$ rpki-client -vvf repo-rpki.idnic.net/repo/de5e9131-3abc-4abd-bd92-a755fab91305/0/3130332e3134372e3131382e302f32332d3234203d3e20313339393632.roa File: 3130332e3134372e3131382e302f32332d3234203d3e20313339393632.roa (raw, json) Hash identifier: uk3D/rCjhhElv4EaWGmIYhdMgwZYLaPqwk9faLvVMj4= Subject key identifier: FF:44:CA:01:73:D0:A3:5A:89:F9:B1:33:F5:56:93:6A:22:05:22:BA Certificate issuer: /CN=9FFC2166777F81F66DF4A4EB5B29FFA5B1B525DE Certificate serial: 6B5C6E65ED46FDB4D4115E01875FF4E7A932E851 Authority key identifier: 9F:FC:21:66:77:7F:81:F6:6D:F4:A4:EB:5B:29:FF:A5:B1:B5:25:DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC2166777F81F66DF4A4EB5B29FFA5B1B525DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de5e9131-3abc-4abd-bd92-a755fab91305/0/3130332e3134372e3131382e302f32332d3234203d3e20313339393632.roa Signing time: Mon 17 Jun 2024 12:00:01 +0000 ROA not before: Mon 17 Jun 2024 11:55:01 +0000 ROA not after: Mon 16 Jun 2025 12:00:01 +0000 asID: 139962 IP address blocks: 103.147.118.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de5e9131-3abc-4abd-bd92-a755fab91305/0/9FFC2166777F81F66DF4A4EB5B29FFA5B1B525DE.crl rsync://repo-rpki.idnic.net/repo/de5e9131-3abc-4abd-bd92-a755fab91305/0/9FFC2166777F81F66DF4A4EB5B29FFA5B1B525DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC2166777F81F66DF4A4EB5B29FFA5B1B525DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:5c:6e:65:ed:46:fd:b4:d4:11:5e:01:87:5f:f4:e7:a9:32:e8:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FFC2166777F81F66DF4A4EB5B29FFA5B1B525DE Validity Not Before: Jun 17 11:55:01 2024 GMT Not After : Jun 16 12:00:01 2025 GMT Subject: CN=FF44CA0173D0A35A89F9B133F556936A220522BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c2:04:6e:ed:fb:6a:3f:3d:5c:b7:c5:42:a6: 2b:0d:ab:67:5f:93:2d:09:6f:1f:e5:81:8f:60:1e: 90:d9:7d:d4:7d:2b:2f:af:7c:fa:56:ee:fb:8e:1e: a1:b5:5d:be:08:98:aa:0f:eb:91:29:b6:9e:30:51: 6f:a3:3e:d6:6c:b2:96:5e:0d:80:17:f5:01:58:39: 02:a0:b5:3b:d0:a3:21:d7:c6:42:a5:37:74:78:c9: f0:0e:03:4d:62:7a:12:ae:54:5e:a3:f7:34:ae:f1: 19:be:65:b6:2e:37:9c:61:44:1d:fc:d9:61:19:52: ad:ac:28:ec:c7:0e:81:07:09:23:35:91:80:88:4f: a9:04:e8:c3:37:47:7a:1f:1c:a8:97:c0:a2:8a:4a: 2c:3c:53:e2:62:22:14:d9:80:c4:1d:9c:fa:79:98: 9f:9e:ad:3d:50:f0:a8:17:d1:aa:e1:db:fa:69:2f: e3:13:42:b2:de:13:8d:0e:84:2b:7a:49:1b:e0:d7: b9:10:43:93:45:46:38:04:2a:9d:ba:3a:93:52:21: 2b:ab:52:f8:3d:00:bf:8a:7e:37:f9:f2:cb:88:91: 8f:ea:92:cc:41:7d:a3:64:bd:20:c6:79:c8:fd:65: d3:d1:0c:dc:5d:ab:d6:a1:6e:37:59:c7:a6:3f:fb: 75:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:44:CA:01:73:D0:A3:5A:89:F9:B1:33:F5:56:93:6A:22:05:22:BA X509v3 Authority Key Identifier: keyid:9F:FC:21:66:77:7F:81:F6:6D:F4:A4:EB:5B:29:FF:A5:B1:B5:25:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de5e9131-3abc-4abd-bd92-a755fab91305/0/9FFC2166777F81F66DF4A4EB5B29FFA5B1B525DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC2166777F81F66DF4A4EB5B29FFA5B1B525DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de5e9131-3abc-4abd-bd92-a755fab91305/0/3130332e3134372e3131382e302f32332d3234203d3e20313339393632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.118.0/23 