$ rpki-client -vvf repo-rpki.idnic.net/repo/cffdc2b7-f305-4e07-aac5-469e9113b0b4/0/3130332e3133302e3131372e302f32342d3234203d3e203435333035.roa File: 3130332e3133302e3131372e302f32342d3234203d3e203435333035.roa (raw, json) Hash identifier: 2KlFaCiGH4FvI5KYZUM/LwzVbKMH9o1Jq6U1bpkh8OA= Subject key identifier: 33:18:E6:A7:90:F5:6E:F6:79:11:B4:62:1D:91:7C:C0:1E:4A:8F:84 Certificate issuer: /CN=D947E8BEAE01A6710E324CD416D3282ADDFBBFE9 Certificate serial: 3FE7454EAC55C83E100C0A1D3A70D8455A99831D Authority key identifier: D9:47:E8:BE:AE:01:A6:71:0E:32:4C:D4:16:D3:28:2A:DD:FB:BF:E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D947E8BEAE01A6710E324CD416D3282ADDFBBFE9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cffdc2b7-f305-4e07-aac5-469e9113b0b4/0/3130332e3133302e3131372e302f32342d3234203d3e203435333035.roa Signing time: Mon 18 Mar 2024 09:00:02 +0000 ROA not before: Mon 18 Mar 2024 08:55:02 +0000 ROA not after: Mon 17 Mar 2025 09:00:02 +0000 asID: 45305 IP address blocks: 103.130.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cffdc2b7-f305-4e07-aac5-469e9113b0b4/0/D947E8BEAE01A6710E324CD416D3282ADDFBBFE9.crl rsync://repo-rpki.idnic.net/repo/cffdc2b7-f305-4e07-aac5-469e9113b0b4/0/D947E8BEAE01A6710E324CD416D3282ADDFBBFE9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D947E8BEAE01A6710E324CD416D3282ADDFBBFE9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 17:41:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:e7:45:4e:ac:55:c8:3e:10:0c:0a:1d:3a:70:d8:45:5a:99:83:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D947E8BEAE01A6710E324CD416D3282ADDFBBFE9 Validity Not Before: Mar 18 08:55:02 2024 GMT Not After : Mar 17 09:00:02 2025 GMT Subject: CN=3318E6A790F56EF67911B4621D917CC01E4A8F84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:77:bd:34:a1:18:56:ef:f5:2c:43:34:0a:8e: 6a:ea:59:b0:48:3c:b4:e3:59:b6:02:fc:47:63:7d: 9a:72:8e:0b:fd:3d:3a:97:02:39:aa:c8:70:e8:2e: cf:8a:04:1f:c0:a7:b8:60:65:d4:0d:a8:47:c6:2b: 40:72:bf:e8:45:84:b2:e1:00:0a:ed:09:c1:c7:6f: 06:db:8d:cc:dd:21:d0:ec:0e:62:74:28:25:4f:0d: 26:22:ed:34:8e:f5:09:75:b7:3a:bc:5e:01:cd:64: cc:8f:3f:9a:a3:90:e9:a5:3b:30:c7:80:07:cb:49: 3f:cd:92:0b:8c:d5:44:cd:08:70:06:8f:49:76:b2: ea:df:39:34:f8:b3:8e:a7:e9:a7:9b:c5:62:9a:c0: ab:f6:09:19:43:03:9f:37:0e:a6:d6:14:e9:e9:a0: f5:40:d5:81:1f:e5:f4:39:6c:b2:49:8b:5d:d9:a8: f8:e8:e7:cd:81:5e:0e:6f:3b:a0:59:6e:aa:a9:2b: 95:28:8f:42:89:73:69:ca:d1:f3:6c:0a:6b:4e:de: 37:52:0f:c3:ad:02:b4:d5:4f:3b:d2:a9:61:29:fe: 9f:6d:06:a1:82:7d:f9:6e:2f:1f:0b:22:96:c1:26: 69:0a:c9:5d:39:98:57:d8:88:e7:a6:08:ca:41:7a: 82:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:18:E6:A7:90:F5:6E:F6:79:11:B4:62:1D:91:7C:C0:1E:4A:8F:84 X509v3 Authority Key Identifier: keyid:D9:47:E8:BE:AE:01:A6:71:0E:32:4C:D4:16:D3:28:2A:DD:FB:BF:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cffdc2b7-f305-4e07-aac5-469e9113b0b4/0/D947E8BEAE01A6710E324CD416D3282ADDFBBFE9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D947E8BEAE01A6710E324CD416D3282ADDFBBFE9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cffdc2b7-f305-4e07-aac5-469e9113b0b4/0/3130332e3133302e3131372e302f32342d3234203d3e203435333035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.130.117.0/24 Signature Algorithm: sha256WithRSAEncryption 00:d0:2f:34:80:bd:08:53:34:7e:28:e7:99:84:6a:15:03:52: dd:f2:62:95:a1:4d:2f:79:dc:25:ea:c2:35:b9:ae:4e:dd:85: 86:4a:ae:1c:73:74:96:26:7b:2d:75:d2:b3:82:59:bd:6b:3f: 8c:b8:b6:66:3d:29:8f:88:01:36:98:b5:85:36:41:85:c9:2d: c1:b4:7e:11:05:9c:bd:32:e4:2b:20:d4:8f:fa:e6:ac:c0:41: 0e:10:0f:2c:0f:e2:65:22:0f:3a:60:25:fa:38:9e:e0:ea:0f: 2d:57:bf:6b:59:05:d1:cb:be:b4:76:49:cb:39:8a:56:83:20: 00:9a:da:3f:42:02:2b:00:0a:36:8e:16:42:b0:82:a7:f6:ea: 36:f7:c0:97:a0:24:a3:74:cc:3a:e9:97:01:e7:b7:5d:66:77: 99:2d:bf:52:54:3a:f5:0f:01:10:8b:f6:71:a1:12:3b:99:5a: 1a:2c:5a:1e:de:4f:a8:7e:c7:1c:85:d0:f9:d7:ac:e2:52:68: 3d:74:19:c5:77:97:e6:9f:c2:79:f9:be:80:36:5d:47:8a:86: a5:3e:3e:3b:17:fd:57:2f:31:97:97:60:b5:e6:e5:75:d3:a4: 4c:61:d5:fd:5f:0b:be:b5:3d:2e:51:1a:c7:ef:3a:66:eb:37: a1:f6:20:82 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUP+dFTqxVyD4QDAodOnDYRVqZgx0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDk0N0U4QkVBRTAxQTY3MTBFMzI0Q0Q0MTZEMzI4MkFE REZCQkZFOTAeFw0yNDAzMTgwODU1MDJaFw0yNTAzMTcwOTAwMDJaMDMxMTAvBgNV BAMTKDMzMThFNkE3OTBGNTZFRjY3OTExQjQ2MjFEOTE3Q0MwMUU0QThGODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGd700oRhW7/UsQzQKjmrqWbBI PLTjWbYC/EdjfZpyjgv9PTqXAjmqyHDoLs+KBB/Ap7hgZdQNqEfGK0Byv+hFhLLh AArtCcHHbwbbjczdIdDsDmJ0KCVPDSYi7TSO9Ql1tzq8XgHNZMyPP5qjkOmlOzDH gAfLST/NkguM1UTNCHAGj0l2surfOTT4s46n6aebxWKawKv2CRlDA583DqbWFOnp oPVA1YEf5fQ5bLJJi13ZqPjo582BXg5vO6BZbqqpK5Uoj0KJc2nK0fNsCmtO3jdS D8OtArTVTzvSqWEp/p9tBqGCffluLx8LIpbBJmkKyV05mFfYiOemCMpBeoKLAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMxjmp5D1bvZ5EbRiHZF8wB5Kj4QwHwYDVR0j BBgwFoAU2Ufovq4BpnEOMkzUFtMoKt37v+kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZmZkYzJiNy1mMzA1LTRlMDctYWFjNS00NjllOTExM2IwYjQvMC9EOTQ3RThCRUFF MDFBNjcxMEUzMjRDRDQxNkQzMjgyQURERkJCRkU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDk0N0U4QkVBRTAxQTY3MTBFMzI0Q0Q0MTZEMzI4MkFEREZC QkZFOS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NmZmRjMmI3LWYzMDUtNGUwNy1h YWM1LTQ2OWU5MTEzYjBiNC8wLzMxMzAzMzJlMzEzMzMwMmUzMTMxMzcyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzNDM1MzMzMDM1LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4J1MA0GCSqG SIb3DQEBCwUAA4IBAQAA0C80gL0IUzR+KOeZhGoVA1Ld8mKVoU0vedwl6sI1ua5O 3YWGSq4cc3SWJnstddKzglm9az+MuLZmPSmPiAE2mLWFNkGFyS3BtH4RBZy9MuQr INSP+uaswEEOEA8sD+JlIg86YCX6OJ7g6g8tV79rWQXRy760dknLOYpWgyAAmto/ QgIrAAo2jhZCsIKn9uo298CXoCSjdMw66ZcB57ddZneZLb9SVDr1DwEQi/ZxoRI7 mVoaLFoe3k+ofscchdD516ziUmg9dBnFd5fmn8J5+b6ANl1HioalPj47F/1XLzGX l2C15uV106RMYdX9Xwu+tT0uURrH7zpm6zeh9iCC -----END CERTIFICATE-----Generated at Sun May 26 16:39:31 2024 by rpki-client on console-fra.rpki-client.org