$ rpki-client -vvf repo-rpki.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/3130332e3134372e3134342e302f32332d3234203d3e203137373639.roa File: 3130332e3134372e3134342e302f32332d3234203d3e203137373639.roa (raw, json) Hash identifier: k4bVgZQwwhwXyEq21/fgsjgZLJvFrNFPkmTEg/UKHTM= Subject key identifier: DE:7E:98:6D:DF:19:85:4A:83:0E:C0:8D:FB:7A:BE:3F:31:60:66:E1 Certificate issuer: /CN=0A1DFCB4A43861E4A71BCD645792005485BFADFD Certificate serial: 7391884078A4BAEB7539325EFE98ABB282E9874D Authority key identifier: 0A:1D:FC:B4:A4:38:61:E4:A7:1B:CD:64:57:92:00:54:85:BF:AD:FD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A1DFCB4A43861E4A71BCD645792005485BFADFD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/3130332e3134372e3134342e302f32332d3234203d3e203137373639.roa Signing time: Tue 01 Oct 2024 04:02:24 +0000 ROA not before: Tue 01 Oct 2024 03:57:24 +0000 ROA not after: Tue 30 Sep 2025 04:02:24 +0000 asID: 17769 IP address blocks: 103.147.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/0A1DFCB4A43861E4A71BCD645792005485BFADFD.crl rsync://repo-rpki.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/0A1DFCB4A43861E4A71BCD645792005485BFADFD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A1DFCB4A43861E4A71BCD645792005485BFADFD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:91:88:40:78:a4:ba:eb:75:39:32:5e:fe:98:ab:b2:82:e9:87:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A1DFCB4A43861E4A71BCD645792005485BFADFD Validity Not Before: Oct 1 03:57:24 2024 GMT Not After : Sep 30 04:02:24 2025 GMT Subject: CN=DE7E986DDF19854A830EC08DFB7ABE3F316066E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:58:18:40:04:ca:02:f3:cc:ac:d1:75:f0:1f: b0:24:e5:10:8f:f6:7e:ac:3a:d9:1f:0c:76:49:43: ca:7a:f7:e2:15:04:98:58:3a:a0:09:ac:41:44:2c: a9:80:49:fc:5f:cb:f8:0c:c2:a6:c6:88:17:01:e9: f7:2b:6f:8f:35:e2:57:fb:fa:d9:b9:e5:51:f6:cd: 6f:9e:7a:7f:42:88:ab:90:14:d8:63:32:f4:da:fb: 8a:25:06:20:1d:8a:86:f6:04:7c:98:20:29:14:24: d3:99:4e:02:6a:f1:23:ff:40:f0:f7:02:42:e9:c5: 94:d3:16:f2:2a:5a:9a:6c:be:07:ae:39:74:77:28: 17:ed:74:d9:24:d8:00:c1:d1:b8:35:87:ee:b5:59: 8a:c5:d6:04:48:22:0f:bf:ae:92:97:79:87:c5:fe: a2:83:0c:6a:70:80:13:d3:81:d4:44:d1:7f:57:18: 47:15:0b:6a:d9:55:62:12:04:1c:4b:d1:c7:c2:bb: d0:7f:9d:3e:1e:8f:be:93:09:25:1e:c6:f6:2d:10: 97:de:ff:bb:62:27:e4:03:4a:8e:e0:98:f4:d1:ea: 4d:9b:39:32:48:aa:d6:cf:1d:c8:70:07:97:bd:09: 91:90:28:27:12:b7:09:d4:cb:84:03:6d:42:8a:f7: 19:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:7E:98:6D:DF:19:85:4A:83:0E:C0:8D:FB:7A:BE:3F:31:60:66:E1 X509v3 Authority Key Identifier: keyid:0A:1D:FC:B4:A4:38:61:E4:A7:1B:CD:64:57:92:00:54:85:BF:AD:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/0A1DFCB4A43861E4A71BCD645792005485BFADFD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0A1DFCB4A43861E4A71BCD645792005485BFADFD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/3130332e3134372e3134342e302f32332d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.144.0/23 