$ rpki-client -vvf repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/3130332e3138342e3132302e302f32332d3233203d3e20313439363633.roa File: 3130332e3138342e3132302e302f32332d3233203d3e20313439363633.roa (raw, json) Hash identifier: hl492HzutALAAQJU70eEDXrbfvOLocfrbDGoutzErNg= Subject key identifier: 2C:98:3C:EA:44:72:17:75:85:D0:05:59:83:44:E2:AA:2E:F0:89:25 Certificate issuer: /CN=C70A343932991281F91796DB87B011987603BBF4 Certificate serial: 590AE13F8574716C5EEE81CBFA90AE002B3D9EB7 Authority key identifier: C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/3130332e3138342e3132302e302f32332d3233203d3e20313439363633.roa Signing time: Tue 20 Feb 2024 03:02:11 +0000 ROA not before: Tue 20 Feb 2024 02:57:11 +0000 ROA not after: Tue 18 Feb 2025 03:02:11 +0000 asID: 149663 IP address blocks: 103.184.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.crl rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:0a:e1:3f:85:74:71:6c:5e:ee:81:cb:fa:90:ae:00:2b:3d:9e:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C70A343932991281F91796DB87B011987603BBF4 Validity Not Before: Feb 20 02:57:11 2024 GMT Not After : Feb 18 03:02:11 2025 GMT Subject: CN=2C983CEA4472177585D005598344E2AA2EF08925 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c3:fc:26:e6:a8:0f:b0:9a:ae:50:9b:40:55: 7b:81:47:eb:b6:e7:51:66:9d:4f:86:9f:db:a7:ba: 86:17:10:b9:f6:27:e0:f0:57:71:45:b3:cd:9b:49: 83:45:c4:68:61:e2:b8:aa:37:a5:af:fb:41:f4:62: 3c:fc:28:5e:1a:c7:50:9e:6d:06:59:8e:20:44:a7: 30:d4:de:30:bd:bb:33:aa:46:d2:21:89:9d:38:30: c6:2f:74:c7:c7:6d:da:78:c2:2b:b7:13:92:f0:90: d2:22:8c:dd:47:37:e4:7f:32:99:6d:c7:6a:75:c2: c0:9e:90:2e:d9:12:47:81:fa:2a:53:ea:f6:cd:1e: 0b:99:e8:b4:9f:df:76:e4:09:f5:18:21:cf:e5:27: 67:e1:03:42:8e:5e:fe:be:d6:d1:17:97:95:44:a3: bd:bd:fc:1c:59:b9:a0:89:46:fb:6a:ed:a6:87:d9: 2d:4b:09:53:f7:1e:f6:d0:af:7e:51:2f:0a:01:4c: 36:e3:8d:b8:e1:82:5a:13:8b:f7:d5:79:6a:ee:05: a6:0c:f9:e9:75:a7:4d:32:d2:8b:e2:1f:b4:ac:76: 06:8c:83:19:ff:7d:8d:45:61:cd:bc:50:18:c9:f2: e4:f8:62:fd:cd:4c:a2:96:87:84:4d:0d:9d:39:43: fb:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:98:3C:EA:44:72:17:75:85:D0:05:59:83:44:E2:AA:2E:F0:89:25 X509v3 Authority Key Identifier: keyid:C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/3130332e3138342e3132302e302f32332d3233203d3e20313439363633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.120.0/23 Signature Algorithm: sha256WithRSAEncryption 12:29:cf:b9:d0:48:61:cb:78:6f:28:2c:c5:e9:36:e6:ec:88: c9:56:cc:75:83:66:18:ef:a1:f5:6b:4f:28:68:66:63:2f:df: 