$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234352e302f32342d3234203d3e20313439373436.roa File: 3130332e31372e3234352e302f32342d3234203d3e20313439373436.roa (raw, json) Hash identifier: J59QE5miS7Q09b3DmdG9phLeYWnJ8p568DWwknnw+ZY= Subject key identifier: 1A:FE:3A:91:BD:65:90:2F:69:A5:D6:15:56:E4:3D:EB:B5:11:E7:63 Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 323B79BF8A942D0372F28DD3FCDBF2503AA1EE4F Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234352e302f32342d3234203d3e20313439373436.roa Signing time: Sat 20 Jan 2024 17:07:48 +0000 ROA not before: Sat 20 Jan 2024 17:02:48 +0000 ROA not after: Sat 18 Jan 2025 17:07:48 +0000 asID: 149746 IP address blocks: 103.17.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:10:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:3b:79:bf:8a:94:2d:03:72:f2:8d:d3:fc:db:f2:50:3a:a1:ee:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jan 20 17:02:48 2024 GMT Not After : Jan 18 17:07:48 2025 GMT Subject: CN=1AFE3A91BD65902F69A5D61556E43DEBB511E763 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:17:da:f4:eb:42:9b:f2:f0:a8:9a:77:75:1a: 1b:c2:4c:e3:2d:58:e2:ca:48:f2:4b:3d:20:59:49: a6:bf:ba:4d:c1:e8:8a:2a:b9:f6:71:2a:aa:03:d0: 7d:04:da:13:20:9f:b6:ff:b1:84:4f:21:73:12:f8: 76:10:c5:64:5c:03:e3:ab:af:e5:a9:11:b1:9e:8f: 1a:89:1b:4b:1f:46:51:a1:41:32:a5:70:ec:70:22: c7:98:db:7d:62:07:e8:ed:b9:56:11:c6:a8:56:f4: 15:59:c5:66:50:07:6b:fa:60:00:77:88:59:57:9b: ca:d0:c8:d5:56:3b:48:7e:03:45:1c:ad:b7:a0:4a: de:6d:3d:d3:cc:32:5b:cf:58:ce:42:77:1f:2b:c0: b8:54:40:94:b1:3e:36:07:52:08:90:20:97:16:63: cf:84:3b:ef:04:39:7e:22:79:3e:d6:b3:ba:9b:f3: e6:6a:df:25:c5:3c:d9:5b:58:6d:e4:39:52:55:b0: 3c:31:7e:e9:af:ec:1f:c2:8f:43:cd:2a:65:9d:73: c4:42:c2:09:c6:53:fd:e4:5b:e7:b3:63:e1:c4:ee: 2a:20:b3:4a:9d:a0:13:41:9b:2e:c6:6b:53:92:72: 8f:69:e5:99:da:d3:3c:2c:1e:8e:6c:64:01:7e:b1: 9e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:FE:3A:91:BD:65:90:2F:69:A5:D6:15:56:E4:3D:EB:B5:11:E7:63 X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234352e302f32342d3234203d3e20313439373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.17.245.0/24 Signature Algorithm: sha256WithRSAEncryption 22:ba:62:98:5b:28:44:63:46:06:d3:22:31:ef:0c:26:d5:e3: fa:8b:0a:f8:51:d3:b1:ec:3d:69:f5:a0:48:64:4e:08:85:86: 54:32:be:15:d3:7f:25:7e:b6:ca:e0:35:4f:a2:b5:d0:26:2b: 0b:09:12:f1:d5:27:73:72:c1:4d:9c:92:eb:c3:64:86:49:10: 40:a8:84:d8:18:17:e7:79:2c:1e:43:e0:de:3d:8b:c7:c7:6f: 3e:f6:50:c9:18:97:4a:bf:50:81:1f:4f:9c:b7:0f:27:1b:11: 1d:6b:21:8a:47:07:70:10:85:9c:1d:a1:33:74:19:f8:80:36: 71:28:d2:ad:6b:33:65:b6:b7:27:f6:6f:87:72:47:0c:17:fa: 62:77:60:8c:d3:31:d6:51:2d:fb:04:4e:4e:77:48:9c:73:86: 9d:6f:3f:f4:b6:d2:49:4d:0e:03:30:f2:16:12:65:c4:f8:41: 2c:10:97:9d:67:e6:35:98:f0:c3:d4:71:c4:32:49:16:a8:49: 88:bf:af:8d:8a:86:c3:85:4d:02:15:0a:16:7d:75:ba:ba:ba: e8:10:1f:c3:d3:87:2b:8b:cd:ac:17:e5:a2:1c:d3:9f:23:94: 6b:42:b8:5f:c1:0c:3e:b3:57:b8:9d:8b:21:7e:d0:b7:d2:73: 5f:c5:59:38 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUMjt5v4qULQNy8o3T/NvyUDqh7k8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNDAxMjAxNzAyNDhaFw0yNTAxMTgxNzA3NDhaMDMxMTAvBgNV BAMTKDFBRkUzQTkxQkQ2NTkwMkY2OUE1RDYxNTU2RTQzREVCQjUxMUU3NjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBF9r060Kb8vComnd1GhvCTOMt WOLKSPJLPSBZSaa/uk3B6IoqufZxKqoD0H0E2hMgn7b/sYRPIXMS+HYQxWRcA+Or r+WpEbGejxqJG0sfRlGhQTKlcOxwIseY231iB+jtuVYRxqhW9BVZxWZQB2v6YAB3 iFlXm8rQyNVWO0h+A0UcrbegSt5tPdPMMlvPWM5Cdx8rwLhUQJSxPjYHUgiQIJcW Y8+EO+8EOX4ieT7Ws7qb8+Zq3yXFPNlbWG3kOVJVsDwxfumv7B/Cj0PNKmWdc8RC wgnGU/3kW+ezY+HE7iogs0qdoBNBmy7Ga1OSco9p5Zna0zwsHo5sZAF+sZ4XAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUGv46kb1lkC9ppdYVVuQ967UR52MwHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzAzMzJlMzEzNzJlMzIzNDM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDM5MzczNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZxH1MA0GCSqG SIb3DQEBCwUAA4IBAQAiumKYWyhEY0YG0yIx7wwm1eP6iwr4UdOx7D1p9aBIZE4I hYZUMr4V038lfrbK4DVPorXQJisLCRLx1SdzcsFNnJLrw2SGSRBAqITYGBfneSwe Q+DePYvHx28+9lDJGJdKv1CBH0+ctw8nGxEdayGKRwdwEIWcHaEzdBn4gDZxKNKt azNltrcn9m+HckcMF/pid2CM0zHWUS37BE5Od0icc4adbz/0ttJJTQ4DMPIWEmXE +EEsEJedZ+Y1mPDD1HHEMkkWqEmIv6+NiobDhU0CFQoWfXW6urroEB/D04cri82s F+WiHNOfI5RrQrhfwQw+s1e4nYshftC30nNfxVk4 -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:40 2024 by rpki-client on console-fra.rpki-client.org