Signature Algorithm: sha256WithRSAEncryption b0:49:84:55:28:da:0c:4e:16:d3:0c:66:aa:a7:2f:d7:11:40: f3:44:14:d4:25:17:c6:49:35:b9:1d:cf:2b:7f:0b:73:0b:06: 6e:c5:98:47:14:8c:c6:f7:d7:fe:3d:ba:95:ab:cf:40:6c:ea: 32:c5:52:2a:4f:bf:aa:ce:ef:03:b9:60:45:53:ab:2e:e0:c2: d3:48:7d:b1:cb:04:31:ec:af:25:7c:c2:64:84:64:5a:da:94: c0:87:f8:b3:48:e5:f3:db:db:e3:8b:9d:c1:1a:00:2c:33:85: 44:58:3d:88:5d:f8:74:22:42:60:20:ed:cf:c5:d1:4d:c1:51: f0:c7:b1:f9:60:13:ba:51:f9:f0:97:16:29:be:e4:47:46:54: 6f:ed:b5:b9:c9:cc:d9:28:bd:cd:6f:79:37:12:9c:0e:1e:8c: fe:d2:bd:b1:07:f1:88:a6:d9:a0:e8:b4:73:60:3d:52:b3:b5: 4e:97:e7:ac:88:03:ab:c4:63:6c:60:aa:00:b0:dc:6c:dd:a8: 22:de:93:04:8b:91:73:46:8a:8a:f7:4a:6f:39:41:53:0e:7d: f9:94:d8:74:08:a5:14:da:92:15:88:da:3e:56:9a:58:77:13: 04:9b:5c:df:2c:25:18:5b:5c:a7:ea:d2:e7:3a:b1:3b:40:8d: 46:b0:a9:f5 -----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgIUa1xuZe1G/bTUEV4Bh1/056ky6FEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZGQzIxNjY3NzdGODFGNjZERjRBNEVCNUIyOUZGQTVC MUI1MjVERTAeFw0yNDA2MTcxMTU1MDFaFw0yNTA2MTYxMjAwMDFaMDMxMTAvBgNV BAMTKEZGNDRDQTAxNzNEMEEzNUE4OUY5QjEzM0Y1NTY5MzZBMjIwNTIyQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAwgRu7ftqPz1ct8VCpisNq2df ky0Jbx/lgY9gHpDZfdR9Ky+vfPpW7vuOHqG1Xb4ImKoP65Eptp4wUW+jPtZsspZe DYAX9QFYOQKgtTvQoyHXxkKlN3R4yfAOA01iehKuVF6j9zSu8Rm+ZbYuN5xhRB38 2WEZUq2sKOzHDoEHCSM1kYCIT6kE6MM3R3ofHKiXwKKKSiw8U+JiIhTZgMQdnPp5 mJ+erT1Q8KgX0arh2/ppL+MTQrLeE40OhCt6SRvg17kQQ5NFRjgEKp26OpNSISur Uvg9AL+Kfjf58suIkY/qksxBfaNkvSDGecj9ZdPRDNxdq9ahbjdZx6Y/+3W/AgMB AAGjggI2MIICMjAdBgNVHQ4EFgQU/0TKAXPQo1qJ+bEz9VaTaiIFIrowHwYDVR0j BBgwFoAUn/whZnd/gfZt9KTrWyn/pbG1Jd4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTVlOTEzMS0zYWJjLTRhYmQtYmQ5Mi1hNzU1ZmFiOTEzMDUvMC85RkZDMjE2Njc3 N0Y4MUY2NkRGNEE0RUI1QjI5RkZBNUIxQjUyNURFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUZGQzIxNjY3NzdGODFGNjZERjRBNEVCNUIyOUZGQTVCMUI1 MjVERS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RlNWU5MTMxLTNhYmMtNGFiZC1i ZDkyLWE3NTVmYWI5MTMwNS8wLzMxMzAzMzJlMzEzNDM3MmUzMTMxMzgyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTMzMzkzOTM2MzIucm9hMBgGA1UdIAEB/wQOMAww CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnk3YwDQYJ KoZIhvcNAQELBQADggEBALBJhFUo2gxOFtMMZqqnL9cRQPNEFNQlF8ZJNbkdzyt/ C3MLBm7FmEcUjMb31/49upWrz0Bs6jLFUipPv6rO7wO5YEVTqy7gwtNIfbHLBDHs ryV8wmSEZFralMCH+LNI5fPb2+OLncEaACwzhURYPYhd+HQiQmAg7c/F0U3BUfDH sflgE7pR+fCXFim+5EdGVG/ttbnJzNkovc1veTcSnA4ejP7SvbEH8Yim2aDotHNg PVKztU6X56yIA6vEY2xgqgCw3GzdqCLekwSLkXNGior3Sm85QVMOffmU2HQIpRTa khWI2j5Wmlh3EwSbXN8sJRhbXKfq0uc6sTtAjUawqfU= -----END CERTIFICATE-----Generated at Thu Nov 21 09:07:22 2024 by rpki-client on console-ams.rpki-client.org