$ rpki-client -vvf repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/3130332e37352e3133362e302f32342d3234203d3e20313530353233.roa File: 3130332e37352e3133362e302f32342d3234203d3e20313530353233.roa (raw, json) Hash identifier: +TSGw/DFvNwAesDObCo1aY8x5nXNMKyizWQhwNM0jNs= Subject key identifier: 6F:69:97:02:6F:3F:D7:F4:96:FD:97:1F:4A:A4:A5:EA:78:45:86:BF Certificate issuer: /CN=D0F79D826E43EAB61A7A834E6A2777C5EC821FFD Certificate serial: 27FB7AAB8C3B7173E46D0FA14B8232A2B6FAFCE6 Authority key identifier: D0:F7:9D:82:6E:43:EA:B6:1A:7A:83:4E:6A:27:77:C5:EC:82:1F:FD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/3130332e37352e3133362e302f32342d3234203d3e20313530353233.roa Signing time: Mon 01 Jan 2024 17:00:00 +0000 ROA not before: Mon 01 Jan 2024 16:55:00 +0000 ROA not after: Mon 30 Dec 2024 17:00:00 +0000 asID: 150523 IP address blocks: 103.75.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 06:14:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:fb:7a:ab:8c:3b:71:73:e4:6d:0f:a1:4b:82:32:a2:b6:fa:fc:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0F79D826E43EAB61A7A834E6A2777C5EC821FFD Validity Not Before: Jan 1 16:55:00 2024 GMT Not After : Dec 30 17:00:00 2024 GMT Subject: CN=6F6997026F3FD7F496FD971F4AA4A5EA784586BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:75:ba:95:3f:e6:1c:04:87:86:c4:49:59:6e: 56:ff:e9:44:e1:dc:72:f1:53:2f:c2:31:f4:fe:49: 2a:87:87:56:d8:c4:09:56:21:6e:37:6c:e4:0e:4e: 67:2d:ba:db:c8:7f:96:f9:44:6c:49:d1:92:e2:62: 94:c7:af:13:4a:3d:81:63:50:ed:f6:da:e6:b6:21: 44:ea:2f:db:af:d8:d7:9c:bc:20:30:86:da:00:1f: 20:de:7f:4d:88:08:97:d9:b9:95:7a:e5:45:96:45: 40:f5:8e:fc:1f:21:30:50:c1:05:fc:c5:00:76:17: 77:9c:db:0b:30:10:86:13:8c:e0:9a:98:c1:75:eb: 50:b9:49:e2:10:0b:40:78:69:ac:b5:c6:24:1c:af: 00:c3:fc:16:f3:e9:e4:fa:c7:b9:fa:f4:09:60:fd: 7c:5a:fb:da:ce:d4:a5:14:ae:d8:1c:41:74:98:bb: 0a:70:10:29:e3:84:74:20:f9:cf:8b:35:2a:ac:64: 00:88:b3:55:00:06:89:4a:1d:dd:a7:17:d2:54:f1: 5d:42:f8:ba:9f:1f:76:27:a6:13:cd:2f:0b:c5:be: 58:3c:dd:da:8e:1e:30:70:4b:ce:56:5f:96:6b:03: 3e:cd:08:dc:26:69:5a:09:c3:fe:92:2c:cd:a2:cf: 06:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:69:97:02:6F:3F:D7:F4:96:FD:97:1F:4A:A4:A5:EA:78:45:86:BF X509v3 Authority Key Identifier: keyid:D0:F7:9D:82:6E:43:EA:B6:1A:7A:83:4E:6A:27:77:C5:EC:82:1F:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/3130332e37352e3133362e302f32342d3234203d3e20313530353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.75.136.0/24 Signature Algorithm: sha256WithRSAEncryption