$ rpki-client -vvf repo-rpki.idnic.net/repo/1ad39450-4584-4882-b5a7-2cbc0e577474/0/3130332e36372e38342e302f32332d3234203d3e20313532303034.roa File: 3130332e36372e38342e302f32332d3234203d3e20313532303034.roa (raw, json) Hash identifier: N/5ZvVZ0rYgeXmpV1zrbx8ChyoSwszYN8MPi6zIhM8E= Subject key identifier: AE:FF:19:7C:FE:17:7E:87:BB:D9:3A:D8:61:E8:01:84:08:E4:C6:DC Certificate issuer: /CN=35603F2919BB405970CB4BAB181C2B63764E0771 Certificate serial: 5028A7984ED86A41069F310A24196D1F1E452AAB Authority key identifier: 35:60:3F:29:19:BB:40:59:70:CB:4B:AB:18:1C:2B:63:76:4E:07:71 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35603F2919BB405970CB4BAB181C2B63764E0771.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ad39450-4584-4882-b5a7-2cbc0e577474/0/3130332e36372e38342e302f32332d3234203d3e20313532303034.roa Signing time: Fri 03 May 2024 01:45:07 +0000 ROA not before: Fri 03 May 2024 01:40:07 +0000 ROA not after: Fri 02 May 2025 01:45:07 +0000 asID: 152004 IP address blocks: 103.67.84.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ad39450-4584-4882-b5a7-2cbc0e577474/0/35603F2919BB405970CB4BAB181C2B63764E0771.crl rsync://repo-rpki.idnic.net/repo/1ad39450-4584-4882-b5a7-2cbc0e577474/0/35603F2919BB405970CB4BAB181C2B63764E0771.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35603F2919BB405970CB4BAB181C2B63764E0771.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Sep 2024 06:11:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:28:a7:98:4e:d8:6a:41:06:9f:31:0a:24:19:6d:1f:1e:45:2a:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35603F2919BB405970CB4BAB181C2B63764E0771 Validity Not Before: May 3 01:40:07 2024 GMT Not After : May 2 01:45:07 2025 GMT Subject: CN=AEFF197CFE177E87BBD93AD861E8018408E4C6DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f8:31:66:09:a8:da:f5:4d:71:81:11:1c:2b: 40:b4:17:3a:82:32:17:f8:9f:ed:75:2b:0c:25:cd: be:c7:98:2b:68:96:ec:bb:79:e1:35:44:a4:ba:d2: 2b:9b:f4:d2:2d:3a:a5:40:53:75:11:de:b0:01:d6: 95:56:da:4d:a6:33:0e:3c:53:7f:7c:d1:2b:09:0a: 2b:04:c7:a8:51:0f:d3:37:18:2a:15:58:51:83:51: aa:77:83:a2:11:4b:11:56:f0:7f:13:9d:9a:bb:b0: 55:2d:75:96:db:41:31:92:b7:70:a7:71:c9:6b:8b: 06:8e:50:24:fb:f5:52:3d:98:79:af:c0:1a:17:e3: 8a:12:6a:e2:ad:ea:d8:90:59:14:77:02:8f:c3:8b: 23:2e:d0:84:78:7d:e5:32:6d:3c:72:a9:76:ad:6f: e8:03:33:d9:e7:cb:ac:7d:2d:4f:70:ed:9b:cc:59: 8e:f9:cc:8b:db:a9:71:d5:ec:18:ae:7d:e8:5f:b3: d5:bf:82:a4:41:a4:1c:38:cd:ba:cd:c9:d3:3c:9c: 0f:91:f4:7f:27:bc:7e:20:63:eb:33:b3:a4:8f:9c: c6:07:29:61:ef:b8:0f:74:5a:d3:0f:f9:6f:d2:7e: 86:77:50:52:96:51:dc:8d:84:a3:15:63:72:b9:c5: dc:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:FF:19:7C:FE:17:7E:87:BB:D9:3A:D8:61:E8:01:84:08:E4:C6:DC X509v3 Authority Key Identifier: keyid:35:60:3F:29:19:BB:40:59:70:CB:4B:AB:18:1C:2B:63:76:4E:07:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ad39450-4584-4882-b5a7-2cbc0e577474/0/35603F2919BB405970CB4BAB181C2B63764E0771.