$ rpki-client -vvf repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/3130332e3138342e3132302e302f32342d3234203d3e20313439363633.roa File: 3130332e3138342e3132302e302f32342d3234203d3e20313439363633.roa (raw, json) Hash identifier: M68RXQd5jJ+tOw7H+Op2qX1NvK1KAjfaLkm00qLbmQ0= Subject key identifier: 7C:3D:C9:B9:FA:36:A1:19:71:D1:0D:F3:89:BF:DE:4F:9F:0D:03:53 Certificate issuer: /CN=C70A343932991281F91796DB87B011987603BBF4 Certificate serial: 5FC6673B4886A51BEA9F2F0768D44577181E3C5F Authority key identifier: C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/3130332e3138342e3132302e302f32342d3234203d3e20313439363633.roa Signing time: Tue 20 Feb 2024 03:02:11 +0000 ROA not before: Tue 20 Feb 2024 02:57:11 +0000 ROA not after: Tue 18 Feb 2025 03:02:11 +0000 asID: 149663 IP address blocks: 103.184.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.crl rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:c6:67:3b:48:86:a5:1b:ea:9f:2f:07:68:d4:45:77:18:1e:3c:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C70A343932991281F91796DB87B011987603BBF4 Validity Not Before: Feb 20 02:57:11 2024 GMT Not After : Feb 18 03:02:11 2025 GMT Subject: CN=7C3DC9B9FA36A11971D10DF389BFDE4F9F0D0353 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7f:c4:6b:de:66:4a:b2:7d:6e:85:13:33:97: dc:ec:5a:09:84:04:6f:72:91:10:66:e8:9a:25:b5: 69:3a:2f:fd:db:93:dc:dc:86:ba:0f:1b:24:cc:2d: a0:91:f7:a2:2d:05:60:af:91:8a:59:4a:61:87:12: 84:b5:ad:51:e8:9b:38:c5:61:ed:8d:c6:df:61:60: 35:cc:58:67:87:a7:7d:81:f1:8d:d8:e4:96:82:e0: 9e:63:d8:2d:2c:d9:f3:19:d6:7f:60:b8:96:54:75: 6e:95:78:39:99:d5:60:ef:fc:52:85:34:e2:7d:75: d1:b3:64:e4:6c:bb:ac:c8:8e:e8:fe:71:30:cf:db: 39:99:21:9b:b0:91:31:50:3e:4b:b2:ca:f2:df:69: 74:e3:02:b8:65:a2:3b:23:05:79:40:14:fe:3c:f8: 6f:a4:e6:65:b1:04:39:fd:28:fb:02:e7:aa:b1:61: 0d:5a:b0:f3:10:9f:5d:aa:2d:1b:0a:64:62:d5:96: 2a:3d:d5:1a:29:14:b7:0c:6a:8c:8f:ac:d4:32:f1: 66:63:4d:38:62:95:f0:c8:f8:ee:1f:c0:12:bf:89: fb:30:64:1b:e5:6b:f5:75:12:92:d2:02:ed:0e:e0: 7f:f6:48:89:f6:8b:0a:48:54:17:62:46:70:a1:18: fd:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:3D:C9:B9:FA:36:A1:19:71:D1:0D:F3:89:BF:DE:4F:9F:0D:03:53 X509v3 Authority Key Identifier: keyid:C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/3130332e3138342e3132302e302f32342d3234203d3e20313439363633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.120.