$ rpki-client -vvf repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3234372e3132312e302f32342d3234203d3e20313439373436.roa File: 3130332e3234372e3132312e302f32342d3234203d3e20313439373436.roa (raw, json) Hash identifier: P45VtUk4zwe5B2CqcFOfVndx/2WWBVpFQyWVFqoW1Ls= Subject key identifier: 75:A4:E1:37:63:15:69:A9:D7:3B:C0:48:85:CC:DA:D1:CD:BF:DB:B1 Certificate issuer: /CN=C00163880F235714759920507217F2A7D557C953 Certificate serial: 60AD4D46A1530F1743FA0F09FBC4851E0F840F1C Authority key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3234372e3132312e302f32342d3234203d3e20313439373436.roa Signing time: Sat 20 Jan 2024 17:09:40 +0000 ROA not before: Sat 20 Jan 2024 17:04:40 +0000 ROA not after: Sat 18 Jan 2025 17:09:40 +0000 asID: 149746 IP address blocks: 103.247.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:10:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:ad:4d:46:a1:53:0f:17:43:fa:0f:09:fb:c4:85:1e:0f:84:0f:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C00163880F235714759920507217F2A7D557C953 Validity Not Before: Jan 20 17:04:40 2024 GMT Not After : Jan 18 17:09:40 2025 GMT Subject: CN=75A4E137631569A9D73BC04885CCDAD1CDBFDBB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:c9:6f:92:18:00:09:b5:64:81:39:96:46:da: e2:d5:7b:a1:c7:24:63:e9:67:6a:e3:bc:1b:f3:60: b6:60:d0:d9:52:2a:71:df:bd:9e:dc:42:c6:5d:c6: 1e:e6:fb:11:6f:c2:56:80:d1:ad:97:d5:09:71:f0: ac:e5:59:a4:79:50:f2:8c:76:21:29:92:17:42:c2: 91:c8:9f:0b:b1:25:17:f7:a3:b0:33:ec:a2:c5:d6: 44:92:15:af:a1:2a:99:9b:26:c2:ec:20:4d:c7:c1: a7:35:f8:80:55:19:d8:d9:77:0b:6c:8a:e3:bc:f5: e6:57:65:1f:53:e8:d3:14:ce:99:a5:88:1c:10:d9: 8e:84:24:e3:c4:de:00:4a:96:85:ce:d1:97:f3:3a: 19:3e:95:63:aa:f8:54:46:7c:94:b2:0c:18:4a:f9: 0b:e8:97:4e:62:7f:fb:15:01:be:af:81:9d:4f:e0: b8:f8:45:eb:f7:ed:ac:71:08:96:9c:61:31:02:bb: 7a:8b:7d:fa:8b:0b:99:0e:ad:5a:f3:85:32:29:fc: 1d:1f:ab:56:4b:61:bc:21:2b:b9:be:74:49:1c:63: 03:a2:e2:85:94:1b:07:09:f6:76:98:f2:98:a4:5c: d0:a1:c7:81:ac:54:93:d7:35:a5:8d:96:cd:72:cc: 6e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:A4:E1:37:63:15:69:A9:D7:3B:C0:48:85:CC:DA:D1:CD:BF:DB:B1 X509v3 Authority Key Identifier: keyid:C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/3130332e3234372e3132312e302f32342d3234203d3e20313439373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.121.0/24 Signature Algorithm: sha256WithRSAEncryption 65:63:93:96:2e:ab:75:db:18:11:6f:42:ba:b1:31:ef:bd:bb: 