$ rpki-client -vvf repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/3130332e34392e32392e302f32342d3234203d3e203633383632.roa File: 3130332e34392e32392e302f32342d3234203d3e203633383632.roa (raw, json) Hash identifier: PpgndnZpAzdDc2UDkV4VvsCyGTBCJcBIPiwK8bhunj4= Subject key identifier: 67:88:AC:D5:EE:76:05:C5:E0:E2:3C:2F:4C:98:00:B3:73:B6:58:5E Certificate issuer: /CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Certificate serial: 27A5D1C80597414B08AA6242595AC28D813D9454 Authority key identifier: 76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/3130332e34392e32392e302f32342d3234203d3e203633383632.roa Signing time: Mon 31 Jul 2023 00:14:32 +0000 ROA not before: Mon 31 Jul 2023 00:09:32 +0000 ROA not after: Mon 29 Jul 2024 00:14:32 +0000 asID: 63862 IP address blocks: 103.49.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Apr 2024 00:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:a5:d1:c8:05:97:41:4b:08:aa:62:42:59:5a:c2:8d:81:3d:94:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=764B23EB6C63FFCAA305F37DBE9B904AE01D60C9 Validity Not Before: Jul 31 00:09:32 2023 GMT Not After : Jul 29 00:14:32 2024 GMT Subject: CN=6788ACD5EE7605C5E0E23C2F4C9800B373B6585E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:22:73:64:ef:c7:10:49:5b:ed:6d:29:c2:b5: 7e:1a:d4:ea:d8:d5:4c:7c:d3:80:14:73:03:89:00: 5f:bd:83:1a:78:8e:f9:3d:2e:0c:3d:b4:e6:11:af: 43:ca:1e:63:f0:b2:0f:69:53:48:ce:7f:2c:52:4d: c9:1a:2f:e4:af:07:79:34:28:d5:10:2b:59:d4:ac: aa:17:78:3a:40:e1:0f:bd:41:aa:b4:ca:81:6a:e3: 22:96:6c:a9:e8:1f:e8:dd:01:70:d1:f9:fc:5f:25: 5c:db:ff:da:d4:4a:c0:98:55:0b:f4:1f:5a:6b:67: 65:b4:5a:2e:ed:e4:c6:57:33:3f:a7:02:e9:db:e8: 15:c2:5d:fe:35:b7:7e:64:a6:35:78:98:f2:9a:5c: 87:86:5f:48:5c:d9:ce:3d:15:ae:6a:85:6e:2a:da: 03:92:4a:02:78:8b:47:61:0a:ae:da:b4:11:cc:09: 7a:ca:fd:52:42:85:ed:ba:dd:a2:29:d8:bb:1f:c5: c3:94:f4:af:38:ec:41:48:0e:39:0e:73:27:92:43: ab:0d:87:c1:54:fa:63:9c:ad:0a:5a:52:bb:58:2b: 08:12:0f:b6:61:42:02:2c:de:4d:24:16:eb:63:06: 63:1d:2f:fb:04:a7:9f:1a:a0:e9:b5:23:f4:26:b5: 55:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:88:AC:D5:EE:76:05:C5:E0:E2:3C:2F:4C:98:00:B3:73:B6:58:5E X509v3 Authority Key Identifier: keyid:76:4B:23:EB:6C:63:FF:CA:A3:05:F3:7D:BE:9B:90:4A:E0:1D:60:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/764B23EB6C63FFCAA305F37DBE9B904AE01D60C9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87e830c8-d559-456a-8835-4f6eb5527aa2/0/3130332e34392e32392e302f32342d3234203d3e203633383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.49.29.0/24 Signature Algorithm: