$ rpki-client -vvf repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/3130332e3130312e39372e302f32342d3234203d3e20313530393430.roa File: 3130332e3130312e39372e302f32342d3234203d3e20313530393430.roa (raw, json) Hash identifier: Fb4tLrqJoZos25kCGNCZOgpy0++sIR5jzr5AGe3rv9s= Subject key identifier: 99:94:64:B0:88:AB:F3:8D:8F:9B:38:7B:39:15:49:A7:66:76:AF:67 Certificate issuer: /CN=8D7AD1F796C88BCD49E1BEC42851AFA58BD78588 Certificate serial: 19C7C649D3C65DB38A314B50CE34D060E7155E44 Authority key identifier: 8D:7A:D1:F7:96:C8:8B:CD:49:E1:BE:C4:28:51:AF:A5:8B:D7:85:88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/3130332e3130312e39372e302f32342d3234203d3e20313530393430.roa Signing time: Sun 03 Mar 2024 04:01:55 +0000 ROA not before: Sun 03 Mar 2024 03:56:55 +0000 ROA not after: Sun 02 Mar 2025 04:01:55 +0000 asID: 150940 IP address blocks: 103.101.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.crl rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:c7:c6:49:d3:c6:5d:b3:8a:31:4b:50:ce:34:d0:60:e7:15:5e:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D7AD1F796C88BCD49E1BEC42851AFA58BD78588 Validity Not Before: Mar 3 03:56:55 2024 GMT Not After : Mar 2 04:01:55 2025 GMT Subject: CN=999464B088ABF38D8F9B387B391549A76676AF67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:8a:05:d2:d4:8c:a5:e7:92:50:93:c7:a5:cb: b4:b8:00:80:89:6c:4f:eb:6c:7f:87:de:dd:70:33: 95:d5:84:52:11:73:23:54:09:e5:1e:74:83:92:1e: 3b:3d:d0:05:20:60:e0:a7:e5:a3:cc:73:ab:44:05: 73:8b:96:e0:95:66:72:4e:8e:1f:ef:55:eb:e6:eb: 34:91:f5:24:30:6c:f4:28:74:c3:75:9b:50:59:05: b9:e4:81:2a:3a:8d:b4:45:b1:32:8d:61:6e:cb:0c: 46:2f:3f:2c:1b:01:0e:ca:28:ef:0f:b3:ca:05:8e: 16:9a:99:9a:86:5d:92:53:71:95:de:34:d3:a3:24: d7:2d:aa:eb:bb:f7:34:9f:50:a9:17:5f:69:bf:dd: e2:1d:cf:bc:5e:70:50:bb:fb:63:cb:5b:8a:a5:8f: d8:21:80:50:80:3b:59:aa:10:3c:39:25:99:3c:8d: d7:12:df:0a:36:cb:96:f9:dc:13:d7:df:28:3f:e2: 28:f3:90:2d:81:db:90:e4:b1:eb:7c:c1:c7:a2:de: a2:7b:7a:87:1e:e9:aa:5f:5e:5b:c4:66:9b:53:1c: f4:0e:01:7e:20:08:78:3c:10:94:9b:a1:a1:a7:85: 5b:98:28:44:8c:d8:25:13:72:37:43:2d:0f:07:a2: 9e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:94:64:B0:88:AB:F3:8D:8F:9B:38:7B:39:15:49:A7:66:76:AF:67 X509v3 Authority Key Identifier: keyid:8D:7A:D1:F7:96:C8:8B:CD:49:E1:BE:C4:28:51:AF:A5:8B:D7:85:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8D7AD1F796C88BCD49E1BEC42851AFA58BD78588.