$ rpki-client -vvf repo-rpki.idnic.net/repo/3521e5ee-5882-4943-b408-43c37582fb0b/0/3130332e37362e39312e302f32342d3234203d3e20313530323432.roa File: 3130332e37362e39312e302f32342d3234203d3e20313530323432.roa (raw, json) Hash identifier: IO/iDpjxGtO9u/3pWEFUATuibuSL20cGvyzQOUML/eA= Subject key identifier: 67:83:F7:4D:29:2E:08:68:54:08:81:1E:DF:64:22:13:B1:8E:E7:19 Certificate issuer: /CN=9AF96929E0E99A4F2539BB15137093D976C714CB Certificate serial: 7BD05B1FBA879FC813CC94DAC4E2F3C456BEA557 Authority key identifier: 9A:F9:69:29:E0:E9:9A:4F:25:39:BB:15:13:70:93:D9:76:C7:14:CB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AF96929E0E99A4F2539BB15137093D976C714CB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3521e5ee-5882-4943-b408-43c37582fb0b/0/3130332e37362e39312e302f32342d3234203d3e20313530323432.roa Signing time: Thu 20 Jun 2024 04:20:38 +0000 ROA not before: Thu 20 Jun 2024 04:15:38 +0000 ROA not after: Thu 19 Jun 2025 04:20:38 +0000 asID: 150242 IP address blocks: 103.76.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3521e5ee-5882-4943-b408-43c37582fb0b/0/9AF96929E0E99A4F2539BB15137093D976C714CB.crl rsync://repo-rpki.idnic.net/repo/3521e5ee-5882-4943-b408-43c37582fb0b/0/9AF96929E0E99A4F2539BB15137093D976C714CB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AF96929E0E99A4F2539BB15137093D976C714CB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Sep 2024 19:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:d0:5b:1f:ba:87:9f:c8:13:cc:94:da:c4:e2:f3:c4:56:be:a5:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9AF96929E0E99A4F2539BB15137093D976C714CB Validity Not Before: Jun 20 04:15:38 2024 GMT Not After : Jun 19 04:20:38 2025 GMT Subject: CN=6783F74D292E08685408811EDF642213B18EE719 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:67:ba:07:88:59:2e:3e:11:f6:fa:e4:71:0d: 17:c3:77:44:e4:5c:aa:ee:a5:95:40:fb:c3:f9:4a: ad:e3:03:f6:5f:db:c3:9c:53:f4:ce:62:68:17:59: 58:07:8a:d6:ce:dc:96:e6:c2:16:e7:70:80:18:32: 33:6e:1f:d3:e4:6b:bb:9f:14:6e:ac:fe:cf:9d:8e: de:0a:ac:69:0d:94:e2:bd:7c:0d:98:bb:c3:22:44: ef:d9:2c:13:d9:94:05:02:2b:35:9a:e4:6f:bd:1a: 50:0a:de:b7:dc:bb:fb:5f:f8:4c:69:64:e6:40:f5: d0:36:26:2b:b3:46:4c:78:f1:d5:82:a4:bb:2e:d5: cb:4c:7c:62:46:fc:a8:ff:15:94:94:8b:82:25:6b: 61:78:79:3c:c0:a8:94:6c:52:75:c1:ca:8e:99:18: a1:86:cf:0d:38:6d:c8:92:3f:96:b6:89:e8:a0:0e: 34:d5:9b:61:42:de:cc:9d:be:d9:f5:df:af:cc:af: 6b:41:8c:83:1d:a0:55:bd:2c:1b:55:c5:71:be:37: 4f:7c:bf:ea:ca:84:ef:26:6f:e3:ea:a7:79:1b:b1: 7b:94:a7:e4:ab:1a:fd:ff:08:8f:a0:74:cd:54:c4: 82:87:fe:6f:5e:58:e3:6f:d8:9c:27:d1:3f:34:71: 9a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:83:F7:4D:29:2E:08:68:54:08:81:1E:DF:64:22:13:B1:8E:E7:19 X509v3 Authority Key Identifier: keyid:9A:F9:69:29:E0:E9:9A:4F:25:39:BB:15:13:70:93:D9:76:C7:14:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3521e5ee-5882-4943-b408-43c37582fb0b/0/9AF96929E0E99A4F2539BB15137093D976C714CB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9AF96929E0E99A4F2539BB15137093D976C714CB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3521e5ee-5882-4943-b408-43c37582fb0b/0/3130332e37362e39312e302f32342d3234203d3e20313530323432.