$ rpki-client -vvf repo-rpki.idnic.net/repo/dff0af6a-c680-4731-9b92-9aa93d9c016c/0/3130332e3134372e3134322e302f32332d3234203d3e203137373639.roa File: 3130332e3134372e3134322e302f32332d3234203d3e203137373639.roa (raw, json) Hash identifier: J8hK76n9jAxJfoZwmgnUWZPJmdbHYnBHcHNL1o/2t5w= Subject key identifier: 51:74:49:7C:F9:DF:73:15:D9:88:5D:24:59:DE:C5:AE:2E:00:6E:73 Certificate issuer: /CN=A2D790243ED650B27D7A54EBD16ADC6811CF14BD Certificate serial: 7BA0CCAD75F129B7198538CB60CE6FFA420BF23E Authority key identifier: A2:D7:90:24:3E:D6:50:B2:7D:7A:54:EB:D1:6A:DC:68:11:CF:14:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2D790243ED650B27D7A54EBD16ADC6811CF14BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dff0af6a-c680-4731-9b92-9aa93d9c016c/0/3130332e3134372e3134322e302f32332d3234203d3e203137373639.roa Signing time: Tue 01 Oct 2024 04:02:59 +0000 ROA not before: Tue 01 Oct 2024 03:57:59 +0000 ROA not after: Tue 30 Sep 2025 04:02:59 +0000 asID: 17769 IP address blocks: 103.147.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dff0af6a-c680-4731-9b92-9aa93d9c016c/0/A2D790243ED650B27D7A54EBD16ADC6811CF14BD.crl rsync://repo-rpki.idnic.net/repo/dff0af6a-c680-4731-9b92-9aa93d9c016c/0/A2D790243ED650B27D7A54EBD16ADC6811CF14BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2D790243ED650B27D7A54EBD16ADC6811CF14BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:a0:cc:ad:75:f1:29:b7:19:85:38:cb:60:ce:6f:fa:42:0b:f2:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2D790243ED650B27D7A54EBD16ADC6811CF14BD Validity Not Before: Oct 1 03:57:59 2024 GMT Not After : Sep 30 04:02:59 2025 GMT Subject: CN=5174497CF9DF7315D9885D2459DEC5AE2E006E73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:37:54:b1:ae:54:06:96:ce:18:35:8a:d6:8c: ae:cd:fb:b6:10:e4:31:df:2b:a5:f0:24:2a:9a:35: 18:0d:de:c7:7f:a3:5b:18:04:4c:26:f2:06:0b:43: 98:6f:89:61:8f:3e:58:da:bc:3e:58:e7:d1:58:45: f5:32:2e:9b:be:7f:98:a4:b3:18:d8:b4:65:82:3e: 1c:40:fa:d3:7b:f2:9a:6f:2f:fb:68:05:87:9c:92: 0e:17:83:2e:f5:df:a7:bf:8a:d2:66:40:c3:f4:db: ad:e5:5d:55:b7:1a:a9:cc:71:fe:88:6d:bf:45:00: f7:a5:bb:fa:a0:08:14:6f:cd:04:ed:b5:d7:b0:86: 00:b5:f2:1d:01:e3:65:38:41:df:5f:4d:11:ec:48: 46:5b:7e:b2:98:2a:a7:6b:6f:3e:14:89:c9:a1:f9: af:68:b4:cc:03:59:78:74:b6:5e:97:7f:7b:ca:fd: 13:e1:05:1a:79:89:0c:c4:7c:5e:b8:2a:18:76:e4: c6:e6:a9:e4:90:85:3b:19:d6:02:98:64:b9:16:03: b8:f8:bb:32:73:5f:c5:76:54:e7:16:47:3c:e0:1f: e2:cd:a5:3a:77:20:7a:1b:dd:22:d5:10:f8:48:cc: bd:14:b1:ea:5c:a6:61:4c:40:88:16:0e:5b:69:c9: 47:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:74:49:7C:F9:DF:73:15:D9:88:5D:24:59:DE:C5:AE:2E:00:6E:73 X509v3 Authority Key Identifier: