$ rpki-client -vvf repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/3130332e31392e35392e302f32342d3234203d3e20313332363337.roa File: 3130332e31392e35392e302f32342d3234203d3e20313332363337.roa (raw, json) Hash identifier: JU0Fqn+bNHy7TO2FDGiu0v8Et06ozUzFP/f0/9F2tIA= Subject key identifier: 37:F3:A8:D7:A8:9D:1C:D6:07:48:D8:8A:DE:CE:59:11:B3:60:2D:DA Certificate issuer: /CN=7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD Certificate serial: 30174EB3F0FADC1E02F0EDE5A1227FD6ECC806E9 Authority key identifier: 7E:FA:64:C1:15:73:C2:92:E1:92:C2:CD:EA:C4:D5:F8:B8:C2:1D:BD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/3130332e31392e35392e302f32342d3234203d3e20313332363337.roa Signing time: Mon 01 Jul 2024 01:06:06 +0000 ROA not before: Mon 01 Jul 2024 01:01:06 +0000 ROA not after: Mon 30 Jun 2025 01:06:06 +0000 asID: 132637 IP address blocks: 103.19.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.crl rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:17:4e:b3:f0:fa:dc:1e:02:f0:ed:e5:a1:22:7f:d6:ec:c8:06:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD Validity Not Before: Jul 1 01:01:06 2024 GMT Not After : Jun 30 01:06:06 2025 GMT Subject: CN=37F3A8D7A89D1CD60748D88ADECE5911B3602DDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:57:b4:ee:32:ef:c9:ce:22:ef:7d:8a:10:c5: 34:52:df:60:fb:40:75:a6:1e:15:ff:60:a1:2e:d0: 0e:74:c6:b5:2b:b1:48:03:78:04:d4:02:f0:6f:ff: 67:34:61:32:ed:f9:71:de:43:5d:fc:5d:42:e1:6f: 87:a3:f6:c2:8b:da:9a:29:ff:68:62:dc:97:d9:96: 4b:04:59:d2:f1:da:53:c3:92:ca:c0:20:37:a2:72: b8:9d:60:92:32:d5:31:36:ab:57:56:2e:47:50:f8: 09:2c:42:80:0b:17:b9:12:d6:3e:c5:93:a6:e2:ed: 64:63:98:5b:0e:3b:51:90:8b:eb:be:1d:c3:bc:07: 93:85:48:f3:3e:f6:b5:54:21:63:e2:3b:67:d5:67: c0:35:27:1e:ae:6f:ba:6c:b3:1f:1a:93:48:db:62: 83:db:e4:d5:28:7c:51:ff:fb:95:57:60:fa:28:22: e4:e3:c7:1d:c9:b9:80:ba:8c:07:12:e5:a5:4a:34: ea:9c:39:39:7d:26:41:48:90:06:30:a1:78:40:dd: 87:10:d3:a9:5f:40:4f:4b:12:36:a5:6c:97:76:6e: fa:1e:a7:15:62:38:b9:d7:d6:82:a6:f9:cc:b1:7e: 53:6f:e1:89:54:79:97:09:9f:2d:86:bc:6e:17:f2: 0d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:F3:A8:D7:A8:9D:1C:D6:07:48:D8:8A:DE:CE:59:11:B3:60:2D:DA X509v3 Authority Key Identifier: keyid:7E:FA:64:C1:15:73:C2:92:E1:92:C2:CD:EA:C4:D5:F8:B8:C2:1D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/3130332e31392e35392e302f32342d3234203d3e20313332363337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.59.