$ rpki-client -vvf repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/3130332e3134372e3234372e302f32342d3234203d3e20313339393732.roa File: 3130332e3134372e3234372e302f32342d3234203d3e20313339393732.roa (raw, json) Hash identifier: fKh3U2WGihSnjBjskCr/A8r5tehkzUOR/0W5SqS1toE= Subject key identifier: AA:54:6B:CD:2D:29:C8:D9:7A:B9:36:6C:3A:7D:68:BE:61:AC:BD:40 Certificate issuer: /CN=6969B3009665224541D322068C9E3444C78F90F9 Certificate serial: 27674539E56610933878F9D731B30A186654A397 Authority key identifier: 69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/3130332e3134372e3234372e302f32342d3234203d3e20313339393732.roa Signing time: Sun 06 Oct 2024 09:00:00 +0000 ROA not before: Sun 06 Oct 2024 08:55:00 +0000 ROA not after: Sun 05 Oct 2025 09:00:00 +0000 asID: 139972 IP address blocks: 103.147.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:67:45:39:e5:66:10:93:38:78:f9:d7:31:b3:0a:18:66:54:a3:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6969B3009665224541D322068C9E3444C78F90F9 Validity Not Before: Oct 6 08:55:00 2024 GMT Not After : Oct 5 09:00:00 2025 GMT Subject: CN=AA546BCD2D29C8D97AB9366C3A7D68BE61ACBD40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d3:1e:6b:d7:69:33:64:56:e4:50:6d:08:7b: 44:62:d2:bb:c0:b5:d3:44:a9:8a:cd:c4:23:65:19: 8c:5e:9b:3e:34:ca:a8:0a:9f:41:69:95:84:42:14: 6f:e6:07:05:b1:57:42:25:49:db:bf:8c:fe:ab:e5: f3:1f:e6:cb:f6:79:b0:70:21:57:cf:27:14:e9:18: 86:32:db:a3:7e:dd:4e:e2:8d:df:78:03:22:29:57: 77:4e:5e:49:57:7f:80:69:c0:d3:a9:bc:c5:83:2f: 16:ad:85:cb:85:8e:97:de:73:ec:3d:37:7e:69:e1: c0:b7:73:73:63:ed:92:e2:f1:a9:c3:b5:24:ee:2b: f4:9f:49:37:7d:b1:34:bf:ba:94:fb:c9:16:c2:f2: 60:36:f3:9e:c2:be:45:f5:13:89:24:0e:13:fc:94: 3b:a7:68:15:e1:f2:8d:bc:fa:4d:9d:a7:52:85:ca: b1:a8:c8:be:44:ff:1f:f0:ef:28:3a:25:5e:8e:36: a5:2b:fc:b3:4d:93:3b:9f:18:42:97:06:7b:c1:40: 58:e0:92:06:64:1e:66:74:ae:80:95:c4:78:8c:d9: fb:58:c7:63:6f:b5:61:6d:81:24:1b:7b:d4:fa:0d: 12:24:43:a4:1f:0d:4f:41:b6:0b:5f:b9:9a:91:03: 8b:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:54:6B:CD:2D:29:C8:D9:7A:B9:36:6C:3A:7D:68:BE:61:AC:BD:40 X509v3 Authority Key Identifier: keyid:69:69:B3:00:96:65:22:45:41:D3:22:06:8C:9E:34:44:C7:8F:90:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/6969B3009665224541D322068C9E3444C78F90F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6969B3009665224541D322068C9E3444C78F90F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/99eebf7c-fe38-46a9-8311-e053fca50dfd/0/3130332e3134372e3234372e302f32342d3234203d3e20313339393732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.247.0/24 Signature