keyid:A2:D7:90:24:3E:D6:50:B2:7D:7A:54:EB:D1:6A:DC:68:11:CF:14:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dff0af6a-c680-4731-9b92-9aa93d9c016c/0/A2D790243ED650B27D7A54EBD16ADC6811CF14BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2D790243ED650B27D7A54EBD16ADC6811CF14BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dff0af6a-c680-4731-9b92-9aa93d9c016c/0/3130332e3134372e3134322e302f32332d3234203d3e203137373639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.142.0/23 Signature Algorithm: sha256WithRSAEncryption 02:8f:4a:d5:7c:c4:79:4c:5e:ad:06:df:ea:7e:5f:a7:ad:7f: e6:e8:78:8f:ea:9b:4e:64:54:bc:30:29:74:77:be:05:9f:24: 09:aa:2f:e9:de:cf:b0:8b:13:7d:ad:12:e4:2f:37:2f:d2:03: 07:3e:8a:5a:e7:f9:e8:dd:9a:32:01:3b:5d:7a:72:a7:19:dc: f1:9e:3a:07:5e:3e:f1:d5:bf:f1:d5:4c:df:b3:cf:cf:d0:7e: 9d:de:71:7e:54:11:be:9f:0a:52:bf:49:58:75:5e:33:92:fb: c3:77:6d:80:91:66:9c:5a:7c:df:91:b9:e4:84:84:96:54:ac: 22:eb:e4:38:fb:a0:31:ea:9e:8b:c5:22:ec:1c:fe:3c:22:cd: 4c:86:94:d7:3b:66:fd:2f:6a:26:12:ad:ef:5b:1d:b4:db:52: 87:74:75:ab:b4:6f:24:62:1e:1d:a0:5b:1c:99:e2:79:ff:47: 86:a3:7b:9c:f3:18:e6:e6:ea:88:87:18:5c:e9:1c:ad:4e:e8: 61:a7:a4:31:2f:04:bc:98:c7:94:76:f8:95:96:91:51:de:ce: 28:00:bb:89:cc:2f:95:db:ff:6b:9d:be:38:be:b7:a3:fb:de: f4:07:51:23:b3:f8:ba:8d:37:20:e3:a8:2d:a1:c8:93:2f:3c: 5a:c5:af:ef -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUe6DMrXXxKbcZhTjLYM5v+kIL8j4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTJENzkwMjQzRUQ2NTBCMjdEN0E1NEVCRDE2QURDNjgx MUNGMTRCRDAeFw0yNDEwMDEwMzU3NTlaFw0yNTA5MzAwNDAyNTlaMDMxMTAvBgNV BAMTKDUxNzQ0OTdDRjlERjczMTVEOTg4NUQyNDU5REVDNUFFMkUwMDZFNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlN1SxrlQGls4YNYrWjK7N+7YQ 5DHfK6XwJCqaNRgN3sd/o1sYBEwm8gYLQ5hviWGPPljavD5Y59FYRfUyLpu+f5ik sxjYtGWCPhxA+tN78ppvL/toBYeckg4Xgy7136e/itJmQMP0263lXVW3GqnMcf6I bb9FAPelu/qgCBRvzQTttdewhgC18h0B42U4Qd9fTRHsSEZbfrKYKqdrbz4Uicmh +a9otMwDWXh0tl6Xf3vK/RPhBRp5iQzEfF64Khh25MbmqeSQhTsZ1gKYZLkWA7j4 uzJzX8V2VOcWRzzgH+LNpTp3IHob3SLVEPhIzL0UsepcpmFMQIgWDltpyUc/AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUUXRJfPnfcxXZiF0kWd7Fri4AbnMwHwYDVR0j BBgwFoAUoteQJD7WULJ9elTr0WrcaBHPFL0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmYwYWY2YS1jNjgwLTQ3MzEtOWI5Mi05YWE5M2Q5YzAxNmMvMC9BMkQ3OTAyNDNF RDY1MEIyN0Q3QTU0RUJEMTZBREM2ODExQ0YxNEJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTJENzkwMjQzRUQ2NTBCMjdEN0E1NEVCRDE2QURDNjgxMUNG MTRCRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmZjBhZjZhLWM2ODAtNDczMS05 YjkyLTlhYTkzZDljMDE2Yy8wLzMxMzAzMzJlMzEzNDM3MmUzMTM0MzIyZTMwMmYz MjMzMmQzMjM0MjAzZDNlMjAzMTM3MzczNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5OOMA0GCSqG SIb3DQEBCwUAA4IBAQACj0rVfMR5TF6tBt/qfl+nrX/m6HiP6ptOZFS8MCl0d74F nyQJqi/p3s+wixN9rRLkLzcv0gMHPopa5/no3ZoyATtdenKnGdzxnjoHXj7x1b/x 1Uzfs8/P0H6d3nF+VBG+nwpSv0lYdV4zkvvDd22AkWacWnzfkbnkhISWVKwi6+Q4 +6Ax6p6LxSLsHP48Is1MhpTXO2b9L2omEq3vWx2021KHdHWrtG8kYh4doFscmeJ5 /0eGo3uc8xjm5uqIhxhc6RytTuhhp6QxLwS8mMeUdviVlpFR3s4oALuJzC+V2/9r nb44vrej+970B1Ejs/i6jTcg46gtociTLzxaxa/v -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:57 2024 by rpki-client on console-ams.rpki-client.org