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35603F2919BB405970CB4BAB181C2B63764E0771.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ad39450-4584-4882-b5a7-2cbc0e577474/0/3130332e36372e38342e302f32332d3234203d3e20313532303034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.67.84.0/23 Signature Algorithm: sha256WithRSAEncryption a5:72:66:4a:2a:94:1e:3f:1f:6a:d8:ba:e6:95:09:1d:66:7b: c6:dc:5d:a0:c2:90:a5:6f:44:2d:c7:89:cf:05:d8:ca:05:a2: 62:ca:c9:71:ed:ce:2d:e0:bd:d1:03:5b:73:63:f2:ec:a3:0a: a6:55:10:6f:0f:e4:24:2e:14:ac:d8:73:00:24:44:05:78:b0: 27:96:f6:87:79:01:e9:3f:ff:25:fd:52:ef:1b:c0:d4:a9:78: 3c:d0:35:ef:fd:1a:ff:00:41:a7:e3:c9:f9:8a:93:80:6e:48: bb:6a:fe:61:f5:c9:49:98:c3:a8:dc:01:a9:72:8b:35:da:bb: 8b:1b:51:fa:77:01:32:cf:53:ff:d5:85:48:70:70:18:73:e7: eb:2e:f3:44:7d:df:5a:a9:18:ae:4c:8b:78:76:ce:e9:a8:1a: 60:11:ce:db:41:53:27:74:1b:35:23:24:2e:28:36:b0:b9:18: e3:0c:e6:a6:ad:dd:ca:e0:82:40:47:d8:e3:ac:49:16:d5:86: 4e:59:43:81:3f:b6:e0:9c:7f:a0:87:a7:1d:4e:b6:a7:b7:1c: 9d:24:29:d5:1c:75:a6:b5:cd:ea:15:5f:85:25:91:33:3b:2b: 17:a6:93:7b:66:95:e6:1f:d3:52:fd:d2:31:11:ef:13:a9:f3: 75:56:16:95 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUUCinmE7YakEGnzEKJBltHx5FKqswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU2MDNGMjkxOUJCNDA1OTcwQ0I0QkFCMTgxQzJCNjM3 NjRFMDc3MTAeFw0yNDA1MDMwMTQwMDdaFw0yNTA1MDIwMTQ1MDdaMDMxMTAvBgNV BAMTKEFFRkYxOTdDRkUxNzdFODdCQkQ5M0FEODYxRTgwMTg0MDhFNEM2REMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK+DFmCaja9U1xgREcK0C0FzqC Mhf4n+11Kwwlzb7HmCtoluy7eeE1RKS60iub9NItOqVAU3UR3rAB1pVW2k2mMw48 U3980SsJCisEx6hRD9M3GCoVWFGDUap3g6IRSxFW8H8TnZq7sFUtdZbbQTGSt3Cn cclriwaOUCT79VI9mHmvwBoX44oSauKt6tiQWRR3Ao/DiyMu0IR4feUybTxyqXat b+gDM9nny6x9LU9w7ZvMWY75zIvbqXHV7Biufehfs9W/gqRBpBw4zbrNydM8nA+R 9H8nvH4gY+szs6SPnMYHKWHvuA90WtMP+W/SfoZ3UFKWUdyNhKMVY3K5xdxJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUrv8ZfP4Xfoe72TrYYegBhAjkxtwwHwYDVR0j BBgwFoAUNWA/KRm7QFlwy0urGBwrY3ZOB3EwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YWQzOTQ1MC00NTg0LTQ4ODItYjVhNy0yY2JjMGU1Nzc0NzQvMC8zNTYwM0YyOTE5 QkI0MDU5NzBDQjRCQUIxODFDMkI2Mzc2NEUwNzcxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU2MDNGMjkxOUJCNDA1OTcwQ0I0QkFCMTgxQzJCNjM3NjRF MDc3MS5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhZDM5NDUwLTQ1ODQtNDg4Mi1i NWE3LTJjYmMwZTU3NzQ3NC8wLzMxMzAzMzJlMzYzNzJlMzgzNDJlMzAyZjMyMzMy ZDMyMzQyMDNkM2UyMDMxMzUzMjMwMzAzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWdDVDANBgkqhkiG 9w0BAQsFAAOCAQEApXJmSiqUHj8fati65pUJHWZ7xtxdoMKQpW9ELceJzwXYygWi YsrJce3OLeC90QNbc2Py7KMKplUQbw/kJC4UrNhzACREBXiwJ5b2h3kB6T//Jf1S 7xvA1Kl4PNA17/0a/wBBp+PJ+YqTgG5Iu2r+YfXJSZjDqNwBqXKLNdq7ixtR+ncB Ms9T/9WFSHBwGHPn6y7zRH3fWqkYrkyLeHbO6agaYBHO20FTJ3QbNSMkLig2sLkY 4wzmpq3dyuCCQEfY46xJFtWGTllDgT+24Jx/oIenHU62p7ccnSQp1Rx1prXN6hVf hSWRMzsrF6aTe2aV5h/TUv3SMRHvE6nzdVYWlQ== -----END CERTIFICATE-----Generated at Fri Sep 27 07:38:43 2024 by rpki-client on console-fra.rpki-client.org