Algorithm: sha256WithRSAEncryption b7:b7:8c:d9:46:ab:e9:cf:0e:2c:87:af:c3:c7:05:03:fa:bf: 75:7e:4b:2e:61:55:bb:6f:a9:9f:86:97:0e:af:ba:53:b8:75: 27:7c:0c:67:d8:3b:32:f9:6f:91:b4:64:ac:76:31:60:06:8d: c7:83:df:55:5c:2c:3b:d4:bf:4c:f4:a0:14:9c:db:fd:1b:1f: 6f:5b:dc:12:d0:22:ae:aa:c9:d7:69:23:0f:3e:70:95:5d:a8: 7d:63:0a:cf:ab:44:74:e4:01:0d:60:ee:24:2a:87:e3:bf:56: 4f:16:82:49:d1:a2:76:e9:c2:c1:23:da:91:94:13:3b:3f:41: 43:98:74:a1:72:ef:e4:f2:6f:14:88:a6:da:e3:73:9e:4e:06: ad:59:d9:26:cc:0f:74:cf:0c:8b:99:8d:e1:58:77:2d:71:63: 02:ee:b2:42:04:1c:a1:c9:e4:b5:af:65:ac:97:13:b5:7c:d4: fc:d7:c8:c7:8e:e5:3e:51:56:06:6d:f9:56:81:58:b2:ec:d3: 7d:d5:fa:fa:61:3f:49:75:17:3f:7f:52:32:bc:9b:66:65:c1: 9b:e6:1f:da:d6:f0:22:00:d2:92:3a:04:0a:fc:47:68:ec:d9: cc:ee:f3:da:1c:af:b1:09:15:7b:09:a6:57:aa:22:8a:d9:6c: 45:a6:9b:34 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUJ2dFOeVmEJM4ePnXMbMKGGZUo5cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRD NzhGOTBGOTAeFw0yNDEwMDYwODU1MDBaFw0yNTEwMDUwOTAwMDBaMDMxMTAvBgNV BAMTKEFBNTQ2QkNEMkQyOUM4RDk3QUI5MzY2QzNBN0Q2OEJFNjFBQ0JENDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm0x5r12kzZFbkUG0Ie0Ri0rvA tdNEqYrNxCNlGYxemz40yqgKn0FplYRCFG/mBwWxV0IlSdu/jP6r5fMf5sv2ebBw IVfPJxTpGIYy26N+3U7ijd94AyIpV3dOXklXf4BpwNOpvMWDLxathcuFjpfec+w9 N35p4cC3c3Nj7ZLi8anDtSTuK/SfSTd9sTS/upT7yRbC8mA2857CvkX1E4kkDhP8 lDunaBXh8o28+k2dp1KFyrGoyL5E/x/w7yg6JV6ONqUr/LNNkzufGEKXBnvBQFjg kgZkHmZ0roCVxHiM2ftYx2NvtWFtgSQbe9T6DRIkQ6QfDU9BtgtfuZqRA4v7AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUqlRrzS0pyNl6uTZsOn1ovmGsvUAwHwYDVR0j BBgwFoAUaWmzAJZlIkVB0yIGjJ40RMePkPkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 OWVlYmY3Yy1mZTM4LTQ2YTktODMxMS1lMDUzZmNhNTBkZmQvMC82OTY5QjMwMDk2 NjUyMjQ1NDFEMzIyMDY4QzlFMzQ0NEM3OEY5MEY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjk2OUIzMDA5NjY1MjI0NTQxRDMyMjA2OEM5RTM0NDRDNzhG OTBGOS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk5ZWViZjdjLWZlMzgtNDZhOS04 MzExLWUwNTNmY2E1MGRmZC8wLzMxMzAzMzJlMzEzNDM3MmUzMjM0MzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM3MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnk/cwDQYJ KoZIhvcNAQELBQADggEBALe3jNlGq+nPDiyHr8PHBQP6v3V+Sy5hVbtvqZ+Glw6v ulO4dSd8DGfYOzL5b5G0ZKx2MWAGjceD31VcLDvUv0z0oBSc2/0bH29b3BLQIq6q yddpIw8+cJVdqH1jCs+rRHTkAQ1g7iQqh+O/Vk8WgknRonbpwsEj2pGUEzs/QUOY dKFy7+TybxSIptrjc55OBq1Z2SbMD3TPDIuZjeFYdy1xYwLuskIEHKHJ5LWvZayX E7V81PzXyMeO5T5RVgZt+VaBWLLs033V+vphP0l1Fz9/UjK8m2ZlwZvmH9rW8CIA 0pI6BAr8R2js2czu89ocr7EJFXsJpleqIorZbEWmmzQ= -----END CERTIFICATE-----Generated at Fri Nov 22 19:43:33 2024 by rpki-client on console-ams.rpki-client.org