$ rpki-client -vvf repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/3130332e31392e35372e302f32342d3234203d3e20313332363337.roa File: 3130332e31392e35372e302f32342d3234203d3e20313332363337.roa (raw, json) Hash identifier: nvj4vFogJKPPYgFqYmFWvbmjSSvxwuNwrsXUM+va/jI= Subject key identifier: 7C:7E:70:17:CD:2C:D6:EA:BB:9A:BF:96:83:D2:9A:89:0C:E9:CC:B4 Certificate issuer: /CN=7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD Certificate serial: 176DD9A4EA50B528EAF94C63F5DE060B615AE328 Authority key identifier: 7E:FA:64:C1:15:73:C2:92:E1:92:C2:CD:EA:C4:D5:F8:B8:C2:1D:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/3130332e31392e35372e302f32342d3234203d3e20313332363337.roa Signing time: Mon 01 Jul 2024 01:06:06 +0000 ROA not before: Mon 01 Jul 2024 01:01:06 +0000 ROA not after: Mon 30 Jun 2025 01:06:06 +0000 asID: 132637 IP address blocks: 103.19.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.crl rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:6d:d9:a4:ea:50:b5:28:ea:f9:4c:63:f5:de:06:0b:61:5a:e3:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD Validity Not Before: Jul 1 01:01:06 2024 GMT Not After : Jun 30 01:06:06 2025 GMT Subject: CN=7C7E7017CD2CD6EABB9ABF9683D29A890CE9CCB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:74:ae:b4:c5:1c:95:f9:5b:e0:95:87:aa:53: 0e:c5:e9:77:5e:f4:8c:aa:77:e1:29:ad:4a:d3:70: 8f:f6:b0:ed:48:f6:68:dc:64:38:cb:b6:d3:a8:3a: be:54:cf:58:39:47:44:3c:cf:28:0e:ad:a9:ce:1e: 56:a9:4d:cf:48:8f:6c:d9:62:c0:a0:d6:bd:27:e6: 95:0e:d5:64:02:68:df:5e:59:81:a6:1f:e0:02:66: 82:0c:2d:61:fc:cd:0f:8d:c1:57:04:22:01:e4:84: 2c:e6:08:6c:e0:9a:c4:45:49:4f:2e:4f:ae:af:4b: 20:f6:4c:b4:08:f1:57:3b:f0:c7:c0:e4:73:46:2e: 50:56:c2:ec:50:66:88:26:a2:9b:40:ad:88:0b:6e: 66:5b:1a:02:0c:18:eb:6a:ea:e9:cf:e3:c5:03:1f: ac:0b:aa:44:a2:3b:9f:95:1d:89:51:c6:8a:03:a2: 26:bd:ce:6d:84:4d:1c:03:33:94:2c:29:3a:21:51: f8:95:04:40:a8:55:4c:b6:a2:24:5d:5b:43:26:d9: da:5c:05:9a:a1:14:2c:d3:6f:c0:00:8c:3f:60:07: c1:a4:16:f0:f3:73:d3:9c:51:1d:32:e0:ee:07:23: 5e:e7:a7:92:0d:45:b3:a1:f2:49:2a:01:e9:1b:be: 91:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:7E:70:17:CD:2C:D6:EA:BB:9A:BF:96:83:D2:9A:89:0C:E9:CC:B4 X509v3 Authority Key Identifier: keyid:7E:FA:64:C1:15:73:C2:92:E1:92:C2:CD:EA:C4:D5:F8:B8:C2:1D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/3130332e31392e35372e302f32342d3234203d3e20313332363337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.57.0/24 Signature Algorithm: sha256WithRSAEncryption 85:3f:59:bc:b5:04:5e:49:6d:d9:f6:bf:46:48:8e:f9:65:ca: 