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4157c9ac-52db-4dba-ac77-845e2ddd8879/0/3130332e3130312e39372e302f32342d3234203d3e20313530393430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.101.97.0/24 Signature Algorithm: sha256WithRSAEncryption 98:a9:76:aa:59:38:a3:ae:6c:e5:2a:d4:0a:f8:11:b0:9e:fe: 0e:9e:c2:66:d8:1d:a3:bb:3a:26:2c:8b:4c:9a:9b:5e:56:b9: 78:78:ec:8a:39:c2:f0:59:ef:47:9f:30:b9:2b:39:ac:eb:6d: 6d:15:4c:37:87:e2:56:b2:c7:bd:0e:df:d4:cc:b6:80:7a:c5: 44:21:97:7f:43:05:55:7b:db:e0:d3:20:fb:2a:c5:0f:e7:50: 62:92:78:13:73:61:43:fa:89:b4:b0:40:e9:c3:0e:06:91:e8: 0d:04:44:24:bf:31:7f:09:6d:5d:53:bf:a8:b8:67:87:2f:5f: 14:53:02:7c:8f:73:4f:1a:d5:d7:8d:bd:8f:d8:8b:a9:28:62: cd:a7:9a:a0:6f:d3:97:f4:12:a5:79:21:1e:d0:7d:7d:3d:90: 26:ab:0e:dc:bf:e5:9b:6b:0c:d8:7e:43:82:eb:c6:13:4d:74: e7:75:96:0b:56:dc:c0:f3:c0:ba:ca:4b:af:8e:5a:dc:86:22: 86:4f:3b:bd:8c:34:61:48:9e:03:8a:89:b3:d6:b4:90:ba:ee: a0:b5:a6:5d:f6:6c:20:e7:6b:23:98:e3:e4:57:f2:03:b5:35: aa:13:fa:ec:6b:10:2d:5e:84:2a:62:22:b0:50:02:75:90:bf: dc:3e:20:22 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGcfGSdPGXbOKMUtQzjTQYOcVXkQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEQ3QUQxRjc5NkM4OEJDRDQ5RTFCRUM0Mjg1MUFGQTU4 QkQ3ODU4ODAeFw0yNDAzMDMwMzU2NTVaFw0yNTAzMDIwNDAxNTVaMDMxMTAvBgNV BAMTKDk5OTQ2NEIwODhBQkYzOEQ4RjlCMzg3QjM5MTU0OUE3NjY3NkFGNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvigXS1Iyl55JQk8ely7S4AICJ bE/rbH+H3t1wM5XVhFIRcyNUCeUedIOSHjs90AUgYOCn5aPMc6tEBXOLluCVZnJO jh/vVevm6zSR9SQwbPQodMN1m1BZBbnkgSo6jbRFsTKNYW7LDEYvPywbAQ7KKO8P s8oFjhaamZqGXZJTcZXeNNOjJNctquu79zSfUKkXX2m/3eIdz7xecFC7+2PLW4ql j9ghgFCAO1mqEDw5JZk8jdcS3wo2y5b53BPX3yg/4ijzkC2B25Dkset8wcei3qJ7 eoce6apfXlvEZptTHPQOAX4gCHg8EJSboaGnhVuYKESM2CUTcjdDLQ8Hop7PAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUmZRksIir842Pmzh7ORVJp2Z2r2cwHwYDVR0j BBgwFoAUjXrR95bIi81J4b7EKFGvpYvXhYgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MTU3YzlhYy01MmRiLTRkYmEtYWM3Ny04NDVlMmRkZDg4NzkvMC84RDdBRDFGNzk2 Qzg4QkNENDlFMUJFQzQyODUxQUZBNThCRDc4NTg4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEQ3QUQxRjc5NkM4OEJDRDQ5RTFCRUM0Mjg1MUFGQTU4QkQ3 ODU4OC5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQxNTdjOWFjLTUyZGItNGRiYS1h Yzc3LTg0NWUyZGRkODg3OS8wLzMxMzAzMzJlMzEzMDMxMmUzOTM3MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMwMzkzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2VhMA0GCSqG SIb3DQEBCwUAA4IBAQCYqXaqWTijrmzlKtQK+BGwnv4OnsJm2B2juzomLItMmpte Vrl4eOyKOcLwWe9HnzC5Kzms621tFUw3h+JWsse9Dt/UzLaAesVEIZd/QwVVe9vg 0yD7KsUP51BikngTc2FD+om0sEDpww4GkegNBEQkvzF/CW1dU7+ouGeHL18UUwJ8 j3NPGtXXjb2P2IupKGLNp5qgb9OX9BKleSEe0H19PZAmqw7cv+WbawzYfkOC68YT TXTndZYLVtzA88C6ykuvjlrchiKGTzu9jDRhSJ4Diomz1rSQuu6gtaZd9mwg52sj mOPkV/IDtTWqE/rsaxAtXoQqYiKwUAJ1kL/cPiAi -----END CERTIFICATE-----Generated at Fri Nov 22 14:19:26 2024 by rpki-client on console-ams.rpki-client.org