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:62:54:7e:30:bf:94:bf:ec:41:ce:b0:73:c5:32:49:b4:a7: 56:01:88:be:b3:08:90:94:c3:cf:13:0b:e6:32:16:50:f9:a1: 0c:e8:39:58:e7:46:d2:aa:b2:0a:38:7b:82:d5:43:d0:24:aa: f3:9a:61:46:85:9b:6e:1f:64:20:79:48:02:d9:83:52:b0:2a: c2:56:12:2a:ec:c1:76:1c:e6:e3:8c:ac:9e:2e:44:6e:be:9f: 9c:3f:cf:71:0a:73:76:c6:7a:94:d1:be:10:1d:4d:a2:2b:10: 78:53:b6:2c:e4:e2:2f:c4:0c:c6:a1:a1:15:88:f9:ce:1f:f4: 52:d4:42:ee:a7:ba:69:d4:7b:82:3a:66:5f:52:92:d3:90:a3: da:0c:a0:64:bd:93:ea:70:26:e7:ef:0b:fe:77:c6:5a:56:f0: 94:21:61:3f:a9:3e:85:4a:26:34:8d:97:de:40:57:5a:a0:1d: b8:38:3f:0d:50:aa:f1:dd:6d:fc:7b:40:8e:da:f9:af:8e:58: 70:5f:fb:7e:1e:73:51:ca:3d:85:06:e2:f5:eb:87:f3:29:fd: f5:1b:20:8d:cf:1d:45:f1:a3:6b:0a:1e:e1:8d:66:48:9f:86: 4a:21:54:5a:53:23:6f:fd:87:c3:20:60:da:bb:37:c5:36:97: 6e:ad:ee:12 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUX8ZnO0iGpRvqny8HaNRFdxgePF8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzcwQTM0MzkzMjk5MTI4MUY5MTc5NkRCODdCMDExOTg3 NjAzQkJGNDAeFw0yNDAyMjAwMjU3MTFaFw0yNTAyMTgwMzAyMTFaMDMxMTAvBgNV BAMTKDdDM0RDOUI5RkEzNkExMTk3MUQxMERGMzg5QkZERTRGOUYwRDAzNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8f8Rr3mZKsn1uhRMzl9zsWgmE BG9ykRBm6JoltWk6L/3bk9zchroPGyTMLaCR96ItBWCvkYpZSmGHEoS1rVHomzjF Ye2Nxt9hYDXMWGeHp32B8Y3Y5JaC4J5j2C0s2fMZ1n9guJZUdW6VeDmZ1WDv/FKF NOJ9ddGzZORsu6zIjuj+cTDP2zmZIZuwkTFQPkuyyvLfaXTjArhlojsjBXlAFP48 +G+k5mWxBDn9KPsC56qxYQ1asPMQn12qLRsKZGLVlio91RopFLcMaoyPrNQy8WZj TThilfDI+O4fwBK/ifswZBvla/V1EpLSAu0O4H/2SIn2iwpIVBdiRnChGP3ZAgMB AAGjggI2MIICMjAdBgNVHQ4EFgQUfD3Jufo2oRlx0Q3zib/eT58NA1MwHwYDVR0j BBgwFoAUxwo0OTKZEoH5F5bbh7ARmHYDu/QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZmMxN2NjMi1mNGEyLTQxNWUtOGVhMi1mOWM0N2Y3NWM0Y2EvMC9DNzBBMzQzOTMy OTkxMjgxRjkxNzk2REI4N0IwMTE5ODc2MDNCQkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzcwQTM0MzkzMjk5MTI4MUY5MTc5NkRCODdCMDExOTg3NjAz QkJGNC5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmYzE3Y2MyLWY0YTItNDE1ZS04 ZWEyLWY5YzQ3Zjc1YzRjYS8wLzMxMzAzMzJlMzEzODM0MmUzMTMyMzAyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzMTM0MzkzNjM2MzMucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnuHgwDQYJ KoZIhvcNAQELBQADggEBAC5iVH4wv5S/7EHOsHPFMkm0p1YBiL6zCJCUw88TC+Yy FlD5oQzoOVjnRtKqsgo4e4LVQ9AkqvOaYUaFm24fZCB5SALZg1KwKsJWEirswXYc 5uOMrJ4uRG6+n5w/z3EKc3bGepTRvhAdTaIrEHhTtizk4i/EDMahoRWI+c4f9FLU Qu6numnUe4I6Zl9SktOQo9oMoGS9k+pwJufvC/53xlpW8JQhYT+pPoVKJjSNl95A V1qgHbg4Pw1QqvHdbfx7QI7a+a+OWHBf+34ec1HKPYUG4vXrh/Mp/fUbII3PHUXx o2sKHuGNZkifhkohVFpTI2/9h8MgYNq7N8U2l26t7hI= -----END CERTIFICATE-----Generated at Sun Nov 24 00:14:31 2024 by rpki-client on console-ams.rpki-client.org