04:76:da:0a:90:12:b7:fc:c1:91:ef:c6:0b:43:04:9e:be:f4: 6d:7d:28:0c:07:b9:7f:75:07:76:a9:fc:32:42:01:4b:19:03: 91:64:e3:80:4a:75:34:01:f2:8e:ec:54:3b:2a:e9:a2:fe:7a: c5:04:13:de:b1:50:4d:d6:a0:11:0b:c0:99:0c:d0:a8:39:c8: 24:61:05:d0:50:12:e2:dc:8b:a6:f2:1e:6e:be:30:b6:7b:f4: b6:71:aa:3b:bc:21:20:83:a5:2d:82:5a:a9:56:fb:41:41:64: e0:bf:ab:f4:01:4f:ec:43:84:bc:44:e5:4c:82:ab:5c:07:a9: 3d:8c:98:66:fd:ee:0b:30:d0:b4:80:b3:83:c4:06:a3:15:1f: 9b:b8:7e:eb:54:64:a1:76:d5:81:34:ea:f2:94:6c:64:11:fd: 46:db:6d:00:f2:df:66:ae:88:aa:85:69:08:59:ea:73:a4:17: c5:c8:27:bc:fa:63:2c:4b:5c:c7:0e:d9:b4:0a:8a:68:2a:65: ea:80:a8:43:ef:50:8c:d8:77:9a:c9:b1:e7:e8:87:f6:9f:80: 63:a4:02:19:6d:33:68:3b:be:a2:17:95:ec:8b:28:fd:18:70: 69:99:10:8f -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUF23ZpOpQtSjq+Uxj9d4GC2Fa4ygwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0VGQTY0QzExNTczQzI5MkUxOTJDMkNERUFDNEQ1RjhC OEMyMURCRDAeFw0yNDA3MDEwMTAxMDZaFw0yNTA2MzAwMTA2MDZaMDMxMTAvBgNV BAMTKDdDN0U3MDE3Q0QyQ0Q2RUFCQjlBQkY5NjgzRDI5QTg5MENFOUNDQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCldK60xRyV+VvglYeqUw7F6Xde 9Iyqd+EprUrTcI/2sO1I9mjcZDjLttOoOr5Uz1g5R0Q8zygOranOHlapTc9Ij2zZ YsCg1r0n5pUO1WQCaN9eWYGmH+ACZoIMLWH8zQ+NwVcEIgHkhCzmCGzgmsRFSU8u T66vSyD2TLQI8Vc78MfA5HNGLlBWwuxQZogmoptArYgLbmZbGgIMGOtq6unP48UD H6wLqkSiO5+VHYlRxooDoia9zm2ETRwDM5QsKTohUfiVBECoVUy2oiRdW0Mm2dpc BZqhFCzTb8AAjD9gB8GkFvDzc9OcUR0y4O4HI17np5INRbOh8kkqAekbvpF9AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUfH5wF80s1uq7mr+Wg9KaiQzpzLQwHwYDVR0j BBgwFoAUfvpkwRVzwpLhksLN6sTV+LjCHb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDA5MjdlNi04YTBhLTRmYTctODk2OS05ZmI5ZDY5NDM5N2MvMC83RUZBNjRDMTE1 NzNDMjkyRTE5MkMyQ0RFQUM0RDVGOEI4QzIxREJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0VGQTY0QzExNTczQzI5MkUxOTJDMkNERUFDNEQ1RjhCOEMy MURCRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkMDkyN2U2LThhMGEtNGZhNy04 OTY5LTlmYjlkNjk0Mzk3Yy8wLzMxMzAzMzJlMzEzOTJlMzUzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMjM2MzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcTOTANBgkqhkiG 9w0BAQsFAAOCAQEAhT9ZvLUEXklt2fa/RkiO+WXKBHbaCpASt/zBke/GC0MEnr70 bX0oDAe5f3UHdqn8MkIBSxkDkWTjgEp1NAHyjuxUOyrpov56xQQT3rFQTdagEQvA mQzQqDnIJGEF0FAS4tyLpvIebr4wtnv0tnGqO7whIIOlLYJaqVb7QUFk4L+r9AFP 7EOEvETlTIKrXAepPYyYZv3uCzDQtICzg8QGoxUfm7h+61RkoXbVgTTq8pRsZBH9 RtttAPLfZq6IqoVpCFnqc6QXxcgnvPpjLEtcxw7ZtAqKaCpl6oCoQ+9QjNh3msmx 5+iH9p+AY6QCGW0zaDu+oheV7Iso/RhwaZkQjw== -----END CERTIFICATE-----Generated at Fri Nov 22 21:02:27 2024 by rpki-client on console-fra.rpki-client.org