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.76.91.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:30:4b:2e:36:7d:55:28:99:07:e9:d4:4c:3c:6b:aa:58:75: b6:cd:3b:0a:ea:76:b0:49:cf:3e:31:df:70:7e:4e:c8:6c:4d: f6:67:3c:8f:52:24:8a:63:e6:69:b1:46:36:ed:23:1c:19:cc: 0c:6a:f5:27:3b:28:ac:9e:52:5a:cc:62:0f:ef:ea:8f:9e:ec: 9a:ad:97:5a:4a:29:2f:f0:f2:5e:91:cc:0b:81:26:c4:72:a8: 43:82:09:7f:e1:d6:f7:25:da:57:b1:f9:d9:7a:a7:04:1f:d0: 59:77:0a:79:42:2d:1f:9f:e3:f3:4b:8a:9c:42:1e:bc:f4:43: 0f:5c:30:99:bf:db:9f:80:ce:9d:b5:ed:a4:99:44:3e:62:e6: 27:38:a0:28:17:19:ad:b7:d0:08:86:e3:ef:06:98:05:63:bf: 07:4c:d0:da:83:71:75:36:1a:79:d9:99:06:aa:c4:19:b0:09: e3:90:58:b4:a7:65:b0:8f:25:6e:89:e7:7d:69:fe:66:db:02: 61:50:9b:d3:7a:08:1c:51:50:1e:f9:74:ed:11:78:70:f5:de: 6c:c9:b2:7d:6c:18:cb:dc:ef:eb:b6:32:f9:a2:27:54:fd:65: 8a:db:05:48:a2:75:8d:b4:79:9f:bb:0d:86:46:2a:d7:62:aa: 2f:f0:3c:41 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUe9BbH7qHn8gTzJTaxOLzxFa+pVcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUFGOTY5MjlFMEU5OUE0RjI1MzlCQjE1MTM3MDkzRDk3 NkM3MTRDQjAeFw0yNDA2MjAwNDE1MzhaFw0yNTA2MTkwNDIwMzhaMDMxMTAvBgNV BAMTKDY3ODNGNzREMjkyRTA4Njg1NDA4ODExRURGNjQyMjEzQjE4RUU3MTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbZ7oHiFkuPhH2+uRxDRfDd0Tk XKrupZVA+8P5Sq3jA/Zf28OcU/TOYmgXWVgHitbO3JbmwhbncIAYMjNuH9Pka7uf FG6s/s+djt4KrGkNlOK9fA2Yu8MiRO/ZLBPZlAUCKzWa5G+9GlAK3rfcu/tf+Exp ZOZA9dA2JiuzRkx48dWCpLsu1ctMfGJG/Kj/FZSUi4Ila2F4eTzAqJRsUnXByo6Z GKGGzw04bciSP5a2ieigDjTVm2FC3sydvtn136/Mr2tBjIMdoFW9LBtVxXG+N098 v+rKhO8mb+Pqp3kbsXuUp+SrGv3/CI+gdM1UxIKH/m9eWONv2Jwn0T80cZoJAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUZ4P3TSkuCGhUCIEe32QiE7GO5xkwHwYDVR0j BBgwFoAUmvlpKeDpmk8lObsVE3CT2XbHFMswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NTIxZTVlZS01ODgyLTQ5NDMtYjQwOC00M2MzNzU4MmZiMGIvMC85QUY5NjkyOUUw RTk5QTRGMjUzOUJCMTUxMzcwOTNEOTc2QzcxNENCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUFGOTY5MjlFMEU5OUE0RjI1MzlCQjE1MTM3MDkzRDk3NkM3 MTRDQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1MjFlNWVlLTU4ODItNDk0My1i NDA4LTQzYzM3NTgyZmIwYi8wLzMxMzAzMzJlMzczNjJlMzkzMTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMxMzUzMDMyMzQzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGdMWzANBgkqhkiG 9w0BAQsFAAOCAQEAGjBLLjZ9VSiZB+nUTDxrqlh1ts07Cup2sEnPPjHfcH5OyGxN 9mc8j1IkimPmabFGNu0jHBnMDGr1JzsorJ5SWsxiD+/qj57smq2XWkopL/DyXpHM C4EmxHKoQ4IJf+HW9yXaV7H52XqnBB/QWXcKeUItH5/j80uKnEIevPRDD1wwmb/b n4DOnbXtpJlEPmLmJzigKBcZrbfQCIbj7waYBWO/B0zQ2oNxdTYaedmZBqrEGbAJ 45BYtKdlsI8lbonnfWn+ZtsCYVCb03oIHFFQHvl07RF4cPXebMmyfWwYy9zv67Yy +aInVP1litsFSKJ1jbR5n7sNhkYq12KqL/A8QQ== -----END CERTIFICATE-----Generated at Thu Sep 26 15:17:13 2024 by rpki-client on console-ams.rpki-client.org