$ rpki-client -vvf repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/3130332e31392e35362e302f32342d3234203d3e20313332363337.roa File: 3130332e31392e35362e302f32342d3234203d3e20313332363337.roa (raw, json) Hash identifier: 0SNOXJv5maedIGBL0Qm9Po7XI+eFbCTVR/NtX0bm6ts= Subject key identifier: F2:14:D1:EB:01:61:6C:62:4F:1E:1A:77:FA:53:FE:DF:C8:0B:81:8D Certificate issuer: /CN=7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD Certificate serial: 4AFA688AF2C7C57A992C9703AA9B0B73D36ACB66 Authority key identifier: 7E:FA:64:C1:15:73:C2:92:E1:92:C2:CD:EA:C4:D5:F8:B8:C2:1D:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/3130332e31392e35362e302f32342d3234203d3e20313332363337.roa Signing time: Mon 01 Jul 2024 01:06:06 +0000 ROA not before: Mon 01 Jul 2024 01:01:06 +0000 ROA not after: Mon 30 Jun 2025 01:06:06 +0000 asID: 132637 IP address blocks: 103.19.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.crl rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:fa:68:8a:f2:c7:c5:7a:99:2c:97:03:aa:9b:0b:73:d3:6a:cb:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD Validity Not Before: Jul 1 01:01:06 2024 GMT Not After : Jun 30 01:06:06 2025 GMT Subject: CN=F214D1EB01616C624F1E1A77FA53FEDFC80B818D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:09:ca:e0:f9:c3:ae:4d:11:7f:90:28:d4:d0: 75:b4:c0:fe:33:29:5a:87:32:5f:ee:ee:4e:22:14: 34:e6:4c:e2:bb:db:8f:ac:a6:4b:35:66:cd:4d:e9: 7f:ad:dc:61:f6:ce:ed:88:60:33:55:33:45:de:89: 3b:75:3f:f7:a9:f5:25:24:db:42:22:39:a3:62:89: 3d:49:d8:4a:ab:21:e5:e2:3d:19:a9:76:2c:30:1e: 6c:6a:25:f1:ca:58:04:46:86:31:ee:c2:d5:a5:f8: 50:19:a5:43:92:07:24:6c:74:44:e0:81:44:46:45: 0e:eb:15:35:45:cb:99:4e:53:09:18:23:4e:51:51: 16:cf:74:da:5b:cf:87:38:fd:69:d5:b0:a5:ed:03: ff:b7:1b:0f:2c:e1:5c:13:d5:16:7f:85:17:4d:87: 03:cd:ac:8f:b2:30:be:62:2d:55:0a:b4:38:d2:72: 82:58:3e:1f:7d:ae:6a:4c:f4:c1:10:f8:bd:9b:69: f4:8d:61:73:4e:f4:3a:66:48:11:ac:31:01:28:8f: 59:ae:52:54:78:be:72:9e:77:9b:9c:a7:a8:ac:ee: 98:f3:f8:1c:e1:16:cb:25:6d:aa:15:6b:61:2c:df: c3:39:25:96:b6:45:00:c3:8b:90:4f:44:ae:6c:96: 16:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:14:D1:EB:01:61:6C:62:4F:1E:1A:77:FA:53:FE:DF:C8:0B:81:8D X509v3 Authority Key Identifier: keyid:7E:FA:64:C1:15:73:C2:92:E1:92:C2:CD:EA:C4:D5:F8:B8:C2:1D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/3130332e31392e35362e302f32342d3234203d3e20313332363337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.56.0/24 Signature Algorithm: sha256WithRSAEncryption 21:36:4e:a0:09:0e:d9:7b:a2:23:bf:9b:71:6e:4f:57:ca:a6: 