$ rpki-client -vvf repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/3131372e3130332e3131362e302f32342d3234203d3e20313338303737.roa File: 3131372e3130332e3131362e302f32342d3234203d3e20313338303737.roa (raw, json) Hash identifier: OXNX1WpnGEvTtG2QVsXYBr1o3UirT2JM9Lg+MbGiddU= Subject key identifier: C3:C8:B0:45:DD:75:6A:50:F2:67:7B:1E:5A:5F:22:EF:7F:E8:BE:76 Certificate issuer: /CN=B877CD1C542C3DE2CBB8EF151F179B857E9376E4 Certificate serial: 61BABC44CEEA7B8AE8C6BC69332CD9D1895FC211 Authority key identifier: B8:77:CD:1C:54:2C:3D:E2:CB:B8:EF:15:1F:17:9B:85:7E:93:76:E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/3131372e3130332e3131362e302f32342d3234203d3e20313338303737.roa Signing time: Tue 13 Aug 2024 09:40:43 +0000 ROA not before: Tue 13 Aug 2024 09:35:43 +0000 ROA not after: Tue 12 Aug 2025 09:40:43 +0000 asID: 138077 IP address blocks: 117.103.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.crl rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 03:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:ba:bc:44:ce:ea:7b:8a:e8:c6:bc:69:33:2c:d9:d1:89:5f:c2:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B877CD1C542C3DE2CBB8EF151F179B857E9376E4 Validity Not Before: Aug 13 09:35:43 2024 GMT Not After : Aug 12 09:40:43 2025 GMT Subject: CN=C3C8B045DD756A50F2677B1E5A5F22EF7FE8BE76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1a:75:84:e5:7d:f6:0a:95:27:42:c3:9b:d6: 33:b6:11:c9:10:96:c8:7c:ee:80:8e:a8:e4:d6:6f: a0:6b:c0:b0:6c:c6:45:10:0a:7a:f8:e5:be:ef:df: 8e:b1:75:0f:5a:ea:1d:0c:5f:6e:33:d3:5e:cf:85: cf:74:0d:f2:76:aa:c4:9b:b1:de:87:e8:36:8a:12: e9:73:01:1e:e1:85:54:e5:bd:85:30:1b:cc:76:d7: 82:d0:41:56:13:35:db:7d:7d:22:1d:54:89:9e:6e: 0e:a7:12:50:4c:9a:4b:cc:ef:bc:7d:d0:bf:ed:54: a7:16:06:80:e3:16:bd:07:a6:cf:f8:7f:c9:8b:51: 47:84:ba:ae:53:30:63:7f:c6:d2:b4:f1:99:9f:45: fa:0d:98:56:f1:b8:49:36:71:40:aa:ad:f2:26:d2: 59:a4:3d:0d:c2:20:b5:5c:5f:bf:f8:d5:48:c5:81: f0:5a:88:b8:1f:b6:03:d5:06:4d:e1:a5:72:13:f2: b6:19:6e:0f:30:5b:15:bc:d5:16:e3:95:a4:6a:31: b6:c8:cf:62:0e:4b:ba:95:c3:c5:74:e1:06:83:9d: d4:9a:4f:ce:85:bf:8d:b5:3b:0d:43:cf:eb:7d:85: 88:e8:f9:bc:c4:c8:43:48:03:f7:20:49:74:01:f4: 18:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:C8:B0:45:DD:75:6A:50:F2:67:7B:1E:5A:5F:22:EF:7F:E8:BE:76 X509v3 Authority Key Identifier: keyid:B8:77:CD:1C:54:2C:3D:E2:CB:B8:EF:15:1F:17:9B:85:7E:93:76:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B877CD1C542C3DE2CBB8EF151F179B857E9376E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af6d185e-d4f4-4820-b4b6-798c307ad7e5/0/3131372e3130332e3131362e302f32342d3234203d3e20313338303737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 117.103.116.0/24 