sha256WithRSAEncryption a1:95:b9:02:66:61:c8:7f:ca:67:97:e8:cd:6e:7c:f1:71:8c: 89:4b:e1:07:ea:f3:1f:31:a6:2b:46:55:68:e1:90:80:29:24: e3:1a:be:6b:89:17:4a:af:6a:8c:72:23:2c:fa:83:61:6b:59: ed:27:34:c6:24:50:e5:8f:2d:66:dd:00:fc:70:39:78:18:f4: e8:8b:a4:2b:ec:72:94:0a:e7:e8:9a:f8:07:9b:14:d6:cb:21: 39:e7:7e:08:de:1b:6e:24:9a:75:5f:83:f8:85:d6:fc:08:01: af:57:e8:2f:f7:00:c7:e2:53:73:fe:93:40:65:8b:32:2f:28: 55:39:55:c6:60:d3:3e:55:70:88:93:4f:28:36:b8:7d:f7:67: 57:0a:0e:55:c5:31:48:bb:05:6a:15:18:f2:ed:f2:0a:0c:79: 37:03:74:5d:67:16:59:9a:f8:7b:dd:26:d7:24:81:91:6f:46: 81:d7:45:4d:35:6e:ed:24:4f:f2:30:85:43:8a:cd:07:94:c9: 86:6c:34:aa:02:41:68:b5:1a:32:0d:27:c9:6f:09:64:b3:ac: 39:9b:6c:32:ac:ae:cc:d5:3c:7e:9c:3e:59:dd:dc:ae:a7:72: 9c:7e:27:90:bb:8c:a1:8d:4b:3d:ce:60:e5:e6:8b:8c:ce:37: e7:10:3d:ef -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIUJ6XRyAWXQUsIqmJCWVrCjYE9lFQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFF MDFENjBDOTAeFw0yMzA3MzEwMDA5MzJaFw0yNDA3MjkwMDE0MzJaMDMxMTAvBgNV BAMTKDY3ODhBQ0Q1RUU3NjA1QzVFMEUyM0MyRjRDOTgwMEIzNzNCNjU4NUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTInNk78cQSVvtbSnCtX4a1OrY 1Ux804AUcwOJAF+9gxp4jvk9Lgw9tOYRr0PKHmPwsg9pU0jOfyxSTckaL+SvB3k0 KNUQK1nUrKoXeDpA4Q+9Qaq0yoFq4yKWbKnoH+jdAXDR+fxfJVzb/9rUSsCYVQv0 H1prZ2W0Wi7t5MZXMz+nAunb6BXCXf41t35kpjV4mPKaXIeGX0hc2c49Fa5qhW4q 2gOSSgJ4i0dhCq7atBHMCXrK/VJChe263aIp2LsfxcOU9K847EFIDjkOcyeSQ6sN h8FU+mOcrQpaUrtYKwgSD7ZhQgIs3k0kFutjBmMdL/sEp58aoOm1I/QmtVVZAgMB AAGjggIwMIICLDAdBgNVHQ4EFgQUZ4is1e52BcXg4jwvTJgAs3O2WF4wHwYDVR0j BBgwFoAUdksj62xj/8qjBfN9vpuQSuAdYMkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2U4MzBjOC1kNTU5LTQ1NmEtODgzNS00ZjZlYjU1MjdhYTIvMC83NjRCMjNFQjZD NjNGRkNBQTMwNUYzN0RCRTlCOTA0QUUwMUQ2MEM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzY0QjIzRUI2QzYzRkZDQUEzMDVGMzdEQkU5QjkwNEFFMDFE NjBDOS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZTgzMGM4LWQ1NTktNDU2YS04 ODM1LTRmNmViNTUyN2FhMi8wLzMxMzAzMzJlMzQzOTJlMzIzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM2MzMzODM2MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnMR0wDQYJKoZIhvcN AQELBQADggEBAKGVuQJmYch/ymeX6M1ufPFxjIlL4Qfq8x8xpitGVWjhkIApJOMa vmuJF0qvaoxyIyz6g2FrWe0nNMYkUOWPLWbdAPxwOXgY9OiLpCvscpQK5+ia+Aeb FNbLITnnfgjeG24kmnVfg/iF1vwIAa9X6C/3AMfiU3P+k0BlizIvKFU5VcZg0z5V cIiTTyg2uH33Z1cKDlXFMUi7BWoVGPLt8goMeTcDdF1nFlma+HvdJtckgZFvRoHX RU01bu0kT/IwhUOKzQeUyYZsNKoCQWi1GjINJ8lvCWSzrDmbbDKsrszVPH6cPlnd 3K6ncpx+J5C7jKGNSz3OYOXmi4zON+cQPe8= -----END CERTIFICATE-----Generated at Tue Apr 23 22:11:07 2024 by rpki-client on console-fra.rpki-client.org