$ rpki-client -vvf repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0/3130332e39382e3130342e302f32332d3234203d3e20313336383231.roa File: 3130332e39382e3130342e302f32332d3234203d3e20313336383231.roa (raw, json) Hash identifier: xgQd/rPuf45cpwMdqKxEdoY8KAZbjEHoNo5iZUmNsDg= Subject key identifier: 77:A1:02:F4:34:61:17:7F:43:CC:21:DC:29:44:02:41:15:A3:EF:EE Certificate issuer: /CN=9F6D5D5649D001D2B7A3378F99314A992D482E4A Certificate serial: 0ACDB73016B54345A07BFC63D3497E9641C7E742 Authority key identifier: 9F:6D:5D:56:49:D0:01:D2:B7:A3:37:8F:99:31:4A:99:2D:48:2E:4A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F6D5D5649D001D2B7A3378F99314A992D482E4A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0/3130332e39382e3130342e302f32332d3234203d3e20313336383231.roa Signing time: Sun 30 Jun 2024 23:00:00 +0000 ROA not before: Sun 30 Jun 2024 22:55:00 +0000 ROA not after: Sun 29 Jun 2025 23:00:00 +0000 asID: 136821 IP address blocks: 103.98.104.0/23 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0/9F6D5D5649D001D2B7A3378F99314A992D482E4A.crl rsync://repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0/9F6D5D5649D001D2B7A3378F99314A992D482E4A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F6D5D5649D001D2B7A3378F99314A992D482E4A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:cd:b7:30:16:b5:43:45:a0:7b:fc:63:d3:49:7e:96:41:c7:e7:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F6D5D5649D001D2B7A3378F99314A992D482E4A Validity Not Before: Jun 30 22:55:00 2024 GMT Not After : Jun 29 23:00:00 2025 GMT Subject: CN=77A102F43461177F43CC21DC2944024115A3EFEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:00:21:fe:ae:73:d6:13:09:56:d8:92:79:9a: ec:73:1f:24:85:c1:58:1d:09:b5:c8:66:d9:8d:c1: d5:42:01:97:93:0b:4e:20:87:84:2d:ce:69:6b:b4: a2:39:d4:a5:d1:4e:cd:5e:43:75:a1:a5:d4:33:7e: ef:e3:bb:42:fb:ad:3b:0e:0e:e4:a7:cc:32:6d:fd: eb:d6:65:7e:9f:16:69:33:6a:8d:da:96:27:c4:9b: 97:0d:14:65:e1:89:9a:ea:5f:b8:31:96:8b:7e:2b: 25:be:44:dc:ae:9b:ad:38:7f:68:fa:3a:45:3d:94: c5:1d:4f:76:e1:49:03:a0:d5:d3:b0:ea:7b:4e:37: ea:e1:80:76:34:0b:62:f6:17:bd:10:85:0c:06:5e: a1:f6:bb:d9:44:c4:ac:c5:4e:62:6d:08:c6:67:14: 89:e4:59:7a:f5:82:91:99:5c:ff:ac:2a:e6:51:48: 84:ab:8a:fe:b5:98:0c:58:ed:99:fe:cf:c8:90:30: b4:a9:8a:4c:d5:a7:21:ac:1c:8f:33:d9:23:b8:33: 69:e8:93:1a:33:9f:27:f8:44:85:18:0b:ca:a9:2c: 59:c8:74:73:ac:59:f6:7c:ce:be:ad:b4:a1:a1:ed: 61:ac:1d:40:0a:46:42:39:db:8a:38:e0:40:92:71: 1f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:A1:02:F4:34:61:17:7F:43:CC:21:DC:29:44:02:41:15:A3:EF:EE X509v3 Authority Key Identifier: keyid:9F:6D:5D:56:49:D0:01:D2:B7:A3:37:8F:99:31:4A:99:2D:48:2E:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0/9F6D5D5649D001D2B7A3378F99314A992D482E4A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F6D5D5649D001D2B7A3378F99314A992D482E4A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fd3fc24-75a2-47f6-928e-4e9802b97085/0/3130332e39382e3130342e302f32332d3234203d3e20313336383231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.98.104.0/23 