Signature Algorithm: sha256WithRSAEncryption b6:d2:7a:c5:74:59:ca:92:15:29:61:33:20:19:f8:a5:0d:f4: 94:60:d9:84:c0:1d:6c:60:28:47:f4:22:b4:ef:9f:97:0a:9d: 2b:67:0b:47:37:71:31:d0:38:5f:f1:e6:77:9b:79:d9:62:72: 6b:b1:0e:9a:5a:8b:99:18:e6:c1:10:32:2e:78:aa:94:cb:4e: 2c:60:87:2e:6e:c5:e2:7e:ac:f5:fe:78:33:c5:b8:a4:30:a8: 95:06:30:5f:ca:4d:8a:d1:4f:04:ab:ee:f3:73:6f:33:f4:ac: 65:72:9b:df:0a:9b:7f:1f:b8:be:f9:0d:17:f6:b5:e8:89:d0: ac:85:75:f9:c6:78:ca:64:8a:d4:91:d8:1c:4c:af:5a:8f:2f: fc:aa:b8:ef:02:d5:73:2c:77:dd:7d:c6:94:a6:74:ee:5c:17: 0a:53:d4:fa:92:21:e6:56:5b:70:bf:73:73:c9:bd:81:cf:cb: d4:29:54:42:26:5a:73:33:88:d8:b5:d4:22:5c:17:f7:ac:e8: b1:07:6c:2f:e8:ec:b0:82:3b:3e:b3:92:fa:9c:17:bc:c1:91: 8b:bc:db:65:97:68:b3:1b:21:1f:ec:c4:4a:40:86:23:92:a5: 3f:bc:8b:75:a5:a0:a7:b5:eb:72:4a:ea:5c:a6:f4:f7:ea:fb: 9e:02:4b:a7 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUc5GIQHikuut1OTJe/pirsoLph00wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEExREZDQjRBNDM4NjFFNEE3MUJDRDY0NTc5MjAwNTQ4 NUJGQURGRDAeFw0yNDEwMDEwMzU3MjRaFw0yNTA5MzAwNDAyMjRaMDMxMTAvBgNV BAMTKERFN0U5ODZEREYxOTg1NEE4MzBFQzA4REZCN0FCRTNGMzE2MDY2RTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1WBhABMoC88ys0XXwH7Ak5RCP 9n6sOtkfDHZJQ8p69+IVBJhYOqAJrEFELKmASfxfy/gMwqbGiBcB6fcrb4814lf7 +tm55VH2zW+een9CiKuQFNhjMvTa+4olBiAdiob2BHyYICkUJNOZTgJq8SP/QPD3 AkLpxZTTFvIqWppsvgeuOXR3KBftdNkk2ADB0bg1h+61WYrF1gRIIg+/rpKXeYfF /qKDDGpwgBPTgdRE0X9XGEcVC2rZVWISBBxL0cfCu9B/nT4ej76TCSUexvYtEJfe /7tiJ+QDSo7gmPTR6k2bOTJIqtbPHchwB5e9CZGQKCcStwnUy4QDbUKK9xmrAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQU3n6Ybd8ZhUqDDsCN+3q+PzFgZuEwHwYDVR0j BBgwFoAUCh38tKQ4YeSnG81kV5IAVIW/rf0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ODVjYmQ5NS01NzRmLTQwNWItOGJkZS0wZGRiOWM5YmRkYmEvMC8wQTFERkNCNEE0 Mzg2MUU0QTcxQkNENjQ1NzkyMDA1NDg1QkZBREZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEExREZDQjRBNDM4NjFFNEE3MUJDRDY0NTc5MjAwNTQ4NUJG QURGRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4NWNiZDk1LTU3NGYtNDA1Yi04 YmRlLTBkZGI5YzliZGRiYS8wLzMxMzAzMzJlMzEzNDM3MmUzMTM0MzQyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzczNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5OQMA0GCSqG SIb3DQEBCwUAA4IBAQC20nrFdFnKkhUpYTMgGfilDfSUYNmEwB1sYChH9CK075+X Cp0rZwtHN3Ex0Dhf8eZ3m3nZYnJrsQ6aWouZGObBEDIueKqUy04sYIcubsXifqz1 /ngzxbikMKiVBjBfyk2K0U8Eq+7zc28z9KxlcpvfCpt/H7i++Q0X9rXoidCshXX5 xnjKZIrUkdgcTK9ajy/8qrjvAtVzLHfdfcaUpnTuXBcKU9T6kiHmVltwv3Nzyb2B z8vUKVRCJlpzM4jYtdQiXBf3rOixB2wv6Oywgjs+s5L6nBe8wZGLvNtll2izGyEf 7MRKQIYjkqU/vIt1paCntetySupcpvT36vueAkun -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:21 2024 by rpki-client on console-fra.rpki-client.org