a5:5d:61:1c:d1:e5:44:d8:18:3a:74:26:fb:44:a3:6e:00:9c: 75:83:9e:d1:5e:c0:0a:fb:bd:5b:21:af:e0:d4:a3:47:9c:72: 11:22:35:4d:47:1c:95:5d:91:96:33:a7:4e:14:85:91:8e:38: 43:e8:70:f5:db:3e:b7:0d:41:42:07:61:5f:7c:5a:14:74:a5: ca:b6:42:8f:f7:5f:18:16:5e:40:37:95:0f:45:0f:c5:30:f8: 35:ef:c2:14:1f:8d:cc:56:30:89:20:45:e1:b4:5f:39:a3:99: 70:53:eb:3a:51:dc:94:d5:b4:98:60:6e:a0:fa:9c:ea:de:40: 5f:d2:31:bb:06:e8:b3:6e:bf:fa:b2:dd:20:2b:f3:13:7b:49: 83:e3:59:8e:a4:01:98:82:fc:55:74:f9:53:c8:b1:2d:70:36: 6b:3d:14:1a:9f:4e:09:c7:e6:28:ce:85:61:bd:1d:b7:bb:89: c9:06:44:95:e5:de:0b:a5:ac:bf:af:77:75:20:da:9f:91:ff: 05:fd:5e:07:28:84:6c:20:92:b3:03:f1:a1:c6:6c:2b:7f:f9: 9e:62:ed:89:bf:31:e5:31:e8:c8:3c:a2:a7:01:1c:b5:01:1d: 74:97:76:ca:54:ec:b3:c8:fb:b0:c5:55:f8:1b:98:10:74:0a: e0:d3:37:78 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUJ/t6q4w7cXPkbQ+hS4Iyorb6/OYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3QzVF QzgyMUZGRDAeFw0yNDAxMDExNjU1MDBaFw0yNDEyMzAxNzAwMDBaMDMxMTAvBgNV BAMTKDZGNjk5NzAyNkYzRkQ3RjQ5NkZEOTcxRjRBQTRBNUVBNzg0NTg2QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCodbqVP+YcBIeGxElZblb/6UTh 3HLxUy/CMfT+SSqHh1bYxAlWIW43bOQOTmctutvIf5b5RGxJ0ZLiYpTHrxNKPYFj UO322ua2IUTqL9uv2NecvCAwhtoAHyDef02ICJfZuZV65UWWRUD1jvwfITBQwQX8 xQB2F3ec2wswEIYTjOCamMF161C5SeIQC0B4aay1xiQcrwDD/Bbz6eT6x7n69Alg /Xxa+9rO1KUUrtgcQXSYuwpwECnjhHQg+c+LNSqsZACIs1UABolKHd2nF9JU8V1C +LqfH3YnphPNLwvFvlg83dqOHjBwS85WX5ZrAz7NCNwmaVoJw/6SLM2izwbdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUb2mXAm8/1/SW/ZcfSqSl6nhFhr8wHwYDVR0j BBgwFoAU0Pedgm5D6rYaeoNOaid3xeyCH/0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODQ2MzI4NS03YzI4LTQzNWEtODJiYi1mY2MzMmQ1ODAyMGUvMC9EMEY3OUQ4MjZF NDNFQUI2MUE3QTgzNEU2QTI3NzdDNUVDODIxRkZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3QzVFQzgy MUZGRC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI4NDYzMjg1LTdjMjgtNDM1YS04 MmJiLWZjYzMyZDU4MDIwZS8wLzMxMzAzMzJlMzczNTJlMzEzMzM2MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzUzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ0uIMA0GCSqG SIb3DQEBCwUAA4IBAQClXWEc0eVE2Bg6dCb7RKNuAJx1g57RXsAK+71bIa/g1KNH nHIRIjVNRxyVXZGWM6dOFIWRjjhD6HD12z63DUFCB2FffFoUdKXKtkKP918YFl5A N5UPRQ/FMPg178IUH43MVjCJIEXhtF85o5lwU+s6UdyU1bSYYG6g+pzq3kBf0jG7 Buizbr/6st0gK/MTe0mD41mOpAGYgvxVdPlTyLEtcDZrPRQan04Jx+YozoVhvR23 u4nJBkSV5d4Lpay/r3d1INqfkf8F/V4HKIRsIJKzA/Ghxmwrf/meYu2JvzHlMejI PKKnARy1AR10l3bKVOyzyPuwxVX4G5gQdArg0zd4 -----END CERTIFICATE-----Generated at Sat Nov 23 00:05:01 2024 by rpki-client on console-ams.rpki-client.org