17:ff:9d:c2:e9:72:30:fa:20:a4:53:48:66:58:39:ef:58:a8: e8:ce:af:28:a5:38:2d:b8:43:67:30:52:ff:e6:81:ec:22:5f: be:e6:66:fe:e4:ec:ad:24:aa:16:dd:17:30:f5:1d:00:c3:eb: 62:96:4b:1e:dc:37:f3:d8:3a:71:35:f4:0c:36:31:7d:95:df: 0a:60:83:b9:1d:16:53:2a:07:8d:18:29:8a:5c:76:38:97:7c: 43:d8:40:7d:99:92:c9:f2:a0:e6:30:b8:ab:04:74:5e:be:73: f6:5b:87:51:24:87:a8:65:0a:2a:a7:e0:80:c3:5c:37:39:b5: 94:0b:63:8c:1b:46:14:68:22:bc:3e:34:01:86:4b:76:61:95: 7c:7a:d8:d4:f4:72:94:ef:78:04:95:0b:b9:2e:85:d3:1f:3e: 08:28:58:c8:2e:15:dd:49:3a:48:f3:56:10:7e:48:02:bb:2b: 84:57:36:db:4a:be:cc:0e:fc:89:a8:14:70:f0:7e:32:75:22: 09:eb:63:79:20:cd:b7:ff:fa:4d:bc:1e:37:cc:b4:28:37:88: b1:66:d0:b2:cf:a2:37:8a:d9:44:96:4b:e6:7c:05:e8:e0:69: c4:29:81:a0 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYK1NRqFTDxdD+g8J+8SFHg+EDxwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdE NTU3Qzk1MzAeFw0yNDAxMjAxNzA0NDBaFw0yNTAxMTgxNzA5NDBaMDMxMTAvBgNV BAMTKDc1QTRFMTM3NjMxNTY5QTlENzNCQzA0ODg1Q0NEQUQxQ0RCRkRCQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnyW+SGAAJtWSBOZZG2uLVe6HH JGPpZ2rjvBvzYLZg0NlSKnHfvZ7cQsZdxh7m+xFvwlaA0a2X1Qlx8KzlWaR5UPKM diEpkhdCwpHInwuxJRf3o7Az7KLF1kSSFa+hKpmbJsLsIE3Hwac1+IBVGdjZdwts iuO89eZXZR9T6NMUzpmliBwQ2Y6EJOPE3gBKloXO0ZfzOhk+lWOq+FRGfJSyDBhK +Qvol05if/sVAb6vgZ1P4Lj4Rev37axxCJacYTECu3qLffqLC5kOrVrzhTIp/B0f q1ZLYbwhK7m+dEkcYwOi4oWUGwcJ9naY8pikXNChx4GsVJPXNaWNls1yzG4rAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUdaThN2MVaanXO8BIhcza0c2/27EwHwYDVR0j BBgwFoAUwAFjiA8jVxR1mSBQchfyp9VXyVMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMC9DMDAxNjM4ODBG MjM1NzE0NzU5OTIwNTA3MjE3RjJBN0Q1NTdDOTUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzAwMTYzODgwRjIzNTcxNDc1OTkyMDUwNzIxN0YyQTdENTU3 Qzk1My5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1LWI4YjgtNDkwYi04 MzIwLWM5ZTU5YTEwMDNkZC8wLzMxMzAzMzJlMzIzNDM3MmUzMTMyMzEyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNzM0MzYucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn93kwDQYJ KoZIhvcNAQELBQADggEBAGVjk5Yuq3XbGBFvQrqxMe+9uxf/ncLpcjD6IKRTSGZY Oe9YqOjOryilOC24Q2cwUv/mgewiX77mZv7k7K0kqhbdFzD1HQDD62KWSx7cN/PY OnE19Aw2MX2V3wpgg7kdFlMqB40YKYpcdjiXfEPYQH2ZksnyoOYwuKsEdF6+c/Zb h1Ekh6hlCiqn4IDDXDc5tZQLY4wbRhRoIrw+NAGGS3ZhlXx62NT0cpTveASVC7ku hdMfPggoWMguFd1JOkjzVhB+SAK7K4RXNttKvswO/ImoFHDwfjJ1IgnrY3kgzbf/ +k28HjfMtCg3iLFm0LLPojeK2USWS+Z8BejgacQpgaA= -----END CERTIFICATE-----Generated at Thu Nov 21 03:09:40 2024 by rpki-client on console-fra.rpki-client.org