Signature Algorithm: sha256WithRSAEncryption a4:90:e9:c3:54:7c:ea:fe:b4:9d:53:52:28:53:c9:45:9d:9f: aa:fc:c4:ad:be:93:08:db:3f:c0:67:3e:52:69:0a:5c:52:3b: f5:a9:bb:b2:2c:de:fe:62:dd:18:f6:ca:e9:6c:06:c6:51:61: a8:89:ee:09:9b:3c:29:48:9c:eb:56:94:63:d2:d0:c6:69:52: 74:cc:0c:fb:fc:23:61:20:46:3c:43:5f:34:18:81:38:bd:46: 86:15:f6:04:a4:74:d3:0f:b2:f0:13:71:16:71:08:f9:48:96: 38:ed:dc:07:f3:6f:7e:0b:64:c6:f0:17:cb:6c:ba:6c:56:9b: 67:52:5a:f9:83:db:91:fb:be:67:e6:41:3a:8c:0f:5c:32:fd: c9:fa:5e:96:db:da:32:eb:74:eb:f6:81:eb:1c:e5:2b:f7:94: 2c:e9:df:90:c9:e3:3f:20:9b:e1:05:bb:b4:15:12:82:cf:15: 69:d8:e4:4d:d0:ec:75:04:a3:d5:1d:f9:cd:a2:14:19:eb:93: f2:81:45:45:d6:38:17:6e:a4:2d:a0:34:dd:78:27:43:6a:5a: bd:cb:e7:a8:6f:df:14:03:08:06:1e:df:27:34:9f:a5:af:e1: 96:d8:da:41:6c:11:ec:ff:db:5d:76:94:d8:91:58:38:93:02: d6:b5:6a:28 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUYbq8RM7qe4roxrxpMyzZ0YlfwhEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg3N0NEMUM1NDJDM0RFMkNCQjhFRjE1MUYxNzlCODU3 RTkzNzZFNDAeFw0yNDA4MTMwOTM1NDNaFw0yNTA4MTIwOTQwNDNaMDMxMTAvBgNV BAMTKEMzQzhCMDQ1REQ3NTZBNTBGMjY3N0IxRTVBNUYyMkVGN0ZFOEJFNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/GnWE5X32CpUnQsOb1jO2EckQ lsh87oCOqOTWb6BrwLBsxkUQCnr45b7v346xdQ9a6h0MX24z017Phc90DfJ2qsSb sd6H6DaKEulzAR7hhVTlvYUwG8x214LQQVYTNdt9fSIdVImebg6nElBMmkvM77x9 0L/tVKcWBoDjFr0Hps/4f8mLUUeEuq5TMGN/xtK08ZmfRfoNmFbxuEk2cUCqrfIm 0lmkPQ3CILVcX7/41UjFgfBaiLgftgPVBk3hpXIT8rYZbg8wWxW81RbjlaRqMbbI z2IOS7qVw8V04QaDndSaT86Fv421Ow1Dz+t9hYjo+bzEyENIA/cgSXQB9BiFAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUw8iwRd11alDyZ3seWl8i73/ovnYwHwYDVR0j BBgwFoAUuHfNHFQsPeLLuO8VHxebhX6TduQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjZkMTg1ZS1kNGY0LTQ4MjAtYjRiNi03OThjMzA3YWQ3ZTUvMC9CODc3Q0QxQzU0 MkMzREUyQ0JCOEVGMTUxRjE3OUI4NTdFOTM3NkU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg3N0NEMUM1NDJDM0RFMkNCQjhFRjE1MUYxNzlCODU3RTkz NzZFNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FmNmQxODVlLWQ0ZjQtNDgyMC1i NGI2LTc5OGMzMDdhZDdlNS8wLzMxMzEzNzJlMzEzMDMzMmUzMTMxMzYyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTMzMzgzMDM3Mzcucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB1Z3QwDQYJ KoZIhvcNAQELBQADggEBAKSQ6cNUfOr+tJ1TUihTyUWdn6r8xK2+kwjbP8BnPlJp ClxSO/Wpu7Is3v5i3Rj2yulsBsZRYaiJ7gmbPClInOtWlGPS0MZpUnTMDPv8I2Eg RjxDXzQYgTi9RoYV9gSkdNMPsvATcRZxCPlIljjt3Afzb34LZMbwF8tsumxWm2dS WvmD25H7vmfmQTqMD1wy/cn6Xpbb2jLrdOv2gesc5Sv3lCzp35DJ4z8gm+EFu7QV EoLPFWnY5E3Q7HUEo9Ud+c2iFBnrk/KBRUXWOBdupC2gNN14J0NqWr3L56hv3xQD CAYe3yc0n6Wv4ZbY2kFsEez/2112lNiRWDiTAta1aig= -----END CERTIFICATE-----Generated at Thu Nov 21 00:19:38 2024 by rpki-client on console-fra.rpki-client.org