$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234362e302f32332d3234203d3e20313439373436.roa File: 3130332e31372e3234362e302f32332d3234203d3e20313439373436.roa (raw, json) Hash identifier: 7O6Dd1pVn2PAgO/JC+6eZtBKSmbupFrMdDgAwEstd0U= Subject key identifier: 53:E7:DD:91:70:E2:9E:21:B9:73:01:3C:77:F2:62:70:7B:D9:61:2D Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 2F4F289E945465A199795C4D5BB5A3E8C91BA699 Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234362e302f32332d3234203d3e20313439373436.roa Signing time: Sat 20 Jan 2024 17:07:20 +0000 ROA not before: Sat 20 Jan 2024 17:02:20 +0000 ROA not after: Sat 18 Jan 2025 17:07:20 +0000 asID: 149746 IP address blocks: 103.17.246.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:10:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:4f:28:9e:94:54:65:a1:99:79:5c:4d:5b:b5:a3:e8:c9:1b:a6:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jan 20 17:02:20 2024 GMT Not After : Jan 18 17:07:20 2025 GMT Subject: CN=53E7DD9170E29E21B973013C77F262707BD9612D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:41:7e:a7:05:31:27:22:af:17:3e:c3:78:e5: 4a:85:2b:c9:08:67:10:15:49:44:03:8e:4b:c5:27: 9b:ff:e2:ed:c4:84:02:2e:f1:ff:5c:2a:3f:7b:f2: 68:96:3c:45:12:f4:bb:b5:bb:c8:ed:b1:3f:0e:76: a5:2d:f4:78:90:16:74:c5:39:f5:f9:7e:91:c8:4c: 18:55:4b:d9:6f:3e:6c:da:87:eb:17:8b:92:17:77: 5a:85:a3:4c:e7:d8:a5:91:5c:3e:38:c1:a5:30:2a: 32:6a:73:fb:7c:8a:f3:11:41:eb:6e:96:e0:f6:6e: d5:ef:2b:d1:75:9d:5d:96:b4:b4:3e:24:5f:30:81: ac:06:f7:75:bd:df:bf:69:c0:32:ef:73:1b:ca:a2: 9b:e3:38:48:b5:43:1a:ff:d5:a8:b8:fe:d3:3e:f7: 9f:82:8d:2b:93:ae:4d:90:9c:67:2f:50:b7:0a:f1: 4a:44:ea:1a:82:d1:7c:9f:fb:35:b1:62:60:90:c0: ae:99:f2:b6:ed:3b:46:fc:6f:9e:f3:19:27:43:20: c1:a5:58:7d:50:39:c4:b8:1d:c8:04:66:1c:ca:d9: f0:5a:7e:02:db:57:68:ba:3e:d7:1b:5e:19:f8:8e: c0:2f:15:17:58:0a:e6:ad:84:8a:f3:33:65:42:34: 31:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:E7:DD:91:70:E2:9E:21:B9:73:01:3C:77:F2:62:70:7B:D9:61:2D X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e31372e3234362e302f32332d3234203d3e20313439373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.17.246.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:62:77:d6:e4:9f:76:fe:ec:c1:dc:fb:d2:48:71:ae:78:39: af:bb:da:41:b7:25:d6:c7:fe:9f:1e:86:78:b4:55:df:9e:aa: 94:63:30:73:a5:08:f3:01:86:48:60:dd:7e:ae:da:e9:d1:3e: e8:92:2b:b0:70:2f:74:23:f7:ac:1a:df:b0:ca:f0:57:1a:f4: de:cd:1e:29:fa:0d:b1:fa:c4:25:c1:3c:06:2e:46:5e:98:59: dd:94:ce:cb:79:7a:72:88:08:7b:9d:18:b6:44:dc:a7:1e:78: 6e:cd:78:0a:e3:f6:bc:3b:13:83:6d:22:5f:ee:02:b6:95:ea: 2b:e2:c5:2d:af:10:54:71:27:73:49:82:ad:b2:0b:86:26:b7: ca:7b:57:70:8e:20:d1:c3:0d:9f:f8:d4:87:fe:e9:c9:04:04: 81:81:91:89:24:d7:58:5e:fb:da:1a:5b:63:ab:4f:26:de:59: 77:bd:98:8c:5b:e5:be:d8:c0:72:87:72:b5:20:b3:e7:a4:8c: 97:a6:6e:00:f9:67:10:75:c4:53:35:3b:40:09:2e:78:4d:91: 6f:f6:d6:d4:f6:7f:7b:67:94:51:b3:60:c6:42:97:18:45:a3: f6:07:0f:1f:c9:68:24:d7:a0:55:dd:30:27:8a:17:a7:44:57: 8b:ca:8e:99 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUL08onpRUZaGZeVxNW7Wj6MkbppkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNDAxMjAxNzAyMjBaFw0yNTAxMTgxNzA3MjBaMDMxMTAvBgNV BAMTKDUzRTdERDkxNzBFMjlFMjFCOTczMDEzQzc3RjI2MjcwN0JEOTYxMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZQX6nBTEnIq8XPsN45UqFK8kI ZxAVSUQDjkvFJ5v/4u3EhAIu8f9cKj978miWPEUS9Lu1u8jtsT8OdqUt9HiQFnTF OfX5fpHITBhVS9lvPmzah+sXi5IXd1qFo0zn2KWRXD44waUwKjJqc/t8ivMRQetu luD2btXvK9F1nV2WtLQ+JF8wgawG93W9379pwDLvcxvKopvjOEi1Qxr/1ai4/tM+ 95+CjSuTrk2QnGcvULcK8UpE6hqC0Xyf+zWxYmCQwK6Z8rbtO0b8b57zGSdDIMGl WH1QOcS4HcgEZhzK2fBafgLbV2i6PtcbXhn4jsAvFRdYCuathIrzM2VCNDFZAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUU+fdkXDiniG5cwE8d/JicHvZYS0wHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzAzMzJlMzEzNzJlMzIzNDM2MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzNDM5MzczNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZxH2MA0GCSqG SIb3DQEBCwUAA4IBAQA6YnfW5J92/uzB3PvSSHGueDmvu9pBtyXWx/6fHoZ4tFXf nqqUYzBzpQjzAYZIYN1+rtrp0T7okiuwcC90I/esGt+wyvBXGvTezR4p+g2x+sQl wTwGLkZemFndlM7LeXpyiAh7nRi2RNynHnhuzXgK4/a8OxODbSJf7gK2leor4sUt rxBUcSdzSYKtsguGJrfKe1dwjiDRww2f+NSH/unJBASBgZGJJNdYXvvaGltjq08m 3ll3vZiMW+W+2MByh3K1ILPnpIyXpm4A+WcQdcRTNTtACS54TZFv9tbU9n97Z5RR s2DGQpcYRaP2Bw8fyWgk16BV3TAnihenRFeLyo6Z -----END CERTIFICATE-----Generated at Thu Nov 21 03:17:49 2024 by rpki-client on console-ams.rpki-client.org