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:5d:28:de:97:8a:9c:fe:18:92:c1:02:ab:55:7d:f1:ce:32: 7f:87:ae:08:5a:e9:ac:a7:aa:f5:a4:e5:a8:31:4f:45:c4:04: 01:86:b9:49:e1:46:7d:1c:9f:62:c8:f1:4a:13:ad:46:42:20: f6:53:81:2a:ca:82:f4:a5:0a:b9:3c:65:bb:40:2e:f8:70:44: 5c:e1:4c:9a:0d:51:50:10:a4:fa:0e:68:93:58:e2:49:4a:e8: f6:28:2c:d3:cc:43:2b:25:be:b8:9c:f6:c9:0a:1e:8b:9b:f2: 62:0b:b9:0b:92:4d:75:6d:c1:0e:06:94:d1:1e:50:c9:cd:18: e4:c8:c0:de:03:cd:37:8b:58:d7:d2:ed:dd:f1:6e:89:4a:f1: e4:a0:36:4a:be:ba:40:2a:62:37:dc:4e:cf:35:50:c2:fe:cc: 24:dd:ef:7f:18:1c:60:37:d8:3d:0c:b0:3a:ea:86:7c:ac:0a: 53:60:b1:20:0c:f0:7e:b1:97:0d:e2:f5:c1:b2:fc:5c:fc:53: 64:4c:f6:c6:50:da:f2:97:77:13:b9:37:d5:d2:b7:f1:ca:9a: 5e:4c:54:71:8c:d0:21:09:5d:41:ca:3d:58:a9:13:89:81:f4: 0f:75:67:14:41:50:31:7a:f4:cd:1c:7d:48:bc:7b:01:53:15: 71:42:48:5b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMBdOs/D63B4C8O3loSJ/1uzIBukwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0VGQTY0QzExNTczQzI5MkUxOTJDMkNERUFDNEQ1RjhC OEMyMURCRDAeFw0yNDA3MDEwMTAxMDZaFw0yNTA2MzAwMTA2MDZaMDMxMTAvBgNV BAMTKDM3RjNBOEQ3QTg5RDFDRDYwNzQ4RDg4QURFQ0U1OTExQjM2MDJEREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjV7TuMu/JziLvfYoQxTRS32D7 QHWmHhX/YKEu0A50xrUrsUgDeATUAvBv/2c0YTLt+XHeQ138XULhb4ej9sKL2pop /2hi3JfZlksEWdLx2lPDksrAIDeicridYJIy1TE2q1dWLkdQ+AksQoALF7kS1j7F k6bi7WRjmFsOO1GQi+u+HcO8B5OFSPM+9rVUIWPiO2fVZ8A1Jx6ub7pssx8ak0jb YoPb5NUofFH/+5VXYPooIuTjxx3JuYC6jAcS5aVKNOqcOTl9JkFIkAYwoXhA3YcQ 06lfQE9LEjalbJd2bvoepxViOLnX1oKm+cyxflNv4YlUeZcJny2GvG4X8g0zAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUN/Oo16idHNYHSNiK3s5ZEbNgLdowHwYDVR0j BBgwFoAUfvpkwRVzwpLhksLN6sTV+LjCHb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDA5MjdlNi04YTBhLTRmYTctODk2OS05ZmI5ZDY5NDM5N2MvMC83RUZBNjRDMTE1 NzNDMjkyRTE5MkMyQ0RFQUM0RDVGOEI4QzIxREJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvN0VGQTY0QzExNTczQzI5MkUxOTJDMkNERUFDNEQ1RjhCOEMy MURCRC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkMDkyN2U2LThhMGEtNGZhNy04 OTY5LTlmYjlkNjk0Mzk3Yy8wLzMxMzAzMzJlMzEzOTJlMzUzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzMzMjM2MzMzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGcTOzANBgkqhkiG 9w0BAQsFAAOCAQEAil0o3peKnP4YksECq1V98c4yf4euCFrprKeq9aTlqDFPRcQE AYa5SeFGfRyfYsjxShOtRkIg9lOBKsqC9KUKuTxlu0Au+HBEXOFMmg1RUBCk+g5o k1jiSUro9igs08xDKyW+uJz2yQoei5vyYgu5C5JNdW3BDgaU0R5Qyc0Y5MjA3gPN N4tY19Lt3fFuiUrx5KA2Sr66QCpiN9xOzzVQwv7MJN3vfxgcYDfYPQywOuqGfKwK U2CxIAzwfrGXDeL1wbL8XPxTZEz2xlDa8pd3E7k31dK38cqaXkxUcYzQIQldQco9 WKkTiYH0D3VnFEFQMXr0zRx9SLx7AVMVcUJIWw== -----END CERTIFICATE-----Generated at Fri Nov 22 21:02:27 2024 by rpki-client on console-fra.rpki-client.org