5e:47:a1:5b:8e:66:ba:52:d8:07:2a:70:0b:25:70:bf:85:cb: cb:14:d7:71:42:38:83:86:01:86:36:57:37:be:99:2b:b1:70: 59:7b:20:32:51:03:86:7c:11:89:b4:27:37:13:04:ee:5e:bc: 41:e5:6b:49:85:7d:bc:63:36:fa:66:07:17:c6:d7:e1:cd:71: 9b:9f:71:45:8a:83:fc:5f:14:80:6a:11:c2:8b:b5:61:ba:cc: 8e:ca:a3:0b:f7:d8:d8:dc:30:54:74:33:c4:12:b6:3a:be:f0: 50:7d:21:d2:d6:8f:d3:76:43:1c:26:b2:12:0a:5a:a8:30:77: be:83:46:97:b0:66:01:d7:a8:50:12:e4:a9:84:c8:b5:1e:24: ae:82:57:98:88:36:53:de:b8:fa:d2:dc:83:bb:22:2d:79:c6: fe:19:01:1a:51:f9:f6:bb:77:96:94:58:5a:59:48:28:a2:7c: 46:74:1c:07:95:df:9f:c2:3d:cb:25:db:d7:59:89:42:35:8c: 66:b3:b7:00:8a:1b:07:b5:2b:ee:d2:0d:9a:8a:05:e2:1b:b3: fa:6a:26:80 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUWQrhP4V0cWxe7oHL+pCuACs9nrcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzcwQTM0MzkzMjk5MTI4MUY5MTc5NkRCODdCMDExOTg3 NjAzQkJGNDAeFw0yNDAyMjAwMjU3MTFaFw0yNTAyMTgwMzAyMTFaMDMxMTAvBgNV BAMTKDJDOTgzQ0VBNDQ3MjE3NzU4NUQwMDU1OTgzNDRFMkFBMkVGMDg5MjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8w/wm5qgPsJquUJtAVXuBR+u2 51FmnU+Gn9unuoYXELn2J+DwV3FFs82bSYNFxGhh4riqN6Wv+0H0Yjz8KF4ax1Ce bQZZjiBEpzDU3jC9uzOqRtIhiZ04MMYvdMfHbdp4wiu3E5LwkNIijN1HN+R/Mplt x2p1wsCekC7ZEkeB+ipT6vbNHguZ6LSf33bkCfUYIc/lJ2fhA0KOXv6+1tEXl5VE o729/BxZuaCJRvtq7aaH2S1LCVP3HvbQr35RLwoBTDbjjbjhgloTi/fVeWruBaYM +el1p00y0oviH7SsdgaMgxn/fY1FYc28UBjJ8uT4Yv3NTKKWh4RNDZ05Q/tDAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQULJg86kRyF3WF0AVZg0Tiqi7wiSUwHwYDVR0j BBgwFoAUxwo0OTKZEoH5F5bbh7ARmHYDu/QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZmMxN2NjMi1mNGEyLTQxNWUtOGVhMi1mOWM0N2Y3NWM0Y2EvMC9DNzBBMzQzOTMy OTkxMjgxRjkxNzk2REI4N0IwMTE5ODc2MDNCQkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzcwQTM0MzkzMjk5MTI4MUY5MTc5NkRCODdCMDExOTg3NjAz QkJGNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmYzE3Y2MyLWY0YTItNDE1ZS04 ZWEyLWY5YzQ3Zjc1YzRjYS8wLzMxMzAzMzJlMzEzODM0MmUzMTMyMzAyZTMwMmYz MjMzMmQzMjMzMjAzZDNlMjAzMTM0MzkzNjM2MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnuHgwDQYJ KoZIhvcNAQELBQADggEBABIpz7nQSGHLeG8oLMXpNubsiMlWzHWDZhjvofVrTyho ZmMv315HoVuOZrpS2AcqcAslcL+Fy8sU13FCOIOGAYY2Vze+mSuxcFl7IDJRA4Z8 EYm0JzcTBO5evEHla0mFfbxjNvpmBxfG1+HNcZufcUWKg/xfFIBqEcKLtWG6zI7K owv32NjcMFR0M8QStjq+8FB9IdLWj9N2QxwmshIKWqgwd76DRpewZgHXqFAS5KmE yLUeJK6CV5iINlPeuPrS3IO7Ii15xv4ZARpR+fa7d5aUWFpZSCiifEZ0HAeV35/C Pcsl29dZiUI1jGaztwCKGwe1K+7SDZqKBeIbs/pqJoA= -----END CERTIFICATE-----Generated at Sun Nov 24 00:14:31 2024 by rpki-client on console-ams.rpki-client.org