01:e8:9f:56:28:a8:8f:a3:87:5d:7a:d3:37:13:12:f4:f3:f7: 3c:41:9f:b2:45:7c:7b:6a:47:a5:22:3a:f0:7a:11:f2:72:5a: c0:0a:a0:6e:85:a5:d8:3d:0d:41:5e:3e:33:f7:23:16:49:e2: 05:fe:ad:4f:ad:6b:d0:b3:21:6b:65:b7:6c:53:1c:4e:9a:17: 85:72:58:b0:10:11:fe:08:0a:d1:e7:7a:ff:a1:f3:31:b4:41: e9:a0:e4:79:76:f2:30:5a:ff:7b:12:47:44:d5:1d:1e:ed:e1: 65:8e:fe:69:36:ae:53:17:c8:71:87:bd:36:fb:05:81:41:3d: f4:0c:ad:2b:02:39:24:96:0b:14:f0:19:42:17:75:51:3a:7a: 9d:e3:ba:85:25:cf:99:41:26:1d:3d:45:b7:23:88:dc:36:12: 07:be:98:93:ff:e8:c0:22:e7:7a:db:17:20:20:19:d4:90:78: da:45:1c:4c:5d:e3:58:40:1a:98:2b:10:19:57:32:4f:6d:97: 9a:62:2a:4d:21:13:b3:ee:45:a9:99:1e:71:92:a0:36:17:ac: d2:87:b1:18:bf:33:1b:dc:14:1a:37:ee:53:07:32:da:86:29: ce:80:5f:ca -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSvpoivLHxXqZLJcDqpsLc9Nqy2YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0VGQTY0QzExNTczQzI5MkUxOTJDMkNERUFDNEQ1RjhC OEMyMURCRDAeFw0yNDA3MDEwMTAxMDZaFw0yNTA2MzAwMTA2MDZaMDMxMTAvBgNV BAMTKEYyMTREMUVCMDE2MTZDNjI0RjFFMUE3N0ZBNTNGRURGQzgwQjgxOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWCcrg+cOuTRF/kCjU0HW0wP4z KVqHMl/u7k4iFDTmTOK724+spks1Zs1N6X+t3GH2zu2IYDNVM0XeiTt1P/ep9SUk 20IiOaNiiT1J2EqrIeXiPRmpdiwwHmxqJfHKWARGhjHuwtWl+FAZpUOSByRsdETg gURGRQ7rFTVFy5lOUwkYI05RURbPdNpbz4c4/WnVsKXtA/+3Gw8s4VwT1RZ/hRdN hwPNrI+yML5iLVUKtDjScoJYPh99rmpM9MEQ+L2bafSNYXNO9DpmSBGsMQEoj1mu UlR4vnKed5ucp6is7pjz+BzhFsslbaoVa2Es38M5JZa2RQDDi5BPRK5slhbNAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQU8hTR6wFhbGJPHhp3+lP+38gLgY0wHwYDVR0j BBgwFoAUfvpkwRVzwpLhksLN6sTV+LjCHb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDA5MjdlNi04YTBhLTRmYTctODk2OS05ZmI5ZDY5NDM5N2MvMC83RUZBNjRDMTE1 NzNDMjkyRTE5MkMyQ0RFQUM0RDVGOEI4QzIxREJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0VGQTY0QzExNTczQzI5MkUxOTJDMkNERUFDNEQ1RjhCOEMy MURCRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkMDkyN2U2LThhMGEtNGZhNy04 OTY5LTlmYjlkNjk0Mzk3Yy8wLzMxMzAzMzJlMzEzOTJlMzUzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMjM2MzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcTODANBgkqhkiG 9w0BAQsFAAOCAQEAITZOoAkO2XuiI7+bcW5PV8qmAeifViioj6OHXXrTNxMS9PP3 PEGfskV8e2pHpSI68HoR8nJawAqgboWl2D0NQV4+M/cjFkniBf6tT61r0LMha2W3 bFMcTpoXhXJYsBAR/ggK0ed6/6HzMbRB6aDkeXbyMFr/exJHRNUdHu3hZY7+aTau UxfIcYe9NvsFgUE99AytKwI5JJYLFPAZQhd1UTp6neO6hSXPmUEmHT1FtyOI3DYS B76Yk//owCLnetsXICAZ1JB42kUcTF3jWEAamCsQGVcyT22XmmIqTSETs+5FqZke cZKgNhes0oexGL8zG9wUGjfuUwcy2oYpzoBfyg== -----END CERTIFICATE-----Generated at Fri Nov 22 21:02:27 2024 by rpki-client on console-fra.rpki-client.org