Signature Algorithm: sha256WithRSAEncryption 04:6d:8b:00:67:7d:d5:89:26:37:b5:b3:2d:ee:ed:55:d2:95: 51:04:fd:89:f2:29:f7:0f:96:e4:43:bf:75:f2:7f:79:37:4b: af:e8:ed:63:ac:b2:82:e0:0e:2f:f1:cf:cf:6c:fa:a5:e9:c5: 5d:5a:e2:8b:84:f3:e5:b4:a3:1a:ee:45:74:71:f9:b4:d5:94: 01:0d:40:3a:0f:32:d0:53:90:5b:aa:60:c6:c4:ec:f8:b8:d5: 81:8f:6d:8b:d8:2e:bd:55:e9:90:3a:bd:81:b6:66:eb:36:c9: 6c:91:13:e3:45:e7:69:79:d7:f7:42:3d:f0:96:f7:98:58:23: 30:d2:09:99:df:4e:ac:87:28:44:41:42:d4:4f:1f:da:77:fc: c8:18:9c:12:e4:c6:9b:43:ff:02:42:07:86:6c:bc:ea:20:c6: f2:90:8c:d0:3b:45:87:a3:aa:7b:05:ac:fd:a2:17:2f:0f:04: 7b:9a:6a:6b:1a:2d:6c:f8:6a:25:1c:bc:f8:b3:1f:2b:d3:fb: 6d:87:55:92:46:82:4d:3c:40:f3:f6:ce:f8:4b:ba:79:93:a9: 06:b5:a3:ff:b7:12:f6:58:5d:ce:09:f9:3c:54:d0:01:f7:3e: 29:09:b1:ad:11:48:50:ac:1a:b1:0a:fd:c1:89:cc:e6:75:a4: 3a:4c:d6:ae -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUCs23MBa1Q0Wge/xj00l+lkHH50IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY2RDVENTY0OUQwMDFEMkI3QTMzNzhGOTkzMTRBOTky RDQ4MkU0QTAeFw0yNDA2MzAyMjU1MDBaFw0yNTA2MjkyMzAwMDBaMDMxMTAvBgNV BAMTKDc3QTEwMkY0MzQ2MTE3N0Y0M0NDMjFEQzI5NDQwMjQxMTVBM0VGRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUACH+rnPWEwlW2JJ5muxzHySF wVgdCbXIZtmNwdVCAZeTC04gh4QtzmlrtKI51KXRTs1eQ3WhpdQzfu/ju0L7rTsO DuSnzDJt/evWZX6fFmkzao3alifEm5cNFGXhiZrqX7gxlot+KyW+RNyum604f2j6 OkU9lMUdT3bhSQOg1dOw6ntON+rhgHY0C2L2F70QhQwGXqH2u9lExKzFTmJtCMZn FInkWXr1gpGZXP+sKuZRSISriv61mAxY7Zn+z8iQMLSpikzVpyGsHI8z2SO4M2no kxoznyf4RIUYC8qpLFnIdHOsWfZ8zr6ttKGh7WGsHUAKRkI524o44ECScR/hAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUd6EC9DRhF39DzCHcKUQCQRWj7+4wHwYDVR0j BBgwFoAUn21dVknQAdK3ozePmTFKmS1ILkowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZmQzZmMyNC03NWEyLTQ3ZjYtOTI4ZS00ZTk4MDJiOTcwODUvMC85RjZENUQ1NjQ5 RDAwMUQyQjdBMzM3OEY5OTMxNEE5OTJENDgyRTRBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUY2RDVENTY0OUQwMDFEMkI3QTMzNzhGOTkzMTRBOTkyRDQ4 MkU0QS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmZDNmYzI0LTc1YTItNDdmNi05 MjhlLTRlOTgwMmI5NzA4NS8wLzMxMzAzMzJlMzkzODJlMzEzMDM0MmUzMDJmMzIz MzJkMzIzNDIwM2QzZTIwMzEzMzM2MzgzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ2JoMA0GCSqG SIb3DQEBCwUAA4IBAQAEbYsAZ33ViSY3tbMt7u1V0pVRBP2J8in3D5bkQ7918n95 N0uv6O1jrLKC4A4v8c/PbPql6cVdWuKLhPPltKMa7kV0cfm01ZQBDUA6DzLQU5Bb qmDGxOz4uNWBj22L2C69VemQOr2BtmbrNslskRPjRedpedf3Qj3wlveYWCMw0gmZ 306shyhEQULUTx/ad/zIGJwS5MabQ/8CQgeGbLzqIMbykIzQO0WHo6p7Baz9ohcv DwR7mmprGi1s+GolHLz4sx8r0/tth1WSRoJNPEDz9s74S7p5k6kGtaP/txL2WF3O Cfk8VNAB9z4pCbGtEUhQrBqxCv3BiczmdaQ6TNau -----END CERTIFICATE-----Generated at Fri Nov 22 22:20:41 2024 by rpki-client on console-fra.rpki-client.org