:87:44:0f:0b:ed:cd:1f:17: b8:3f:9c:d1:6e:6b:55:e4:02:b4:99:50:32:e2:bb:4f:1b:df: 16:51:0c:13:c6:64:10:4e:1d:62:a9:c2:02:cc:16:27:a0:8a: 2d:6d:23:57:ea:92:ad:42:57:93:62:b7:4a:5c:25:dd:72:1a: 2c:a7:da:63:b6:55:9b:91:2e:0b:e5:58:8d:7e:32:16:93:51: a4:22:77:8f:f5:a3:87:60:2d:c6:93:d1:8b:ee:cc:63:07:55: 14:dc:02:e1:64:7f:b8:bc:aa:8d:52:55:4e:87:68:01:38:02: 96:8e:65:80:fd:3c:bb:5e:31:3e:03:d8:31:6d:47:ca:51:78: 75:df:29:e0:af:5d:3a:87:e9:26:c0:73:1e:b1:e9:1a:db:fb: 6c:7a:04:0b:1d:c2:c6:e3:60:84:cc:32:2a:19:85:1d:c0:d4: b1:4f:82:14:b3:18:3c:1e:19:04:3f:1c:e8:3c:2f:c7:73:38: 0d:96:17:cf:c7:f8:8f:a2:4d:1d:46:d2:79:1b:28:52:d4:b1: bd:0f:40:4e:f6:0c:c9:a3:9d:ca:5e:95:68:b1:a4:63:dd:c7: 6c:85:3e:2d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUPbHtfbhLnzBaQPhEEjcnzoUPssAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNB QTM3QTNBMzAeFw0yNDEwMDEwMzU2MjdaFw0yNTA5MzAwNDAxMjdaMDMxMTAvBgNV BAMTKDQ4NEE0Q0Y3QUEyNjMwRThBREEzQUJFMDJEMDMxODQxREJGM0U1NTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2ve1qZjoxcKT2PhcSRerMLtc6 qXP443ah4Uz4oVgsuC9QH/2JqdK8Zxk2F86TnsMcW1iaCK/iYIZuidfIqW35+YDC avJN3e3KvePI2ZD/OVaXI4Ns90Vba+NZ+3DOYoj59AS+S6l3F2ZLx3W1ykjxcsNw zg8AtrCoIyHuVGyfmHe7TcV3in7kFz5EfvwhfB3ZpVyfU6KX+xl2H9fcIg/cuCzz 0XUANklu6PNJ0Rd+EBwXTeT/Z37P9yW5JklX8UsnwdJb4p8n/KKI4TNHXv7WFQHK 9LitnFW1pxJzQtjpjKbYBga4gbvQY4f6TFFMeDOa64i0MOYoDI5YLI63ATMVAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUSEpM96omMOito6vgLQMYQdvz5VcwHwYDVR0j BBgwFoAUvN9tj1ZwJX+FKRTofVUpg6o3o6MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NzdiMDFjZi1iMWM5LTQ1MGYtODU1MS00ZGNiNGNiZDQyNjIvMC9CQ0RGNkQ4RjU2 NzAyNTdGODUyOTE0RTg3RDU1Mjk4M0FBMzdBM0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNBQTM3 QTNBMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3N2IwMWNmLWIxYzktNDUwZi04 NTUxLTRkY2I0Y2JkNDI2Mi8wLzMxMzAzMzJlMzEzNDM3MmUzNzM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzkzNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5NNMA0GCSqG SIb3DQEBCwUAA4IBAQAFu/pS2s6W8UczU19zPaoUi6VeTyfSmpcQVEbVh0QPC+3N Hxe4P5zRbmtV5AK0mVAy4rtPG98WUQwTxmQQTh1iqcICzBYnoIotbSNX6pKtQleT YrdKXCXdchosp9pjtlWbkS4L5ViNfjIWk1GkIneP9aOHYC3Gk9GL7sxjB1UU3ALh ZH+4vKqNUlVOh2gBOAKWjmWA/Ty7XjE+A9gxbUfKUXh13yngr106h+kmwHMeseka 2/tsegQLHcLG42CEzDIqGYUdwNSxT4IUsxg8HhkEPxzoPC/HczgNlhfPx/iPok0d RtJ5GyhS1LG9D0BO9gzJo53KXpVosaRj3cdshT4t -----END CERTIFICATE-----Generated at Wed Nov 20 16:08:09 2024 by rpki-client on console-fra.rpki-client.org